Will ICANN drop anti-terror rule from new TLD process?

ICANN has been chastised for prohibiting terrorists from applying for new top-level domains. Really.
Abdulaziz Al-Zoman of SaudiNIC has written to the organization to worry about the fact that “terrorism” has been added to the list of forbidden activities for new TLD applicants.
The word made its first appearance in version four of the Draft Applicant Guidebook, and was harshly criticized during the ICANN board’s public forum in Brussels last month.
Al-Zoman is primarily concerned that there is no definition of “terrorism” in the DAG.

While the international community is extensibly [sic] divided on who is a terrorist and who is a freedom fighter, and notwithstanding ICANN’s lack of definition whatsoever in the DAG 4 on terrorism, it is a surprise to me to see ICANN involving itself in the area of terrorism while its mandate is only being a global technical coordinator.

He has a point, of course.
Hamas is the probably the best example today: an elected government with a paramilitary wing, classified as a terrorist organization by the US and UK, among others.
In the old days, we could have used the IRA as an example: a bunch of extremists blowing up English pubs, backed by American money.
During the public comment forum in Brussels, ICANN’s Kurt Pritz gave every indication that the word “terrorism” will be yanked or defined in the next DAG. From the transcript:

I agree with you that certain terms, and especially that one that is so sensitive, either requires — it should be removed or it should be — you know, it should have additional definition.

He was responding to a somewhat hyperbolic statement from Khaled Fattal, CEO of the Multilingual Internet Names Consortium, which is worth quoting (again from the transcript).

For ICANN to invoke the term “terrorism” in this arbitrary manner threatens ICANN’s ability to effectively undertake its mandate of being the global technical coordinator of the Internet. It would also challenge its legitimacy as a global public service provider in the eyes of the international community if it continues on this path, but most importantly, alienate many of the international community.
Moreover, it raises many concerns as to whether ICANN is succeeding at truly internationalizing itself.
…
Furthermore, the arbitrary inclusion of terrorism as a measuring stick without any internationally recognized law or standard is wrong and if acted upon it can be understood or seen by Muslims and Arabs as racist and profiling.

Strong stuff.
Now, ICANN’s painted itself into a bit of a corner. To placate its critics, it can either adopt a definition of terrorism, or it can drop the word entirely.
The former idea is probably unworkable – Wikipedia’s attempt to define “terrorism” under international law is over 4,500 words – and the latter could lead to interesting headlines.

ICANN GIVES THUMBS UP TO TERROR DOMAINS

I think I’ll leave that one for Fox.

RapidShare has no rights to “rapid”, says WIPO

RapidShare, the file-sharing service that recently embarked upon a spree of UDRP filings against domain name registrants, has lost its first such case.
A WIPO panelist denied the company’s claim on RapidBay.net, saying it had “not proved that they have any trademark or service mark rights in the expression ‘rapid bay’, or in the word ‘rapid'”.
RapidShare therefore failed to prove that “RapidBay” was identical or confusingly similar to its RapidShare trademark, and the complaint was thrown out.
The decision does not bode well for the company’s ongoing UDRP claims over rapid4me.com, rapidownload.net, rapidpiracy.com and rapid.org, among others.
Rapid.org’s registration, in particular, would appear to be safe, if the panelist in that case follows the same line of reasoning.
That will no doubt please the many people visiting my previous post recently, apparently looking for an explanation of why Rapid.org, a forum for sharing mainly copyrighted works, recently started bouncing to Bolt.org.
RapidShare has in recent months filed a couple dozen UDRP complaints against people who have registered “rapid” domains and are using them to help people find pirated material on the service.

RapidShare files UDRP claim on Rapid.org

RapidShare, confidence bolstered by a number of recent UDRP wins against domains that contain its trademark, has now turned its attention to some more dubious challenges.
The German file-sharing service has lately filed UDRP claims on the domains rapid4me.com, rapidownload.net, rapidpiracy.com and rapid.org, none of which contain its full “rapidshare” trademark.
The sites in question all relate to sharing files (mostly copyrighted works) on RapidShare. Rapid.org bounces visitors to Bolt.org, a file-sharing forum for predominantly pirated content.
It’s a bit of a stretch to see how any of these domains could be seen to be confusingly similar to the RapidShare trademark. But not, I think, a stretch too far for many UDRP panelists.
Ironically, Rapid.org, which must be worth a fair bit on the aftermarket, was originally registered in 1997 by an IP-protection company.
RapidShare has filed dozens of UDRP claims over the last few months, initially targeting file-sharing sites that utilized rival services, before broadening its campaign to also hit RapidShare-centric sites.

RBS wins totally bogus UDRP complaint

The Royal Bank of Scotland has been handled control of the domain rbscout.com in a UDRP decision I have no trouble at all describing as utterly bogus.
RBS, naturally enough, owns a trademark on the term “RBS”. Its UDRP claim is based on the notion that a domain beginning with “rbs” is therefore confusingly similar.
For this to work, logically, the meaning of “rbscout” must be taken as “RBS cout”.
Cout?
The idea that the registrant actually had “RB scout” in mind does not appear to entered into the deliberation of the National Arbitration Forum panelist, Paul Dorf.
It took me all of two minutes with Whois and Google to determine that the registrant, The Auction Scout, is a player in the market for auctioning heavy machinery, and that RB, Ritchie Bros., is such an auctioneer.
There’s simply no way the registrant could have had RBS in mind when he registered the domain back in February.
So why did Dorf find evidence of bad faith?
Because the domain rbscout.com resolves to a default Go Daddy parking page, which displays advertising links to financial services sites including RBS’s own site.
So, just because Go Daddy’s algorithms are confused by the string “rbs” appearing in a domain, human beings would be similarly confused?
It defies common sense. Dorf should be ashamed of himself.

ICANN chair says new TLD guidebook could be final by December

Peter Dengate Thrush, chairman of the ICANN board, thinks there’s a chance that the Applicant Guidebook for new top-level domains could be ready by ICANN’s next meeting, set for Cartagena in early December.
The board resolved in Brussels on Friday to turn its September two-day retreat into a special meeting focussed on knocking the DAG into shape.
Shortly after the vote, Peter Dengate Thrush spoke at a press conference (emphasis mine).

Soon after the closing of the [DAG v4] public comment period was a regularly scheduled retreat for the board to go and do what boards do at retreats, and what we’ve decided today to do is to use that two-day retreat to see if we can’t make decisions on all the outstanding issues in relation to the new TLD program.
That’s probably reasonably ambitious, there may still be a couple left, but we want to get as many of them out of the way as we can. That means that when we come to the next ICANN meeting in Cartagena in December we hope to be very close if not actually able to hand out the Applicant Guidebook for that new process.

I asked him what outstanding issues needed to be resolved before the DAG can be finalized. Instead of a comprehensive list, he named two: IP protection and the Governmental Advisory Committee’s “morality and public order” concerns.
The IP issue is “close” to being resolved, he said, but “there may still be issues”.
On MOPO, he said there is “a potential conflict emerging” between GAC members who value free speech and those who are more concerned with their own religious and cultural sensitivities.
When I followed up to ask whether it was possible to reconcile these two positions, this is what he said:

What we’ve done is ask the GAC is how they would reconcile it… now they are saying that they can’t see how it can be done. We see that very much as a problem either for the GAC to change its advice, or to provide us with a mechanism whereby that can be reconciled.

The Brussels GAC Communique (pdf), has little to say on MOPO, delaying its advice until its official DAG v4 public comment filing.
MOPO has already created tensions between the GAC and the board. The conversation at their joint meeting on Tuesday went a little like this:

GAC: We don’t like this MOPO stuff. Please get rid of it.
BOARD: Okay. What shall we replace it with?
GAC: Erm…
BOARD: Well?
GAC: It’s not our problem. You think of something.
BOARD: Can you give us a hint?
GAC: No.
BOARD: Please? A little one?
GAC: We’ll think about it.

So can we expect the GAC to get its act together in time for Cartagena? That, too, seems ambitious.

ICANN Brussels – some of my coverage

As you may have noticed from my relatively light posting week, it really is a lot easier to cover ICANN meetings remotely.
The only drawback is, of course, that you don’t get to meet, greet, debate, argue and inevitably get into drunken fist-fights with any of the lovely people who show up to these things.
So, on balance, I think I prefer to be on-site rather than off.
I was not entirely lazy in Brussels this week, however. Here are links to a few pieces I filed with The Register.
Cyber cops want stronger domain rules

International police have called for stricter rules on domain name registration, to help them track down online crooks, warning the industry that if it does not self-regulate, governments could legislate.

.XXX to get ICANN nod

ICANN plans to give conditional approval to .xxx, the controversial top-level internet domain just for porn, 10 years after it was first proposed.

Governments mull net censorship grab

Governments working within ICANN are pondering asking for a right of veto on new internet top-level domains, a move that would almost certainly spell doom for politically or sexually controversial TLDs.

New TLD guidebook could be finalized at ICANN retreat

ICANN’s Draft Applicant Guidebook for new TLDs could become the Final Applicant Guidebook at an ICANN retreat before the next ICANN meeting.
Chairman Peter Dengate Thrush said at a press conference here in Brussels earlier that a private two-day board retreat this year, focused entirely on new TLDs, could “clear up any remaining issues” with the DAG.
I believe he was referring to the ICANN board’s scheduled September 24-25 retreat, although he may have had something else in mind.
Dengate Thrush said that we should not expect the board to pass as many resolutions relating to the DAG at the end of the Brussels meeting as it did at the end of Nairobi three months ago.
But he still expects DAG v4 will be the final draft published before the guidebook is finalized.
“The reality is that there are a number of overarching issues where the community has to reach consensus, and it’s difficult for us to put time limits on the community,” he said.
A few minutes ago, during an open mic session on new TLDs, Jon Nevett of Domain Dimensions questioned whether there should be a special ICANN meeting, before the retreat, to give the community a chance to help with the finalization process.

ICANN Brussels trending topics: security and control

Security and politicking over control of the domain name system’s critical functions emerged as key memes during the opening ceremony of ICANN’s 38th public meeting this morning, here in Brussels.
In a speech that addressed a few controversial topics, ICANN president Rod Beckstrom responded unapologetically to those who had criticised the fairly alarmist tone of his remarks about DNS security at ICANN 37, three months ago.
Directly addressing his Nairobi comments, Beckstrom said:

You may disagree with what I said, and openness to different viewpoints is what makes our community strong. Some have asked why I said what I did. Simple. I said it because I believe it is the truth. And more than twenty years of experience in risk management have taught me that in addressing highly complex systems, it is better to be more concerned about risk than less.

The ccTLD constituency – led by .uk and .au – had been concerned about Beckstrom’s warning in Nairobi, which was made at a meeting of the Governmental Advisory Committee, because they risked giving governments reason to interfere with their country’s ccTLD.
Beckstrom’s keynote addressed the risk of too much government control over the DNS, embodied currently in rumblings about another International Telecommunications Union power grab, with a call to action for all those who support ICANN’s model.

We must face the fact that governments control these institutions. Given the serious proposals for an alternative to our bottom-up, multi-stakeholder model, we must redouble our efforts to support it if we are to protect the global public interest. All our stakeholders must step up to the plate and defend our common interest.
We will of course work closely with the Governmental Advisory Committee. But we need the active involvement of all stakeholders. We need your help, through every means available to you, to counter the misinformation and ensure that governments understand what is at stake when these issues are debated in the UN General Assembly later this year.

Beckstrom’s sentiments on security were echoed by both European Council President Herman Van Rompuy and, in a recorded address, European Commissioner for competition Neelie Kroes.
Kroes, in particular, seemed keen to marry the ideas of security risks and control over the internet’s crucial policy-making functions.

I am hopeful that the expiry of the IANA contract next year will be turned into an opportunity for more international cooperation servicing the global public interests.
But don’t misunderstand me. The internet’s day to day functioning works well, and I’m the first to say that if it isn’t broken don’t fix it. We all have an interest that this wonderful platform for innovation, entrepreneurship and free expression works perfectly well at a technical level. It is a great adventure that must continue to flourish. Yet, does it mean all is well in the cyber world?
Take the issue of security and resilience. We need to fight against spam, identity theft, phishing and other evolving types of crime on the internet. Both the public and private sectors have a joint obligation to act. And that approach has to go hand in hand with ensuring the internet itself is not vulnerable to any large-scale failure, whether as a result of an accident of a deliberate attack.

As I type, Beckstrom is hosting a panel discussion with Whit Diffie, Paul Mockapetris, Steve Crocker and Dan Kaminsky on DNS vulnerabilities in front of a packed audience.

Red Bull wins court case but loses UDRP

Energy drink maker Red Bull has somehow managed to lose a UDRP complaint over the domain name taurusrubens.com, despite having already won a lawsuit against its current registrant.
“Taurus Rubens” was the name of an air show slash performance art piece sponsored by Red Bull, performed at Salzburg airport in August 2003. There’s a clip here on YouTube.
The day before the show, an Austrian man named Reinhard Birnhuber registered taurusrubens.com and rubenstaurus.com and parked them with his ISP.
Two years later, when Red Bull got wise to the registrations, it offered Birnhuber €500 for them. He countered with a demand for a whopping €1 million.
That was in March 2005. One month later, Red Bull secured an Austrian trademark on the term “Taurus Rubens”. It then filed a UDRP complaint with WIPO.
Judging from that WIPO decision, it’s pretty clear that Birnhuber’s registrations were not entirely innocent.
Not only did he ask a ludicrous price for the domains, he also admitted to knowing about the air show when he registered them, he already owned redbullbag.com, and he gave a bunch of reasons about his plans for developing the domains that WIPO didn’t buy.
Nevertheless, because Red Bull had acquired its trademark rights years after the registrations, apparently just so it had standing under the UDRP rules, WIPO dismissed the complaint.
So Red Bull sued in an Austrian commercial court instead, and won.
Birnhuber appealed, and lost.
The court ruled that he had registered the domains in bad faith and that he should turn them over to Red Bull.
But he has apparently so far refused to do so. So Red Bull this year filed a second UDRP complaint with WIPO, asking for the domains to be transferred to it.
And, bizarrely, Red Bull lost.
WIPO this week denied the company’s complaint on the grounds that the the Austrian court’s ruling is irrelevant under UDRP rules, and that the 2005 WIPO decision should stand.
Here’s a Google translation of the relevant bits:

The panel can see in the above circumstances, no new facts or actions that would warrant a new assessment of the case. In this respect, the complainant fails to recognize that not only “new actions” to the resumption of proceedings are necessary, but this also has to be relevant.
…
The correct legal result is more than the enforcement of that ruling in Austria, especially as the present legal request (transfer of the domain name) covers with the sentencing order of the Austrian court. Since both parties are domiciled in Austria, is likely a priori, no specific enforcement problems arise. WIPO panels can so far do not replace the state authorities.

So, does Birnhuber get his €1 million? I doubt it. But right now he still owns taurusrubens.com.

Council of Europe wants ICANN role

The Council of Europe has decided it wants to play a more hands-on role in ICANN, voting recently to try to get itself an observer’s seat on the Governmental Advisory Committee.
The Council, which comprises ministers from 47 member states, said it “could encourage due consideration of fundamental rights and freedoms in ICANN policy-making processes”.
ICANN’s ostensibly technical mission may at first seem a bit narrow for considerations as lofty as human rights, until you consider areas where it has arguably failed in the past, such as freedom of expression (its clumsy rejection of .xxx) and privacy (currently one-sided Whois policies).
The Council voted to encourage its members to take a more active role in the GAC, and to “make arrangements” for itself to sit as an observer on its meetings.
It also voted to explore ways to help with the creation of a permanent GAC secretariat to replace the current ad hoc provisions.
The resolution was passed in late May and first reported today by IP Watch.
The Council of Europe is a separate entity to the European Union, comprising more countries. Its biggest achievement was the creation of the European Court of Human Rights.