Recent Posts
- China domains dip in 2026
- ICANN maps out new gTLD timeline
- War disrupts ICANN 85
- Namecheap abandons fight for .org price caps
- Identity Digital acquires another gTLD
- Seven dead registrars on the out
- Sav.com owner takes over .radio gTLD
- .com zone tops 160 million domains
- ai.com, the most-expensive domain sale ever
- .ai hits seven figures, raises prices
- Typosquatter gets two years in jail
- Epstein low-balled registrants to get his exact-match domain
- Epstein bought “mother” domains for Fergie while serving time
- Two former ICANN directors want back in
- Former ICANN director could lose control of ccTLD
- UK launches “police.ai”, but does it own the domain?
- Team Internet still in talks to sell off domains unit
- NamesCon returning to Miami in November
- “Mad Dog” politician registers nazis.us, redirects to Trump admin site
- “Lowest Price Guaranteed!” $48 .com registrar canned
- No RDAP? No accreditation
- Fifth-largest gTLD not dead after all
- Half of registrar’s domains are abusive, ICANN says
- Burr joins PIR after leaving ICANN board
- Refunds galore as gTLD losers finally bow out
- .goo terminated as search engine closes down
- GoDaddy to offer domain blocking to people who don’t have trademarks
- Happy new year expected for domain industry, says ICANN
- Salesforce to apply for a dot-brand
- Team Internet looking to break up
- Noss to leave Tucows corner office
- Rubens Kühl has died
- Sinha angry with Chapman’s firing as ICANN vice chair
- Glitch redux: ICANN screws up new gTLD security again
- CentralNic claims second-largest TLD migration ever
- DNS issue at Amazon takes out major apps and sites
- .io sales almost double over three years
- Amazon delays book and fashion gTLDs
- Lindqvist shuffles the exec deck
- GoDaddy launches “ultra-premium” domain marketplace
- .mobi to get a new rival in .mobile
- Bye-bye .boomer! Blockchain players abandon new gTLD plans
- Decades-old US registrar gets a spanking
- love.you sold in apparent five-figure deal
- Bogus harassment complaints could get you an ICANN ban
- ICANN slaps open-mic ban on conflicted lawyers
- Final GTFO warning for 19 failed new gTLD bids
- Nominet opens $500,000 fund for open source projects
- Com Laude buys larger rival Markmonitor
- Epik took down Charlie Kirk doxing site
- Number of subsidized gTLD bidders far lower than thought
- Another registrar goes AWOL
- gTLD loses its second-largest registrar after breach
- Com Laude buys Fairwinds
- Unstoppable wants to be a registry back-end
- Sixteen new gTLD bids could face the firing squad
- Registry to release one-letter domains tomorrow
- New ICANN funding rules will cost smaller ccTLDs more
- .ai rival lines up gTLD bid
- Team Internet lays off 200
- Sixteen more orgs vie for cheap gTLDs, but…
- So who’s registering sunrise domains these days?
- Cloud gTLD gets launch dates
- Governments say new gTLD program “credibility” at stake
- NIXI planning doomed new gTLD bids
- AI experts replace Chapman on ICANN board
- RDRS may not be dead
- Single-letter .com lawsuit thrown out of court
- Golding challenges McCarthy for Nominet board seat
- Three applicants qualify for cheapo gTLDs
- Blockchain crisis looming for new gTLD next round
- Two more dot-brands leave Verisign for GoDaddy
- ICANN looking at new bulk reg rules
- Reseller loss hits Tucows’ DUM but not revenue
- GoDaddy counts cost of losing .co deal
- Wine producers worried about new gTLDs
- Goodyear tires of its dot-brand
- Team Internet loses Radix to Tucows
- ICANN’s “review of reviews” kicks off
- Huge registrars flee from RDRS
- Namecheap loses attempt to bring back .org price caps
- Registrar shamed for alleged crypto abuse neglect
- Poblete’s ICANN board seat safe
- .com off to strong start in Q3
- .my is growing like crazy
- ICANN settles $77 million sexual harassment suit
- Chinese domain spikiness ends in first half
- Registrars agree to higher ICANN fees
- ICANN to review reviews after review review request fails
- Got junk? June’s biggest gTLD growers do
- ICANN ditches Oman due to Middle-East conflicts
- ICANN’s mighty overlord flexes on transparency
- ICANN faces first pushback over DEI U-turn
- Loads of firms flunk out of next-round gTLD back-end program
- presidenttrump.xxx among thousands of dead .xxx domains suddenly springing to life
- One of the dumbest gTLDs just switched back-ends
- GoDaddy loses .co to Team Internet
- Governments erect bulk-reg barrier to new gTLD next round
- Little interest in cheapo gTLD program
- US government opposes most new gTLDs
- GoDaddy loses last Amazon business to Identity Digital
- Third Amazon gTLD launch dates revealed
- .TOP promises to play nice on DNS abuse
- Court denies ICANN’s #MeToo “cover up” attempt
- Launch dates for two more Amazon gTLDs revealed
- An end to “Club Med for geeks” ICANN?
- Some people paid premiums for .hot domain hacks
- .io questions in sharp focus as UK signs Chagos treaty
- Big .gdn registrar at risk
- ICANN “reaffirms its commitment to diversity and inclusion”
- ICANN kills off diversity and inclusion
- Kaufmann picked for ICANN board
- Conflicted? STFU under new ICANN rules
- .hot is for hookers? Amazon’s first premium regs revealed
- Gname adds another 200 registrars
- New Pope’s .com domain was registered the day Francis died
- Two deadbeat registrars get their ICANN marching orders
- DotMusic has sold a lot of names, but not many are turned on
- .med is a deeply weird gTLD, but it wants to be more normal
- ICANN cuts off money to UASG
- Web.com getting dumped
- .es and .pt riding out massive power outage
- .com is back as Verisign discounts bear fruit
- Dot-brand actually being used to get deleted
- Verisign gave Trump $100,000
Olive retires from ICANN
David Olive, senior VP of policy development and support, will retire from ICANN at the end of May, the Org announced today.
Olive joined ICANN in February 2010 after 20 years with Fujitsu and has led his department ever since.
He also was the first managing director of ICANN’s office in Istanbul, though he’s been running the Washington DC office since 2021, ICANN said.
No immediate replacement was announced, but there’s a few months to go before he actually leaves the job.
Whois policy published without life-saving disclosure rule
ICANN has updated its Registration Data Policy, the rules that govern what data registries and registrars need to collect from registrants and when to publish or supply it through Whois lookups or disclosure requests.
When it becomes enforceable in August next year, the new RDP will make full-fat ICANN Whois policy compliant with EU privacy law for the first time since the General Data Protection Regulation came into effect in May 2018.
But the new policy, which replaces a functionally very similar temporary policy, is notable not only for the extraordinary amount of time it took to produce, but also for not containing a disputed requirement for registrars and registries to quickly turn over private Whois data when human life is at risk.
The policy dictates what contact information registrars must collect from their customers, what they must share with their registries, escrow agents and others, and what they must redact in the public Whois (or Registration Data Directory Services, as it will become known when Whois is retired next January).
It also says that registries and registrars must acknowledge private data disclosure requests no more than two business days after receipt and respond to the requests in full less than 30 calendar days after that, barring delays caused by “exceptional circumstances”.
But, due purely to ICANN community politicking, the policy for now omits previously considered language on “urgent” disclosure requests for use in “circumstances that pose an imminent threat to life, of serious bodily injury, to critical infrastructure, or of child exploitation”.
I’d like to think such circumstances are incredibly rare, but if there’s a situation where a Whois disclosure could help prevent a bomb going off at a major internet exchange, a trans rights activist being hounded into suicide, or a little kid getting raped on a livestream, the new ICANN policy does not account for that.
The version of the policy published in July last year (pdf) did include an urgent requests provision, requiring contracted parties to either turn over the data or tell the requester to get lost within 24 hours of receipt.
But it also contained a bunch of exceptions that could allow registrars to extend that deadline by up to three business days. When weekends and public holidays are taken into account, this could mean as much as a full calendar week to process an “urgent”, potentially life-saving request.
For that reason, the Governmental Advisory Committee wrote to ICANN (pdf) last August to ask it to revisit the policy language, chuck out the reference to “business” days, and stick to a 24-hour response window
The original Expedited Policy Development Process Working Group that came up with the policy recommendations had not specified how long registrars and registries should have to respond to urgent disclosure requests, punting that decision to the Implementation Review Team that drafted the final language.
An August 2022 draft (pdf) put out for public comment made the response window two business days, with a possible one-day extension, but this was reduced to 24 hours last year in what registrars describe as a “significant compromise” given the operational reality of responding to disclosure requests.
In August last year, the Registrars Stakeholder Group told ICANN (pdf) that its members “are committed to responding to Urgent requests in the most swift and expeditious manner possible” but said it objected to the GAC’s last-minute demands for the urgent disclosures policy to be rewritten.
From the registrars’ perspective, handling disclosure requests for personal data is not a simple ask. It’s a legal decision, balancing the privacy rights of the registrant with the rights of others to access that information.
Get it wrong, and you’re open to litigation and fines substantial enough to be expressed as a percentage of your revenue. And, money aside, who wants to be the guy who, for example, accidentally helps the Iranian morality police murder a bunch of schoolgirls for wearing the wrong type of hat?
But the argument between the registrars and the governments comes down to issues of ICANN process. Both the GAC and the RrSG claimed the urgent disclosures bunfight highlights deficiencies in ICANN multistakeholderism, but for different reasons.
ICANN’s response to this disagreement was to remove the urgent requests clauses from the policy altogether, in the hope that further talks can find a solution. Chair Tripti Sinha wrote to the RrSG and GAC a couple weeks ago to tell them:
the Board concluded that it is necessary to revisit Policy Recommendation 18 concerning urgent requests in the context of situations that pose an imminent threat to life, serious bodily harm, infrastructure, or child exploitation, and the manner in which such emergencies are currently handled. For this, we believe that consultation with the GNSO Council is required.
ICANN has essentially kicked the can, which was what the GAC had asked for. The RrSG wanted the July 2023 language (one-plus-three days) or August 2022 language (two-plus-one days) published in the final policy.
It’s stuff like this that makes one scratch one’s head, stroke one’s chin, and wonder whether ICANN really is fit for purpose.
There were 2,312 days between the day the European Commission first proposed the GDPR to the day it became effective in all EU member states.
But 2,590 days will have passed between the day the GNSO Council initiated the EPDP and the day the new Registration Data Policy will become effective on all contracted parties, next August.
The lumbering, then-28-state European Union was faster at passing policy than ICANN, even when ICANN was using an “expedited” process.
And what ICANN eventually came up with couldn’t even agree on ways to help tackle murder, economic catastrophes, and the rape of kids.
ICANN spends $5 million more than planned in first fiscal half
ICANN published its second fiscal quarter financials yesterday, revealing a roughly $5 million overspend in the second half of 2023.
The Org spent $72 million of its $74 million revenue in the six months to December 31, more than the $67 million spend it had budgeted for.
ICANN said the overspend came mainly in its Community and Engagement reporting segment, with the $4 million excess “driven by higher than planned costs for ICANN78, community programs, and meetings support”.
The same report shows that ICANN 78, which took place in Hamburg last October, cost about $900,000 more than expected largely because it spent more on air fares and had to put on more sessions than it originally expected.
It also spent about $100,000 on its 25th anniversary celebration, a line item that had not appeared in its budget. Because who can predict an anniversary, right?
Hamburg was the most-expensive meeting since the pandemic ended, costing about $5.4 million and attracting over 2,500 attendees. The Kuala Lumpur meeting a year earlier had cost $4.7 million.
ICANN’s revenue was described as “flat”, but a breakdown shows a roughly $1 million (rounded) shortfall in both registry and registrar transaction fees compared to the budget. This is likely linked to shrinkages in Verisign’s .com sales over the period.
New gTLD lottery to return in 2026
Remember The Draw? It was the mechanism ICANN used to figure out which new gTLDs from the 2012 application round would get a first-mover advantage, and it’s coming back in 2026.
The Org is currently considering draft Applicant Guidebook language setting out the rules for how to pick which order to process applications in the next round.
There’s no mention of Digital Archery this time. ICANN is sticking to the tried-and-tested Prioritization Draw, a lottery method in which applicants buy a paper ticket for a nominal sum ($100 last time) and ICANN pulls them out of a big bucket to see who goes first.
Applicants for internationalized domain names will have an advantage again, but it’s arguably not as strong as in the 2012 round, when all the IDN applicants that had bought tickets were processed first.
This time, the draw will take place in batches of 500 applications, according to the latest version of the draft AGB language.
The first batch will contain at least 125 IDN applications — assuming there are 125 — and they will be drawn first, before any Latin-script strings get a look. In subsequent batches, the first 10% of tickets drawn will belong exclusively to IDN applicants.
In the 2012 round, the first 108 applications selected were IDNs. The Vatican won the lucky #1 spot with .天主教, the Chinese term for the Catholic Church, while Amazon was the first Latin-script application with .play (which Google eventually won but still hasn’t launched, over 11 years later).
Due to California’s gambling laws, applicants will have to show up to buy a ticket in person. If they can’t make it, they can select an Angeleno proxy from a list provided by ICANN to pick it up on their behalf.
Last time around, The Draw took over nine hours to sort all 1,930 applications and was the social highlight of the community’s calendar. Santa Claus even showed up.
How to qualify for a $40,000 gTLD
Organizations from most of the countries of the world, including some very wealthy economies, could find themselves eligible for a discount of up to 85% on ICANN new gTLD application fees, according to draft rules published for public comment today.
By my count, small businesses from 177 of the world’s countries and territories could qualify for cheap applications in the next round, expected in 2026, assuming they meet the new Applicant Support Program’s other criteria.
The list of qualifying nations includes the BRIC countries (Brazil, Russia, India, China), oil-rich nations such as Saudi Arabia and the UAE, wealthy Asian territories such as Hong Kong and South Korea, and some European nations, such as Serbia and Montenegro.
The draft ASP rules propose to subsidize applications from non-profits, intergovernmental organizations, indigenous/tribal groups, and small businesses that provide a “social impact or public benefit” from anywhere in the world.
It also promises subsidies to small businesses located in and owned by people based in several UN-designated economic regions: Small Island Developing States, Least Developed Countries, Economies in Transition, and Developing Economies.
Lists of these countries can be found in this UN document. China, Singapore, South Korea and Hong Kong are among dozens on the “developing economies” list. Russia counts as an “economy in transition” along with a handful of other east European and west Asian nations.
There’s no requirement to have a public benefit or charitable mission to qualify as a “Micro or small sized business from a less-developed economy”, you just need to have fewer than 50 employees, less than $5 million in the bank, and less than $5 million of annual sales (or meet two of those three criteria).
According to my tally, there are 177 distinct territories on the applicable UN lists. The same UN document lists just 36 nations that qualify as “developed” economies.
Because the application fees for the next round are not yet fixed, the discount eligible applicants can get isn’t either. The placeholder text in the current draft says the discount will be in the range of 50% to 85%.
ICANN has previously said that the base fee could be as much as $270,000, so an 85% discount would be worth almost $230,000, reducing the fee to about $40,000. Each applicant would be limited to one gTLD.
Support applicants under any category also have to pass various background screening checks — they can’t be affiliated with another registry, for example — and have to show that paying the full base gTLD application fee would be a “financial hardship”.
This is defined as: “Cost of the subsidized base gTLD application fee ([X%] of the [$X] USD fee) is greater than 20 percent of the organization’s annual revenue”. So, if we assume a discounted fee of $40,000, only companies with revenue under $200,000 would qualify.
The 2012 round’s Applicant Support Program worked a little differently. Applicants could be from anywhere in the world, but they could earn points under the score-based rules by being from a developing nation.
There were only three applicants using the ASP in 2012, and only one — DotKids Foundation, based in Hong Kong and founded by the same businessman who founded DotAsia and currently sits on the ICANN board of directors — ended up qualifying for the cheaper application fee.
For the next round, ICANN has penciled in a Q4 2024 date to start accepting applications for the discount. The application window is expected to close a year later, at least six months before the new gTLD application window opens.
Anyone thinking about trying to game the system should note that ICANN promises that anyone “found to have abused the intent of the program” will be banned from the new gTLD program forever.
The proposed ASP rules are open for comment for 50 days here.
Donald Trump loses second UDRP case
Former US president Donald Trump has lost a second cybersquatting case related to his Mar-a-Lago resort, where he lives in Florida.
A three-person WIPO panel late last month ruled that DTTM Holdings, which has owned a trademark on the term Mar-a-Lago since 1997, had failed to show that the registrant of maralago.com, Michael Gargiulo, did not have a legitimate interest in the domain.
Gargiulo, an investor who bought the domain from a third party in 2021, had argued that “mar a lago” is a generic term, meaning “sea to lake” in Spanish and other languages. He also said it could mean the personal name “Mara Lago”.
DTTM failed to convince the WIPO panel otherwise. It ruled (pdf) that “the Complainant was unable to provide persuasive specific evidence to overcome the Respondent’s arguments”. It did not rule on whether the registration was made in bad faith.
It’s the second Mar-a-Lago case DTTM has lost recently. Late last year it lost a UDRP complaint against a company called Marq Quarius (from which Gargiulo acquired maralago.com) over the domain mar-a-lago.com.
The single panelist in the earlier case (pdf) ruled that while the registrant’s defense (that the three words in the domain corresponded to the names of dead pets) strained credulity, there was no evidence of bad-faith cybersquatting.
Trump uses maralagoclub.com for the club’s official web site.
Namecheap sues ICANN over .org price caps
Namecheap has sued ICANN in California, asking a court to force the Org to revisit its decision to lift price caps on .org and .info domain names five years ago.
Registrar CEO Richard Kirkendall announced the suit on Twitter this afternoon:
Today we filed suit against @ICANN. After a previous ruling via a mediation process they have taken little action towards the recommendations of that ruling and so our hand has been forced to take this action. We feel that ICANN is in direct violation of their mandate and…
— Richard Kirkendall (@NamecheapCEO) February 5, 2024
The lawsuit follows an Independent Review Process case that Namecheap partially won in December 2022, where the panel said ICANN should hire an economist to look at whether price caps are a good idea before revisiting its decision to scrap them.
The panel found that the ICANN board of directors had shirked its duties to make the decision itself and had failed to act as transparently as its bylaws mandate.
Namecheap says that over a year after that decision was delivered, ICANN has not implemented the IRP panel’s recommendations, so now it wants the Superior Court in Los Angeles to hand down an injunction forcing ICANN to do so.
Before 2019, .org was limited to 10% price increases every year, but the cap was lifted, along with caps in .info and .biz, when ICANN renewed, standardized and updated the respective registries’ Registry Agreements.
After the decision was made to scrap .org price caps, despite huge public outrage, Namecheap rounded up its lawyers almost immediately.
The caps decision led to the ulimtately unsuccessful attempt by Ethos Capital to acquire Public Interest Registry, which runs .org.
Namecheap’s new lawsuit wants the judge to issue “an order directing ICANN to comply with the recommendations of the IRP Panel”.
That means ICANN’s board would be told to consider approaching PIR and .info registry Identity Digital to talk about reintroducing price caps, to hire the economist, and to modify its procedures to avoid any future transparency missteps.
First chunks of new gTLD Applicant Guidebook drop
ICANN has released for comment the first public drafts of seven sections of the new gTLD program’s Applicant Guidebook, the first of what are expected to be quarterly comment periods for the next 18 months or so.
As I previewed last week, the documents cover topics including geographic names, blocked strings, Universal Acceptance, conflicts of interest and freedom of expression.
The documents were prepared by the ICANN staff/community Subsequent Procedures Implementation Review Team, based on the recommendations of a working group reporting to the Generic Names Supporting Organization a few years ago.
ICANN says it wants to know whether everyone thinks the AGB text it has come up with is consistent with those recommendations.
The comment period is open until March 19. ICANN hopes to have the full AGB ready by May 2025, with the next application round opening April 2026.
.ai helps UDRP cases rise in 2023, WIPO says
The number of cybersquatting cases filed with the World Intellectual Property Organization increased 7% in 2023, WIPO said this week.
The total UDRP filings, 6,192, includes national ccTLD variations that WIPO handles but not UDRP filings with other providers.
WIPO said that 82% of cases resulted in the domain being transferred to the complainant, with the complaint being denied in just 3% of cases.
The organization does not publish data on Reverse Domain Name Hijacking findings, but RDNH.com, which tracks these things, shows 31 RDNH finding at WIPO in 2023.
.com accounted for 80% of complaints. WIPO said that the most complained-about ccTLDs were .co (Colombia), .cn (China), .mx (Mexico), .au (Australia) and .ai (Anguilla).
Perhaps unsurprisingly, given its rapid growth in registrations, Anguilla’s .ai saw a sharp uptick in UDRP filings last year, up from just four in 2022 to 43 in 2023, according to the WIPO web site.
ICANN picks its first ever Supreme Court
After foot-dragging for a decade, ICANN has finally approved a slate of a dozen jurists to act as its de facto Supreme Court.
Its board of directors voted at the weekend to create the first-ever Independent Review Process Standing Panel, a pool of legal experts from which panels in future IRP proceedings — the final appeals process for ICANN decisions under its bylaws — will be drawn.
ICANN has not named the 12 people yet. The names are redacted from the published resolution, presumably because they haven’t signed contracts yet. ICANN said they are “well-qualified” and “represent a diverse breadth of experience and geography”.
The names were put forward by a cross-community working group called the IRP Community Representatives Group, which looked after the application and interview process. A thirteenth CRG pick was deemed “ineligible” by ICANN for undisclosed reasons.
The Standing Panel is intended to make IRPs faster and cheaper by drawing the three-person panel in each case from an established pool of experienced professionals. The panelists will be contracted for staggered terms of service.
The ICANN bylaws have called for the establishment of such a panel for over a decade, but its timely creation was another victim of the lethargy that consumed ICANN for years. The lack of a Standing Panel has been raised by claimants in multiple IRPs, some of which are ongoing.
Elsewhere in IRP policy-making, a separate staff/community working group called the IRP Implementation Oversight Team expects to shortly publish certain revisions to the IRP rules for public comment, but the fact that the legal language of the rules is to be written by the law firm Jones Day, which represents defendant ICANN in IRP cases, has raised some eyebrows.
Recent Comments