AT-LARGE GATEWAY

At-Large Website

ALAC

RALOs

At-Large Regional Policy Engagement Program (ARPEP)

At-Large Governance

At-Large Reports

Policy Comments & Advice

Working Groups

ICANN Meetings

At-Large Summit (ATLAS III)

At-Large Review Implementation Plan Development

ALAC and RALO Elections, Selections, and Appointments

At-Large Priority Activities - 2021

Public Comment CloseStatement
Name 

Status

Assignee(s)

Call for
Comments Open		Call for
Comments
Close 		Vote OpenVote CloseDate of SubmissionStaff Contact and EmailStatement Number


15 January 2018


Competition, Consumer Trust, and Consumer Choice Review Team – New Sections to Draft Report of Recommendations


ADOPTED

14Y, 0N, 0A


Holly Raiche

ABDULKARIM AYOPO OLOYEDE

Sarah Kiden


11 December 2017


03 January 2018


08 January 2018


12 January 2018


15 January 2018


Negar Farzinnia
negar.farzinnia@icann.org


AL-ALAC-ST-0118-05-00-EN

Hide the information below, please click here 


Brief Overview

Purpose:

The purpose of this second call for input is to gather community input on the new sections that have been added to the draft report. The final report will be published in Q1 2018.

Current Status:

The CCT is now soliciting your input on the CCT Review Team's new findings and recommendations, pertaining to DNS abuse, costs to trademark holders, parking and consumer choice related sections.

This Public Comment Proceeding follows the call for input on the draft report [PDF, 4.94 MB] (translations available here) that was published on 17 March 2017.

To facilitate the review and analysis of all comments, we request that commenters clearly indicate to which section(s) of the report, or which numbered recommendations, their comments relate.

Next Steps:

ICANN will prepare a Public Comment summary report for the CCT's review. The CCT will carefully consider these comments as it shapes its final recommendations for Board consideration. The final report will be published in Q1 2018.

Section I: Description and Explanation

The CCT Review Team is seeking input on new sections to its draft report. New sections reflect results from the "Statistical Analysis of DNS Abuse in gTLDs" Report (see here for more information) and address costs to trademark holders, based on a survey conducted by the International Trademark Association (INTA) (see here [PDF, 1.4 MB] for more information). In addition, the CCT is calling for feedback on updates made to its parking and consumer choice sections.

The draft report and translations can be found here for full reference. It includes several recommendations the review team labeled as prerequisites to the opening of the next application period for new gTLDs.

The following topics are covered in the full draft report:

  • New gTLD Program history
  • Competition in the DNS Marketplace
  • Consumer Choice
  • Consumer Trust
  • DNS Abuse
  • Safeguards
  • Public Interest Commitments
  • Right Protection Mechanisms
  • Application and Evaluation
  • Trademarks

Comments will be reviewed and summarized in the report of Public Comments, which will be included as a supplement to the final report.

For ease of reference and to facilitate Review Team deliberations, ICANN requests that commenters clearly indicate the relevant sections of the draft report, or numbered recommendations, within their comments.

Section II: Background

Launched under the Affirmation of Commitments (AoC), the Competition, Consumer Trust and Consumer Choice (CCT) Review Team was formed to assess the New Generic Top-Level Domain (New gTLD) Program in three areas: competition, consumer trust and consumer choice. The review also assesses the effectiveness of safeguards put in place to mitigate issues arising from the introduction of new gTLDs and the Program's application and evaluation process. The review, now contemplated under ICANN Bylaws section 4.6, examines the degree to which the process of implementing the New gTLD Program was successful in producing desired results and achieving the stated objectives. The CCT is analyzing both quantitative and qualitative data to produce recommendations for the ICANN Board to consider and adopt.

Bylaws call for the CCT to indicate whether the recommendation, if accepted by the Board, must be implemented before opening subsequent rounds of new generic top-level domain application periods. The recommendations contained within the draft report identify those that should be prerequisites to future application periods for new gTLDs.

Producing recommendations that are data and fact-driven is a fundamental priority of the review team. The CCT has constructed its report to have findings supported by data received prior to and throughout the review process.

The review team sought to measure the effectiveness of a number of technical safeguards developed for the New gTLD Program in mitigating various forms of DNS abuse. To accomplish this, ICANN commissioned the Statistical Analysis of DNS Abuse in gTLDs (SADAG) [PDF, 2.23 MB] report by researchers from SIDN Labs and Delft University of Technology, both in the Netherlands, to address the CCT Review Team's request for a comprehensive DNS abuse study. The study serves to inform the CCT analysis of potential factors explaining abuse rates in a given gTLD. The study analyzes rates of spam, phishing, and malware distribution in the global gTLD DNS from 2014 to 2016, distinguishing between legacy and new gTLDs.

The CCT, comprised of 15 community representatives and volunteer subject matter experts, divided the evaluation of the New gTLD program into four subteams:

  1. Competition and Consumer Choice: This subteam examined the effects of the entry of new gTLDs on price and non-price competition in the expanded domain name marketplace, as well as whether consumer choice in the marketplace was effectively enhanced with the introduction of new gTLDs.
  2. Consumer Trust and Safeguards: This subteam focused on the extent to which the expansion of new gTLDs has promoted consumer trust and the impact of the safeguards that had been adopted to mitigate any problems that might have arose as a result of the Program.
  3. Application and Evaluation Process: The review team explored issues related to the effectiveness of the application process, with a particular focus on the applicant experience, the paucity of applications from underserved regions, and the objection processes.
  4. To better understand the impact of the Program on rights holders, the CCT worked with INTA, which commissioned a survey of its members. The CCT considered the results of this survey as it made recommendations on rights protection mechanisms that were incorporated into the Program.

Section III: Relevant Resources

New Sections of the Competition, Consumer Trust and Consumer Choice Review Team Draft Report (EN) [PDF, 1.12 MB]

  • AR [PDF, 1.57 MB]
  • ES [PDF, 1.22 MB]
  • FR [PDF, 1.21 MB]
  • RU [PDF, 1.13 MB]
  • ZH [PDF, 1.01 MB]

Listen to the Competition, Consumer Trust and Consumer Choice Review Engagement Session at ICANN60 for more information on their findings and recommendations. See here for details and recordings.

Section IV: Additional Information

Competition, Consumer Trust and Consumer Choice Review Team

Competition, Consumer Trust and Consumer Choice Review Team Draft Report [PDF, 3.91 MB] – March 7, 2017

  • AR [PDF, 2.9 MB]
  • ES [PDF, 2 MB]
  • FR [PDF, 2.1 MB]
  • RU [PDF, 2.7 MB]
  • ZH [PDF, 2.5 MB]

Statistical Analysis of DNS Abuse in gTLDs (SADAG) Final Report [PDF, 2.23 MB]

INTA New gTLD Program Surveys:

INTA New gTLD Impact Study Status Report II [PDF, 75 KB] (May 2017, Updated August 2017)

Section V: Reports

Staff Contact

Brenda Brewer
brenda.brewer@icann.org

FINAL VERSION TO BE SUBMITTED IF RATIFIED

The final version to be submitted, if the draft is ratified, will be placed here by upon completion of the vote. 


 

FINAL DRAFT VERSION TO BE VOTED UPON BY THE ALAC

The final draft version to be voted upon by the ALAC will be placed here before the vote is to begin.


Introduction:  This submission should be read together with the previous ALAC submission (dated 13 December 2016) to the Draft Report on Competition, Consumer Trust and Consumer Choice (CCTR).  In this submission, we will only comment on the new sections that impact on Internet end users. We note our earlier response to the Report:

In conclusion, the outcomes of Assessment are, at best, equivocal. While there has been some expansion in registry numbers and new market entrants, only 15% of the new domains have the characteristics of primary registration. From an end user perspective, most of the resultant new registrations are speculative, defensive, unused or parked – adding little of value to end users. And from an industry, there is no clear evidence of lower prices or more choice. Based on this Assessment, there is little evidence of benefit to end users with the introduction of new gTLDs.

The new sections of the Report add useful information and analysis from the three additional reports (a discussion on parking, a study on costs to brand owners, and a study on DNS abuse). Our comments are on parking and DNS abuse. While there is an interesting discussion and recommendations on Rights Protection Mechanisms, the issues raised and recommendations do not impact significantly on end users.

Parking:  Findings from the parking discussions show that 68% of new gTLD registrations are parked.  As the report notes, there are several ways in which a name would be considered as ‘parked’, only one of which is that the name displays advertisements, offers the domain for sale, or is used as a vector to distribute malware. (CCRT p. 8) The report also notes the significant geographic differences in parking practice;  the parking rates for China  are ‘very high’, whereas in the Latin American/Caribbean area, 78% of the new gTLDs are active. (CCTR p. 10-11).  In any case, this report could not ‘identify any direct relationship between parking and DNS abuse’, but suggested there may be ‘some correlation between parking and malware’. (CCTR p. 12) In its recommendation, the report suggests the high rate of parked domains could have an impact on competition in the domain name landscape, and recommends that further information is collected on parking data.

ALAC Supports Recommendation 3 on the collection of parking data.

DNS Abuse: The DNS study provides very useful information not only about the incidence of abuse, but about the situations when it occurs, with real implications on steps that could be taken to address the issue.  The Report noted that there has been a ‘significant increase’ in phishing attacks in 2016.  As the report then notes, some registration operators do not act until there are complaints – contrasting with others who do check registrant credentials, block domain name strings similar to known phishing targets and scrutinize domain name resellers. (CCTR p. 21-2)

The findings suggest, however, is that abuse is ‘not rampant’ – that five new gTLDs accounted for over 58% of blacklisted gTLD domains. (CCTR p. 24).

Early in the discussion on DNS Abuse, the Report includes the nine steps that can be taken to mitigate DNS abuse. (CCTR p. 18).  However, the report then notes that factors such as registration restrictions, price and registrar specific practices are more likely to affect abuse rates, making low priced domain names with easy registrations attractive attack vectors’. (CCTR p. 23)  As the Report then acknowledged, low cost names may also be appealing for registrants ‘with legitimate interests and the overarching goal of a free and open Internet’.  Therefore, the ‘monetary incentives’ targeted at registry operators may be appropriate to prevent ‘systematic abuse’ by supporting proactive screening and the detection of malfeasance’. (CCTR p. 25)

The Report suggests four recommendations to address DNS Abuse.  These include recommendations for;

  • Recommendation A: negotiations on amendments to the registry agreements to provide incentives for the adoption of  proactive abuse measures
  • Recommendation B: negotiations on amendments to registry agreements to including provisions on preventing the systemic use of specific registrars for technical DNS abuse
  • Recommendation C: Conduct a study – that is made publicly available – on the relationship between specific registry operators,  registrars and DNS abuse
  • Recommendation D: (which was not unanimously supported by the CCT WG) to establish a DNS Abuse Resolution Policy (DADRP) to deal with registry operators and registrars that are identified as having excessive levels of abuse.

The Report also includes Recommendation 5, calling for ICANN to: ‘collect data about and publicize the chain of parties responsible for gTLD domain registration.

This recommendation is included as an ‘individual statement’ not included in the body of the report because there was ‘insufficient time’ for it to be fully discussed by the Review Team.  The explanation for this recommendation is that, at present, ‘there is no consistent mechanism for determining all of the ICANN contracted and non-contracted operators associated with a gTLD domain name registration. Whois records often do not distinguish between registrars and resellers. 

The ALAC supports Recommendations A, B,C,D, and ‘Recommendation 5’ relating to DNS Abuse

 

FIRST DRAFT SUBMITTED

The first draft submitted will be placed here before the call for comments begins.


Introduction:  This submission should be read together with the previous ALAC submission (dated 13 December 2016) to the Draft Report on Competition, Consumer Trust and Consumer Choice (CCTR).  In this submission, we will only comment on the hew sections that impact on Internet end users. We note our earlier response to the Report:

In conclusion, the outcomes of Assessment are, at best, equivocal. While there has been some expansion in registry numbers and new market entrants, only 15% of the new domains have the characteristics of primary registration. From an end user perspective, most of the resultant new registrations are speculative, defensive, unused or parked – adding little of value to end users. And from an industry, there is no clear evidence of lower prices or more choice. Based on this Assessment, there is little evidence of benefit to end users with the introduction of new gTLDs.

The new sections of the Report add useful information and analysis from the three additional reports (a discussion on parking, a study on costs to brand owners, and a study on DNS abuse). Our comments are on parking and DNS abuse. While there is an interesting discussion and recommendations on Rights Protection Mechanisms, the issues raised and recommendations do not impact significantly on end users.

Parking:  Findings from the parking discussions show that 68% of new gTLD registrations are parked.  As the report notes, there are several ways in which a name would be considered as ‘parked’, only one of which is that the name displays advertisements, offers the domain for sale, or used as a vector to distribute malware. (CCRT p. 8) The report also notes the significant geographic differences in parking practice;  the parking rates for China  are ‘very high’, whereas, in the Latin American/Caribbean area, 78% of the new gTLDs are active. (CCTR p. 10-11).  In any case, this report could not ‘identify any direct relationship between parking and DNS abuse’, but suggested there may be ‘some correlation between parking and malware’. (CCTR p. 12) In its recommendation, the report suggests the high rate of parked domains could have an impact on competition in the domain name landscape, and recommends that further information is collected on parking data.

ALAC Supports Recommendation 3 on the collection of parking data.

DNS Abuse: The DNS study provides very useful information not only about the incidence of abuse, but about the situations when it occurs, with real implications on steps that could be taken to address the issue.  The Report noted that there has been a ‘significant increase’ in phishing attacks in 2016.  As the report then noted, some registration operators do not act until there are complaints – contrasting with others who do check registrant credentials, block domain name strings similar to known phishing targets and scrutinize domain name resellers. (CCTR p. 21-2)

The findings suggest, however, is that abuse is ‘not rampant’ – that five new gTLDs accounted for over 58% of blacklisted gTLD domains. (CCTR p. 24).

Early in the discussion on DNS Abuse, the Report includes the nine steps that can be taken to mitigate DNS abuse. (CCTR p. 18).  However, the report then notes that factors such as registration restrictions, price and registrar specific practices are more likely to affect abuse rates, making low priced domain names with easy registrations attractive attack vectors’. (CCTR p. 23)  As the Report then acknowledged, low cost names may also be appealing for registrants ‘with legitimate interests and the overarching goal of a free and open Internet’.  Therefore, the ‘monetary incentives’ may be appropriate to prevent ‘systematic abuse’3by supporting proactive screening and the detection of malfeasance’. (CCTR p. 25)

The Report suggests four recommendations to address DNS Abuse.  These include recommendations for;

  • Recommendation A: negotiations on amendments to the RAA to provide incentives for the adoption of  proactive abuse measures
  • Recommendation B: negotiations on amendments to including provisions on preventing the systemic use of specific registrars for technical DNS abuse
  • Recommendation C: Conduct a study – that is made publicly available – on the relationship between specific registration operators and registrars and DNS abuse
  • Recommendation D: (which was not unanimously supported by the CCT WG) to establish a DNS Abuse Resolution Policy (DADRP) to deal with registry operators and registrars that are identified as having excessive levels of abuse.

The Report also includes Recommendation 5, calling for ICANN to: ‘collect data about and publicize the chain of parties responsible for gTLD domain registration.

This recommendation is included as an ‘individual statement’ not included in the body of the report because there was ‘insufficient time’ for it to be fully discussed by the WG.  The explanation for this recommendation is that, at present, ‘there is no consistent mechanism for determining all of the ICANN contracted and non-contracted operators associated with a gTLD domain name registration. Whois records often do not distinguish between registrars and resellers. 

The ALAC supports Recommendations A, B,C,D, and ‘Recommendation 5’

13 Comments

  1. Carlton Samuels

    This statement seems to me the best response to the additional information in the updated report, cautious optimism. 


    -Carlton

     

    1. Justine Chew

      Hi Carlton,

      I'd like to ask whether – by your comment here – you have changed your mind about disagreeing with Recommendation D, or that despite disagreeing with Recommendation D, you think the ALAC should support the Recommendation which discloses a minority view against the proposal to create DADRP? 

      Thanks,
      Justine

      1. Holly Raiche

        Hi Justine

        My eading of Carlton is that he supports Recommdation D - which is about having a dispute resolution for the issue.  I was well aware - as I'm sure Carlton is - that there was a Minority Report in relation to that recommendation, but I personally support the recommendation.  Im happy to hear from others on the issue.

        1. Justine Chew

          Hi Holly,

          Thanks for your reply but I think I may have been misunderstood. I posed my question to Carlton because he was one of the members of the CCTRT who held the Minority View regarding Recommendation D.

          Cheers,
          Justine

  2. Kaili Kan

    This statement is well written.  Fully agreed.

  3. Olivier Crepin-Leblond

    From Slovene Consumer Association

    On 15/12/2017 13:42, Krisper, Marjan wrote:


    I read your report. It is comprehensive and covers all topics of Competition and Consumer Trust regarding gTlD. Recommendations also cover all problems, so i don't have any additional proposals. The most important are registrars restrictions and enforcement for new gTLD.


    My opinion is that document is too long, almost 150 pages. But this is general problem with all ICANN documents.


    Best regards


    Marjan Krisper
    Slovene Consumer Association



  4. Justine Chew

    Several comments come to mind:-

    Introduction

    • Para 3 "While there is an interesting discussion and recommendations on Rights Protection Mechanisms, the issues raised and recommendations do not impact significantly on end users" – while what is considered "significant" is subjective, I noted with curiosity that the Independent Review of the TMCH services by AG, as referred to by the CCTRT on p.39-40, did suggest that "...trademark holders appeared less concerned about variations of trademark strings and thus felt that an expansion of the matching criteria may in fact bring little benefit to trademark holders. On the contrary, the potential harm towards non trademark-holder domain registrants could be increased. The latter could find themselves deterred from registering trademark string variations that would not be considered trademark infringement."  Noting that perhaps the term "Internet end users" or "end users" used in this ALAC draft comment refer strictly to Internet end users who have no desire to register for a domain name? Noting also that the PDP WG on RPMs are also looking into this issue.

    Parking

    • It was pointed elsewhere that the parking data which the CCTRT looked at was very expansive, even out of context (as in some of the examples that were listed on p.8 of the New Sections Report as behaviours considered as parking should be not be so and ought to be excluded). I wonder if the CCTRT is in a position to highlight to I*Org on the specific nature of "parking data" to be collected as referred to in its Recommendation 3 in the table on p.6 (also as recommendation 5 on p.12 beyond the text under 'Details').  


    Some suggested edits and/or typos to note:-

    • The reference to 'monetary incentives' in the section on DNS Abuse – can we add "targeted at registry operators and/or registrars" after 'monetary incentives'? Also what is "'systematic abuse'3"?
    • Recommendation A in New Sections Report specifically mentions Registry Agreements (ie RA) not Registrar Accreditation Agreement (ie RAA). Also an omission carried by the CCTRT in the New Sections Report – should be "... adoption of proactive anti-abuse measures."
    • Recommendation C – should be registry operators?
    • 1st para, 2nd sentence – new sections
    • 2nd para, end of 3rd sentence – delete "of" from "...adding little of value to end users."
    • References to "WG" should be to "RT" instead perhaps?

    *I confess I am somewhat confused between the reference to Recommendation 3 in the table on p.6 and Recommendation 5 on p.12*


    Cheers,
    Justine

    1. Holly Raiche

      Thank youfor your recommendations, which will be incorporated into the final draft

    2. Holly Raiche

      To provide more specific feedback on the points you raise:

      • there is no question that, potentially, end users can also become registrants and thus impacted by IP issues. However, the ALAC focus has been on the potentially more direct impacts on all end users of  both parking and DNS Abuse
      • a good suggestion that should be made to the ALAC members of the RT - Kaili and Carlton
      • Edits/typos:
      • happy to add the suggested phrase
      • will make that change on agreement.  However, throughout ICANN discussions, the reference is to DNS abuse, not anti-abuse
      • Recommendation C : actually incudes both registry and registrar operators.  It is not clear as to the other references you make (and I think you are correcting their text, not mine)
      • Willchange WG to Review Team
      • On the confusion - yes, the report does change the numbers as between the summary table and the discussion following. The meaning, however, is clear

  5. Abdulkarim Ayopo Oloyede

    I do agree with the first draft.My only comment is on the survey itself. This is because it seems that it's majorly the big companies that responded. 

    1. Holly Raiche

      The Report refers to more than one study: are you talking about the parking survey or the DNS study?

  6. Holly Raiche

    My proposed revised draft, taking into account comments made above, is below:

    Introduction:  This submission should be read together with the previous ALAC submission (dated 13 December 2016) to the Draft Report on Competition, Consumer Trust and Consumer Choice (CCTR).  In this submission, we will only comment on the new sections that impact on Internet end users. We note our earlier response to the Report:

    In conclusion, the outcomes of Assessment are, at best, equivocal. While there has been some expansion in registry numbers and new market entrants, only 15% of the new domains have the characteristics of primary registration. From an end user perspective, most of the resultant new registrations are speculative, defensive, unused or parked – adding little of value to end users. And from an industry, there is no clear evidence of lower prices or more choice. Based on this Assessment, there is little evidence of benefit to end users with the introduction of new gTLDs.

    The new sections of the Report add useful information and analysis from the three additional reports (a discussion on parking, a study on costs to brand owners, and a study on DNS abuse). Our comments are on parking and DNS abuse. While there is an interesting discussion and recommendations on Rights Protection Mechanisms, the issues raised and recommendations do not impact significantly on end users.

    Parking:  Findings from the parking discussions show that 68% of new gTLD registrations are parked.  As the report notes, there are several ways in which a name would be considered as ‘parked’, only one of which is that the name displays advertisements, offers the domain for sale, or is used as a vector to distribute malware. (CCRT p. 8) The report also notes the significant geographic differences in parking practice;  the parking rates for China  are ‘very high’, whereas in the Latin American/Caribbean area, 78% of the new gTLDs are active. (CCTR p. 10-11).  In any case, this report could not ‘identify any direct relationship between parking and DNS abuse’, but suggested there may be ‘some correlation between parking and malware’. (CCTR p. 12) In its recommendation, the report suggests the high rate of parked domains could have an impact on competition in the domain name landscape, and recommends that further information is collected on parking data.

    ALAC Supports Recommendation 3 on the collection of parking data.

    DNS Abuse: The DNS study provides very useful information not only about the incidence of abuse, but about the situations when it occurs, with real implications on steps that could be taken to address the issue.  The Report noted that there has been a ‘significant increase’ in phishing attacks in 2016.  As the report then notes, some registration operators do not act until there are complaints – contrasting with others who do check registrant credentials, block domain name strings similar to known phishing targets and scrutinize domain name resellers. (CCTR p. 21-2)

    The findings suggest, however, is that abuse is ‘not rampant’ – that five new gTLDs accounted for over 58% of blacklisted gTLD domains. (CCTR p. 24).

    Early in the discussion on DNS Abuse, the Report includes the nine steps that can be taken to mitigate DNS abuse. (CCTR p. 18).  However, the report then notes that factors such as registration restrictions, price and registrar specific practices are more likely to affect abuse rates, making low priced domain names with easy registrations attractive attack vectors’. (CCTR p. 23)  As the Report then acknowledged, low cost names may also be appealing for registrants ‘with legitimate interests and the overarching goal of a free and open Internet’.  Therefore, the ‘monetary incentives’ targeted at registry operators may be appropriate to prevent ‘systematic abuse’ by supporting proactive screening and the detection of malfeasance’. (CCTR p. 25)

    The Report suggests four recommendations to address DNS Abuse.  These include recommendations for;

    • Recommendation A: negotiations on amendments to the registry agreements to provide incentives for the adoption of  proactive abuse measures
    • Recommendation B: negotiations on amendments to registry agreements to including provisions on preventing the systemic use of specific registrars for technical DNS abuse
    • Recommendation C: Conduct a study – that is made publicly available – on the relationship between specific registry operators,  registrars and DNS abuse
    • Recommendation D: (which was not unanimously supported by the CCT WG) to establish a DNS Abuse Resolution Policy (DADRP) to deal with registry operators and registrars that are identified as having excessive levels of abuse.

    The Report also includes Recommendation 5, calling for ICANN to: ‘collect data about and publicize the chain of parties responsible for gTLD domain registration.

    This recommendation is included as an ‘individual statement’ not included in the body of the report because there was ‘insufficient time’ for it to be fully discussed by the Review Team.  The explanation for this recommendation is that, at present, ‘there is no consistent mechanism for determining all of the ICANN contracted and non-contracted operators associated with a gTLD domain name registration. Whois records often do not distinguish between registrars and resellers. 

    The ALAC supports Recommendations A, B,C,D, and ‘Recommendation 5relating to DNS Abuse

  7. John Laprise

    Concur