Latest news of the domain name industry

Recent Posts

New .jobs contract based on new gTLD agreement

Kevin Murphy, December 10, 2014, Domain Registries

ICANN and Employ Media are set to sign a new contract for operation of the .jobs registry which is based heavily on the Registry Agreement signed by all new gTLD registries.

.jobs was delegated in 2005 and its first 10-year RA is due for renewal in May 2015.

Because Employ Media, like all gTLD registries, has a presumption of renewal clause in its contract, ICANN has published the proposed new version of its RA for public comment.

It’s basically the new gTLD RA, albeit substantially modified to reflect the fact that .jobs is a “Sponsored TLD” — slightly different to a “Community” TLD under the current rules — and because .jobs has been around for nine years already.

That means it won’t have to sign a contract forcing it to run Sunrise or Trademark Claims periods, for example. It won’t have to come up with a Continued Operations Instrument — a financial arrangement to cover operating costs should the company go under — either.

Its commitments to its sponsor community remain, however.

ICANN said it conducted a compliance audit on Employ Media before agreeing to the renewal.

Employ Media remains the only gTLD registry to have been hit by a formal breach notice by ICANN Compliance. In 2011, it threatened to terminate its contract over a controversial proposal to all job aggregation sites to run on .jobs domains.

The registry filed an Independent Review Process complaint to challenge the ruling and ICANN eventually backed down in 2012.

The fight came about as a result of complaints from the .JOBS Charter Compliance Coalition, a group of jobs sites including Monster.com.

Black Ice suspended by ICANN

Kevin Murphy, December 8, 2014, Domain Registrars

A small Israeli registrar has had its registrar accreditation suspended by ICANN.

Black Ice domains, which has a few thousand .com and .net domains under management, failed to comply with an ICANN audit and was overdue on its fees by over $5,000, according to the ICANN notice (pdf).

It won’t be allowed to sell gTLD domains or accept inbound transfers from December 19 to March 18, and may be terminated if it fails to come back into compliance.

The registrar is the fourth to have its accreditation suspended by ICANN in 2014. The organization has terminated a further seven registrars, down on the 11 terminated in the whole of 2013.

IP Mirror rapped for failing to deal with abuse

Kevin Murphy, November 17, 2014, Domain Registrars

Here’s something you don’t see every day: a corporate brand management registrar getting smacked by an ICANN breach notice.

Singapore-based registrar IP Mirror has been sent a warning by ICANN Compliance about a failure to respond to abuse complaints filed by law enforcement, which appears to be another first.

Under the 2013 Registrar Accreditation Agreement, registrars are obliged to have a 24/7 abuse hotline to field complaints from “law enforcement, consumer protection, quasi-governmental or other similar authorities” designated by the governments of places where they have a physical office.

According to its web site, IP Mirror has offices in Singapore, Australia, Canada, Hong Kong, Indonesia, Japan, Malaysia, South Korea, Taiwan and the UK, but ICANN’s breach notice does not specify which authority filed the complaint or which domains were allegedly abusive.

Registrars have to respond to such complaints within 24 hours, the RAA says.

The ICANN notice (pdf) takes the company to task for alleged breaches of other related parts of the RAA, such as failure to retain records about complaints and to publish an abuse contact on its web site.

The company has been given until December 5 to come back into compliance or risk losing its accreditation.

IP Mirror isn’t massive in terms of gTLD names. According to the latest registry reports it has somewhere in the region of 30,000 gTLD domains under management.

But it is almost 15 years old and establishment enough that it has been known to sponsor the occasional ICANN meeting. It’s not your typical Compliance target.

DreamHost hit with big breach notice

Kevin Murphy, November 3, 2014, Domain Registrars

DreamHost, a web hosting provider which says it hosts over 1.3 million web sites, has been hit with a lengthy ICANN compliance notice, largely concerning alleged Whois failures.

The breach notice raises questions about the company’s popular free Whois privacy service.

Chiefly, DreamHost has failed to demonstrate that it properly investigates Whois inaccuracy complaints, as required by the Registrar Accreditation Agreement, according to ICANN.

The notice contains numerous other complaints about alleged failures to publish information about renewal fees, its directors and abuse contacts on its web site.

The domain highlighted by ICANN in relation to the Whois failure is senect.com

ICANN sent three compliance notices to DreamHost concerning a Whois inaccuracy report for the domain name and requested DreamHost demonstrate that it took reasonable steps to investigate the Whois inaccuracy claims. DreamHost’s failure to provide documentation demonstrating the reasonable steps it took to investigate and correct the alleged Whois inaccuracy is a breach of Section 3.7.8 of the RAA.

Weirdly, senect.com has been under private registration at DreamHost since the start of 2012.

ICANN seems to be asking the registrar to investigate itself in this case.

DreamHost offers private registration to its customers for free. It populates the Whois with proxy contact information and the registrant name “A Happy DreamHost Customer”.

DomainTools associates “A Happy DreamHost Customer” with over 710,000 domain names.

As an accredited registrar, DreamHost had over 822,000 gTLD domain names at the last count. According to its web site, it has over 400,000 customers.

The breach notice also demands the company immediately start including the real contact information for its privacy/proxy customers in its data escrow deposits.

ICANN has given the company until November 21 to resolve a laundry list of alleged RAA breaches, or risk losing its accreditation.

ICANN terminates deadbeat registrar

Kevin Murphy, October 27, 2014, Domain Registrars

ICANN has started termination proceedings on Domain Services Rotterdam, a Dutch registrar, for failure to pay accreditation fees.

The company owes ICANN $5,118.83 in dues but has failed to pay up despite breach notices dating back to May, according to an ICANN termination notice (pdf)

Domain Services does not have any gTLD domains under management, so no registrants will be affected by the termination, which is due to kick in November 21.

The registrar was accredited in March this year.

“Send registrars to jail!”, ICANN hears

Kevin Murphy, October 13, 2014, Domain Policy

ICANN is ramping up its focus on contractual compliance in the midst of calls for domain industry offenders to “go to jail”.

CEO Fadi Chehade yesterday revealed that he has has promoted chief contracting counsel Allen Grogan to the newly created role of chief contract compliance officer.

Grogan, who Chehade has worked with off and on since 1991, will report directly to him. Maguy Serad, who has been heading compliance under Chehade for the last couple of years, will now report to Grogan.

In a session with the GNSO Council at the ICANN 51 public meeting in Los Angeles yesterday, Chehade said the appointment was part of a new “strategic, analytical” approach to compliance.

It was hinted that the compliance focus may form part of Chehade’s address at the formal opening ceremony of ICANN 51 later today.

Ron Andruff of the Business Constituency made the “jail” comments in response.

“We need to see action, we need to see teeth,” he said. “We never see any really strong action taken and it’s time we did. It’s time we saw people go to jail for doing things, lose their contracts for doing things.”

“We’ve lived through 15 years of ICANN with all manner of transgressions, some very serious ones, but they all get slid off to the side and there’s never any mention of it,” he said.

“Should someone be the recipient of extremely strong actions — losing their contract, being thrown out the community — that would send a signal,” he said.

Andruff appeared to be relating comments made by the Intellectual Property Constituency’s Kristina Rosette, at a private Commercial Stakeholders Group meeting earlier that day.

However, Rosette was quick to take to Twitter to deny she’d said anything about jail time.

Chehade, in reply to Andruff, agreed with the need for action but clarified what he plans to do.

“It doesn’t mean to create a police force, that’s not what we need,” he said. “What we need is thoughtful, analytical analysis.”

“It doesn’t mean we’re going to take the job of all the global consumer protection agencies,” he said earlier in the session.

The notion of ICANN having the power to directly jail somebody is of course laughable — all of its power comes from its contracts with registrars and registries.

However, it’s not beyond the bounds of possibility that ICANN could refer registrars to law enforcement should it come across suspected illegality in the course of its compliance investigations.

ICANN Compliance currently employs 21 people and deals with 5,000 complaints per month, Chehade said.

In the last year, the number of breach, suspension and termination notices against registrars has been on the increase.

Notably, last November a registrar owned by “spam king” Scott Richter was terminated. Notorious domain “slammer” NameJuice faces possible termination this Friday based on a July suspension notice.

Korean registrar suspended

Kevin Murphy, September 26, 2014, Domain Registrars

ICANN has suspended the accreditation of Korean registrar Dotname Korea over failures to comply with Whois accuracy rules.

The company was told this week that it will lose the ability to sell names for three months.

“No new registrations or inbound transfers will be accepted from 7 October 2014 through 5 January 2015,” ICANN compliance chief Maguy Serad told the company (pdf).

The suspension follows breach notices earlier in the year pertaining to Dotname’s failure to show that it was responding adequately to Whois inaccuracy complaints.

Other breaches of the Whois-related parts of the 2013 Registrar Accreditation Agreement were also alleged.

The company has until December 16 to show compliance of face the possibility of termination.

ICANN terminates billion-dollar gTLD applicant over unpaid $3,000 bill

Kevin Murphy, August 27, 2014, Domain Registrars

Telefonica Brasil, part of the massive Telefonica group of telecoms companies, has lost its registrar accreditation after failing to pay its ICANN fees.

The company, which had revenue last year of $14.6 billion, is facing termination of its Registrar Accreditation Agreement over the pitiful sum of $3,082.12.

It’s also embarrassing because Telefonica is applying for the new gTLD .vivo, its consumer brand in Brasil, which will require it to sign a Registry Agreement with ICANN.

I don’t think the loss of the RAA affects the company’s ability to get its gTLD contracted and delegated.

According to ICANN (pdf), Telefonica also failed to comply with the Registrar Information Specification, a pretty basic rule in the 2013 Registrar Accreditation Agreement requiring registrars to provide their address and names of officers and any parent companies.

The company has no gTLD names under management, so registrants will not be affected by the termination, which will take effect September 25.

ICANN sent its initial breach notice in July, but Telefonica did not comply before the August deadline. It also received a breach notice over an unpaid $10,000 bill a year ago.

Domain “slammer” finally gets suspended by ICANN

The beneficiary of the long-running Domain Registry of America scam is finally at risk of losing its ICANN accreditation.

ICANN has suspended Brandon Gray Internet Services, which does business as NameJuice.com, due to the “deceptive” marketing practices carried out by its “resellers”.

The company won’t be able to register any gTLD names or receive transfers for 90 days.

If NameJuice hasn’t sorted out its act by October 17, it faces the risk of losing its accreditation permanently.

The company, you will recall, is the primary beneficiary of the “slamming” scam, which tricks customers of other registrars into transferring their names with confusing, invoice-style junk mail.

Slammers have been operating under various names including Domain Registry of America, Domain Registry of Europe and Domain Registry of Canada for close to 15 years.

I received one in 2011 from the “Domain Renewal Group”, which I blogged about here.

It was sued by Register.com in 2002 over the practice, was forced into a settlement with the US Federal Trade Commission in 2003, and has been involved in tangles with regulators all over the world for the last decade.

But it seems ICANN’s hands were tied until Brandon Gray signed the new 2013 Registrar Accreditation Agreement, which gives ICANN’s compliance department more power over resellers.

ICANN said:

Since at least 2009, ICANN has received numerous complaints from Registered Name Holders, registrars, and various ICANN Supporting Organizations and Advisory Committees regarding the business solicitation practices of Brandon Gray’s resellers. Such practices were not specifically prohibited under the 2001 and 2009 RAAs. Section 3.12 of the 2013 RAA, however, requires registrars to ensure its reseller’s actions comply with the RAA, as well as the Registrants’ Benefits and Responsibilities Specification, which protects Registered Name Holders from false or deceptive practices.

ICANN fingered “reseller” Registration Services Inc as the party behind DROA and the other slamming scams.

In order to cure the latest breach, NameJuice has until August 8 to provide a tonne of information about Registration Services, including its certificate of incorporation, samples of its mailshots, and details of how a sample of specific domains came to be transferred.

In order to avoid losing its accreditation by October 10, the company will also have to promise to force its reseller to stop its deceptive marketing and provide ICANN with samples of future mailings.

NameJuice has 13 tasks in total to comply with to avoid termination proceedings; it’s looking promising that ICANN will finally shut down this blight on the industry just a few months from now.

The irony is, of course, if NameJuice loses its accreditation, all of the names that were obtained under false pretenses will not revert naturally to their original registrar. Instead, if ICANN follows its standard practice, they’ll be transferred in bulk to a third registrar.

You can read the breach notice here and the suspension notice here.

Almost half of registrars “deficient” in compliance audit

Almost half of accredited domain name registrars were found “deficient” during a recent ICANN compliance survey.

Results of an audit published today show that 146 of 322 registrars (45%) picked at random for the September 2013 to May 2014 study had to carry out some form of remediation in order to comply with their contracts.

The report comes at the end of the second year of ICANN’s audit program, which aims to bring all accredited registrars and gTLD registries into compliance over three years.

The deficiencies noted at 146 registrars cover areas ranging from compliance with ICANN consensus policies to the availability of Whois services over the web and port 43.

In almost every instance the numbers were down on last year.

For example, ICANN documented 86 registrars who could not initially show compliance with requirements on the retention of registrant data, down from 105 a year ago.

Only 15 registrars of the 322 (4.6%) flunked the audit and will be re-tested. The others were all able to bring their systems into line with ICANN’s requirements during the course of the audit.

Three registrars were terminated as a result of deficiencies identified during this phase of the program.

The full report, along with the list of participating registrars, can be found here.