Home / Blogs

And the Wait Continues for .Corp, .Home and .Mail Applicants

Protect your privacy:  Get NordVPN  [ Deal: 73% off 2-year plans + 3 extra months ]
10 facts about NordVPN that aren't commonly known
  • Meshnet Feature for Personal Encrypted Networks: NordVPN offers a unique feature called Meshnet, which allows users to connect their devices directly and securely over the internet. This means you can create your own private, encrypted network for activities like gaming, file sharing, or remote access to your home devices from anywhere in the world.
  • RAM-Only Servers for Enhanced Security: Unlike many VPN providers, NordVPN uses RAM-only (diskless) servers. Since these servers run entirely on volatile memory, all data is wiped with every reboot. This ensures that no user data is stored long-term, significantly reducing the risk of data breaches and enhancing overall security.
  • Servers in a Former Military Bunker: Some of NordVPN's servers are housed in a former military bunker located deep underground. This unique location provides an extra layer of physical security against natural disasters and unauthorized access, ensuring that the servers are protected in all circumstances.
  • NordLynx Protocol with Double NAT Technology: NordVPN developed its own VPN protocol called NordLynx, built around the ultra-fast WireGuard protocol. What sets NordLynx apart is its implementation of a double Network Address Translation (NAT) system, which enhances user privacy without sacrificing speed. This innovative approach solves the potential privacy issues inherent in the standard WireGuard protocol.
  • Dark Web Monitor Feature: NordVPN includes a feature known as Dark Web Monitor. This tool actively scans dark web sites and forums for credentials associated with your email address. If it detects that your information has been compromised or appears in any data breaches, it promptly alerts you so you can take necessary actions to protect your accounts.

On 6 March 2017, ICANN’s GDD finally responded to an applicant letter written on 14 August 2016 to the ICANN Board. This was not a response from the ICANN Board to the letter from 2016 but a response from ICANN staff. The content of this letter can best be described as a Null Response. It reminded the applicants that the Board had put the names on hold and was still thinking about what to do. After 6 months of silence from the ICANN Board, the GDD staff reminds the applicants that they have not yet gotten a response and that the “the topic of name collision continues to be considered by the ICANN Board,” and tells then where they can go to continue waiting for a response. This sad episode reminds one of some of the worst stories one hears about bureaucratic dithering. The applicants continue waiting for a timely response from ICANN. 24 applicants with over $4 million in applicant fees that sit in ICANN’s coffers, continue to sit in ICANN’s waiting rooms.

Five years after the gTLD round of 2012, applicants still wait for a response without hope. ICANN is now in the midst of discussing subsequent applications for new gTLDs. In this process, the ICANN Board asks the community when they will be ready to open applications for more gTLDs, yet cannot find time to get moving on solving this problem from previous rounds. I have discussed this problem in several blog posts in the past and find it amazing that after all this time the issue remains untouched by the ICANN Board.

The next step in solving this problem is actually rather easy. The applicants remain ready to work with ICANN on finding ways to solve this situation. There have been previous recommendations that a group of experts, from among the applicants, from ICANN staff, and from the technical community work together to discover a solution. Various mitigation strategies and technical solutions remain possible but unexplored and are begging to be discussed and worked on. It is unbelievable that 5 years after the submission, ICANN has not put together a task force to resolve this embarrassing lack of progress. Does ICANN hope the applicants tuck their tails behind them and walk away without a resolution?

The 3 domain names are often referred to by some in the technical community as toxic names because of the complexities that come from having been usurped for unapproved and dangerous private usage. The fact that these names are used improperly remains a risk for the Internet and constitutes a possible vector for attack. These so-called toxic domain names should be treated as any toxic threat to the environment, with a cleanup. The best way to cleanup the names remains to mitigate the risks, educate the public, and put the names into delegated service. The domain names .corp, .home, and .mail should be designated as an Internet ‘super site’ and plans should be immediately developed for cleaning up the situation.

Some claim that the names should just be put on a toxic reserved list and abandoned. Not only would this perpetuate the possible risks they pose to the Internet, it would encourage others to just grab any name they want and to use them until they become toxic. While ICANN takes its time to create deliberate well-formed programs for safe domain name delegation, it also continues its implicit invitation to just grab any name someone wants, knowing that there will be no response other than to allow the miscreants to continue using undelegated names with impunity. ICANN allows families and businesses to continue using names like .corp, .home, and .mail without any attempt to inform them of the problem or to protect them from the security risks the use of such undelegated names may cause.

It is hard to understand how ICANN could open up further applications for gTLDs while these applicants continue to dangle in the wind and while the Internet remains at risk from misuse of these Internet global resources. How could ICANN possibly collect more money from applicants when so many are left unresolved? How can an organization whose mission includes the stability and security of the Internet allow such a risk to continue unmitigated?

As ICANN 58 begins, one wonders how long this intolerable situation can be allowed to continue without well considered redress.

By Avri Doria, Researcher

Filed Under

Comments

Get rid of .HOME and .MAIL Jean Guillon  –  Mar 13, 2017 10:02 AM

The .HOMES and .EMAIL new gTLDs are live already.

Allowing .HOME and .MAIL domain names is going to create more confusion in an already very confusing Internet see here too: http://www.jovenet.consulting/reports/singularandplural.

The ICANN board has the final word on this: WE DON’T NEED domain names ending in “.home” nor “.mail”.

Captain Obvious Says: The Famous Brett Watson  –  Mar 13, 2017 2:25 PM

We didn't NEED any of the new domains.

I did Jean Guillon  –  Mar 13, 2017 4:20 PM

Actually, I did. I find much more precision in new gTLDs rather than “.com”
The problem that I start to see is the increasing confusion due to similar versions of Top-Level Domains. I wrote a complete list and this is tomorrow’s issue for any person looking for a domain name.

Need/Want The Famous Brett Watson  –  Mar 14, 2017 8:48 AM

That's not "need", Jean, that's "want". Other people want other things. What makes your particular wants special?

Correct Jean Guillon  –  Mar 14, 2017 9:02 AM

But we don't need them neither since we already have ".email" (...)

I don't see why marking those domains Todd Knarr  –  Mar 13, 2017 4:28 PM

I don’t see why marking those domains as “toxic, reserved forever” isn’t a valid response. Dumping the contaminated material into a shipping container and tossing it down a black hole’s an efficient way of cleaning up the mess. Those domains became commonly-used for invalid purposes because at the time there was a general assumption that there were the country-code domains (2 letters) and the handful of generic TLDs (3 letters), and any further expansion was going to occur under the ccTLDs so grabbing 4-letter domains for private use was safe. At this point that assumption’s no longer generally held so it’s unlikely any domains are going to be grabbed for private use like that unless they’re specifically reserved for it.

Can you explicate a good reason not to simply file .corp, .mail and .home as “permanently reserved for private use”? So far your only reason seems to be “These companies want to make money off them.”, and that doesn’t seem to me to be nearly good enough to offset the mess it’ll create for everybody else.

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

VINTON CERF
Co-designer of the TCP/IP Protocols & the Architecture of the Internet

Related

Topics

Threat Intelligence

Sponsored byWhoisXML API

Domain Names

Sponsored byVerisign

Cybersecurity

Sponsored byVerisign

New TLDs

Sponsored byRadix

IPv4 Markets

Sponsored byIPv4.Global

Brand Protection

Sponsored byCSC

DNS

Sponsored byDNIB.com