Recent Posts
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
- ICANN drops the “man” from Ombudsman
- Have your say on police domain takedown powers
- Most registrars are shunning ICANN’s new Whois system
- Nominet to take over .gov.uk
- ICANN picks Istanbul for 2024 meeting
- ICANN’s private Whois data request service goes live
- .au regs slide on 2LD anniversary
- ICANN accused of power grab over $271 million auction fund
- A registrar is getting blamed for an Israeli war propaganda site
- Two more dot-brands bite the dust
- Google sells five-figure AI domain and six-figure .ing hack
- .blackfriday is still a bit rubbish
- Internet Naming Co acquires five more gTLDs
Second US bill would block IANA transition
Another bill has been introduced into the US Congress related to the IANA transition process, and this one would actually be dangerous if passed.
Rep Mike Kelly introduced the Internet Stewardship Act (pdf) to make the IANA transition a matter that requires Congressional legislation.
The press release announcing the bill is longer than the bill itself, which says just this:
NTIA PROHIBITED FROM RELINQUISHING DNS RESPONSIBILITIES.
The Assistant Secretary of Commerce for Communications and Information may not relinquish or agree to relinquish the responsibilities of the National Telecommunications and Information Administration with respect to Internet domain name functions, including responsibility with respect to the authoritative root zone file, the Internet Assigned Numbers Authority functions, or the related root zone management functions, unless such relinquishment is permitted by a statute enacted after the date of the enactment of this Act.
In other words, if this bill is enacted then another bill would be required in order for the NTIA to remove itself from root zone oversight.
Try to imagine a bill relinquishing control over the “critical internet functions” getting majority support in any national legislature.
Try to imagine it getting support in a national legislature that has more than its fair share of flag-waving nationalists and gung-ho xenophobes.
Try to imagine the Republican party in Congress allowing the Obama administration, which it despises, to ‘give away the internet’ to Vladimir Putin and theocratic Arab states, which is what a lot of commentators irrationally seem to think is happening.
It Kelly’s bill is passed, ICANN may as well kiss goodbye to ideas of independence from US oversight for the foreseeable future.
Fortunately, the bill is just a bill right now.
ICANN fights the fear in Congressional hearing
A Congressional hearing yesterday addressed fears that the decision to cut ICANN loose from US governmental oversight would lead to the internet being seized by backwards regimes.
Long-term DI readers may recall that I’m usually quite snarky whenever a Congressional subcommittee convenes to pretend to be interested in ICANN — with the reason that they usually talk a lot of nonsense.
But this time the majority of the House Subcommittee on Communications and Technology seemed genuinely interested, surprisingly clueful, and relatively low on hyperbolic fearmongering.
The hearing was arranged due to the National Telecommunications and Information Administration’s March 14 decision to remove itself from the DNS root zone management triumvirate.
Whole cartloads of horse pucky have been wheeled out in response, exemplified by breathless editorials about how the world’s most repressive governments will immediately step in to fill the NTIA-shaped void.
It’s Obama’s policy of “appeasement”, designed to allow a shirtless Vladimir Putin to drive a tank directly into the root zone file, if you believe right-leaning American commentators.
There was some of that in yesterday’s hearing, but it was overshadowed by a discussion that seemed to be more interested in addressing genuine concerns and clearing up misconceptions.
Basically, Congressmen are afraid that if the NTIA leaves its role as steward of the DNS root zone, that will somehow lead to other governments taking over and internet freedoms being diminished.
How that fear manifested itself on the committee ranged from thoughtful and understandable expressions of concern and caution to wild-eyed, nonsensical, Putin-obsessed ranting.
It was the job of witnesses Larry Stricking of the NTIA, Fadi Chehade of ICANN and Ambassador David Gross, formerly of the Department of State, to reassure Congress that everything is going to be okay.
Rep. Scalise thinks Putin is magic
At the risk of being accused of sensationalism, I’m starting with the nut-job, but only to illustrate the misinformation ICANN and the NTIA have been dealing with for the last few weeks.
In a way, Rep. Steve Scalise’s portion of the hearing’s Q&A section is a microcosm of the dialogue that has been playing out in the media since the NTIA announcement.
Scalise was the guy on the committee who seems to believe that Russia and China possess the supernatural powers necessary to “take over the internet”. Red Magic, perhaps.
Here’s an exchange with Strickling and Chehade, which began when Scalise asked the panel to address concerns about authoritarian regimes taking over the internet:
STRICKLING: We won’t let that happen, number one.
SCALISE: What’s an assurance of that? It’s good to say we won’t let that happen, it’s nice to hear it, but nobody knows what’s gong to happen. You can’t tell me what’s going to happen. How do you know you won’t let it happen?
STRICKLING: I’m saying that we will not accept a proposal that has that as its outcome. Period. End of story. So it won’t happen. Second, nobody has yet explained to me the mechanism by which any of these individual governments could somehow seize control over the internet as a whole—
SCALISE: You really don’t think that Russia… Look, Russia and China have made it very clear what they want to do to suppress internet freedom. They’ve made it very clear—
STRICKLING: And they do it within their own countries—
SCALISE: At the end of the day y’all are going to come up with some sort of process if you’re going to transfer away, and I say IF — capital I, capital F — if you transfer it away you will come up with some sort of process. Do you really not thnk that Vladimir Putin, with all the other things he’s busy with right now, ain’t going to try to figure out some way to get control? It won’t be through the Russian government directly necessarily, but China and Russia have proven very resourceful at trying to figure out what that process so that they can manipulate it. You can do all the things you want to stop that from happening but at end of the day it comes out to where those countries have figured out a way, like they’ve figured out a lot of other ways too, to do something subversive that goes against all the intentions that we have. You can’t stop that.
STRICKLING: Well, Congressman, what do you think they could do that they can’t do today?
SCALISE: What do you really think…? Look at what Putin’s doing right now! The President just doesn’t seem to take this seriously what he’s doing through Eastern Europe. He’s trying to rebuild, get the old band back together, get the Soviet Union back together, right now before our very eyes. Secretary of State Kerry says the international community won’t accept this. They’re doing it! They don’t care what the international community thinks. They’re invading a country. So what would they do to get control of the internet if you threw something out there? These are real concerns that are being expressed. The other two panelists can touch on this as well.
CHEHADE: Thank you, Congressman. Let me be clear that at ICANN it is impossible for them today to do so. They’ve been trying for 15 years—
SCALISE: Exactly! Which is why it’s working.
CHEHADE: But it’s not because the US actually has the current stewardship role, it’s because of the multistakeholder model. It stops them. Where they will try to do what you’re suggesting is in the international intergovernmental organizations. They’ve been trying to do that there. We want to take away from them any argument that they still go to the UN and try to take over what ICANN does, by making sure that ICANN is free of one government control. To show them that ICANN believes in the multistakeholder model and this great country that created that model trusts it.
Chehade 1 – Scalise 0.
But did Scalise have a point, even accidentally? I’m going to cover that question in a separate post.
Rep Shimkus really wants you to support his bill
A recurring theme of the hearing was the Domain Openness Through Continued Oversight Matters (DOTCOM) Act, introduced by Rep. John Shimkus and others last week.
I called the bill “pointless” when it emerged, as all it does is delay any transition for a year until the US Government Accountability Office has conducted a study of the ramifications.
But there’s also a feeling that the Act would be a distraction at best and may cast more uncertainty than is necessary over the transition process at a critical time for internet governance.
Both Strickling and Chehade prevaricated when Shimkus asked them outright, repeatedly, if they were opposed to the GAO review.
Strickling said he “neither or supports or opposes” such a review but said he was “in favor of full discussion of these issues”.
Chehade, seemingly reluctant to tie himself to a one-government review said he did not have a view, but that he committed to full transparency in the issue.
The fact that Chehade had said that there was “no rush” to conclude the transition process was later used by Shimkus as a gotcha, when he pointed out that the Act’s one-year delay would not have an impact.
On a second panel, Carolina Rossini of the Internet Governance and Human Rights Program of the New American Foundation, gave perhaps a fuller explanation of why there’s caution about the bill.
My concern is that if we wait one year, if we block the transition now and wait one year until we have a report, that is the risk. And that’s the risk that we have non-democratic governments to actually make their voices even louder and manipulate the narrative both in NetMundial and in the [ITU] plenipot in November.
Shimkus said he’d concluded that Chehade and Strickling has “in essence supported the bill”, which I don’t think was necessarily a fair interpretation of what they said.
The two-and-a-half hour hearing had a couple of other diversions — Rep Blackburn going off on a crazy tangent about net neutrality and Rep Latta wasting everyone’s time to score points on behalf of a constituent, a .med gTLD applicant — but otherwise it was generally sane stuff.
The committee seemed to be fairly well-briefed on the subject before them. Most of the Congressmen expressed their concerns about the transition in sensible terms and seemed to take the answers on board.
Special recognition should also be given to Chehade, who won the slightly condescending praise and admiration of some of the committee when he choked up on an abridged version of his immigrant origin story.
He has an uncanny ability to speak to his audience at every occasion and he put it to excellent use yesterday.
Republicans introduce pointless ICANN bill
Three Republican Congressmen have introduced a bill that would prevent the US government removing itself from oversight of the DNS root zone.
For a year.
The inappropriately titled Domain Openness Through Continued Oversight Matters (DOTCOM) Act is designed to:
prohibit the National Telecommunications and Information Administration from relinquishing responsibility over the Internet domain name system until the Comptroller General of United States submits to Congress a report on the role of the NTIA with respect to such system.
Basically, the NTIA would be barred from walking away from root zone oversight until an analysis of the advantages and disadvantages of the transition was published, which would have to happen within a year.
The report would also have to include a definition of “multi-stakeholder”.
The three Republicans who introduced the bill — Representatives Todd Rokita, John Shimkus, and Marsha Blackburn — either have no idea what they’re talking about, or they’re being intellectually dishonest.
Blackburn said in a press release:
We can’t let the Internet turn into another Russian land grab. America shouldn’t surrender its leadership on the world stage to a “multistakeholder model” that’s controlled by foreign governments. It’s imperative that this administration reports to Congress before they can take any steps that would turn over control of the Internet.
Shimkus said:
In the month of March alone we’ve seen Russia block opposition websites, Turkey ban Twitter, China place new restrictions on online video, and a top Malaysian politician pledge to censor the Internet if he’s given the chance. This isn’t a theoretical debate. There are real authoritarian governments in the world today who have no tolerance for the free flow of information and ideas. What possible benefit could come from giving the Vladimir Putins of the world a new venue to push their anti-freedom agendas?
This is hysterical nonsense.
Not only has ICANN no intention of allowing the IANA function to be controlled by foreign governments, the NTIA has explicitly stated from the start that no governmental solution would be acceptable.
It’s also ironic that the only two governments to ever consider censoring the root zone were the European Commission and the United States, under the Republican Bush administration.
The current expectation, assuming community talks proceed as swiftly as hoped, is for stewardship of the IANA function to leave the NTIA’s hands when the current contract expires in October 2015.
Even if the DOTCOM (really?) Act were to be passed into US law this year, it shouldn’t have any serious impact on the timing of the root transition.
With that in mind, the three-page bill (pdf) looks quite a lot like an extended press release, rather than a serious attempt to keep the root in US hands.
Under global spotlight, ICANN forced to choose between GAC and the GNSO
ICANN has angered the Generic Names Supporting Organization and risks angering the Governmental Advisory Committee as it prevaricates over a controversial rights protection mechanism.
It looks like the ICANN board of directors is going to have decide whether to reject either a hard-won unanimous consensus GNSO policy recommendation or a piece of conflicting GAC advice.
ICANN is “stuck in a bind”, according to chairman Steve Crocker, and it’s a bind that comes at a time when the bottom-up multi-stakeholder process is under the global microscope.
The issue putting pressure on the board this week at the ICANN 49 public meeting here in Singapore is the protection of the names and acronyms of intergovernmental organizations.
IGOs pressured the GAC a few years ago into demanding protection in new gTLDs. They want every IGO name and acronym — hundreds of strings — blocked from registration by default.
For example, the Economic Cooperation Organization would have “economiccooperationorganization” and “eco” blocked at the second level in all new gTLDs, in much the same way as country names are reserved.
Other IGO acronyms include potentially useful dictionary-word strings like “who” and “idea”. As I’ve said before, protecting the useful acronyms of obscure IGOs that never get cybersquatted anyway is just silly.
But when ICANN approved the new gTLD program in 2011, for expediency it placed a temporary block on some of these strings and asked the GNSO to run a formal Policy Development Process to figure out a permanent fix.
In November 2012 it added hundreds more IGO names and acronyms to the list, while the GNSO continued its work.
The GNSO concluded its PDP last year with a set of strong consensus recommendations. The GNSO Council then approved them in a unanimous vote at the Buenos Aires meeting last November.
Those recommendations would remove the IGO acronyms from the temporary reserved names list, but would enable IGOs to enter those strings into the Trademark Clearinghouse instead.
Once in the TMCH, the acronyms would be eligible for the standard 90-day Trademark Claims mechanism, which alerts brand owners when somebody registers a name matching their mark.
The IGOs would not, however, be eligible for sunrise periods, so they wouldn’t have the special right to register their names before new gTLDs go into general availability.
The PDP did not make a recommendation that would allow IGOs to use the Uniform Rapid Suspension service or UDRP.
Unfortunately for ICANN, the GNSO recommendations conflict with the GAC’s current advice.
The GAC wants (pdf) the IGOs to be eligible for Trademark Claims on a “permanent” basis, as opposed to the 90-day minimum that trademark owners get. It also wants IGOs — which don’t generally enjoy trademark protection — to be made eligible for the URS, UDRP or some similar dispute resolution process.
Since Buenos Aires, the ICANN board’s New gTLD Program Committee has been talking to the GAC and IGOs about a compromise. That compromise has not yet been formally approved, but some initial thinking has been circulated by Crocker to the GAC and GNSO Council.
ICANN proposes to give IGOs the permanent Trademark Claims service that the GAC has asked for, as well as access to the URS. Both policies would have to be modified to allow this.
It would also create an entirely new arbitration process to act as a substitute for UDRP for IGOs, which are apparently legally unable to submit to the jurisdiction of national courts.
The compromise, while certainly overkill for a bunch of organizations that could hardly be seen as ripe cybersquatting targets, may seem like a pragmatic way for the board to reconcile the GNSO recommendations with the GAC advice without pissing anyone off too much.
But members of the GNSO are angry that the board appears to be on the verge of fabricating new policy out of whole cloth, ignoring its hard-won PDP consensus recommendations.
That’s top-down policy-making, something which is frowned upon within ICANN circles.
Under the ICANN bylaws, the board is allowed to reject a GNSO consensus recommendation, if it is found to be “not in the best interests of the ICANN community or ICANN”. A two-thirds majority is needed.
“That’s not what happened here,” Neustar’s vice president of registry services Jeff Neuman told the board during a meeting here in Singapore on Tuesday.
“Instead, the board on its own developed policy,” he said. “It did not accept, it did not reject, it developed policy. But there is no room in the ICANN bylaws for the board to do this with respect to a PDP.”
He said that the GNSO working group had already considered elements of ICANN’s compromise proposal and specifically rejected them during the PDP. Apparently speaking for the Registries Stakeholder Group, Neuman said the compromise should be taken out of consideration.
Bret Fausett of Uniregistry added: “The process here is as important to us as the substance. We think procedure wasn’t followed here and we detect a lack of understanding at the board level that process wasn’t followed.”
The GNSO Council seems to agree that the ICANN board can either accept or reject its recommendations, but what it can’t do is just write its own policies for the sake of a quiet life with the GAC.
To fully accept the GNSO’s recommendations would, however, necessitate rejecting the GAC’s advice. That’s also possible under the bylaws, but it’s a lengthy process.
Director Chris Disspain told the GNSO Council on Sunday that the board estimates it would take at least six months to reject the GAC’s advice, during which time the temporary reservations of IGO acronyms would remain active.
He further denied that the board is trying to develop policy from the top.
“It is not top-down, it’s not intended to be top-down, I can’t really emphasis that enough,” he told the Council.
He described the bylaws ability to reject the GNSO recommendations as a “sledgehammer”.
“It would be nice to be able to not have to use the sledgehammer,” he said. “But if we did have to use the sledgehammer we should only be using it because we’ve all agreed that’s what we have to do.”
Chair Steve Crocker summed up the board’s predicament during the Sunday meeting.
“We always do not want to be in the position of trying to craft our own policy decision,” he said. “So we’re stuck in this bind where we’re getting contrary advice from sources that feel very strongly that they’ve gone through their processes and have spoken and so that’s the end of it from that perspective.”
The bind is especially tricky because it’s coming at a time when ICANN is suddenly becoming the focus of a renewed global interest in internet governance issues.
The US government has said that it’s willing to walk away from its direct oversight of ICANN, but only if what replaces it is a “multi-stakeholder” rather than “intergovernmental” mechanism
If ICANN were to reject the proceeds of a two-year, multi-stakeholder, bottom-up, consensus policy, what message would that send to the world about multistakeholderism?
On the other hand, if ICANN rejects the advice of the GAC, what message would it send about governments’ ability to effectively participate as a stakeholder in the process?
Clearly, something is broken when the procedures outlined in ICANN’s bylaws make compromise impossible.
Until that is fixed — perhaps by getting the GAC involved in GNSO policy-making, something that has been talked about to no end for years — ICANN will have to continue to make these kinds of hard choices.
Fielding a softball question during a meeting with the GNSO Council on Saturday, ICANN CEO Fadi Chehade said that “to value the process as much as I value the result” is the best piece of advice he’s received.
“Policies get made here,” Chehade told the Council, “they should not be made at the board level, especially when a consensus policy was made by the GNSO. Akram [Atallah, Generic Domains Division president] today was arguing very hard at the board meeting that even if we don’t think it’s the right thing, but it is the consensus policy of the GNSO, we should stick with it.”
Will the board stick with it? Director Bruce Tonkin told the registries on Monday that the board would try to address their concerns by today, so we may not have to wait long for an answer.
Who runs the internet? An ICANN 49 primer
The ICANN 49 public meeting is kicking off here in Singapore right now, and control of the domain name system is going to be the hottest of hot topics for the next four days.
Two Fridays ago the US government announced its plan to remove itself from oversight of key internet functions currently managed by ICANN, causing a firestorm of controversy in the US.
A lot of the media commentary has been poorly informed, politically motivated and misleading.
According to this commentary, the move means that regimes more repressive that the United States government are going to take over the internet, killing off free speech.
Here I present a backgrounder on the issue, a primer for those who may not be familiar with the history and the issues. ICANN addicts may find the latter half of the piece interesting too, but first…
Let’s go back to basics
The issue here is control over the DNS root zone file. Basically, the root zone file is a 454K text file that lists all the top-level domains that are live on the internet today.
Each TLD is listed alongside the DNS name servers that it is delegated to and control it. So .com has some name servers, .uk has some name servers, .info has some name servers, etc.
If an internet user in San Francisco or London or Ulan Bator tries to visit google.com, her ISP finds that web site by asking the .com zone file for its IP address. It finds the location of the .com zone file (managed by Verisign) in turn by asking the root zone file.
The root zone files are served up by 13 logical root zone servers named A through M, managed by 12 different entities. Verisign runs two. ICANN runs one. Most are US-based entities.
Every root server operator agrees that Verisign’s root is authoritative. They all take their copies of the root zone file from this server. This keeps the data clean and consistent around the world.
So Verisign, in terms of actually sitting at a keyboard and physically adding, deleting or amending entries in the root zone file, has all of the power over the internet’s DNS.
Verisign could in theory assign .uk or .xxx or .com to name servers belonging to Canada or the Vatican or McDonalds or me.
But in practice, Verisign only makes changes to the root zone when authorized to do so by the US National Telecommunications and Information Administration, part of the Department of Commerce.
That’s because Verisign’s power to amend the root zone comes from its Cooperative Agreement with NTIA.
Amendment 11 (pdf) of this agreement dates from 1999, a time before Verisign acquired Network Solutions (NSI) and before ICANN had a name and was known as “NewCo”. It states:
NSI agrees to continue to function as the administrator for the primary root server for the root server system and as a root zone administrator until such time as the USG instructs NSI in writing to transfer either or both of these functions to NewCo or a specified alternate entity.
While NSI continues to operate the primary root server, it shall request written direction from an authorized USG official before making or rejecting any modifications, additions or deletions to the root zone file. Such direction will be provided within ten (10) working days and it may instruct NSI to process any such changes directed by NewCo when submitted to NST in conformity with written procedures established by NewCo and recognized by the USG.
So the power to amend the root zone — and therefore decide which TLDs get to exist and who gets to run them — actually lies in NTIA’s hands, the hands of the US government.
NTIA says its role is “largely symbolic” in this regard.
That’s because the power to decide what changes should be made to the root zone has been delegated to ICANN via the “IANA functions” contract.
What you’re looking at here is a diagram, from the latest IANA contract, showing that whatever changes ICANN proposes to make to the root (such as adding a new gTLD) must be authorized by NTIA before somebody at Verisign sits at a keyboard and physically makes the change.
In the diagram, “IANA Functions Operator” is ICANN, “Administrator” is NTIA, and “Root Zone Maintainer” is Verisign.
What NTIA now proposes is to remove itself from this workflow. No longer would ICANN have to seek a US government rubber stamp in order to add a new TLD or change ownership of an existing TLD.
It’s possible that Verisign will also be removed from the diagram. ICANN runs a root server already, which could replace Verisign’s A-root as the authoritative one of the 13.
NTIA says that the Cooperative Agreement and the IANA contract are “inextricably intertwined” and that it will “coordinate a related and parallel transition in these responsibilities.”
If this all sounds dry and technical so far, that’s because it is.
So why is it so important?
An entry in the DNS root zone has economic value. The fact that the record for .com points to Verisign’s name servers and not yours means that Verisign is worth $7 billion and you’re not.
Whoever has power over the root therefore has the ability to dictate terms to the entities that want their TLD listed.
ICANN’s contract with Verisign makes Verisign pay ICANN $0.25 for every .com name sold, for example.
The contract also forces Verisign to only sell its names via registrars that have been accredited by ICANN.
This gives ICANN, by indirect virtue of its control of the root, power over registrars too.
The Registrar Accreditation Agreement contains terms that require registrars to publish, openly, the names and addresses of all of their customers, for example.
Suddenly, control of the root is not only about lines in a database, it’s about consumer privacy too.
The same goes for other important issues, such as free speech.
Should people have the right to say that a company or a politician “sucks”? Most of us would agree that they should.
However, if they want to register a .sucks domain name in future they’re going to have to abide by rules, developed by ICANN and its community, that protect trademark owners from cybersquatting.
Over the course of many years, ICANN has decided that trademark owners should always have the right to preemptively register any domain name that matches their brands. This will apply to .sucks too.
If I, militant vegetarian that I am, wanted to register mcdonalds.sucks after .sucks becomes available, there’s a significant probability that I’m not going to get the opportunity to do so.
Of course, there’s nothing stopping you and I publishing our opinion of a worthless politician or corrupt company in other ways using other domain names, but it remains true that ICANN has essentially prioritized, for very good reasons, the rights of trademark owners over the rights of other internet users.
Theoretically, at some point in the future, ICANN could amend the Registrar Accreditation Agreement to require registrars to, for example, always deactivate a domain name when they receive a cease and desist letter, no matter how unfounded or spurious, from a trademark lawyer.
Suddenly, the web belongs to the IP attorneys, free speech is damaged, and it’s all because ICANN controls the DNS root.
I’m not saying that’s going to happen, I’m just using this as an example of how ruling the root has implications beyond adding records to a database.
What does US oversight have to do with this?
The question is, does the US removing itself from the root zone equation have any impact on what ICANN does in future? Has the US in fact been a good custodian of the root?
Commentators, many of them Republicans apparently seizing on the NTIA’s move as the latest opportunity to bash President Obama’s administration, would have you believe that the answer is yes.
I’m not so sure.
The US in fact has a track record of using its power in ways that would reduce free speech on the internet.
Back in 2005, there was a controversy about ICANN’s decision to add .xxx — a top-level domain for pornography — to the root zone. Whatever you think about porn, this is undeniably a free speech issue.
The US government, under the Bush administration, was initially ambivalent about the issue. Then a bunch of right-wing religious groups started lobbying the NTIA en masse, demanding .xxx be rejected.
The NTIA suddenly switched its position, and actually considered (ab)using its power over the root zone to block .xxx’s approval and therefore appease the Republican base.
This all came out due to .xxx operator ICM Registry’s Freedom of Information Act requests, which were detailed in the the declaration (pdf) of an Independent Review Panel — three neutral, respected judges — that oversaw ICM’s appeal against ICANN:
Copies of messages obtained by ICM under the Freedom of Information Act show that while officials of the Department of Commerce concerned with Internet questions earlier did not oppose and indeed apparently favored ICANN’s approval of the application of ICM, the Department of Commerce was galvanized into opposition by the generated torrent of negative demands, and by representations by leading figures of the so-called “religious right”, such as Jim Dobson, who had influential access to high level officials of the U.S. Administration. There was even indication in the Department of Commerce that, if ICANN were to approve a top level domain for adult material, it would not be entered into the root if the United States Government did not approve
US lobbying via ICANN’s Governmental Advisory Committee and other channels had the effect that ICANN rejected ICM’s .xxx application. It’s only because ICM was prepared to spend years and millions of dollars appealing the decision that .xxx was finally added to the root.
When you read an article claiming that the US government relinquishing its root oversight role will have a negative effect on free speech, ask yourself what the record actually shows.
The .xxx case is the only example I’m aware of the US leveraging or preparing to leverage its oversight role in any way. On free speech, USG is 0 for 1.
The US is also a powerful member of the Governmental Advisory Committee, the collection of dozens of national governments that have a strong voice in ICANN policy-making.
Under the rules of the new gTLD program, the GAC has right to veto any new gTLD — prevent it being added to the DNS root zone — if all the governments on the GAC unanimously agree to the veto.
Currently, there’s a controversy about the proposed gTLD .amazon, which has been applied for by the online retail behemoth Amazon.
Latin American countries that count the Amazonia region and Amazon river as part of their territories don’t want it approved; they believe they have the better rights to the .amazon string.
Despite this outrage, the GAC initially could not find unanimous consensus to veto .amazon. It transpired that the US, no doubt protecting the interests of a massive US-based corporation, was the hold-out.
Last July, NTIA decided to drop its opposition to the veto, leading to a GAC consensus that .amazon should be rejected.
In its position paper (pdf) announcing the .amazon veto block reversal, NTIA said the US “affirms our support for the free flow of information and freedom of expression”.
By its own definitions, the US made a decision that harmed free expression (not to mention Amazon’s business interests). It seems to have done so, again, in the name of political expediency.
I’m not saying that the US decision was right or wrong, merely that the record again shows that it’s not the great protector of free speech that many commentators are making it out to be.
What should replace the US?
The question for the ICANN community this week in Singapore and over the coming months is what, if anything, should replace the US in terms of root zone oversight.
The NTIA has been adamant that a “multi-stakeholder” solution is the way to go and that it “will not accept a proposal that replaces NTIA’s role with a government-led or an inter-governmental solution.”
The weirdness in this statement, and with the whole transition process in general, is ICANN is already a multi-stakeholder system.
In light of the US’ longstanding “hands off” approach (with the aforementioned exception of .xxx), does ICANN even need any additional oversight?
Today, legislative power in ICANN resides with its board of directors. The ICANN staff wield executive control.
In theory and under ICANN’s extensive governance rules, the board is only supposed to approve the consensus decisions of the community and the staff are only supposed to execute the wishes of the board.
In practice, both board and staff are often criticized for stepping beyond these bounds, making decisions that do not appear to have originated in the community policy-making process.
The ruling on vertical integration between registries and registrars, where the community could not even approach consensus, appears to have originated with ICANN’s legal department, for example.
There has also been substantial concern about the extent of the power handed to hand-picked advisory panels created by CEO Fadi Chehade recently.
In that light, perhaps what ICANN needs is not oversight from some third party but rather stronger community accountability mechanisms that prevent capture and abuse.
That’s certainly my view today. But I don’t have any particularly strong feelings on these issues, and I’m open to have my mind changed during this week’s discussions in Singapore.
Verisign stock punished after US move from root control
Verisign’s share price is down around 8% in early trading today, after analysts speculated that the US government’s planned move away from control of the DNS root put .com at risk.
The analyst firm Cowan & Co cut its rating on VRSN and reportedly told investors:
With less US control and without knowledge of what entity or entities will ultimately have power, we believe there is increased risk that VRSN may not be able to renew its .com and .net contracts in their current form.
It’s complete nonsense, of course.
The US announced on Friday it’s intention to step away from the trilateral agreements that govern control of the root between itself, ICANN and Verisign. But that deal has no dollar value to anyone.
What’s not affected, as ICANN CEO Fadi Chehade laboriously explained during his press conference Friday, are the contracts under which Verisign operates .com and .net.
The .com contract, through which Verisign derives most of its revenue, is slightly different to regular gTLD contracts in that the US has the right to veto terms if they’re considered anti-competitive.
The current contract, which runs through 2018, was originally going to retain Verisign’s right to increase its prices in most years, but it was vetoed by the US, freezing Verisign’s registry fee.
So not only has the US not said it will step away from .com oversight, but if it did it would be excellent news for Verisign, which would only have to strong-arm ICANN into letting it raise prices again.
Renewal of the .com and .net contracts shouldn’t be an issue either. The main rationale for putting .com up for rebid was to improve competition, but the new gTLD program is supposed to be doing that.
If new gTLDs, as a whole, are considered successful, I can’t see Verisign ever losing .com.
Verisign issued a statement before the markets opened today, saying:
The announcement by NTIA on Friday, March 14, 2014, does not affect Verisign’s operation of the .com and .net registries. The announcement does not impact Verisign’s .com or .net domain name business nor impact its .com or .net revenue or those agreements, which have presumptive rights of renewal.
Roundup: industry reaction to US giving up IANA role
Members of the domain name industry and ICANN community reacted generally positively to the news Friday night that the US will step aside from its central role in ICANN oversight.
Several companies, organizations and individuals issued early statements in response. We present a summary of those to hit the wires so far here.
First, the so-called I* organizations (IETF, IAB, RIRs, ccTLD ROs, ISOC, and W3C), which manage the internet’s various technical functions and standards, issued a joint statement via ICANN:
Our organizations are committed to open and transparent multi-stakeholder processes. We are also committed to further strengthening our processes and agreements related to the IANA functions, and to building on the existing organizations and their roles. The Internet technical community is strong enough to continue its role, while assuming the stewardship function as it transitions from the US Government.
The Domain Name Association’s executive director Kurt Pritz said this:
The DNA welcomes a deliberate, thoughtful process, inclusive of all stakeholder views to determine the future of the IANA function. As our members are some of the most widely recognized customers of IANA, we will be playing an active role in the process moving forward. The US government performs admirably in this role and it is important that any new oversight mechanism perform as reliably and consistently, and in a manner that prevents the Internet from onerous regulations and/or content controls.
New gTLD portfolio applicant Donuts said:
The IANA function is very important to Internet stability, and Donuts supports the multistakeholder approach to managing this vital resource. As the largest applicant for new top-level domains, we look forward to providing a constructive contribution in this multi-stakeholder discussion. It’s critical that any new mechanisms for IANA oversight ensure not only stability and accountability but also uphold the vital public sector role in promoting Internet innovation and openness.
Lisa Hook, CEO of back-end registry provider Neustar, said in a press release:
We share the US government’s view that the time has come for ICANN to convene global stakeholders to develop the policies, procedures, and accountability framework needed to transition ultimate responsibility for the IANA functions, and we look forward to participating in that process.
Back-end and portfolio applicant Afilias said in its own press release:
We endorse the statements of the NTIA and the organizations noted above [the I*s] with respect to the maturation of these organizations and processes, and we are committed to continuing to contribute to the stewardship of the Internet as part of a globally inclusive, open and transparent multi-stakeholder community.
Michele Neylon, CEO of domain name registrar Blacknight Solutions said:
This is an incredibly historic and important day for Internet governance. As a member of the International governance and infrastructure communities I applaud this move away from a single government to a regulating body that represents the interests of the global community. However, the real challenge now lies ahead in identifying and implementing a strong, diverse community to oversee these crucial organizations.
Milton Mueller, the principal academic behind the Internet Governance Project blogged:
IGP has been leading the call for the US government to be consistent about its non-governmental approach to Internet governance since 2005. Naturally, we were gratified to see the Commerce Department finally come around to that position. Far from “giving up” something or “losing control,” the U.S. is sure to find that its policy has gained strength. We have just made it a lot harder for opponents of a free and open Internet to pretend that what they are really against is an Internet dominated by one hegemonic state.
The news broke rather late on a Friday night, with an NTIA press release and hastily convened ICANN press conference, after the story was leaked to the Washington Post.
There hasn’t been much time for formal written reactions yet, but I’m sure more will be forthcoming as people get into work on Monday morning.
US to give up control over ICANN
In what can only be described as an historic announcement, the United States government tonight said that it will walk away from its control of the DNS root zone.
ICANN CEO Fadi Chehade said during a press conference tonight that the organization has begun a consultation to figure out “accountability mechanisms” that will replace the US role as ICANN’s master.
The news comes in the wake of Edward Snowden’s revelations about US spying, but Chehade and ICANN chair Steve Crocker said that the changes would have been made sooner or later anyway.
So what just happened?
Earlier this evening, the US National Telecommunications and Information Administration announced its “intent to transition key Internet domain name functions to the global multistakeholder community.”
That’s basically referring to the IANA contract, the US government procurement contract under which ICANN has the ability to make changes — essentially by recommendation — to the DNS root zone.
The current version of the contract is due to expire next year, and the hope is that when it does there won’t be any need for a renewal.
Between now and then, the ICANN community (that’s you) is tasked with coming up with something to replace it.
It’s going to be the hottest topic at the ICANN 49 meeting in Singapore, which kicks off a week from now, but it’s expected to be under discussion for much longer than that.
Chehade said during the press conference tonight that the idea is not to create a new oversight body to replace the NTIA. We seem to be talking about “mechanisms” rather than “organizations”.
He also said that the US government has made it plain that any attempt to replace the US with an intergovernmental body (ie, the International Telecommunications Union) will not be considered acceptable.
Whatever oversight mechanism replaces NTIA, it’s going to have to be “multistakeholder” — not just governments.
The root zone is currently controlled under a trilateral relationship between the NTIA, ICANN and Verisign.
Essentially, ICANN says “add this TLD” or “change the name servers for this TLD” and, after the NTIA has approved the change, Verisign implements it on its root zone servers. The other root zone operators take copies and the DNS remains a unique, reliable namespace.
The NTIA has said that it’s going to withdraw from this relationship.
One question that remains is whether Verisign will retain its important role in root zone management.
Chehade appeared slightly (only slightly) evasive on this question tonight, spending some time clarifying that Verisign’s root zone management contract is not the same as its .com contract.
I assume this prevarication was in order to not wipe billions off Verisign’s market cap on Monday, but I didn’t really get a good sense of whether Verisign’s position as a root zone manager was in jeopardy.
My guess is that it is not.
A second question is whether the US stepping away from the IANA function means that the Affirmation of Commitments between the US government and ICANN also has its days numbered.
Apparently it does.
Chehade and ICANN chair Steve Crocker pointed to the ICANN board’s decision a few weeks ago to create a new board committee tasked with exploring ways to rewrite the AoC.
And they said tonight that there’s no plan to retire the AoC. Rather, the idea is to increase the number of parties that are signatories to it.
The AoC, it seems, will be ICANN’s affirmation to the world, not just to the US government.
Board confirms: ICANN seeks non-US HQ
ICANN’s board of directors has given the clearest indication yet that the organization wants to set up an HQ overseas, further loosening ties with the US government.
The board has formed six new “President’s Globalization Advisory Groups”, made up of half a dozen directors each, one of which has been tasked with advising ICANN on ways to:
Establish complimentary [sic] parallel international structure to enhance ICANN’s global legitimacy. Consider complementary parallel international structure within scope of ICANN’s mandate.
This indicates that ICANN’s reported plan to base itself in Geneva may not be so far-fetched after all, but it also indicates that ICANN currently does not anticipate doing away with its original HQ in Los Angeles.
ICANN already has several offices around the world, but recently there’s been talk of it embedding itself in Switzerland, as an “international organization”, more deeply.
As we’ve previously reported, ICANN may not relocate outside of the US due to its Affirmation of Commitments with the US Department of Commerce, which requires it to remain a US non-profit.
But another of the three panels set up by the board this week will advise ICANN on how to create an “enhanced Affirmation of Commitments.”
Other panels will explore the globalization of the IANA function — currently operated under a procurement contract with Commerce — and the root server system, which is independent operated but heavily US-based.
The ICANN board said in its resolution:
the continued globalization of ICANN must evolve in several ways, including: partnerships in the broader Internet eco-system to strengthen multistakeholder Internet governance frameworks; strengthening ICANN itself, including affirmations of commitments and relationships among the stakeholders; evolving the policy structures to serve and scale to the needs of the global community, and identify opportunities for the future legal structures and IANA globalization.
The plan is for these panels talk to the community at the Singapore meeting next month, before reporting back to the board before ICANN meets for its 50th public meeting in London this coming June.
This week’s move is the latest in a series of decisions made by the ICANN board following the spying revelations of former NSA contractor Edward Snowden and the subsequent consternation they caused in capitals around the world.
Brazil is set to host a meeting to discuss these kinds of internet governance matters with ICANN and its coalition of the willing in Sao Paulo this April.
EU guns for ICANN’s relationship with US
The European Union has made ICANN’s close relationship with the US one of the targets of a new platform on internet governance.
In a new communication on internet governance (pdf), the European Commission said it will “work with all stakeholders” to:
– identify how to globalise the IANA functions, whilst safeguarding the continued stability and security of the domain-name system;
– establish a clear timeline for the globalisation of ICANN, including its Affirmation of Commitments.
The policy is being characterized as being prompted by former NSA contractor Edward Snowden’s revelations about widespread US spying on internet users.
EC vice president Neelie Kroes issued a press release announcing the policy, saying:
Recent revelations of large-scale surveillance have called into question the stewardship of the US when it comes to Internet Governance. So given the US-centric model of Internet Governance currently in place, it is necessary to broker a smooth transition to a more global model while at the same time protecting the underlying values of open multi-stakeholder governance of the Internet.
Despite this, the document does not contain any allegations that link ICANN to spying, or indeed any justification for the logical leap from Snowden to domain names.
The EU position is not dissimilar to ICANN’s own. Last October CEO Fadi Chehade used Snowden as an excuse to talk about putting ICANN’s relationship with the US back in the spotlight.
As I noted at the time, it all looks very opportunistic.
Internationalizing ICANN is of course a noble objective — and one that has been envisaged since ICANN’s very creation 15 years ago — but what would it look like it practice?
I’d be very surprised if what the Commission has in mind isn’t a scenario in which the Commission always gets what it wants, even if other stakeholders disagree with it.
Right now, the Commission is demanding that ICANN rejects applications for .wine and .vin new gTLDs unless applicants agree to new rights protection mechanisms for geographic indicators such as “Champagne”.
That’s something that ICANN’s Governmental Advisory Committee could not reach consensus on, yet the EU wants ICANN to act based on its unilateral (insofar as the EU could be seen as a single entity) advice.
The new EC policy document makes lots of noise about its support for the “multi-stakeholder process”, but with hints that it might not be the “multi-equal-stakeholder process” championed by Chehade.
For example, it states on the one hand:
Those responsible for an inclusive process must make a reasonable effort to reach out to all parties impacted by a given topic, and offer fair and affordable opportunities to participate and contribute to all key stages of decision making, while avoiding capture of the process by any dominant stakeholder or vested interests.
That sounds fair enough, but the document immediately goes on to state:
the fact that a process is claimed to be multistakeholder does not per se guarantee outcomes that are widely seen to be legitimate
…
it should be recognised that different stages of decision making processes each have their own requirements and may involve different sets of stakeholders.
…
Sound multistakeholder processes remain essential for the future governance of the Internet. At the same time, they should not affect the ability of public authorities, deriving their powers and legitimacy from democratic processes, to fulfil their public policy responsibilities where those are compatible with universal human rights. This includes their right to intervene with regulation where required.
With that in mind, what would an “internationalized” IANA look like, if the European Commission gets its way?
Right now, IANA may be contractually tethered to the US Department of Commerce, but in practice Commerce has never refused to delegate a TLD (even when Kroes asked it to delay .xxx).
Compare that to Kroes statement last September that “under no circumstance can we agree having .wine and .vin on the internet, without sufficient safeguards”.
Today’s policy news from the EC looks fine at a high level, but in light of what the EC actually seems to want to achieve in practical terms, it looks more like an attempt at a power grab.
Recent Comments