Moment of truth as .music domains finally go on sale

After a wait of over 15 years, startup registry DotMusic is bringing .music domains to general availability today.

A week-long Early Access Period is due to start this afternoon, with prices initially measured in the thousands of dollars, before regular GA with standard pricing — around $60 retail — kicks off October 8.

Participating registrar 101domain has published an EAP price list and timetable, showing prices starting at $11,999 today, dropping to $6,299, $1,999, $799, $199, $169, and $139 over the following six days. The prices drop at 1600 UTC each day.

While .music is certainly among the strongest strings to emerge from the new gTLD program to date, there are substantial, self-imposed barriers to broad adoption.

.music is a rare example of a “Community” gTLD, with additional restrictions — built into its ICANN registry contract — on who can register names and what kind of content they can publish.

DotMusic’s published policies say that registrants must verify their identities and connection to the music industry and obtain a special code called a Music ID within 90 days of registration.

Newly registered domains will be on Registry Server Hold Status until this code is obtained, meaning they won’t be included in the .music zone file and won’t resolve on the internet.

Failure to obtain the Music ID within 90 days means DotMusic can delete or suspend the domain with no refunds. After a registrant has a .music ID, it can be reused to activate subsequent registrations.

A sister company of DotMusic called ID.music will be responsible for verifying the identity of registrants and their “nexus” to the music industry. It announced last week it’s partnered with a company called Shufti to verify IDs.

DotMusic is building additional services around the Music ID. A Music Hub is expected to feature services designed to help artists connect with and cultivate their fan base.

The launch so far appears to be a bit messy, with not much hype and some confusion about certain details, which is worrying given how long .music has been under development.

Domains being promoted for Music Hub services supposedly available at launch, such as search.music and channels.music, do not appear in the latest .music zone file and do not resolve.

It’s also not entirely clear what the official registry web site is. IANA lists nic.music, but music.us and get.music have also been used and registry.music appears to be the most up-to-date.

CentralNic is also being touted as .music’s back-end registry services provider both on the registry’s registrar-onboarding web site and by some participating registrars, but I’m pretty certain DotMusic switched to Tucows a few months ago.

gTLDs with onerous registration restrictions historically have not fared particularly well in the market, where registrars are not keen on products that cause shopping cart friction or risk spawning support calls.

DotMusic seems to done itself a favor by making registrant verification a post-registration hoop to jump through, moving most of the complexity to the registry.

.music had 213 domains in its zone file yesterday but, due to the restrictions, it’s going to be difficult to use this metric to judge the success of the launch in future.

Another ccTLD opens up its second level

Kuwait has become the latest country to make second-level domain registrations possible directly under its national ccTLD.

The registry, government regulator the Communication and Information Technology Regulatory Authority (CITRA), said last week that it’s launching direct 2LD regs under .kw with an initial six-month sunrise period that has already started.

CITRA said in a press release that this first launch phase allows “government entities, registered trademark owners, and holders of third-level domains (.com.kw/.net.kw/.org.kw)” to register names.

The current three-level structure has six subdivisions, also including .ind.kw for individuals, .gov.kw for governmental entities, and .edu.kw for educational institutions. Local presence restrictions appear to apply to all.

While much of CITRA’s web site is available in English, its 2LD policies appear to be only published so far in Arabic, in PDFs that resist machine translation.

Domains in .kw currently cost about KWD15 (about $50) a year. Kuwait does not have an Arabic version of the ccTLD, but Arabic script is supported at the second and third levels.

.io sells $40 million of domains after massive uptick

.io is now a $40-million-a-year domain, after a few years of impressive growth, judging by the registry’s latest financial reports.

UK-based Internet Computer Bureau, a subsidiary of Identity Digital, recently reported turnover of £29.6 million ($39.6 million) for 2023, up 13.9% on the £26.1 million it reported in 2022.

While that’s respectable growth, it pales compared to 2022 (which I don’t think was reported at the time), when turnover was up a whopping 59%.

Identity Digital does not reveal .io’s registration numbers, but with turnover of over $39 million and retail renewal prices bottoming out at around $39 a year, it seems quite possible that the TLD’s domains under management has reached seven digits.

When Afilias paid $70 million for ICB in 2017, it had turnover of $7 million and domains were reported at 270,000.

ICB’s gross margins are terrible — one can only assume its registry services deal with Identity Digital is rather generous to its parent — at 4.4%, with £28 million being paid out as cost of sales.

With another £3 million of unelaborated “administrative expenses”, ICB reported a 2023 net loss of £404,000 compared to a 2022 profit of £1.7 million. It paid £17,660 in UK tax, down from £277,703. It had just $69,000 cash on hand at the end of the year.

While ICB also runs .ac (Ascension Island) and .sh (Saint Helena, Ascension and Tristan da Cunha), it’s only .io that has seen broad uptake among the global domain-registering public. Tech firms like it because I/O means “input/output”.

.io is the ccTLD for the contested British Indian Ocean Territory, also known as the Chagos Archipelago, which is administered from the UK and used almost exclusively to house a strategically important US military base.

After five years, “useless” TLD has two web sites

An IDN ccTLD criticized as “useless” by locals when it was approved five years ago has fewer domains today than it did at launch, and a portfolio of web sites even a Simpson could count on one hand (twice).

The Greek-script .ευ (.xn--qxa6a) is one of two internationalized domain name versions of the European Union’s .eu, operated by EURid. It was approved by ICANN in September 2019 and went live two months later.

Today, it has just 2,561 domains under management, about 200 fewer than it did at the end of 2019, just a month after launch, according to stats on EURid’s web site.

A quick google on Google for .ευ domains returns results for only two indexed web sites, while googling on Bing returns four, of which two are undeveloped placeholders.

It’s not much of a result for a TLD that ICANN spent nine years twisting itself in knots to approve over the concerns of evaluators who thought it was visually too confusing to other two-letter strings.

Greek domainers criticized .ευ upon its approval, with Konstantinos Zournas calling it the “worst extension ever”, due largely to the fact that “EU” in Greek is εε, not ευ.

Verisign agrees to .com takedown rules

Verisign has agreed to take down abusive .com domains under the next version of its registry contract with ICANN.

The proposed deal, published for public comment yesterday, could have financial implications for the entire domain industry, but it also contains a range of changes covering the technical management of .com.

Key among them is the addition of new rules on “DNS Abuse” that require Verisign to respond to abuse reports, either by referring the domain to its registrar or by taking direct action

Abuse is defined with the now industry-standard “malware, botnets, phishing, pharming, and spam (when spam serves as a delivery mechanism for the other forms of DNS Abuse listed in this definition)”.

The language is virtually identical to the strengthened DNS abuse language in the base Registry Agreement that almost all other gTLD registries have been committed to since their contracts were updated this April. It reads:

Where Registry Operator reasonably determines, based on actionable evidence, that a registered domain name in the TLD is being used for DNS Abuse, Registry Operator must promptly take the appropriate mitigation action(s) that are reasonably necessary to contribute to stopping, or otherwise disrupting, the domain name from being used for DNS Abuse. Such action(s) shall, at a minimum, include: (i) the referral of the domains being used for the DNS Abuse, along with relevant evidence, to the sponsoring registrar; or (ii) the taking of direct action, by Registry Operator, where Registry Operator deems appropriate.

The current version of the .com contract only requires Verisign to publish an abuse contact on its web site. It doesn’t even oblige the company to respond to abuse reports.

In domain volume terms, .com is regularly judged one of the most-abused TLDs on the internet, though newer, cheaper gTLDs usually have worse numbers in terms of the percentage of registrations that are abusive.

Verisign will also get an obligation that other registries don’t have — to report to ICANN “any cyber incident, physical intrusion or infrastructure damages” that affects the .com registry.

ICANN won’t be able to reveal the details of such incidents publicly unless Verisign gives its permission, but in a side deal (pdf) the two parties promise to work together on a process for public disclosure.

Verisign will also have to implement two 20-year-old IETF standards on “Network Ingress Filtering” that describe methods of mitigating denial-of-service attacks by blocking traffic from forged IP addresses.

The contract is open for public comment.

New .com contract could see ALL domain prices go up

Verisign will retain its power to increase .com prices by 7% a year, and prices in other gTLDs could well go up too, under a new proposed registry contract designed to help patch up ICANN’s budget.

The proposed .com Registry Agreement was posted for public comment this evening, and the pricing terms within could have broad implications for all registrants of gTLD domains.

For starters, as usual the deal lets Verisign raise .com prices, currently $10.26 a year, by 7% in the final four years of the six years of its term. This is an option Verisign has never failed to exercise in the past.

But the deal would also give ICANN the power, in its sole discretion, to raise the per-transaction fees Verisign pays it for each added, renewed, or transferred .com domain, in line with the latest US inflation numbers.

The fee is currently $0.25 per transaction, and it hasn’t gone up ever, as far as I recall.

The proposed text on inflation is pretty much the same as found in all post-2012 gTLD Registry Agreements, but adds a clause saying that ICANN cannot raise the .com fees unless it also raises fees in “multiple other registry agreements”.

Yet another clause strongly suggests that ICANN intends to exercise its existing right to increase its fees, again according to the US Consumer Price Index, across other gTLDs — presumably all of them — rather soon:

ICANN and Registry Operator hereby agree that if ICANN delivers notice of a fee adjustment to other registry operators after November 1, 2024 and prior to the Effective Date, ICANN may concurrently deliver such fee adjustment notice to Registry Operator, in which case the provisions of Section 7.2(d) shall be deemed to have applied at the time such notice was sent.

Translated, this means that ICANN can put Verisign on notice that its fees are going up even before the contract is signed, but only if it also raises the fees on other registries at the same time.

It’s difficult to imagine why this language is there unless it’s describing something ICANN is actually planning to do.

Unlike Verisign, other gTLD operators do not have regulated pricing, so any ICANN fee increase on them could very well be passed on to registrars and ultimately registrants with increased wholesale prices.

The new contract is being proposed a few months after ICANN laid off staff because its budget was $10 million light, and CEO Sally Costerton said the Org was “evaluating ICANN’s fee structure to ensure it scales realistically with inflation”.

Verisign, and .com in particular, is ICANN’s biggest single source of funding, contributing $47.3 million of its $145.5 million in revenue in its last fiscal year.

The proposed new .com contract and public comment opportunity can be found here.

Investing in .ad domains may be risky

Domain investors may shoulder additional risk when they register domains in the relaunching .ad TLD, judging by the registry’s new cybersquatting policy.

Andorra Telecom, which will make .ad names generally available globally October 22, has signed up with WIPO to implement an adapted version of the UDRP that is a lot less friendly to domainers.

The new adDRP specifically calls out domaining as an example of “bad faith”, something a complainant must prove if they want to seize a domain matching their trademark. Panels can find bad faith if they see:

circumstances indicating that you have registered or you have acquired the domain name primarily for the purpose of selling, renting, or otherwise transferring the domain name registration to another person for valuable consideration in excess of your documented out-of-pocket costs directly related to the domain name

The adDRP also tweaks the usual three-pronged cybersquatting test found in UDRP to make it easier for complainants to get a win, by lowering the evidential bar on registrants’ rights.

Instead of having to prove the registrant has “no rights or legitimate interests” to the domain, adDRP complainants merely need to “declare” that, “to the best of the Complainant’s knowledge”, the registrant has no rights or legitimate interests.

The adDRP also broadens the types of intellectual property rights complainants must have from registered trademarks to, for example, famous personal names and geographical names related to Andorra.

Andorra Telecom announced its relaunch, assisted by Fundació puntCAT and CORE Association, a few months ago. GA pricing is expected to be €15 ($16) a year.

While Andorra is among the world’s smallest nations, its ccTLD is of course an abbreviation of “advertisement” or “advertising” in English and therefore may have broader appeal.

The registry recently launched an English language version of its web site and a bunch of registrars serving the Anglophone market are already signed up.

The plural gTLD version, .ads, belongs to Google but has not yet launched.

Three .now domains sell at premium EAP prices

Amazon’s Early Access Periods for the new .now and .deal gTLDs have so far netted at least three premium-priced sales.

Zone files reveal that so far .now has three new EAP domains but .deal has none.

The .now domains are, perhaps predictably, porn.now and news.now, which were both registered via Gandi, and free.now, which was registered via Secura.

All three were registered shortly after 1300 UTC yesterday, when the switchover from day one to day two pricing occurred, according to Whois records.

That means they likely sold for in excess of $3,300 each, judging by the EAP retail price list published by 101domain. Day one pricing would have been roughly double that.

Amazon may have sold more EAP domains that for one reason or another don’t yet show up in the zone files.

Regular general availability pricing kicks in at the weekend.

Former .co registry defeated in $350 million contract fix case

The Neustar spin-off that once operated the .co TLD reportedly has lost a case against the Colombian government in which it had sought $350 million in damages over the acrimonious renewal of its registry contract.

According to local reports, the International Center for the Settlement of Investment Disputes, part of the World Bank, last week ruled in favor of Colombia on both the merits and on jurisdictional grounds.

The case had been brought in late 2019 by Neustar, which at the time managed some 2.3 million .co domains, under government contract, via a Colombian subsidiary it acquired in 2014.

Neustar has since been acquired by GoDaddy, which continues to run .co, but the ICSID case was inherited by Vercara, the DNS security services arm of the company that GoDaddy didn’t buy.

As .CO Internet, Vercara was hired by Colombia to turn .co into a global alternative to .com with a much-hyped 2010 relaunch. It was very successful, but when it came time to renew the initial 10-year contract, Colombia instead put it out for rebid and started behaving very strangely.

You may recall from coverage here on DI and on The Register that the Colombian tender process seemed to have been specially constructed so that only Afilias, then Neustar’s fiercest rival and now part of Identity Digital, could win.

The government’s RFP had set technical thresholds, such as daily registry transactions, that Afilias could show it met but Neustar could not. It looked naive and arbitrary at best and dodgy at worst.

So Neustar took Colombia to arbitration with ICSID, saying (pdf) the government was in breach of the Trade Promotion Agreement between the US and Colombia.

Neustar ended up winning the contract anyway, albeit on terms that were massively more favorable to the government, and it sold its entire registry services business to GoDaddy days later.

Now, almost five years later, it seems Vercara has lost the case it inherited. While ICSID has not yet published its arbitration panel’s decision, local newspapers have got hold of a copy.

Colombia’s oldest newspaper, El Spectador, reports: “The court, in addition to stating that it does not have jurisdiction to hear Vercara’s claims, rejected all the claims on the merits.”

In unrelated news, Vercara’s recently announced acquisition by DigiCert closed yesterday.

Is this the first Next Round new gTLD contention battle?

It had to happen sooner or later. With a few dozen would-be new gTLD applicants breaking cover over the last year or so, we seem to have our first clash and our first potential 2026-round contention set.

The sought-after contested gTLD is .chain, which now has two announced hopefuls after blockchain-based alternative naming system Freename.io yesterday revealed it wants the string.

“The company intends to apply for .chain, .token, .metaverse and a variety of other gTLDs,” Freename said. “Freename will also submit applications on behalf of third-party customers in this new gTLDs round.”

Freename, if it follows through, is likely to face competition from at least one other applicant, a company called 3DNS, which in June announced plans to apply for .chain and .super.

3DNS has Intercap as its registry partner, while Freename is partnered with registry ShortDot on a joint venture called WebUnited.

Freename already sells blockchain-based names that use .chain as an extension, while 3DNS sells third-level DNS domains under .chain.box that it hopes to upgrade to second-level names should it win the ICANN contest.

In truth, I’d be incredibly surprised if these are the only two companies to apply for .chain, which is a shortened version of “blockchain” and likely to be an attractive string with the whole crypto/”Web3″ crowd.

Under ICANN’s under-development rules, the exact process for resolving contention sets is still up in the air, with more clarity hoped for over the next few months.

ICANN has confirmed that it intends to ban private auctions in the next round, but has also come up with a new second-choice alternate string option that is already causing grumbling in the policy-making community.