Trump trends in .com, while stoners hit .net

The US elections last month seem to be responsible for almost all of Verisign’s “top trending keywords” for November.
Donald Trump topped the company’s monthly list of fastest-growing strings in both .com and .net registries.
The four words of his idiotic campaign slogan “Make America great again” also appear individually in the .com top ten.
The votes to legalize medical and recreational marijuana use in several US states also seems to have inspired speculation in “pot”, “weed” and “cannabis” names, though more noticeably in .net.
In fact, the only string in the .com list not related to the US polls appears to be “near” (at least, I cannot find a connection).
The Verisign report includes words that achieve a certain level of growth month-to-month, factoring out strings that are commonly registered every month.
Here are the November lists.
[table id=47 /]

Donuts loses $22.5m .web lawsuit as judge rules gTLD applicants cannot sue

The promise not to sue ICANN that all new gTLD applicants made when they applied is legally enforceable, a California judge has ruled.
Judge Percy Anderson on Monday threw out Donuts’ lawsuit against ICANN over the controversial $135 million .web auction, saying the “covenant not to sue bars Plaintiff’s entire action”.
He wrote that he “does not find persuasive” an earlier and contrary ruling in the case of DotConnectAfrica v ICANN, a case that is still ongoing.
Donuts sued ICANN at first to prevent the .web auction going ahead.
The registry, and other .web applicants, were concerned that ultimately successful bidder Nu Dot Co was being covertly bankrolled by Verisign, which turned out to be completely correct.
Donuts argued that ICANN failed to adequately vet NDC to uncover its secret sugar daddy. It wanted $22.5 million from ICANN — roughly what it would have received if the auction had been privately managed, rather than run by ICANN.
But the judge ruled that Donuts’ covenant not to sue is enforceable. Because of that, he made no judgement on the merits of Donuts’ arguments.
Under the relevant law, Donuts had to show that the applicant contract was “unconscionable” both “procedurally” and “substantively”.
Basically, the question for the judge was: was the contract unfairly one-sided?
The judge ruled (pdf) that it was not substantively unconscionable and “only minimally procedurally unconscionable”. In other words: a bit crap, but not illegal.
He put a lot of weight on the fact that the new gTLD program was designed largely by the ICANN community and on Donuts’ business “sophistication”. He wrote:

Without the covenant not to sue, any frustrated applicant could, through the filing of a lawsuit, derail the entire system developed by ICANN to process applications for gTLDs. ICANN and frustrated applicants do not bear this potential harm equally. This alone establishes the reasonableness of the covenant not to sue.

Donuts VP Jon Nevett said in a statement yesterday that the fight over .web is not over:

Donuts disagrees with the Court’s decision that ICANN’s required covenant not to sue, while being unconscionable, was not sufficiently unconscionable to be struck down as a matter of law. It is unfortunate that the auction process for .WEB was mired in a lack of transparency and anti-competitive behavior. ICANN, in its haste to proceed to auction, performed only a slapdash investigation and deprived the applicants of the right to fairly compete for .WEB in accordance with the very procedures ICANN demanded of applicants. Donuts will continue to utilize the tools at its disposal to address this procedural failure.

It looks rather like we could be looking at an Independent Review Process filing, possibly the first to be filed under ICANN’s new post-transition rules.
Donuts and ICANN are already in the Cooperative Engagement Process — the mediation phase that usually precedes an IRP — with regards .web.
Second-placed bidder Afilias is also putting pressure on ICANN to overturn the results of the auction, resulting in a bit of a public bunfight with Verisign.
TL;DR — don’t expect to be able to buy .web domains for quite a while to come.

Verisign and Afilias in open war over $135m .web

Two of the industry’s oldest and biggest gTLD registries escalated their fight over the .web gTLD auction this week, trading blows in print and in public.
Verisign, accused by Afilias of breaking the rules when it committed $130 million to secure .web for itself, has now turned the tables on its rival.
It accuses Afilias of itself breaking the auction rules and of trying to emotionally blackmail ICANN into reversing the auction on spurious political grounds.
The .web auction was won by obscure shell-company applicant Nu Dot Co with a record-setting $135 million bid back in July.
It quickly emerged, as had been suspected for a few weeks beforehand, that Verisign was footing the bill for the NDC bid.
The plan is that NDC will transfer its .web ICANN contract to Verisign after it is awarded, assuming ICANN consents to the transfer.
Afilias has since revealed that it came second in the auction. It now wants ICANN to overturn the result of the auction, awarding .web to Afilias as runner-up instead.
The company argues that NDC broke the new gTLD Applicant Guidebook rules by refusing to disclose that it had become controlled by Verisign.
It’s now trying to frame the .web debate as ICANN’s “first test of accountability” under the new, independent, post-IANA transition regime.
Afilias director Jonathan Robinson posted on CircleID:

If ICANN permits the auction result to stand, it may not only invite further flouting of its rules, it will grant the new TLD with the highest potential to the only entity with a dominant market position. This would diminish competition and consumer choice and directly contradict ICANN’s values and Bylaws.
…
Given the controversy over ICANN’s independence, all eyes will be on the ICANN board to see if it is focused on doing the right thing. It’s time for the ICANN board to show resolve and to demonstrate that it is a strong, independent body acting according to the letter and spirit of its own AGB and bylaws and, perhaps most importantly of all, to actively demonstrate its commitment to act independently and in the global public interest.

Speaking at the first of ICANN’s two public forum sessions at ICANN 57 in Hyderabad, India this week, Robinson echoed that call, telling the ICANN board:

You are a credible, independent-minded, and respected board who recognized the enhanced scrutiny that goes with the post-transition environment. Indeed, this may well be the first test of your resolve in this new environment. You have the opportunity to deal with the situation by firmly applying your own rules and your own ICANN bylaw-enshrined core value to introduce and promote competition in domain names. We strongly urge you to do so.

Then, after a few months of relative quiet on the subject, Verisign and NDC this week came out swinging.
First, in a joint blog post, the companies rubbished Afilias’ attempt to bring the IANA transition into the debate. They wrote:

Afilias does a great disservice to ICANN and the entire Internet community by attempting to make this issue a referendum on ICANN by entitling its post “ICANN’s First Test of Accountability.” Afilias frames its test for ICANN’s new role as an “independent manager of the Internet’s addressing system,” by asserting that ICANN can only pass this test if it disqualifies NDC and bars Verisign from acquiring rights to the .web new gTLD. In this case, Afilias’ position is based on nothing more than deflection, smoke and cynical self-interest.

Speaking at the public forum in Hyderabad on Wednesday, Verisign senior VP Pat Kane said:

This is not a test for the board. This issue is not a test for the newly empowered community. It is a test of our ability to utilize the processes and the tools that we’ve developed over the past 20 years for dispute resolution.

Verisign instead claims that Afilias’ real motivation could be to force .web to a private auction, where it can be assured an eight-figure payday for losing.
NDC/Verisign won .web at a so-called “last resort” auction, overseen by ICANN, in which the funds raised go into a pool to be used for some yet-to-be-determined public benefit cause.
That robbed rival applicants, including Afilias, of the equal share of the proceeds they would have received had the contention set been settled via the usual private auction process.
But Verisign/NDC, in their post, claim Afilias wants to force .web back to private auction.

Afilias’ allegations of Applicant Guidebook violations by NDC are nothing more than a pretext to conduct a “private” instead of a “public” auction, or to eliminate a competitor for the .web new gTLD and capture it for less than the market price.

Verisign says that NDC was under no obligation to notify ICANN of a change of ownership or control because no change of ownership or control has occurred.
It says the two companies have an “arms-length contract” which saw Verisign pay for the auction and NDC commit to ask ICANN to transfer its .web Registry Agreement to Verisign.
It’s not unlike the deal Donuts had with Rightside, covering over a hundred gTLD applications, Verisign says.

The contract between NDC and Verisign did not assign to Verisign any rights in NDC’s application, nor did Verisign take any ownership or management interest in NDC (let alone control of it). NDC has always been and always will be the owner of its application

Not content with defending itself from allegations of wrongdoing, Verisign/NDC goes on to claim that it is instead Afilias that broke ICANN rules and therefore should have disqualified from the auction.
They allege that Afilias offered NDC a guarantee of a cash payout if it chose to go to private auction instead, and that it attempted to coerce NDC to go to private auction on July 22, which was during a “blackout period” during which bidders were forbidden from discussing bidding strategies.
During the public forum sessions at ICANN 57, ICANN directors refused to comment on statements from either side of the debate.
That’s likely because it’s a matter currently before the courts.
Fellow .web loser Donuts has already sued ICANN in California, claiming the organization failed to adequately investigate rumors that Verisign had taken over NDC.
Donuts failed to secure a restraining order preventing the .web auction from happening, but the lawsuit continues. Most recently, ICANN filed a motion attempting to have the case thrown out.
In my opinion, arguments being spouted by Verisign and Afilias both stretch credulity.
Afilias has yet to present any smoking gun showing Verisign or NDC broke the rules. Likewise, Verisign’s claim that Afilias wants to enrich itself by losing a private auction appear to be unsupported by any evidence.

Thick Whois coming to .com next year, price rise to follow?

Verisign could be running a “thick” Whois database for .com, .net and .jobs by mid-2017, under a new ICANN proposal.
A timetable published this week would see the final three hold-out gTLDs fully move over to the standard thick Whois model by February 2019, with the system live by next August.
Some people believe that Verisign might use the move as an excuse to increase .com prices.
Thick Whois is where the registry stores the full Whois record, containing all registrant contact data, for every domain in their TLD.
The three Verisign TLDs currently have “thin” Whois databases, which only store information about domain creation dates, the sponsoring registrar and name servers.
The model dates back to when the registry and registrar businesses of Verisign’s predecessor, Network Solutions, were broken up at the end of the last century.
But it’s been ICANN consensus policy for about three years for Verisign to eventually switch to a thick model.
Finally, ICANN has published for public comment its anticipated schedule (pdf) for this to happen.
Under the proposal, Verisign would have to start offering registrars the ability to put domains in its thick Whois by August 1 2017, both live via EPP and in bulk.
It would not become obligatory for registrars to submit thick Whois for all newly registered domains until May 1, 2018.
They’d have until February 1, 2019 to bulk-migrate all existing Whois records over to the new system.
Thick Whois in .com has been controversial for a number of reasons.
Some registrars have expressed dissatisfaction with the idea of migrating part of their customer relationship to Verisign. Others have had concerns that local data protection laws may prevent them moving data in bulk overseas.
The new proposal includes a carve-out that would let registrars request an exemption from the requirements if they can show it would conflict with local laws, which holds the potential to make a mockery out of the entire endeavor.
Some observers also believe that Verisign may use the expense of building and operating the new Whois system as an excuse to trigger talks with ICANN about increasing the price of .com from its current, frozen level.
Under its .com contract, Verisign can ICANN ask for a fee increase “due to the imposition of any new Consensus Policy”, which is exactly what the move to thick Whois is.
Whether it would choose to exercise this right is another question — .com is a staggeringly profitable cash-printing machine and this Whois is not likely to be that expensive, relatively speaking.
The proposed implementation timetable is open for public comment until December 15.

Root hits 1,500 live TLDs as US oversight ends

The DNS root saw its 1,500th concurrent live TLD come into existence on Friday, just hours before the US relinquished its oversight powers.
Amazon received its delegation for .通販 (.xn--gk3at1e, Japanese for “online shopping”) and satellite TV company Hughes got .dvr, meaning “digital video recorder”.
That took the number of TLDs in the root to exactly 1,500, which is where it still stands today.
Both went live September 30, which was the final day of ICANN’s IANA contract with the US National Telecommunications and Information Administration, which expired that night.
An ICANN spokesperson confirmed that the two new gTLDs “were the last ones requiring NTIA’s approval.”
From now on, the small clerical role NTIA had when ICANN wanted to make changes to the root is no more.
The fact that it hit a nice round number the same day as ICANN oversight switched to a community-led approach is probably just a coincidence.
Amazon’s .通販 was almost banned for being too confusingly similar to “.shop”, but that ludicrous decision was later overturned.
Hughes’ .dvr was originally intended as a single-registrant “closed generic”, but is now expected to operate as a restricted but multi-registrant space.

Could ICANN reject Verisign’s $135m .web bid?

ICANN is looking into demands for it to throw out Verisign’s covert $135 million winning bid for the highly prized .web gTLD.
ICANN last week told the judge hearing Donuts’ .web-related lawsuit that it is “currently in the process of investigating certain of the issues raised” by Donuts through its “internal accountability mechanisms”.
Donuts is suing for $22.5 million, claiming ICANN should have forced Nu Dot Co to disclose that its .web bid was being secretly bankrolled by Verisign and alleging that the .com heavyweight used NDC as cover to avoid regulatory scrutiny.
ICANN’s latest filing (pdf), made jointly with Donuts, asked for an extension to October 26 of ICANN’s deadline to file a response to Donuts’ complaint.
It was granted, the second time the deadline has been extended, but the judge warned it was also the final time.
The referenced “internal accountability mechanism” would seem to mean the Cooperative Engagement Process — a low-formality bilateral negotiation — that Donuts and fellow .web bidder Radix initiated against ICANN August 2.
The filing states that the “resolution of certain issues in controversy may be aided by allowing [ICANN] to complete its investigation of [Donuts’] allegations prior to the filing of its responsive pleading.”
In other words, Donuts is either hopeful that ICANN may be able to resolve some of its complaints in the next month, or it’s not particularly impatient about the case progressing.
Meanwhile, fellow .web applicant Afilias has demanded for the second time that ICANN hand over .web to it, as the second-highest bidder, throwing out the NDC/Verisign application.
In a September 9 letter, published last night, Afilias told ICANN to “disqualify and reject” NDC’s application, alleging at least three breaches of ICANN rules.
Afilias says that by refusing to disclose Verisign’s support for its bid, NDC broke the rules and should have its application thrown out.
The company also confirmed on the public record for what I believe is the first time that it was the second-highest bidder in the July 27 auction.
Afilias would pay somewhere between $57.5 million and $71.9 million for the gTLD, depending on what the high bid of the third-placed applicant was.
In its new letter, Afilias says NDC broke the rule from the Applicant Guidebook that does not allow applicants to “resell, assign or transfer any of applicant’s rights or obligations in connection with the application”.
It also says that NDC was obliged by the AGB to notify ICANN of “changes in financial position and changes in ownership or control”, which it did not.
It finally says that Verisign used NDC as a front during the auction, in violation of auction rules.
“In these circumstances, we submit that ICANN should disqualify NDC’s bid and offer to accept the application of Afilias, which placed the second highest exit bid,” Afilias general counsel Scott Hemphill wrote (pdf).
Hemphill told ICANN to defer from signing a Registry Agreement with NDC or Verisign, strongly implying that Afilias intends to invoke ICANN accountability mechanisms (presumably meaning the Request for Reconsideration process and/or Independent Review Process).
While Afilias and Donuts are both taking issue with the secretive nature of Verisign’s acquisition of .web, they’re not necessarily fighting the same corner.
Donuts is looking for $22.5 million because that’s roughly what it would have received if the .web contention set had been resolved via private auction and $135 million had been the winning bid.
But Afilias wants the ICANN auction outcome to stand, albeit with NDC’s top bid rejected. That would mean Donuts, Radix, and the other applicants would still receive nothing.
There’s also the question of other new gTLD applications that have prevailed at auction and been immediately transferred to third-party non-applicants.
The most notable example of this was .blog, which was won by shell company Primer Nivel with secretive backing from WordPress maker Automattic.
Donuts itself regularly wins gTLD auctions and immediately transfers its contracts to Rightside under a pre-existing agreement.
In both of those cases, the reassignment deals predated, but were not disclosed in, the respective applications.
There’s the recipe here for a messy, protracted bun fight over .web, which should come as no surprise to anyone.

Verisign data shows new gTLDs drive almost three quarters of Q2 growth

New gTLDs were responsible for the large majority of domain name industry volume growth in the second quarter, but you’d never know it reading Verisign’s latest Domain Name Industry Brief.
The domain universe increased to 334.6 million names at the end of June, according to the latest DNIB, which was published (pdf) last week.
That’s a 8.2 million increase on the 326.4 million it reported in its Q1 DNIB report (pdf).
Verisign reports the increase as 7.9 million, possibly due to new data that emerged after the Q1 report was published.
Whether it was 7.9 million or 8.2 million, most of the growth was due to new gTLDs.
In the DNIB, data on new gTLDs is always presented on page three of the three-page report in such a way to make apples-to-apples comparisons with .com and ccTLDs not straightforward.
While the reports highlight the growth of ccTLDs and Verisign’s own .com and .net registries in absolute and percentage terms, they do not do so for new gTLDs.
(They’ve also been calling ccTLDs “geographic gTLDs” for years and nobody seems to have noticed.)
But comparing Q1 and Q2 DNIB reports shows that new gTLDs contributed 5.9 million of the 8.2/7.9 million quarterly increase, in other words just shy of 72% of the industry’s total volume growth.
That’s the biggest contribution new gTLDs have made to growth in any quarter to date.
The growth can be attributed to .xyz’s penny deals in June, which saw domainers acquire millions of names for essentially nothing.
Meanwhile, .com and .net combined contributed just 700,000 domains to growth and .net actually shrunk by 100,000 names, its first dip since Q1 2015.
The ccTLD market data presented in the DNIBs is probably not entirely reliable. Verisign is still using the December 2014 number for free ccTLD .tk, which I think is about six million names lower than its current level.

Correction: what NTIA said about .com pricing

The US government has not confirmed that it expects to keep Verisign’s .com registry fee capped at the current level until at least 2024, despite what DI reported on Monday.
At this URL we published an article reporting that the US government had confirmed that it was going to keep .com prices frozen at $7.85 for the next eight years.
That was based on a misreading of a letter from the Department of Commerce to Senator Ted Cruz and others, which merely explained how the price cap could be maintained without expressing a commitment to do so.
The letter actually said very little, and nothing of news value, so I thought it best to simply delete the original piece and replace it with this correction.
I regret the error.
Thanks to those readers who got in touch to point out the mistake.

Industry lays into Verisign over .com deal renewal

Some of Verisign’s chickens have evidently come home to roost.
A number of companies that the registry giant has pissed off over the last couple of years have slammed the proposed renewal of its .com contract with ICANN.
Rivals including XYZ.com (sued over its .xyz advertising) and Donuts (out-maneuvered on .web) are among those to have filed comments opposing the proposed new Registry Agreement.
They’re joined by business and intellectual property interests, concerned that Verisign is being allowed to carry on without implementing any of the IP-related obligations of other gTLDs, and a dozens of domainers, spurred into action by a newsletter.
Even a child protection advocacy group has weighed in, accusing Verisign of not doing enough to prevent child abuse material being distributed.
ICANN announced last month that it plans to renew the .com contract, which is not due to expire for another two years, until 2024, to bring its term in line with Verisign’s contracts related to root zone management.
There are barely any changes in the proposed new RA — no new rights protection mechanisms, no changes to how pricing is governed, and no new anti-abuse provisions.
The ensuing public comment period, which closed on Friday, has attracted slightly more comments than your typical ICANN comment period.
That’s largely due to outrage from readers of the Domaining.com newsletter, who were urged to send comments in an article headlined “BREAKING: Verisign doubles .COM price overnight!”
That headline, for avoidance of doubt, is not accurate. I think the author was trying to confer the idea that the headline could, in his opinion, be accurate in future.
Still, it prompted a few dozen domainers to submit brief comments demanding “No .com price increases!!!”
The existing RA, which would be renewed, says this about price:

The Maximum Price for Registry Services subject to this Section 7.3 shall be as follows:
(i) from the Effective Date through 30 November 2018, US $7.85;
(ii) Registry Operator shall be entitled to increase the Maximum Price during the term of the Agreement due to the imposition of any new Consensus Policy or documented extraordinary expense resulting from an attack or threat of attack on the Security or Stability of the DNS, not to exceed the smaller of the preceding year’s Maximum Price or the highest price charged during the preceding year, multiplied by 1.07.

The proposed amendment (pdf) that would extend the contract through 2024 does not directly address price.
It does, however, contain this paragraph:

Future Amendments. The parties shall cooperate and negotiate in good faith to amend the terms of the Agreement (a) by the second anniversary of the Effective Date, to preserve and enhance the security and stability of the Internet or the TLD, and (b) as may be necessary for consistency with changes to, or the termination or expiration of, the Cooperative Agreement between Registry Operator and the Department of Commerce.

The Cooperative Agreement is the second contract in the three-way relationship between Verisign, ICANN and the US Department of Commerce that allows Verisign to run not only .com but also the DNS root zone.
It’s important because Commerce exercised its powers under the agreement in 2012 to freeze .com prices at $7.85 a year until November 2018, unless Verisign can show it no longer has “market power”, a legal term that plays into monopoly laws.
So what the proposed .com amendments mean is that, if the Cooperative Agreement changes in 2018, ICANN and Verisign are obligated to discuss amending the .com contract at that time to take account of the new terms.
If, for example, Commerce extends the price freeze, Verisign and ICANN are pretty much duty bound to write that extension into the RA too.
There’s no credible danger of prices going up before 2018, in other words, and whether they go up after that will be primarily a matter for the US administration.
The US could decide that Verisign no longer has market power then and drop the price freeze, but would be an indication of a policy change rather than a reflection of reality.
The Internet Commerce Association, which represents high-volume domainers, does not appear particularly concerned about prices going up any time soon.
It said in its comments to ICANN that it believes the new RA “will have no effect whatsoever upon the current .Com wholesale price freeze of $7.85 imposed on Verisign”.
XYZ.com, in its comments, attacked not potential future price increases, but the current price of $7.85, which it characterized as extortionate.
If .com were put out to competitive tender, XYZ would be prepared to reduce the price to $1 per name per year, CEO Daniel Negari wrote, saving .com owners over $850 million a year — more than the GDP of Rwanda.

ICANN should not passively go along with Verisign’s selfish goal of extending its unfair monopoly over the internet’s most popular top-level domain name.

Others in the industry chose to express that the proposed contract does not even attempt to normalize the rules governing .com with the rules almost all other gTLDs must abide by.
Donuts, in its comment, said that the more laissez-faire .com regime actually harms competition, writing:

It is well known that new gTLDs and now many other legacy gTLDs are heavily vested with abuse protections that .COM is not. Thus, smaller, less resource-rich competitors must manage gTLDs laden (appropriately) with additional responsibilities, while Verisign is able to operate its domains unburdened from these safeguards. This incongruence is a precise demonstration of disparate treatment, and one that actually hinders effective competition and ultimately harms consumers.

It points to numerous statistics showing that .com is by far the most-abused TLD in terms of spam, phishing, malware and cybersquatting.
The Business Constituency and Intellectual Property Constituency had similar views about standardizing rules on abuse and such. The IPC comment says:

The continued prevalence of abusive registrations in the world’s largest TLD registry is an ongoing challenge. The terms of the .com registry agreement should reflect that reality, by incorporating the most up-to-date features that will aid in the detection, prevention and remediation of abuses.

The European NGO Alliance for Child Safety Online submitted a comment with a more narrow focus — child abuse material and pornography in general.
Enasco said that 41% of sites containing child abuse material use .com domains and that Verisign should at least have the same regulatory regime as 2012-round gTLDs. It added:

Verisign’s egregious disinterest in or indolence towards tackling these problems hitherto hardly warrants them being rewarded by being allowed to continue the same lamentable
regime.

I couldn’t find any comments that were in unqualified support of the .com contract renewal, but the lack of any comments from large sections of the ICANN community may indicate widespread indifference.
The full collection of comments can be found here.

Donuts rolls the dice with $22.5 million .web lawsuit

Donuts is demanding ICANN pay up the $22.5 million it reckons it is owed from the auction of the .web gTLD, which sold late last month for $135 million.
The company yesterday amended its existing California lawsuit against ICANN to allege that Verisign tried to avoid regulatory scrutiny by secretly bankrolling successful bidder Nu Dot Co.
The updated complaint (pdf) reads:

VeriSign’s apparent acquisition of NDC’s application rights was an attempt to avoid allegations of anti-competitive conduct and antitrust violations in applying to operate the .WEB gTLD, which is widely viewed by industry analysts as the strongest competitor to the .COM and .NET gTLDs.

Donuts wants a minimum of $22.5 million, which is roughly what each of the six losing .web applicants would have received if the contention set had been resolved via private auction.
(I previously reported that number as $18.5 million, because I accidentally counted .webs applicant Vistaprint as losing .webs applicant, when in fact it won .webs, paying $1.)
The company’s claims are still based around the allegation that ICANN breached its duties by failing to root out Verisign as the puppet-master.
The complaint alleges breach of contract, negligence, unfair competition and other claims. It says:

ICANN allowed a third party to make an eleventh-hour end run around the application process to the detriment of Plaintiff, the other legitimate applicants for the .WEB gTLD and the Internet community at large.
…
ICANN intentionally failed to abide by its obligations to conduct a full and open investigation into NDC’s admission because it was in ICANN’s interest that the .WEB contention set be resolved by way of an ICANN auction.

The irony here is that Ruby Glen LLC, the Donuts company that applied for .web, is subject to an arrangement not dissimilar to NDC’s with Verisign.
Ruby Glen is owned by Covered TLD LLC, in turn a wholly-owned Donuts subsidiary.
It’s well-known that fellow portfolio registry Rightside has rights to acquire Covered TLD’s over 100 applied-for strings, but this is not disclosed in its .web application.
ICANN will no doubt make use of this fact when it files its answer to the complaint.
Verisign itself has not been added as a defendant, but much of the new text in the complaint focuses on its now-confirmed involvement with NDC. The suit reads:

Had VeriSign’s apparent acquisition of NDC’s application rights been fully disclosed to ICANN by NDC… the relationship would have also triggered heightened scrutiny of VeriSign’s Registry Agreements with ICANN for .COM and .NET, as well as its Cooperative Agreement with the Department of Commerce.

The fact that Verisign is allowed to collect over half a billion dollars cash every year as a result of its state-endorsed monopoly is a longstanding cause of embarrassment for the Department of Commerce.
It has taken an interest in regulating Verisign’s .com contract in the past — it’s the only reason Verisign has not been able to raise .com prices in the last few years.
But the US government is not a party to the .web contract (unlike .com, where it has a special relationship with Verisign) and is not involved in the new gTLD program’s management or policies.
The complaint also makes reference to a completely unrelated Independent Review Process declaration from last week, which slammed ICANN for its lack of accountability and transparency.
Donuts faces the additional problem that, like all new gTLD applicants, it signed a covenant not to sue ICANN when it applied for its new gTLDs.
A judge in the DotConnectAfrica v ICANN can has allowed that lawsuit to proceed, regardless, but it may prove a stumbling block for Donuts.
It all looks a bit flimsy to me, but I’ve learned not to second-guess American judges so we’ll just have to see how it plays out.