France slams ICANN after GAC rejects special treatment for .wine

France says that “ICANN is no longer the appropriate forum to discuss Internet governance” after it failed to win support from other governments for special protections in .wine and .vin gTLDs.
The government came to ICANN 50 in London this week apparently determined to secure a Governmental Advisory Committee consensus that .wine should have protection for geographic indicators.
GIs are protected geographic terms such as “Champagne”, “Parma” and “Cheddar” that link a product to the region in which it is traditionally produced. France has a lot of wine-related GIs.
But the GAC — as I think everyone, including France, expected — failed to come to an agreement.
The GAC’s London communique (pdf) reads:

There was further discussion on the issue of .wine/.vin, but no agreement was reached because of the sensitive nature of the matter.
The matter of .wine and .vin was raised at the High Level Governmental Meeting, where some members expressed concerns in terms of ICANN’s accountability and public policy. These concerns are not shared by all members.

In the absence of a consensus GAC objection, the most likely outcome is ICANN pushing the competing .vin/.wine applicants along the contention resolution process to auction.
France has won a lot of media coverage this week, throwing out allegations such as the idea that ICANN is “opaque”, and questioning ICANN’s ability to do its job properly.
Quizzed about France’s statements at a press conference on Monday, ICANN CEO Fadi Chehade pointed out that studies have show ICANN is extremely transparent and wondered aloud whether France’s position is the one where you “scream that everything’s broken when you don’t get what you want”.
Today’s French statement is a little, but not much, more relaxed. Translated, it partially reads:

Current procedures at ICANN highlight its inability to take into account the legitimate concerns of States and to ensure common resource management in the direction of respect for cultural diversity and balance of interests in economic sectors that its decisions affect.
…
Accordingly, it will propose to its European partners and all other stakeholders to reflect on the future of Internet governance based on transparency, accountability, and equal stakeholders. Commission also believes that ICANN is no longer the appropriate forum to discuss Internet governance.

The government did, however, reiterate its support for the notion of multi-stakeholder internet governance.
French wine producers were less diplomatic. We received a statement from ANEV, the Association Nationale des Elus de la Vigne et du vin, this afternoon that called upon the French government and European Union to block all domain names that use GIs in violation of local law.
Personally, I don’t think that’s going to happen.
During an ICANN session on Monday, the French GAC rep used the .wine controversy to call for the creation of a “General Assembly” at ICANN.
I’m working from the transcript, which has been translated by ICANN into English, and some media reports, but it seems that France is thinking along the lines of an ITU-style, voting-based rather than consensus-based, approach to generating GAC advice. I may be wrong.
During Monday’s press conference, Chehade did not oppose France’s suggestions, though he was careful to point out that it would have to be approved by the whole ICANN community first (implicitly a tall order).
A vote-based GAC could well favor European Union countries, given the make-up of the GAC right now.
On the .wine issue, it’s mainly a few Anglophone nations such as the US, Canada and Australia that oppose extra GI protections.
These nations point out that the GI issue is not settled international law and is best dealt with in venues such as the World Trade Organization and the World Intellectual Property Organization.
France actually says the same thing.
But while France says that ICANN’s refusal to act on .wine jeopardizes GI talks in other fora, its opponents claim that if ICANN were to act it would jeopardize the same talks.
Chehade said during the Monday press conference that France had not yet run out of ways to challenge ICANN’s position on this, so the story probably isn’t over yet.

.hotel avoids auction with CPE win

A new gTLD applicant backed by the hotel industry has won a Community Priority Evaluation, meaning it gets to automatically win the .hotel contention set without going to auction.
If the decision stands, no fewer than six rival applicants for the string — including the likes of Donuts, Radix, Famous Four and Minds + Machines — are going to have to withdraw their applications.
It’s a bit of a shocker.
The CPE winner is HOTEL Top-Level-Domain, which scored 15 out of 16 available points in the CPE. The minimum required to vanquish all foes is 14 points.
The company will have spent a fair bit of cash fighting the CPE, but nothing compared to the millions of dollars an auction for .hotel would be likely to fetch.
Crucially, where HOTEL prevailed was on the “Nexus” criterion — demonstrating a link between the string and the community supporting the application — where four points are available.
In the first four CPE results to come through, back in March, each applicant scored a 0 on Nexus and none scored more than 11 points overall.
Dot Registry, which failed four CPEs (.inc, .llc, .corp and .llp) this week, also repeatedly flunked on this count.
HOTEL, however, scored a 3.
Rival applicants such as Donuts and M+M had argued that HOTEL’s stated community failed to take into account smaller hoteliers, such as bed and breakfast owners.
But the CPE panelist decided that the application did not “substantially overreach”:

The string nexus closely describes the community, without overreaching substantially beyond the community. The string identifies the name of the core community members (i.e. hotels and associations representing hotels). However, the community also includes some entities that are related to hotels, such as hotel marketing associations that represent hotels and hotel chains and which may not be automatically associated with the gTLD. However, these entities are considered to comprise only a small part of the community. Therefore, the string identifies the community, but does not over-reach substantially beyond the community, as the general public will generally associate the string with the community as defined by the applicant.

There’s no formal appeals mechanism for CPE, but rival applicants could try their luck with more general ICANN procedures such as Requests for Reconsideration.
HOTEL Top-Level-Domain is a Luxembourg-based entity, founded in 2008 to apply for the gTLD, backed by about a dozen international hotelier associations, including the International Hotel and Restaurant Association.
The IHRA counts 50 major hotel chain brands among its members and claims to be officially recognized by the UN for its lobbying work on behalf of the hospitality industry.
HOTEL intends to keep the .hotel gTLD restricted “initially” to only hotels as defined in the international standard ISO 18513.
Registrants will be verified against hotel industry databases. This will happen post-registration, but before the domain name can be activated in the DNS.
In other words, unless you’re a member of the hotel industry, you won’t be getting to use a .hotel domain name. Domainers are apparently not wanted.
All .hotel names will also be checked a year from registration to ensure that they have a web site displaying relevant content. Redirection to other TLDs may be allowed.
I was so convinced that the CPE was designed in such a way that it would be failed by all the applicants which had applied for it, I bet $50 (to go to an applicant-nominated charity) that none would.
If HOTEL wants to let me know which charity they want the $50 to go to, I’ll get it donated forthwith. I’m just glad I didn’t offer to eat my underwear.

.uk launches with Stephen Fry as anchor tenant

Nominet has launched its controversial .uk service, enabling Brits and others to register directly at the second level for the first time.
It did so with an endorsement from quintessential uber-Brit, gadget nut, Apple slave and national treasure Stephen Fry and a marketing splash including a .uk domain apparently visible from 35,000 feet up.
This sign has been placed in one of the main flight paths into Heathrow. Readers flying in to London for ICANN 50 later this month might want to ask for a window seat.

Actor/author/comedian Fry was the first to be given a .uk today. He’s switched from stephenfry.com to stephenfry.uk as a result — the .com is already redirecting to the .uk.
He said in a blog post:

It’s only three harmless key-presses, you may think. A year or so back I wrote that it seemed to me annoying and lax of the British internet authority (if such a body ever existed, which it didn’t and doesn’t) when domain names were being handed that they were so inattentive and their eyes so off the ball. How come Germany could have .de, France .fr, South Africa .za, Italy .it etc etc etc? And we poor British had to have the extra exhaustion of typing .co.uk. Three whole keystrokes. It doesn’t stack up to much when compared to other howling injustices in the world. The length of time poor students and tourists have to queue to get an Abercrombie and Fitch polo shirt for example, but nonetheless it has been a nuisance these twenty years or so.

His involvement has helped the news hit many of the major daily newspapers in the UK today.
This is how to launch a TLD.
Fry’s friend Prince Charles was given princeofwales.uk last December, among 69 domains previously under .gov.uk that the government requested receive special treatment.
While new .uk addresses are available to register now, you won’t be able to immediately register one that matches a .co.uk unless you’re the owner of that .co.uk.
All .co.uk registrants have been given five years to decide whether they want the .uk equivalent, which carries a £2.50-a-year fee ($4.20), assuming a multi-year registration.
That’s the same as a .co.uk. Assuming .uk gets good uptake and that most registrants will keep their .co.uk names for the foreseeable future, Nominet’s accounts could be in for a significant boost.
Owners of .org.uk or .me.uk names only get the free reservation if the matching .co.uk is not already registered. Otherwise, they have to wait five years like everyone else.

Bug takes out HostGator, BlueHost for a day

Endurance International, the domain name registrar that owns some of the world’s biggest web hosting brands, has been hit by a “network firmware” bug that took out one of its data centers.
It’s not currently clear how many many of the 10 million+ domains that EIG hosts were affected, but the outage seems to have lasted at least 17 hours and is only just being resolved right now.
Customers of EIG brands BlueHost and HostGator are among those known to be affected. HostGator alone hosts over 9 million domains, according to Wikipedia.
The outage, affecting a Provo, Utah data center, seems to have begun at 11am local time (7pm UTC) yesterday.
On the BlueHost Facebook page, the company wrote at about 8am UTC today:

Our NetOps team addressed the source of the problems affecting some customers: a bug in the firmware utilized in our vendor’s hardware. We worked very closely with this vendor and we have implemented a bug fix that is beginning to propagate across the network now. You may find some performance inconsistencies during this rollout, but they should resolve fairly quickly.

In more recent updates on Twitter and Facebook and forums, the companies said that some customers may still be affected by the bug, but that they’re quickly coming back online.
Endurance owns dozens of domains and hosting brands. In the registrar space, its best known and largest are probably FastDomain, Domain.com, Dotster and, following the recent acquisition, Directi.
Today’s downtime is the third significant outage in the last 12 months.
The same data center was hit by a prolonged outage in August 2013, which was followed by a shorter outage on December 31.

Are Whois email checks doing more harm than good?

“Tens of thousands” of web sites are going dark due to ICANN’s new email verification requirements and registrars are demanding to know how this sacrifice is helping solve crimes.
These claims and demands were made in meetings between registrars and ICANN’s board and management at the ICANN 49 meeting in Singapore last week.
Go Daddy director of policy planning James Bladel and Tucows CEO Elliot Noss questioned the benefit of the 2013 Registrar Accreditation Agreement during a Tuesday session.
The 2013 RAA requires registrars to verify that registrants’ email addresses are accurate. If registrants do not respond to verification emails within 15 days, their domains are turned off.
There have been many news stories and blog posts recounting how legitimate webmasters found their sites gone dark due to an overlooked verification email.
Just looking at my Twitter stream for an “icann” search, I see several complaints about the process every week, made by registrants whose web sites and email accounts have disappeared.
Noss told the ICANN board that the requirement has created a “demonstrable burden” for registrants.
“If you cared to hear operationally you would hear about tens and hundreds of thousands of terrible stories that are happening to legitimate businesses and individuals,” he said.
Noss told DI today that Tucows is currently compiling some statistics to illustrate the scale of the problem, but it’s not yet clear what the company plans to do with the data.
At the Singapore meeting, he asked ICANN to go to the law enforcement agencies that demanded Whois verification in the first place to ask for data showing that the new rules are also doing some good.
“What crime has been forestalled?” he said. “What issues around fraud? We heard about pedophilia regularly from law enforcement. What has any of this done to create benefits in that direction?”
Registrars have a renewed concern about this now because there are moves afoot in other fora, such as the group working on new rules for privacy and proxy services, for even greater Whois verification.
Bladel pointed to an exchange at the ICANN meeting in Durban last July, during which ICANN CEO Fadi Chehade suggested that ICANN would not entertain requests for more Whois verification until law enforcement had demonstrated that the 2013 RAA requirements had had benefits.
The exact Chehade line, from the Durban public forum transcript, was:

law enforcement, before they ask for more, we put them on notice that they need to tell us what was the impact of what we did for them already, which had costs on the implementers.

Quoted back to himself, in Singapore Chehade told Bladel: “It will be done by London.”
Speaking at greater length, director Mike Silber said:

What I cannot do is force law enforcement to give us anything. But I think what we can do is press the point home with law enforcement that if they want more, and if they want greater compliance and if they want greater collaborations, it would be very useful to show the people going through the exercise what benefits law enforcement are receiving from it.

So will law enforcement agencies be able to come up with any hard data by London, just a few months from now?
It seems unlikely to me. The 2013 RAA requirements only came into force in January, so the impact on the overall cleanliness of the various Whois databases is likely to be slim so far.
I also wonder whether law enforcement agencies track the accuracy of Whois in any meaningfully quantitative way. Anecdotes and color may not cut the mustard.
But it does seem likely that the registrars are going to have data to back up their side of the argument — customer service logs, verification email response rates and so forth — by London.
They want the 2013 RAA Whois verification rules rethought and removed from the contract and the ICANN board so far seems fairly responsive to their concerns.
Law enforcement may be about to find itself on the back foot in this long-running debate.

Who runs the internet? An ICANN 49 primer

The ICANN 49 public meeting is kicking off here in Singapore right now, and control of the domain name system is going to be the hottest of hot topics for the next four days.
Two Fridays ago the US government announced its plan to remove itself from oversight of key internet functions currently managed by ICANN, causing a firestorm of controversy in the US.
A lot of the media commentary has been poorly informed, politically motivated and misleading.
According to this commentary, the move means that regimes more repressive that the United States government are going to take over the internet, killing off free speech.
Here I present a backgrounder on the issue, a primer for those who may not be familiar with the history and the issues. ICANN addicts may find the latter half of the piece interesting too, but first…
Let’s go back to basics
The issue here is control over the DNS root zone file. Basically, the root zone file is a 454K text file that lists all the top-level domains that are live on the internet today.
Each TLD is listed alongside the DNS name servers that it is delegated to and control it. So .com has some name servers, .uk has some name servers, .info has some name servers, etc.
If an internet user in San Francisco or London or Ulan Bator tries to visit google.com, her ISP finds that web site by asking the .com zone file for its IP address. It finds the location of the .com zone file (managed by Verisign) in turn by asking the root zone file.
The root zone files are served up by 13 logical root zone servers named A through M, managed by 12 different entities. Verisign runs two. ICANN runs one. Most are US-based entities.
Every root server operator agrees that Verisign’s root is authoritative. They all take their copies of the root zone file from this server. This keeps the data clean and consistent around the world.
So Verisign, in terms of actually sitting at a keyboard and physically adding, deleting or amending entries in the root zone file, has all of the power over the internet’s DNS.
Verisign could in theory assign .uk or .xxx or .com to name servers belonging to Canada or the Vatican or McDonalds or me.
But in practice, Verisign only makes changes to the root zone when authorized to do so by the US National Telecommunications and Information Administration, part of the Department of Commerce.
That’s because Verisign’s power to amend the root zone comes from its Cooperative Agreement with NTIA.
Amendment 11 (pdf) of this agreement dates from 1999, a time before Verisign acquired Network Solutions (NSI) and before ICANN had a name and was known as “NewCo”. It states:

NSI agrees to continue to function as the administrator for the primary root server for the root server system and as a root zone administrator until such time as the USG instructs NSI in writing to transfer either or both of these functions to NewCo or a specified alternate entity.
While NSI continues to operate the primary root server, it shall request written direction from an authorized USG official before making or rejecting any modifications, additions or deletions to the root zone file. Such direction will be provided within ten (10) working days and it may instruct NSI to process any such changes directed by NewCo when submitted to NST in conformity with written procedures established by NewCo and recognized by the USG.

So the power to amend the root zone — and therefore decide which TLDs get to exist and who gets to run them — actually lies in NTIA’s hands, the hands of the US government.
NTIA says its role is “largely symbolic” in this regard.
That’s because the power to decide what changes should be made to the root zone has been delegated to ICANN via the “IANA functions” contract.

What you’re looking at here is a diagram, from the latest IANA contract, showing that whatever changes ICANN proposes to make to the root (such as adding a new gTLD) must be authorized by NTIA before somebody at Verisign sits at a keyboard and physically makes the change.
In the diagram, “IANA Functions Operator” is ICANN, “Administrator” is NTIA, and “Root Zone Maintainer” is Verisign.
What NTIA now proposes is to remove itself from this workflow. No longer would ICANN have to seek a US government rubber stamp in order to add a new TLD or change ownership of an existing TLD.
It’s possible that Verisign will also be removed from the diagram. ICANN runs a root server already, which could replace Verisign’s A-root as the authoritative one of the 13.
NTIA says that the Cooperative Agreement and the IANA contract are “inextricably intertwined” and that it will “coordinate a related and parallel transition in these responsibilities.”
If this all sounds dry and technical so far, that’s because it is.
So why is it so important?
An entry in the DNS root zone has economic value. The fact that the record for .com points to Verisign’s name servers and not yours means that Verisign is worth $7 billion and you’re not.
Whoever has power over the root therefore has the ability to dictate terms to the entities that want their TLD listed.
ICANN’s contract with Verisign makes Verisign pay ICANN $0.25 for every .com name sold, for example.
The contract also forces Verisign to only sell its names via registrars that have been accredited by ICANN.
This gives ICANN, by indirect virtue of its control of the root, power over registrars too.
The Registrar Accreditation Agreement contains terms that require registrars to publish, openly, the names and addresses of all of their customers, for example.
Suddenly, control of the root is not only about lines in a database, it’s about consumer privacy too.
The same goes for other important issues, such as free speech.
Should people have the right to say that a company or a politician “sucks”? Most of us would agree that they should.
However, if they want to register a .sucks domain name in future they’re going to have to abide by rules, developed by ICANN and its community, that protect trademark owners from cybersquatting.
Over the course of many years, ICANN has decided that trademark owners should always have the right to preemptively register any domain name that matches their brands. This will apply to .sucks too.
If I, militant vegetarian that I am, wanted to register mcdonalds.sucks after .sucks becomes available, there’s a significant probability that I’m not going to get the opportunity to do so.
Of course, there’s nothing stopping you and I publishing our opinion of a worthless politician or corrupt company in other ways using other domain names, but it remains true that ICANN has essentially prioritized, for very good reasons, the rights of trademark owners over the rights of other internet users.
Theoretically, at some point in the future, ICANN could amend the Registrar Accreditation Agreement to require registrars to, for example, always deactivate a domain name when they receive a cease and desist letter, no matter how unfounded or spurious, from a trademark lawyer.
Suddenly, the web belongs to the IP attorneys, free speech is damaged, and it’s all because ICANN controls the DNS root.
I’m not saying that’s going to happen, I’m just using this as an example of how ruling the root has implications beyond adding records to a database.
What does US oversight have to do with this?
The question is, does the US removing itself from the root zone equation have any impact on what ICANN does in future? Has the US in fact been a good custodian of the root?
Commentators, many of them Republicans apparently seizing on the NTIA’s move as the latest opportunity to bash President Obama’s administration, would have you believe that the answer is yes.
I’m not so sure.
The US in fact has a track record of using its power in ways that would reduce free speech on the internet.
Back in 2005, there was a controversy about ICANN’s decision to add .xxx — a top-level domain for pornography — to the root zone. Whatever you think about porn, this is undeniably a free speech issue.
The US government, under the Bush administration, was initially ambivalent about the issue. Then a bunch of right-wing religious groups started lobbying the NTIA en masse, demanding .xxx be rejected.
The NTIA suddenly switched its position, and actually considered (ab)using its power over the root zone to block .xxx’s approval and therefore appease the Republican base.
This all came out due to .xxx operator ICM Registry’s Freedom of Information Act requests, which were detailed in the the declaration (pdf) of an Independent Review Panel — three neutral, respected judges — that oversaw ICM’s appeal against ICANN:

Copies of messages obtained by ICM under the Freedom of Information Act show that while officials of the Department of Commerce concerned with Internet questions earlier did not oppose and indeed apparently favored ICANN’s approval of the application of ICM, the Department of Commerce was galvanized into opposition by the generated torrent of negative demands, and by representations by leading figures of the so-called “religious right”, such as Jim Dobson, who had influential access to high level officials of the U.S. Administration. There was even indication in the Department of Commerce that, if ICANN were to approve a top level domain for adult material, it would not be entered into the root if the United States Government did not approve

US lobbying via ICANN’s Governmental Advisory Committee and other channels had the effect that ICANN rejected ICM’s .xxx application. It’s only because ICM was prepared to spend years and millions of dollars appealing the decision that .xxx was finally added to the root.
When you read an article claiming that the US government relinquishing its root oversight role will have a negative effect on free speech, ask yourself what the record actually shows.
The .xxx case is the only example I’m aware of the US leveraging or preparing to leverage its oversight role in any way. On free speech, USG is 0 for 1.
The US is also a powerful member of the Governmental Advisory Committee, the collection of dozens of national governments that have a strong voice in ICANN policy-making.
Under the rules of the new gTLD program, the GAC has right to veto any new gTLD — prevent it being added to the DNS root zone — if all the governments on the GAC unanimously agree to the veto.
Currently, there’s a controversy about the proposed gTLD .amazon, which has been applied for by the online retail behemoth Amazon.
Latin American countries that count the Amazonia region and Amazon river as part of their territories don’t want it approved; they believe they have the better rights to the .amazon string.
Despite this outrage, the GAC initially could not find unanimous consensus to veto .amazon. It transpired that the US, no doubt protecting the interests of a massive US-based corporation, was the hold-out.
Last July, NTIA decided to drop its opposition to the veto, leading to a GAC consensus that .amazon should be rejected.
In its position paper (pdf) announcing the .amazon veto block reversal, NTIA said the US “affirms our support for the free flow of information and freedom of expression”.
By its own definitions, the US made a decision that harmed free expression (not to mention Amazon’s business interests). It seems to have done so, again, in the name of political expediency.
I’m not saying that the US decision was right or wrong, merely that the record again shows that it’s not the great protector of free speech that many commentators are making it out to be.
What should replace the US?
The question for the ICANN community this week in Singapore and over the coming months is what, if anything, should replace the US in terms of root zone oversight.
The NTIA has been adamant that a “multi-stakeholder” solution is the way to go and that it “will not accept a proposal that replaces NTIA’s role with a government-led or an inter-governmental solution.”
The weirdness in this statement, and with the whole transition process in general, is ICANN is already a multi-stakeholder system.
In light of the US’ longstanding “hands off” approach (with the aforementioned exception of .xxx), does ICANN even need any additional oversight?
Today, legislative power in ICANN resides with its board of directors. The ICANN staff wield executive control.
In theory and under ICANN’s extensive governance rules, the board is only supposed to approve the consensus decisions of the community and the staff are only supposed to execute the wishes of the board.
In practice, both board and staff are often criticized for stepping beyond these bounds, making decisions that do not appear to have originated in the community policy-making process.
The ruling on vertical integration between registries and registrars, where the community could not even approach consensus, appears to have originated with ICANN’s legal department, for example.
There has also been substantial concern about the extent of the power handed to hand-picked advisory panels created by CEO Fadi Chehade recently.
In that light, perhaps what ICANN needs is not oversight from some third party but rather stronger community accountability mechanisms that prevent capture and abuse.
That’s certainly my view today. But I don’t have any particularly strong feelings on these issues, and I’m open to have my mind changed during this week’s discussions in Singapore.

CentralNic kicks out ARI as back-end for four new Radix gTLDs

CentralNic has replaced ARI Registry Services as the exclusive back-end registry services provider for four new gTLDs.
Radix, the new gTLD portfolio applicant formerly affiliated with Directi, will use CentralNic “exclusively” for .press, .host, .website and .space, according to a press release this morning.
ARI was originally listed on Radix’s applications as the technical services provider for all four, but as a result of change requests submitted in January ARI is out and CentralNic is in.
All four were either originally uncontested strings or have since been won by Radix at auction.
The news of the switch follows the announcement last month that CentralNic has also become a “preferred” back-end for portfolio applicant Famous Four Media, alongside ARI and Neustar.

New gTLD registries given way to free up millions of blocked names

Up to 9.8 million new gTLD domain names are to get a get-out-of-jail card, with the publication yesterday of ICANN’s plan to mitigate the risk of damaging name collisions.
As a loyal DI reader, the details of the plan will not come as a great surprise. It was developed by JAS Global Advisors and previewed in a guest post by CEO Jeff Schmidt in January
Name collisions are scenarios where a TLD delegated by ICANN to the public DNS matches a TLD that one or more organizations already uses on their internal networks.
Verisign, in what many view as protectionist propaganda, has been arguing that name collisions could cause widespread technical and economic damage and even a risk to life.
Things might stop working and secret data might leak out of corporate networks, Verisign warns.
JAS’ proposed solution, which ICANN has opened for public comment, is quite clever, I think.
Called “controlled interruption”, it will see new gTLD registries being asked to wildcard their entire second level of their TLDs to point to the IP address 127.0.53.53.
If there’s a name collision on example.corp the company using that TLD on its network will notice unusual behavior and will have an opportunity to fix the problem.
Importantly, no data apart from the DNS look-up will leak out of their networks — the 127/8 IP address block is reserved by various standards for local uses only.
The registry will essentially bounce the DNS request back to the network making the request. If that behavior causes problems, the network administrator will presumably check her logs, notice the odd IP address, and Google it for further information.
Today, she’ll find a Slashdot article about the name collisions plan, which should put the admin on the road to figuring out the problem and fixing her network. In future, maybe ICANN will rank for the term.
Registries would be able to choose whether to wildcard their whole TLD or to only point to 127.0.53.53 those second-level names currently on their collisions block lists.
In either case, the redirection would only last for the first 120 days after delegation. That’s the same duration as the quiet period ICANN already imposes on new delegations, during which only “nic.” may resolve.
After the 120 days are up, the name collisions issue would be considered permanently closed for that TLD.
If this goes ahead, the plan will allow registries to unblock as many as 9.8 million domain names representing 6.8 million unique second-level labels, according to DI PRO collisions database.
It could also put an end to the argument about whether name collisions really were a significant problem (160,000 new gTLD names are already live and we haven’t heard any reports of collisions yet).
Pointing to the fact that new TLDs, some of which showed evidence of collisions, were getting delegated rather regularly before the current new gTLD round, JAS said in its report:

We do not find that the addition of new Top Level Domains (TLDs) fundamentally or significantly increases or changes the risks associated with DNS namespace collisions. The modalities, risks, and etiologies of the inevitable DNS namespace collisions in new TLD namespaces will resemble the collisions that already occur routinely in the other parts of the DNS.

However…

Collisions in all TLDs and at all levels within the global Internet DNS namespace have the ability to expose potentially serious security and availability problems and deserve serious attention.

JAS calls its plan “a conservative buffer between potential legacy usage of a TLD and the new usage”.
As wildcarding is currently prohibited by ICANN’s standard Registry Agreement (ironically, to prevent a repeat of Verisign’s Site Finder) an amendment is going to be needed, as the JAS plan acknowledges.
The drawback of the plan is that if an organization is relying on a colliding internal TLD, whatever systems use that TLD could break under the plan. The 127/8 redirection is a way to help them resolve the breakage, not always to prevent it happening at all.
For new gTLD registries it’s pretty good news, however. There are many thousands of potentially valuable premium names blocked under the current regime that would be made available for sale.
If you’re an applicant for .mail, however, it’s a different story. The JAS report says .mail should be reserved forever, putting it in the same category as .home and .corp:

the use of .corp and .home for internal namespaces/networks is so overwhelming that the inertia created by such a large “installed base” and prevalent use is not likely reversible. We also note that RFC 6762 suggests that .corp and .home are safe for use on internal networks.
…
Like .corp and .home, the TLD .mail also exhibits prevalent, widespread use at a level materially greater than all other applied-for TLDs. Our research found that .mail has been hardcoded into a number of installations, provided in a number of example configuration scripts/defaults, and has a large global “installed base” that is likely to have significant inertia comparable to .corp and .home. As such, we believe .mail’s prevalent internal use is also likely irreversible and recommend reservation similar to .corp and .home.

In other words, .mail is dead and the five remaining applicants for the string are probably going to be forced to withdraw through no fault of their own. Should these companies get a full refund from ICANN?

Euro registrars miffed about ICANN privacy delays

Registrars based in the European Union are becoming increasingly disgruntled by what they see as ICANN dragging its feet over registrant privacy rules.
Some are even refusing to sign the 2013 Registrar Accreditation Agreement until they receive formal assurances that ICANN won’t force them to break their local privacy laws.
The 2013 RAA, which is required if a registrar wants to sell new gTLD domains, requires registrars to keep hold of registrant data for two years after their registrations expire.
Several European authorities have said that this would be illegal under EU privacy directives, and ICANN has agreed to allow registrars in the EU to opt out of the relevant provisions.
Today, Luxembourgish registrar EuroDNS said it asked for a waiver of the data retention clauses on December 2, but has not heard back from ICANN over two months later.
The company had provided ICANN with the written legal opinion of Luxembourg’s Data Protection Agency
In a snippy letter (pdf) to ICANN, EuroDNS CEO Lutz Berneke wrote:

Although we understand that your legal department is solely composed of lawyers educated in US laws, a mere translation of the written guidance supporting our request should confirm our claim and allow ICANN to make its preliminary determination.

EuroDNS has actually signed the 2013 RAA, but says it will not abide by the provisions it has been told would be illegal locally.
Elsewhere in Europe, Ireland’s Blacknight Solutions, said two weeks ago that it had requested its waiver September 17 and had not yet received a pass from ICANN.
“Why is it my problem that ICANN doesn’t understand EU law? Why should our business be impacted negatively due to ICANN’s inability to listen?” CEO Michele Neylon blogged. “[W]hile this entire farce plays out we are unable to offer new top level domains to our clients.”
But while Blacknight is still on the old 2009 RAA, other European registrars seem to have signed the 2013 version some time ago, and are already selling quite a lot of new gTLD domains.
Germany’s United-Domains, for example, appears to be the third-largest new gTLD registrar, if name server records are anything to go by, with the UK’s 123-Reg also in the top ten.
ICANN is currently operating a public comment period on the waiver request of OVH, a French registrar, which ICANN says it is “prepared to grant”.
That comment period is not scheduled to end until February 27, however, so it seems registrars agitated about foot-dragging have a while to wait yet before they get what they want.

First new gTLD cybersquatting case goes to IBM

IBM has won the first Uniform Rapid Suspension case to be filed against a new gTLD domain name.
National Arbitration Forum panelist Darryl Wilson handed down the perfunctory decision February 12, just seven days after IBM complained about ibm.ventures and ibm.guru.
Both domains have now been suspended, redirecting to a placeholder web site which states:

This Site is Suspended
The Domain Name you’ve entered is not available. It has been taken down as a result of dispute resolution proceedings pursuant to the Uniform Rapid Suspension System (URS) Procedure and Rules.
For more information relating to the URS, please visit: http://newgtlds.icann.org/en/applicants/urs

It was a slam dunk case, as you might imagine — the URS is designed to handle slam-dunk cases.
The registrant, who we estimate spent $2,500 on the two names, did not do himself any favors by redirecting both names to IBM’s .com site.
As we and Wilson both noted, this showed that he’d registered the names with IBM in mind.
IBM’s mark is included in the Trademark Clearinghouse, so the registrant will have been given a warning at the point of registration that he may be about to infringe someone’s IP rights.
Since the names were registered IBM, we’re told, has purchased a Domain Protected Marks List block from the registry, Donuts, which will prevent the names being re-registered when they expire.