Recent Posts
- Could ICANN’s chair be ousted by NomCom?
- Chinese domains plummet again in 2023
- GoDaddy price increases lead to revenue growth
- D3 announces seventh blockchain gTLD client
- Taylor Swift applies for her .post domain
- .ad domains to go global soon
- Single-letter .com case back in court
- ICANN to slash costs as Verisign’s magic money tree dries up
- Community revolts over ICANN’s auction proceeds power grab
- Two seats up for grabs on Nominet board
- War takes steep toll on .ua domains
- .de worst TLD for CSAM — report
- .com still shrinking because of China
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
ICANN budget: mild optimism amid maturing industry
ICANN thinks the domain industry, including the new gTLD industry, is maturing and will continue to grow, in its just-published draft budget for fiscal 2023.
The Org is predicting growing transactions across the board, as well as an increase in the number of accredited registrars and a slowing decline in the number of contracted gTLDs.
ICANN is expecting funding of $152 million for FY23, which includes the $4 million bung it negotiated with Verisign as part of the deal to allow the company to raise .com prices.
That’s up from the $149.1 million is expects to receive in the current fiscal year.
As usual, the bulk of the funding comes from gTLD transaction fees — the taxes registrants pay through their registrars and registries whenever they register, renew or transfer a domain name.
Legacy gTLD transaction fees are expected to amount to $93.1 million, up 3% on a forecast of $90.1 million in the current year, while new gTLD transaction fees are expected to rise modestly from $9.5 million to $9.9 million, a 4% increase.
Transactions in legacy gTLDs are expected to be 201.2 million, versus 193.6 million in the current year.
New, post-2012 gTLDs are expected to process 25.8 million transactions, up from 24.8 million, of which 21.1 million will be billable, up from 20.3 million. New gTLDs only pay transaction fees after 50,000 domains under management.
ICANN is expecting to lose four registries in FY23 — this almost always means dot-brands that cancel their contracts — with the total declining from a June 2022 total of 1,149 to 1,145 a year later. This will have a modest impact on fixed registry fees.
But the Org is once again expecting to see an increase in the number of registrars paying fixed accreditation fees, up by 28 to 2,447 at the end of FY23.
Accompanying the budget, ICANN has published some industry trend analysis (pdf) outlining some of the assumptions behind the budget forecasts.
Basically, the document describes what regular readers already know — many domain companies benefited from pandemic-related lockdowns driving small businesses online, but overall industry volumes were driven down by low-cost new gTLDs experiencing huge junk drops.
For ICANN’s purposes, factors such as customer quality and pricing are irrelevant. A spammer registering 1,000 domains in bulk pays ICANN the same amount in fees as 1,000 small businesses building their first web sites.
The document reads:
Taken as a whole, DUMs failed to expand in the past twelve months ending in mid-2021. While this decline is at least partly attributable to lower promotional activity among some of the largest new gTLDs which could be reinitiated in the future, it nonetheless points to an industry that has shifted from a period of rapid expansion to one that is now witnessing steady maturation.
The draft ICANN budget covers the 12 months beginning July 1, 2023, and is now open for public comment before possible revisions and final approval.
ICANN says ODP will speed up new gTLDs in the long run
A time-consuming process to spec-out the next new gTLD application round before it is even formally approved will actually speed up the program over the long run, an ICANN veep has said.
The so-called Operational Design Phase is a bunch of planning, or issues such as cost and feasibility, that ICANN says it needs to do before the community’s policy recommendations can be put before the board of directors.
The board approved the ODP in September, giving the Org a $9 million budget and a 10-month deadline to complete the project, but the clock doesn’t start ticking until CEO Göran Marby formally starts the process.
Three months later, that still hasn’t happened. ICANN is still “organizing the resources needed and developing the roadmap for the work ahead”, according to a blog post from Karen Lentz, VP of policy research and stakeholder programs.
The Org is doing the preparation for the preparation for the preparation for the next round, in other words.
But Lentz says this will speed up the new gTLD program over the longer term.
We believe the ODP will actually streamline future work. It will have a positive impact on the duration of the implementation process by making the assumptions explicit, answering key questions, and considering how the recommendations on different topics work together in addition to providing a detailed timeline and visibility to the timing of implementation activities. If the Board approves the recommendations, the org and the Implementation Review team would be able to leverage a good amount of work already completed during the ODP. Future rounds would not be possible without the foundational work of an ODP. It’s important to note that without an ODP, this work would still be taking place, but without the structure and transparency that the ODP provides.
Another important consideration to note here is that we are not simply organizing only the next round. We are building a foundational structure for all of the work that the org, the community, and the Board will do over the coming years to continue to evolve the namespace along with the necessary procedures and tools. So the work from this ODP is not only for a single round — this is targeting a long-term plan and for multiple rounds.
If Marby were to start the ODP tomorrow, and ICANN managed to hit its deadline, October 2022 would be the absolute earliest the ICANN board would get the chance to approve the next round.
It’s possible, though not very likely given how intrinsic to ICANN’s mission the opening up of gTLD competition is, that the board could instead decide not to approve the next round.
After the next round gets the thumbs-up, there’s still a whole lot of extra work to do — the aforementioned Implementation Review, hiring contractors, a months-long marketing campaign — before companies would actually get to file their applications.
We’re still looking at 2024 at the earliest for that, in my view, but if there’s one thing we can rely on from ICANN, it’d delay.
Be the next “face” of dot-brands
The Brand Registry Group is seeking a new executive director, after incumbent Martin Sutton decided he’s to leave the group next year.
Sutton, who’s been in the role since 2015, said the BRG is looking for somebody to be the new “face of the dotBrand community”.
Arguably the group’s biggest issue right now is the next new gTLD application round, which still appears to be years away after a decade’s worth for navel-gazing by ICANN.
If BRG members are to be believed, a whole lot of companies that missed out on the 2012 round or have been founded since then are champing at the bit for the chance to get their own dot-brands.
It’s pretty clear from Sutton’s job posting that a long-time ICANN community member is being sought, and I can think of maybe two or three people who would make perfect candidates.
The BRG is not a formal ICANN structure, but it gets time on the agenda at ICANN meetings and has some political clout. Its members include the likes of Apple, Amazon, Fox, Honda and JP Morgan & Chase.
The executive director is its only full-time employee role.
CentralNic makes another registrar acquisition
CentralNic said today it has bought another registrar, Chile-based NameAction, in a $1 million deal.
NameAction has been around since the late 1990s and specializes in ccTLDs in the Latin American region, including offering local presence services for foreign registrants.
It sells gTLD domains too, acting primarily in the brand protection space, but does not appear to be ICANN-accredited in its own right.
CentralNic said the deal will immediately add $2 million to its top line and $200,000 to profits.
CEO Ben Crawford said in a press release that the deal is small but of strategic importance, giving the company a beachhead from which to expand into Latin America.
It’s the fourth acquisition announcement from CentralNic, which describes itself as an industry consolidator, this year.
ICANN takes the lamest swipe at Namecheap et al over blockchain domains
ICANN has come out swinging against blockchain domains and the registrars that sell them. And by “come out” I mean it’s published a blog post. And by “swinging” I mean “offered the weakest criticism imaginable”.
The post starts off well enough, observing that services marketed as “domain names” that are not automatically compatible with the global DNS are probably not a great purchase, because they don’t work like regular domains.
Using these alternatives requires something like a browser plug-in or to reconfigure your device to use a specialist DNS resolver network, the post notes, before concluding with a brief caveat emptor message.
All good stuff. ICANN has been opposed to alt-root domain efforts for at least 20 years, and the policy is even enshrined in so-called ICP-3, which nobody really talks about any more but appears to still be the law of ICANN Land.
So, which domain-alternatives is ICANN referring to here, and which registrars are selling them? The post states:
Name resolution systems outside the DNS have existed for a long time. One could mention the Sun Microsystem Network Information Service (NIS), the Digital Object Architecture (DOA), or even the Ethereum Name Service (ENS)…
With some ICANN-accredited registrars now selling NIS, DOA, or other similar domains alongside standard domain names, the potential for confusion among unsuspecting customers seems high.
You may be asking: what the heck (or, if you’re like me, fuck) are NIS and DOA domains, and which registrars are selling them?
Great questions.
NIS is an authentication protocol (a bit like LDAP) for Unix networks developed in 1985 (the same year the original DNS standard was finalized) by Sun Microsystems, a company that hasn’t existed in over a decade.
To the best of my knowledge they’ve never been marketed as an alternative to regular domain names. Nobody’s ever used them to address a publicly available web site. Nobody sells them.
DOA, also known as the Handle System, is a more recent idea, first implemented in 1994, before some of you were born. Handles are mostly numeric strings used to address digital objects such as documents. Libraries use them.
The main thing to know about Handles for the purposes of this article is that they’re specifically designed to convey no semantic information whatsoever. They’re not designed to look like domain names and they’re not used that way.
So how many registrars are selling NIS/DOA domains? I haven’t checked them all, but I’m going to go out on a pretty sturdy limb and guess the answer is “none”, which is a lot less than the “some” that ICANN asserts.
But ICANN also mentions the Ethereum Name Service, a much newer and sexier way of cybersquatting, based on the Ethereum cryptocurrency blockchain.
ENS allows people to buy .eth domain names (which do not function in the consensus DNS) for the Ethereum equivalent of about $5. As far as I can tell, you can only buy them through ens.domains, and no ICANN-accredited registrar is functionally capable of selling them.
The ICANN post also contains a brief mention of “Handshake”, and this appears to be what ICANN is actually worried about.
Handshake domains, also known as HNS, look like regular domain names and a handful of ICANN-accredited registrars are actually selling them.
Handshake is also based on blockchain technology, but unlike ENS it also allows people to create their own TLDs (which, again, do not function without special adaptations). Registrars including Namecheap, 101domain and EnCirca sell them.
It’s Namecheap’s storefront hover text, warning that HNS domains don’t work in the regular DNS, that ICANN appears to be paraphrasing in its blog post.
The registrar has a lengthy support article explaining some of the ways you can try to make a Handshake domain work, including an interactive comment thread in which a Namecheap employee suggests that DNS resolvers may choose to resolve HNS TLDs instead of conflicting TLDs that ICANN approves in future.
That’s the kind of thing that should worry ICANN, but it’s got a funny way of expressing that concern. Sun Microsystems? Digital Object Architecture? What’s the message here?
Twenty years ago, I interviewed an ICANN bigwig about New.net, one of the companies attempting to sell alt-root domains at the time. He told me bluntly the company was “breaking the internet” and “selling snake oil”, earning ICANN a snotty lawyer’s letter.
Today’s ICANN post was ostensibly authored by principal technologist Alain Durand, but I’m going to give him the benefit of the doubt and assume comms and legal took their knives to it before it was published.
While some things haven’t changed in the last two decades, others have.
GoDaddy hack exposed a million customer passwords
GoDaddy’s systems got hacked recently, exposing up to 1.2 million customer emails and passwords.
The attack started on September 6 and targeted Managed WordPress users, the company’s chief information security officer Demetrius Comes disclosed in a blog post and regulatory filing this week.
The compromised data included email addresses and customer numbers, the original WordPress admin password, the FTP and database user names and passwords, and some SSL private keys.
In cases where the compromised passwords were still in use, the company said it has reset those passwords and informed its customers. The breached SSL certs are being replaced.
GoDaddy discovered the hack November 17 and disclosed it November 22.
It sounds rather like the attack may have been a result of a phishing attack against a GoDaddy employee. The company said the attacker used a “compromised password” to infiltrate its WordPress provisioning system.
Comes wrote in his blog post:
We are sincerely sorry for this incident and the concern it causes for our customers. We, GoDaddy leadership and employees, take our responsibility to protect our customers’ data very seriously and never want to let them down. We will learn from this incident and are already taking steps to strengthen our provisioning system with additional layers of protection
You may recall that GoDaddy came under fire last December for punking its employees with a fake email promising an end-of-year bonus, which turned out to be an “insensitive” component of an anti-phishing training program.
About 500 staff reportedly failed the test.
EURid to drop 48,000 Brexit domains in one day
All the .eu domain names formerly belonging to Brits and UK residents will be released for registration on a first-come, first-served basis in one day, EURid announced today.
There are about 48,000 of them, and they’ll be released in batches starting at 0900 UTC on January 3, two days later than the previously announced date, the registry said.
The names all belonged to UK registrants that lost their eligibility when the country left the EU in January last year.
There were almost 300,000 .eu domains registered in the UK at the time of the Brexit referendum in 2016. Most have since dropped or been transferred to EU-based entities or EU citizens that still qualify.
Google to release another new gTLD next month
Google Registry is gearing up to unleash another gTLD from its stockpile of unreleased strings next month.
The gTLD is .day, one of over 100 that Google applied for in 2012 after a reported brainstorming session at the company.
According to its application:
The specialization goal of the proposed gTLD is to offer a new Internet environment that allows users to create and organize events that have or will occur on a particular day. The proposed gTLD will provide a single domain name hierarchy for Internet users globally to promote celebrations, such as a holi.day, wedding.day, or birth.day.
With that in mind, it’s difficult to see .day being a high-volume TLD along the lines of Google’s popular .app or .dev gTLDs.
While the company itself doesn’t seem to have addressed the launch publicly, it has given details to registrars and informed ICANN about its start-up dates.
It started a Qualified Launch Program program earlier this week. That’s where it gets to hand out a limited number of domains to hand-picked anchor tenants.
The sunrise period, restricted of course to trademarks, begins December 14 and ends January 24.
General availability starts January 25, according to registrars and ICANN records, with a seven-day Early Access Period during which domains can be purchased at daily-decreasing premium prices.
Full regular-price general availability begins February 1.
XYZ counting standard sales as “premiums” because its fees are so expensive
Portfolio gTLD registry XYZ appears to be counting regular sales of domains in certain TLDs as “premium” wins, because the base reg fee is so high.
The company said in a recent blog post that it sold over 270 “premium” names in October, but it added the following caveat:
Premium XYZ Registry domains refer to premium domains for extensions with standard and premium domains, and XYZ’s premium namespaces such as .Cars, .Storage, .Tickets, .Security, etc.
So if a name in a .com-equivalent priced TLD such as .xyz had been flagged as a premium by the registry and sold for a few thousands bucks, that counts as a premium sale, but any sale at all in .cars, where all domains cost a few thousand bucks regardless of the second-level string, also counts as a premium.
This reporting practice appears to bring in .security, .storage, .protection, .car, .auto, and .theatre, which all retail for four figures as standard. It also includes .tickets, where you won’t get much change out of a grand. It doesn’t include the fourth member of the cars family, .autos, where domains are priced as .com-equivalent.
I’m not sure how I feel about this.
You can’t accuse the registry of being misleading — it’s disclosing what it’s doing pretty prominently mid-post, not even reducing the font size.
And you can’t reasonably argue that a standard $3,000 .cars domain, which renews at $3,000 a year, for example, has less claim to the adjective “premium” than a domain in .hair that has a premium-tier EPP code selling for $3,000 but renewing at $20.
It just feels weird to see the word used in this way for what appears to be the first time.
Nominet names Paul Fletcher new CEO
Nominet has named Paul Fletcher as its new CEO.
He’ll join the company in February, filling the spot vacated by Russell Haworth, who quit earlier this year a few days before he could be fired by members.
Fletcher is currently CEO at BCS, the Chartered Institute for IT, Nominet said. BCS, formerly the British Computer Society, is also a membership organization, with 60,000 members.
Nominet is currently headed by interim CEO Eleanor Bradley, one of the directors removed from the board at the company’s fractious Emergency General Meeting in March.
Fletcher will join the board at the same time as he joins Nominet, the company said.
Recent Comments