Domain Names

Domain Related Crime: The 4 Steps of Effective Investigations

There is no rest for the wicked. If you think that 2018 was the climax of cybercrime, wait until you see what happens in the next few years as cybercriminals are constantly learning new ways to strike. Take for instance domain-related attacks now coming in a variety of forms. There's domain hijacking which involves gaining of access to domains and making changes without owners' permission. You have typosquatting where phishing is often utilized to steal valuable information. more

Start of Reiwa Period in Japan Affects Domain Name Industry

There was some buzz about the start of the "Reiwa Era" (令和時代) in Japan. New companies are using Reiwa as part of their names already, and it has implications for the Internet Domain Name industry as well. Here's what we found out... In Japan, the reign of each emperor has its own corresponding era. The current era, Heisei, began when Emperor Akihito ascended the throne on January 8, 1989. With Emperor Akihito set to abdicate the throne to his eldest son Naruhito on April 30, 2019, a new era is about to begin. more

Investigating Domain Name Crime: Challenges and Essential Techniques

Who would think that so much could go wrong with something as seemingly innocent as a domain name? As cybercrime continues to evolve, causing devastating reputational and financial losses to businesses and organizations, web addresses are used as a weapon -- and it's not always easy to notice their many faces. In this article, let's take a look at the domain name crime landscape, discuss the current challenges investigators and legitimate registrants face, and talk about some useful techniques. more

March 2019: Which New gTLDs Are Becoming Mainstream?

I went through the exciting exercise of checking all March 2019 new gTLD reports to extract which domain name extension shows an interesting learning curve (or something strange happening). This is what I noticed for the 20 categories of TLDs... In the list of new gTLDs for Politics, the first new gTLD to have been delegated from the ICANN new gTLD program - .GURU (63,000) - lost 2,000 registrations since January 2018 (not 2019). more

US Government to ICANN - Move Quickly

David Redl has written to ICANN in relation to the ongoing work around whois and GDPR. The letter, which was shared with the GNSO Council last night, is a mixed bag. On the one hand, it offers the carrot in relation to what's been done so far, but then there's the not so veiled threat, which isn't a revelation by any means, of "domestic legislation." more

Credibility and Disbelievablity as it Affects Outcomes in UDRP Proceedings

"Credibility" in English comes through Middle French from a Latin word signifying trustworthiness and reliability in business and personal transactions (allegations, contentions, statements, promises, etc.). Where the goal is persuasion, exaggerating, embellishing, withholding, and falsifying evidence or accusing the adverse party of some heinous crime is not a winning strategy for proving claims or defenses. more

Why More Registries Should Be Talking About DNS Security

I've been incredibly lucky in my time at Neustar to lead both the exceptional Registry and Security teams. While these divisions handle their own unique product and service offerings, it's clear that they have some obvious crossovers in their risks, opportunities and challenges. Having been closely involved in the strategy of both these teams, it strikes me that there is more we as Registry Operators and service providers can and should be doing to align the world of cybersecurity with that of domain names. more

Will PDP 3.0 Save the Multi-Stakeholder Model?

For the past several months, there has been much discussion within the ICANN community about something called "PDP 3.0". This has been raised in a number of different contexts including as part of ICANN's new governance review. But what exactly is PDP 3.0? And, will it save ICANN's multi-stakeholder governance model? I believe that if we are to save the multi-stakeholder model then now is the time to address the big issues not just the low hanging fruit on the surface - a new approach to achieving consensus across parties with widely differing views is needed. more

Still No Access to WHOIS Data

The ICANN 64 meeting in Kobe concluded two weeks ago, and we are no closer to accessing WHOIS data critical for law enforcement, cybersecurity threat investigators, intellectual property owners, or other consumer protection advocates who rely on the data to act quickly against online abuse in the domain name system. Instead of a balanced approach to WHOIS that serves the public interest, the ICANN Board is set to approve a new global policy that fails to even fully acknowledge critical... more

The EPDP on Generic Top-Level Domain Registration Data: Phase 1 Down, Phase 2 To Go

The ICANN community recently gathered in Kobe, Japan for its first meeting of the year and it was certainly a busy week for attendees. Much of the meeting centered around the work of the Expedited Policy Development Process (EPDP) to address gTLD registration data. As a member of the EPDP team, we had been hard at work since being formed in August of 2018. Just prior to the Kobe meeting, we published the phase 1 Final Report. more

EURid Pauses Brexit Plans

When the UK announced its intention to withdraw from the European Union it was clear to some of us that this would cause complications with .eu and possibly other domain name extensions. Over the past year, it's become clear that the European Commission, who mandate the .eu domain name policy, weren't interested in providing a "soft landing" for impacted registrants of .eu domain names. more

ICANN Terminates AlpNames

AlpNames has been sent a notice of termination by ICANN. Unlike many termination notices that specify a future date, the one they were sent has an immediate effect. As reported in multiple fora over the last few days AlpNames had gone offline, and at time of writing still is. They've also become unresponsive. It's on the basis of this that ICANN decided to terminate their contract straight away. more

Portrait of a Single-Character Domain Name

Let's take some crayons and draw a picture of the current state of affairs regarding single-character domain names (SCDNs), and specifically O.COM. During the public comment period for the current O.COM RSEP, ICANN's own Intellectual Property and Business constituencies recommended implementation of rights protections mechanisms (RPMs) for intellectual property, including Sunrise and Priority Access periods. It is curious that such hard-won protections are being so easily set aside by Verisign and ICANN. more

UDRP Panelists: Getting the Standard Right Where No Response is Filed

Over three-quarters of the more than 55,000 UDRP cases decided since 1999 have been undefended. Requiring adequate evidentiary support of the complainant's allegations in disputes where the respondent has not filed a response, is therefore critical for producing just outcomes under the UDRP. While most UDRP disputes involve clear cybersquats that are indefensible, a significant number involve domain names that are not clearly cybersquats... more

Community New gTLD Applications: The Wrong Choice

Community new gTLD applications were one of the three options offered by version one of ICANN new gTLD applicant guidebook. It was also possible to submit a "generic" or a "geographic application." I dug the ICANN website and found out that, in the end - and according to me only - it was a bad choice to submit such application...
I went through the 52 delegated applications to investigate which ones have lots of domain name registrations and which ones don't. more