Recent Posts
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
- ICANN drops the “man” from Ombudsman
- Have your say on police domain takedown powers
- Most registrars are shunning ICANN’s new Whois system
- Nominet to take over .gov.uk
- ICANN picks Istanbul for 2024 meeting
- ICANN’s private Whois data request service goes live
- .au regs slide on 2LD anniversary
- ICANN accused of power grab over $271 million auction fund
- A registrar is getting blamed for an Israeli war propaganda site
- Two more dot-brands bite the dust
- Google sells five-figure AI domain and six-figure .ing hack
- .blackfriday is still a bit rubbish
- Internet Naming Co acquires five more gTLDs
ICANN tests emergency registry with dead dot-brand
ICANN is running a test of its Emergency Back-End Registry Operator program, using the dead dot-brand gTLD .doosan as its guinea pig.
Doosan Group, a large Korean conglomerate, decided to kill off its gTLD, .doosan, last September. ICANN revealed the news in October.
The dot-brand had never been put to productive use and really only ever had nic.doosan live.
As it’s a dot-brand, it’s protected by the part of the Registry Agreement that prevents it being transferred to another registry operator.
Rather than letting the gTLD slip away into the night, however, ICANN is taking it as an opportunity to test out its EBERO system instead. ICANN says:
Simulating an emergency registry operator transition will provide valuable insight into the effectiveness of procedures for addressing potential gTLD service interruptions. Lessons learned will be used to support ICANN’s efforts to ensure the security, stability and resiliency of the Internet and the Domain Name System.
EBERO is the process that is supposed to kick in when (or if, I guess) a gTLD with a significant number of third-party registrations goes out of business and no other registry wants to take it over.
The EBERO provider takes over the running of the TLD’s critical functions for a few years so it can be wound down in an orderly fashion, giving registrants enough time to migrate to other TLDs.
Nominet, one of the designated EBERO operators, has taken over .doosan for this test, which is only a temporary measure.
Its IANA record was updated today with Nominet named as the technical contact and ICANN as the sponsor and administrator. Its name servers have switched over to Nominet’s.
Right now, www.nic.doosan resolves to ICANN’s EBERO web page. The non-www. version doesn’t seem to do anything.
ICANN said it will provide updates when the test is over.
ICANN security advisor predicts “hundreds” of new gTLDs will “go dark”
A security company led by a member of ICANN’s top security committee reckons that “hundreds” of new gTLDs are set to fail, leading to web sites “going dark”.
Internet Identity, which provides threat data services, made the prediction in a press release this week.
IID’s CTO, quoted in the release, is Rod Rasmussen. He’s a leading member of the Anti-Phishing Working Group, as well as a member of ICANN’s influential Security and Stability Advisory Committee.
He has a dim view of new gTLDs:
Most new gTLDs have failed to take off and many have already been riddled with so many fraudulent and junk registrations that they are being blocked wholesale. This will eventually cause ripple effects on the entire domain registration ecosystem, including consolidation and mass consumer confusion as unprofitable TLDs are dropped by their sponsoring registries.
The press release acknowledges that ICANN has an Emergency Back-End Registry Operator (EBERO) program, which will keep failing gTLDs alive for up to three years after the original registry operator goes out of business.
But it continues:
questions abound as to who would risk an investment in poorly performing TLDs, especially as they start to number in the hundreds. “That’s why eventually some are going to just plain go dark,” added Rasmussen.
The prediction is for “2017 and beyond”. Given the existence of the EBERO, we’re probably looking at 2020 before IID’s claim can be tested.
It’s a bit of a strange prediction to come out of a security company.
The whole point of EBERO is to make sure domain names do not go dark, giving either the registry the chance to sell on the gTLD or the registrants a three-year heads-up that they need to migrate to a different TLD.
It would be a bit like being told that there’s a horrible bit of malware that is set to brick your computer, but that you’ll be fine if you change your anti-virus provider in the next three years.
I could live with that kind of security threat, personally.
But what are the chances of hundreds of live, non-dot-brand going fully post-EBERO dead in the next few years?
I’d say evidence to date shows the risk may be over-stated. It may happen to a small number of TLDs, but to “hundreds”?
We’ve already seen new gTLD registries essentially fail, and they’ve been taken over by others even when they’re by definition not profitable.
Notably, .hiv — which has a contractual agreement with ICANN to not turn a profit — failed and was nevertheless acquired by Uniregistry.
We also see registries including Afilias and Donuts actively searching for failing gTLDs to acquire.
CNNIC hit by “largest ever” denial of service attack
Chinese ccTLD operator CNNIC suffered up to half a day of degraded performance and intermittent accessibility yesterday, after being hit by what it called its “largest ever” denial of service attack.
CNNIC is one of ICANN’s three Emergency Back-End Registry Operators, contracted to take over the running of any new gTLD registries that fail. It’s also the named back-end for seven new gTLD applications.
According to an announcement on its web site, as well as local reports and tips to DI, the first wave of DDoS hit it at about midnight yesterday. A second wave followed up at 4am local time and lasted up to six hours.
According to a tipster, all five of .cn’s name servers were inaccessible in China during the attack.
Local reports (translated) say that many Chinese web sites were also inaccessible to many users, but the full scale of the problem doesn’t seem to be clear yet.
China’s .cn is the fourth-largest ccTLD, with close to 10 million domains under management.
ICANN selects new gTLD backup providers
Neustar, Nominet and CNNIC have been picked to provide backup registry services for new gTLDs that fail.
ICANN has named the three companies as Emergency Back-End Registry Operators for the new gTLD program.
They’ll be responsible for taking over the management of any new gTLD that goes out of business, putting registrants at risk of losing DNS resolution and registry functions.
The idea is that the EBERO(s) would be paid out of funds placed in escrow by gTLD applicants, in order to gracefully wind down any failed TLD over the space of a few years.
In reality, I doubt there’s going to be much call for their services; M&A activity is a more likely outcome for gTLDs that fail to meet their sales expectations.
ICANN highlighted the geographic diversity of the three companies (Nominet is British, Neustar American and CNNIC Chinese) as a stability benefit of its selections.
The three were chosen from 14 respondents to an RFI published last year.
The absence of an EBERO was one of the shortfalls of the new gTLD program highlighted by Verisign in its recent letter warning ICANN about perceived security and stability risks.
While ICANN has acknowledged that the EBEROs are unlikely to be ready to roll before the first new gTLDs start to launch, it has noted that they don’t need to be.
If any new gTLD catastrophically fails during the first few months of launch, it will reflect extremely poorly on the financial and technical evaluations applicants have been undergoing for the last nine months.
New gTLD failure risk bond capped at $300k
New generic top-level domain applicants will have to find between $18,000 and $300,000 per gTLD to cover the risk of their business failing, according to ICANN.
ICANN revealed the figures, which have been calculated from prices quoted by 14 potential emergency back-end registry operators, in a pre-Christmas info-dump on Friday.
The so-called Continued Operations Instrument is designed to cover the cost of paying an EBERO to manage and/or wind down a failed gTLD business over up to three years.
All new gTLD applicants must either secure credit or put cash in escrow to cover the COI, the amount of which depends on how many domains under management they anticipate.
This table shows the size of the COI for various sizes of zone.
[table id=4 /]
This essentially means that any registry that plans to grow its gTLD into a commercially successful volume business needs to find $300,000 to cover the cost of its potential failure.
Only five previously introduced new gTLDs have topped 250,000 domains under management in their first five years: .info (with 8 million today), .biz, .name, .mobi and .tel (which peaked at 305,000).
Smaller gTLDs, comparable to a .cat, .jobs or .travel, will only have to find $40,000 to $80,000. It’s likely that the majority of .brand applicants will only need to secure the minimum $18,000.
While potentially expensive, it’s welcome clarity into new gTLD funding requirements, albeit coming just two weeks before ICANN begins to accept applications.
ICANN also threw a bone to potential applicants from countries with poor access to credit.
The organization previously only contemplated allowing credit from banks with an ‘A’ rating or higher, but it now says it will accept, in its discretion, financial instruments from the highest-rated institution available to the applicant.
ICANN said it may also consider becoming a party to these credit agreements, again in its sole discretion, but that such applicants could lose points when their application is scored as a result.
Half the industry fighting over EBERO contracts
ICANN received a whopping 14 responses to its recent request for emergency back-end registry operators, contracts that could turn lucrative if and when new gTLDs start going out of business.
Following a request for information last month, responses received before the December 5 deadline came from Europe, Asia and North and South America, ICANN’s Karla Valente blogged.
While 14 may not seem like a lot, I’m only aware of 19 companies that are actively marketing new gTLD back-end registry services, so it’s a pretty high response rate.
The EBERO’s job is to make sure domain names continue to work after a new gTLD registry goes out of business. In the worst case scenario, it keeps the names resolving for up to three years, giving registrants the opportunity to migrate to another TLD.
The EBERO may, and I’m speculating here, also have an advantage in talks to take over the failed TLD full-time.
The successful providers will be paid from the Continuing Operations Instrument, a big chunk of cash that all new gTLD applicants are obliged to put aside to pay for their own funeral costs.
The price the successful EBEROs intend to charge is an important consideration when applicants calculate the size of their own COI, but those numbers have not yet been revealed.
The EBERO idea has come in for a bit of criticism due to ICANN’s high technical demands – 25,000 concurrent connections for an essentially stagnant TLD, for example – which some say favors incumbent registry operators such as VeriSign, Afilias and Neustar.
ICANN may wind up selecting more than one EBERO when it makes its decision early next year.
Clash over new gTLD risk fund
The ICANN community is split along predictable lines – domain registries versus intellectual property interests – in the latest controversy to hit the new top-level domains policy-making.
ICANN’s board of directors will meet this week to decide the fate of its new gTLD failure risk fund, an expensive buffer designed to protect registrants if new gTLD registries go bust.
The current plan is to ask each new gTLD applicant to front the entire cost of three years’ operation with a Continuing Operations Instrument – either a letter of credit or cash in escrow.
The idea is that if they go out of business, funds will be available to pay an emergency registry operator to, in the worst case scenario, gracefully wind down the gTLD.
Registries and some potential applicants are not happy about this idea. They say that the COI imposes too great a cost on start-up registries, which could lead to more failed businesses.
Since smaller businesses may not be able to secure letters of credit, they’ll have to escrow hundreds of thousands of dollars, rather than using the money to make sure they don’t fail in the first place.
Registries have proposed an alternative – a Continued Operations Fund – which would see all applicants deposit a flat fee of $50,000 into a central risk pool that ICANN would manage.
An ICANN public comment period on the COF that closed on Friday revealed the anticipated level of opposition from business and IP interests.
The main concern is that the COF represents a transfer of wealth from rich companies, which would easily and cheaply qualify for a letter of credit, to less well-funded applicants.
The COF “seeks to subsidize certain registry operators instead of allowing the market itself (via letter of credit based upon applicant viability) to determine the level of risk for each applicant”, Claudio DiGangi of the International Trademark Association wrote.
Steve Metalitz, president of ICANN’s Intellectual Property Constituency, echoed INTA’s concerns, adding the IPC’s suspicions about why the COF has been proposed:
[The COF] allows more underfunded applicants into the application pool which will in turn lead to more registry failures, cost to ICANN, and poor outcomes for registrants. While this may be good in the short term for members of the Registry Stakeholder Group (RySG) who desire to provide backend services to such underfunded applicants, the short term economic gain of members of one SG should not be prioritized over the risks to registrants and ICANN that the COF represents
One member of the IPC has suggested that if ICANN were to introduce a COF now, it would give opponents of the new gTLD program grounds to sue, under California insurance law, to put it to a halt.
On the pro-COF side, .org manger the Public Interest Registry said that the current COI plan discourages companies for applying for new gTLDs, which is at odds with ICANN’s goals of increasing competition in the registry space.
PIR’s director of policy Paul Diaz also points out that letters of credit will be hard to come by for companies in certain countries, which may lead to less geographically diverse applicants.
Somewhat surprisingly, Minds + Machines CEO Antony Van Couvering, perhaps sensing which way the wind is blowing at ICANN, has reluctantly backed the original COI model, but suggests a “simple short-term fix” to reduce the cost to applicants.
When determining the amount of the COI, applicants should be free to base it on their own “worst case scenario” registration volume projections, rather than their “most likely” models, on the basis that registries are unlikely to go out of business if they meet their revenue targets:
Presumably if you’re hitting your numbers you’re in good shape financially. It’s the low numbers you have to worry about. Setting the amount of the COI at this more reasonable and likely threshold will take care of the vast majority of failures.
ICANN only received comments from eight people on the COF proposal, and unsurprisingly they’re all (with one possible exception) looking out for their own financial interests.
Without a crystal ball, deciding which model will be “best” for the new gTLD program is a very tough call, but ICANN’s board of directors is expected to do so on Thursday.
Recent Comments