Latest news of the domain name industry

Recent Posts

New gTLD registries given way to free up millions of blocked names

Kevin Murphy, February 27, 2014, Domain Tech

Up to 9.8 million new gTLD domain names are to get a get-out-of-jail card, with the publication yesterday of ICANN’s plan to mitigate the risk of damaging name collisions.
As a loyal DI reader, the details of the plan will not come as a great surprise. It was developed by JAS Global Advisors and previewed in a guest post by CEO Jeff Schmidt in January
Name collisions are scenarios where a TLD delegated by ICANN to the public DNS matches a TLD that one or more organizations already uses on their internal networks.
Verisign, in what many view as protectionist propaganda, has been arguing that name collisions could cause widespread technical and economic damage and even a risk to life.
Things might stop working and secret data might leak out of corporate networks, Verisign warns.
JAS’ proposed solution, which ICANN has opened for public comment, is quite clever, I think.
Called “controlled interruption”, it will see new gTLD registries being asked to wildcard their entire second level of their TLDs to point to the IP address 127.0.53.53.
If there’s a name collision on example.corp the company using that TLD on its network will notice unusual behavior and will have an opportunity to fix the problem.
Importantly, no data apart from the DNS look-up will leak out of their networks — the 127/8 IP address block is reserved by various standards for local uses only.
The registry will essentially bounce the DNS request back to the network making the request. If that behavior causes problems, the network administrator will presumably check her logs, notice the odd IP address, and Google it for further information.
Today, she’ll find a Slashdot article about the name collisions plan, which should put the admin on the road to figuring out the problem and fixing her network. In future, maybe ICANN will rank for the term.
Registries would be able to choose whether to wildcard their whole TLD or to only point to 127.0.53.53 those second-level names currently on their collisions block lists.
In either case, the redirection would only last for the first 120 days after delegation. That’s the same duration as the quiet period ICANN already imposes on new delegations, during which only “nic.” may resolve.
After the 120 days are up, the name collisions issue would be considered permanently closed for that TLD.
If this goes ahead, the plan will allow registries to unblock as many as 9.8 million domain names representing 6.8 million unique second-level labels, according to DI PRO collisions database.
It could also put an end to the argument about whether name collisions really were a significant problem (160,000 new gTLD names are already live and we haven’t heard any reports of collisions yet).
Pointing to the fact that new TLDs, some of which showed evidence of collisions, were getting delegated rather regularly before the current new gTLD round, JAS said in its report:

We do not find that the addition of new Top Level Domains (TLDs) fundamentally or significantly increases or changes the risks associated with DNS namespace collisions. The modalities, risks, and etiologies of the inevitable DNS namespace collisions in new TLD namespaces will resemble the collisions that already occur routinely in the other parts of the DNS.

However…

Collisions in all TLDs and at all levels within the global Internet DNS namespace have the ability to expose potentially serious security and availability problems and deserve serious attention.

JAS calls its plan “a conservative buffer between potential legacy usage of a TLD and the new usage”.
As wildcarding is currently prohibited by ICANN’s standard Registry Agreement (ironically, to prevent a repeat of Verisign’s Site Finder) an amendment is going to be needed, as the JAS plan acknowledges.
The drawback of the plan is that if an organization is relying on a colliding internal TLD, whatever systems use that TLD could break under the plan. The 127/8 redirection is a way to help them resolve the breakage, not always to prevent it happening at all.
For new gTLD registries it’s pretty good news, however. There are many thousands of potentially valuable premium names blocked under the current regime that would be made available for sale.
If you’re an applicant for .mail, however, it’s a different story. The JAS report says .mail should be reserved forever, putting it in the same category as .home and .corp:

the use of .corp and .home for internal namespaces/networks is so overwhelming that the inertia created by such a large “installed base” and prevalent use is not likely reversible. We also note that RFC 6762 suggests that .corp and .home are safe for use on internal networks.

Like .corp and .home, the TLD .mail also exhibits prevalent, widespread use at a level materially greater than all other applied-for TLDs. Our research found that .mail has been hardcoded into a number of installations, provided in a number of example configuration scripts/defaults, and has a large global “installed base” that is likely to have significant inertia comparable to .corp and .home. As such, we believe .mail’s prevalent internal use is also likely irreversible and recommend reservation similar to .corp and .home.

In other words, .mail is dead and the five remaining applicants for the string are probably going to be forced to withdraw through no fault of their own. Should these companies get a full refund from ICANN?

Mistake blamed for “Germans only” .voting policy

Kevin Murphy, February 25, 2014, Domain Registries

It seems the new gTLD .voting will not be restricted to Germans after all.
We reported earlier today that .voting registry Valuetainment had submitted a registration policy that required all registrants to have a presence in Germany.
The language used in the policy was identical, we later discovered, to that found in the equivalent policy for .ruhr, a German geographic gTLD operated by a different registry.
But Thomas Rickert of the German law firm Schollmeyer & Rickert, which has both .voting and .ruhr registries as clients, just called to let us know that the policy as submitted to ICANN was a mistake.
It seems there will be no local presence requirement for .voting after all.
Valuetainment will be submitting a revised policy to ICANN without the error. The German-language version of the policy does not contain the error, Rickert said.
Rickert said he’d like it to be known that the registry was blameless in this instance.

Fifth URDP provider goes live

Kevin Murphy, February 25, 2014, Domain Services

The Arab Center for Dispute Resolution has gone live as the fifth approved provider of UDRP dispute resolution services.
The Jordan-based outfit, which says it has offices in “all Arab countries”, says it “is uniquely positioned to address domain name issues pertinent to the region, while maintaining an international, multicultural disposition to case settlement.”
ACDR was approved by ICANN to administer UDRP cases last May, over the objections of the Internet Commerce Association and others, which want UDRP providers bound to ICANN contracts.
The organization does not appear to be competing hard on price. A single-domain case will set trademark owners back a minimum of $1,500 ($1,000 to the panel, $500 to ACDR), which is the same as market leader WIPO.
It’s actually a little more expensive than WIPO — a five-domain case will cost $1,700 compared to WIPO’s $1,500.

Uniregistry doing private new gTLD auctions? Company deals with Donuts on five strings

Kevin Murphy, February 21, 2014, Domain Registries

Uniregistry and Donuts have settled at least five new gTLD contention sets this week, raising the question of whether Uniregistry has reversed its objection to private auctions.
I think it has.
In five of the six head-to-head contention sets between the two companies, Donuts has won the rights to .furniture, .auction and .gratis, and Uniregistry has won .audio and .juegos.
The losing company has already withdrawn their applications in all five cases.
I gather that a deal was made, but Uniregistry won’t say whether it was via a private auction or not and I’ve not yet had a reply to a request for comment from Donuts.
The withdrawals come the same week as Applicant Auction was scheduled to conduct its latest private auction for new gTLD contention sets. The auction was slated for February 18.
But Uniregistry, which has previously spoken out against the private auction concept — saying it raises antitrust concerns — declined to confirm or deny whether these five contests were resolved by auction.
“We’re grateful to have found a way through the impasse and resolved the contention,” was all Uniregistry CEO Frank Schilling would say.
Applicant Auction’s project director Sheel Mohnot confirmed that a new gTLD auction took place this week but said he could not disclose the participants or the strings.
To the best of my knowledge, that’s a new line — the auctioneer has always kept quiet about sales prices in the past, but has always revealed which companies were involved.
So has Uniregistry changed its mind about the legality of private new gTLD auctions? My guess is: “Yes.”
The only remaining string where the two companies are competing in a two-horse race is .shopping, according to the DI PRO database, but that’s subject to some weird string similarity nonsense and probably not suitable for a private auction yet.

Euro registrars miffed about ICANN privacy delays

Kevin Murphy, February 21, 2014, Domain Registrars

Registrars based in the European Union are becoming increasingly disgruntled by what they see as ICANN dragging its feet over registrant privacy rules.
Some are even refusing to sign the 2013 Registrar Accreditation Agreement until they receive formal assurances that ICANN won’t force them to break their local privacy laws.
The 2013 RAA, which is required if a registrar wants to sell new gTLD domains, requires registrars to keep hold of registrant data for two years after their registrations expire.
Several European authorities have said that this would be illegal under EU privacy directives, and ICANN has agreed to allow registrars in the EU to opt out of the relevant provisions.
Today, Luxembourgish registrar EuroDNS said it asked for a waiver of the data retention clauses on December 2, but has not heard back from ICANN over two months later.
The company had provided ICANN with the written legal opinion of Luxembourg’s Data Protection Agency
In a snippy letter (pdf) to ICANN, EuroDNS CEO Lutz Berneke wrote:

Although we understand that your legal department is solely composed of lawyers educated in US laws, a mere translation of the written guidance supporting our request should confirm our claim and allow ICANN to make its preliminary determination.

EuroDNS has actually signed the 2013 RAA, but says it will not abide by the provisions it has been told would be illegal locally.
Elsewhere in Europe, Ireland’s Blacknight Solutions, said two weeks ago that it had requested its waiver September 17 and had not yet received a pass from ICANN.
“Why is it my problem that ICANN doesn’t understand EU law? Why should our business be impacted negatively due to ICANN’s inability to listen?” CEO Michele Neylon blogged. “[W]hile this entire farce plays out we are unable to offer new top level domains to our clients.”
But while Blacknight is still on the old 2009 RAA, other European registrars seem to have signed the 2013 version some time ago, and are already selling quite a lot of new gTLD domains.
Germany’s United-Domains, for example, appears to be the third-largest new gTLD registrar, if name server records are anything to go by, with the UK’s 123-Reg also in the top ten.
ICANN is currently operating a public comment period on the waiver request of OVH, a French registrar, which ICANN says it is “prepared to grant”.
That comment period is not scheduled to end until February 27, however, so it seems registrars agitated about foot-dragging have a while to wait yet before they get what they want.

Board confirms: ICANN seeks non-US HQ

Kevin Murphy, February 20, 2014, Domain Policy

ICANN’s board of directors has given the clearest indication yet that the organization wants to set up an HQ overseas, further loosening ties with the US government.
The board has formed six new “President’s Globalization Advisory Groups”, made up of half a dozen directors each, one of which has been tasked with advising ICANN on ways to:

Establish complimentary [sic] parallel international structure to enhance ICANN’s global legitimacy. Consider complementary parallel international structure within scope of ICANN’s mandate.

This indicates that ICANN’s reported plan to base itself in Geneva may not be so far-fetched after all, but it also indicates that ICANN currently does not anticipate doing away with its original HQ in Los Angeles.
ICANN already has several offices around the world, but recently there’s been talk of it embedding itself in Switzerland, as an “international organization”, more deeply.
As we’ve previously reported, ICANN may not relocate outside of the US due to its Affirmation of Commitments with the US Department of Commerce, which requires it to remain a US non-profit.
But another of the three panels set up by the board this week will advise ICANN on how to create an “enhanced Affirmation of Commitments.”
Other panels will explore the globalization of the IANA function — currently operated under a procurement contract with Commerce — and the root server system, which is independent operated but heavily US-based.
The ICANN board said in its resolution:

the continued globalization of ICANN must evolve in several ways, including: partnerships in the broader Internet eco-system to strengthen multistakeholder Internet governance frameworks; strengthening ICANN itself, including affirmations of commitments and relationships among the stakeholders; evolving the policy structures to serve and scale to the needs of the global community, and identify opportunities for the future legal structures and IANA globalization.

The plan is for these panels talk to the community at the Singapore meeting next month, before reporting back to the board before ICANN meets for its 50th public meeting in London this coming June.
This week’s move is the latest in a series of decisions made by the ICANN board following the spying revelations of former NSA contractor Edward Snowden and the subsequent consternation they caused in capitals around the world.
Brazil is set to host a meeting to discuss these kinds of internet governance matters with ICANN and its coalition of the willing in Sao Paulo this April.

NCC buys .trust new gTLD from Deutsche Post

Kevin Murphy, February 17, 2014, Domain Registries

NCC Group, owner of .secure applicant Artemis, has bought the rights to .trust from Deutsche Post, which has an uncontested bid for the new gTLD but decided it doesn’t want it.
The price tag of the deal was not disclosed.
NCC, which is also one of the two major data escrow providers supporting new gTLD applicants, said in a statement:

Deutsche Post originally obtained the gTLD through ICANN’s new gTLD allocation process during 2013 but has now chosen not to utilise it.
NCC Group will use .trust as the primary vehicle for launching its Artemis internet security service, which aims to create global internet safety through a secure and trusted environment for selected customers.
The Group remains in the contention stage with its application to ICANN for the .secure gTLD. It believes that there will be a benefit in having a number of complementary named gTLDs, all of which offer the same high levels of internet security.

While Artemis has applied for .secure, it’s facing competition from the much richer Amazon.
Its initial hope that Amazon’s bid would be rejected due to the controversy over “closed generics” seems to have been dashed after Amazon was allowed to change its application.
NCC may be characterizing .trust as an “additional” security TLD, but it’s quite possible it will be its “only” one.
Deutsche Post, which as owner of DHL is the world’s largest courier service, has passed Initial Evaluation on .trust but has not yet signed its ICANN contract.
ICANN’s web site still shows Deutsche Post as the applicant for .trust and it’s not clear from NCC’s statement how the transfer would be handled.

ICANN heading to Geneva after all?

Kevin Murphy, February 14, 2014, Domain Policy

ICANN could wind up being based in Geneva as a result of the current post-Snowden internet governance discussions, according to a report in a Swiss newspaper.
Le Temps, citing several anonymous ICANN sources, reported today that an HQ move from Los Angeles to Geneva was a “very likely scenario”.
That’s as an alternative to allowing its functions to be taken over by the International Telecommunications Union, the paper reported.
It’s not the first time a move to Geneva has been touted.
Back in September, DI rubbished — and ICANN denied — claims that the organization had already put the wheels in motion for a move to Switzerland.
It still appears to be unlikely in the short term, and for the same reason: ICANN’s Affirmation of Commitments with the US Department of Commerce requires it to remain a US non-profit corporation.
But the AoC is now open for discussion again.
Barely a month after the Geneva move was first raised as a possibility, Edward Snowden’s revelations about widespread US spying on internet users had led to the Montevideo Declaration, in which ICANN spoke of the need for further “internationalization” of ICANN.
Later last October, ICANN CEO Fadi Chehade called America’s unique role in ICANN’s oversight “just not sustainable“.
Coming this April, governments, standards bodies, industry and others are set to meet in Sao Paolo, Brazil, for early-stage discussions that may eventually lead to the US cutting ICANN loose.
If ICANN does leave the US, Geneva does seem like the most plausible venue for its headquarters. It already has a small office there and has obtained international non-profit status for its local subsidiary.

EU guns for ICANN’s relationship with US

Kevin Murphy, February 12, 2014, Domain Policy

The European Union has made ICANN’s close relationship with the US one of the targets of a new platform on internet governance.
In a new communication on internet governance (pdf), the European Commission said it will “work with all stakeholders” to:

– identify how to globalise the IANA functions, whilst safeguarding the continued stability and security of the domain-name system;
– establish a clear timeline for the globalisation of ICANN, including its Affirmation of Commitments.

The policy is being characterized as being prompted by former NSA contractor Edward Snowden’s revelations about widespread US spying on internet users.
EC vice president Neelie Kroes issued a press release announcing the policy, saying:

Recent revelations of large-scale surveillance have called into question the stewardship of the US when it comes to Internet Governance. So given the US-centric model of Internet Governance currently in place, it is necessary to broker a smooth transition to a more global model while at the same time protecting the underlying values of open multi-stakeholder governance of the Internet.

Despite this, the document does not contain any allegations that link ICANN to spying, or indeed any justification for the logical leap from Snowden to domain names.
The EU position is not dissimilar to ICANN’s own. Last October CEO Fadi Chehade used Snowden as an excuse to talk about putting ICANN’s relationship with the US back in the spotlight.
As I noted at the time, it all looks very opportunistic.
Internationalizing ICANN is of course a noble objective — and one that has been envisaged since ICANN’s very creation 15 years ago — but what would it look like it practice?
I’d be very surprised if what the Commission has in mind isn’t a scenario in which the Commission always gets what it wants, even if other stakeholders disagree with it.
Right now, the Commission is demanding that ICANN rejects applications for .wine and .vin new gTLDs unless applicants agree to new rights protection mechanisms for geographic indicators such as “Champagne”.
That’s something that ICANN’s Governmental Advisory Committee could not reach consensus on, yet the EU wants ICANN to act based on its unilateral (insofar as the EU could be seen as a single entity) advice.
The new EC policy document makes lots of noise about its support for the “multi-stakeholder process”, but with hints that it might not be the “multi-equal-stakeholder process” championed by Chehade.
For example, it states on the one hand:

Those responsible for an inclusive process must make a reasonable effort to reach out to all parties impacted by a given topic, and offer fair and affordable opportunities to participate and contribute to all key stages of decision making, while avoiding capture of the process by any dominant stakeholder or vested interests.

That sounds fair enough, but the document immediately goes on to state:

the fact that a process is claimed to be multistakeholder does not per se guarantee outcomes that are widely seen to be legitimate

it should be recognised that different stages of decision making processes each have their own requirements and may involve different sets of stakeholders.

Sound multistakeholder processes remain essential for the future governance of the Internet. At the same time, they should not affect the ability of public authorities, deriving their powers and legitimacy from democratic processes, to fulfil their public policy responsibilities where those are compatible with universal human rights. This includes their right to intervene with regulation where required.

With that in mind, what would an “internationalized” IANA look like, if the European Commission gets its way?
Right now, IANA may be contractually tethered to the US Department of Commerce, but in practice Commerce has never refused to delegate a TLD (even when Kroes asked it to delay .xxx).
Compare that to Kroes statement last September that “under no circumstance can we agree having .wine and .vin on the internet, without sufficient safeguards”.
Today’s policy news from the EC looks fine at a high level, but in light of what the EC actually seems to want to achieve in practical terms, it looks more like an attempt at a power grab.

Delegation wait time varies wildly for new gTLDs

Kevin Murphy, February 11, 2014, Domain Registries

New gTLDs get delegated on average 70 days after they sign their ICANN Registry Agreement, but the duration of the wait varies quite a lot by registry, according to DI research.
For the 145 delegated new gTLDs I looked at, the delegation has come 39 to 151 days after contract signing.
After signing an RA, registries have to enter into Pre-Delegation Testing before their strings are handed off to IANA, Verisign and the US Department of Commerce for delegation.
The Applicant Guidebook states that this transition to delegation phase is expected to take approximately two months. On average, ICANN seems to be only slightly missing that target.
The differing wait times could be attributed to any number of reasons. Difficulties during PDT, registry choice, geography and holidays could all see some take longer than others.
Donuts, which is responsible for almost two thirds of the gTLDs I looked at, seems to have refined the process to an art, getting its gTLDs delegated on average 62 days after contract signing.
There are currently 125 gTLDs that have contracts but have not yet been delegated, according to our records.
Here’s the table of delegation wait times, for those interested.
[table id=27 /]