The Voice of the eCommerce Industry

Media reports might have you believe that ICANN has discovered how to turn lead into gold, with their decision to create lots of new top-level domains (TLDs) for the Internet. But there could be a lot of fool's gold in the ICANN treasure chest, based on concerns and questions I heard at their meeting in Paris last week:

1. Some businesses advocating new TLDs claim they will help to categorize the web, much like bookstores arrange shelves by subject matter. For example, the applicants for a .berlin TLD claim it will help users find websites relating to Berlin. But I have to wonder how that's more useful than using 'berlin' in a conventional web search? The big winner in having millions of new domains is the big search engine that can sort it all out for us.
2. ICANN will entertain objections "relating to morality and public order" regarding the words or phrases proposed for new TLDs. Sounds like a responsible policy, but will paranoid governments use this policy to oppose new TLDs like .freedom or .democracy?
3. If a new TLD would create confusion with existing or similar TLDs, ICANN may deny the application. "Confusingly similar" is a good concept, but isn't something this subjective certain to generate controversy and litigation?
4. ICANN will have to pick winners and losers when multiple contenders want the same TLD. For example, who gets the .apple TLD – Apple computer, Apple records, or the Washington State Apple Growers Co-op?
5. Consumers and brand owners are rightly concerned about fraud and cyber-squatting in new TLDs. Is every new TLD going to generate a gold rush for domains that can be re-sold to global brand owners? Worse still, are cyber criminals going to exploit new TLDs to dupe users into revealing personal data or lure them into online scams?

Applicants for new TLDs will have to run a veritable gauntlet of objections and contentions, which could take many months or even years to complete. At the same time, ICANN doesn't want to keep restive governments waiting on domains that use non-Latin scripts, such as an Arabic and Chinese. So ICANN also approved a fast-track for governments to get country-code domains using non-Latin scripts, but users will be frustrated if this fast-track excludes the global TLDs (.com, .org, .edu ) they're really looking for.

These are legitimate questions and real concerns that ICANN must overcome to launch hundreds of new TLDs. I can already hear critics claiming that ICANN processes are delaying new TLDs and the resulting gold rush for millions of new domains.

Before ICANN and domain speculators catch gold fever over the promise of newly-minted TLDs, they ought to heed an old proverb – all that glitters is not gold.

Posted by Steve DelBianco

Chinese security officials remain worried hackers will strike Chinese computer systems while the Olympic Games are being held in Beijing.

Internet users are being warned of a phishing scam using the American Red Cross brand asking for donations to help the people in Romania.

Canada's online sales soared to 62.7 billion dollars in 2007, a growth of 26 percent from the year 2006. This is the sixth consecutive year that Canada's online sales have increased at a double-digit pace.

The Hannah Montana bill has finally passed both houses in the Minnesota legislature. The bill was designed to help the general public be able to purchase event tickets without having to worry as much about them selling out quick or costing a fortune.

Hackers had launched some low-intensity attacks against CNN’s website last week. Visitors to the site experienced a noticeable slowdown during the early hours of Sunday and Monday.

The FCC decided there's no need for new regulation of the Internet after conducting two hearings on "network management."

Missouri state legislator Roy Salva is looking to pass new legislation that would make it illegal to scalp tickets. Salca blames brokers for the ticket crisis, who he believes snap up inordinate numbers of tickets, drive up the prices and gauge consumers.

PayPal is working on preventing phishers by blocking older browsers or browsers with no anti-phishing features from accessing their website.

PayPal is stepping up its battle against phishing with new technology and by collaborating with others in the industry. Currently PayPal is also focusing on an approach where ISPs block emails seemingly sent from PayPal that don't have the correct digital signature.

Maryland leaders capped off a whirlwind legislative session yesterday, signing into law the legislation that repealed Maryland's new computer services tax.

The Georgia Emergency Management Agency offered internet safety classes to parents to teach them how to protect their children from sexual predators and other Web dangers.

The Internet Corporation for Assigned Names and Numbers (ICANN) announced that it posted the schedule for its public Meeting to be held in Paris June 22-26, 2008.

Portland State students and faculty are the latest to be hit by phishers claiming to be from User Support Services and other IT departments within the university. The scammers, dubbed "spear-phishers," try to gain user's confidence by posing as trusted individuals within an organization. 

Top leaders are lining up votes for a plan to replace Maryland's new computer services tax with an income tax surcharge on top earners and cuts to transportation and other spending. The "tech tax," has had business groups calling for its repeal from the moment it passed, claiming it will destroy a growing part of Maryland's economy.

Alabama Attorney General Troy King held a forum on Tuesday addressing child internet safety, and the concerns parents should have if their child is using the Internet.   

The Dental Network, one of CareFirst BlueCross BlueShield's HMOs, posted the Social Security numbers and other personal information associated with 75,000 patients online for at least two weeks last month. As of now, the company attributes the data breach to a technical error.

New reports of phishing scams targeting Facebook users.

Syria is imposing tighter internet monitoring of citizens who link to the Web, as well as jailing bloggers who criticize the government and blocking YouTube and other Web sites deemed harmful to state security. Internet café owners are now required to keep detailed logs of their customers to make it easier to track down anyone deemed to be a threat.

The Federal Trade Commission (FTC) is hosting a roundtable event to discuss new strategies aimed at increasing awareness of phishing schemes in Washington, DC on April 1^st.

Under a bill approved in Florida’s Senate, online dating services would have to inform customers whether they are attempting to secure the site by performing background checks on members. The bill does not require any background checks - only that companies say prominently whether they do them or not, and whether they allow people with criminal backgrounds to be members.

A Ukrainian man once known as one of the top ringleaders in Eastern Europe-based organized cyber crime is leading a new political party there, the "Internet Party of Ukraine.” The Washington Post highlights the serious challenges facing U.S.law enforcement agencies as they continue efforts to gain the cooperation of foreign governments in bringing cyber criminals to justice.

Real and growing threats to computer and telecommunications networks have caused urgency in cyber security practices and preparation. Computer security experts from five countries, more than 40 private sector companies, and numerous government and state agencies spent a week fielding simulated "real-world," on-line attacks on the computer systems of government bodies, corporations, transportation and other key industries.

'Phishing' topped the Internal Revenue Service's (IRS) annual list of scams that taxpayers should look out for this year. The IRS also warned people not to fall for predators posing as IRS representatives who tell them they must reveal personal information to obtain the economic stimulus payment. The tax agency has received more than 33,000 ‘phishing’ scam emails from concerned citizens, reflecting more than 1,500 different schemes.

The Anti-Phishing Consumer Protection Act of 2008 is working its way through the senate and house to gain support for the bill. The legislation would prohibit phishing and related abuses, such as the practice of using fraudulent or misleading domain names, by defining them as deceptive practices under Federal Trade Commission regulations.

Chinese hackers claim to have gained access to the world's most sensitive sites, including the Pentagon. At a congressional hearing in Washingtonlast week, administration officials testified that the government's cyber initiative has fallen far short of what is required. Most alarming, the officials said, there has never been a full damage assessment of federal agency networks.

The US has seized the domain name of a Spanish online travel agency that specializes in selling trips to Cuba to various European nationals. The company had been blacklisted for years, with the US Department of Treasury claiming the business had helped Americans evade restrictions on travel to Cuba.

ICANN looks to the future with the U.S. Department of Commerce in September 2009.  ICANN has made significant improvements in accountability, transparency and the endeavor of transitioning ICANN into a private sector entity is taking shape. However, some have suggested the JPA should remain in place to provide accountability, despite ICANN’s progress toward meeting its responsibilities.

Boston Red Sox executives signed a one-year agreement with Ace Ticket, making the longtime ticket reseller an official corporate sponsor of the team, and the local place for ticket resale. MLB inked its own deal with StubHub to handle all online ticket resale in the league.

The Internet grew by almost 33 million domain names last year. By the end of 2007, there were more than 80.4 million .com and .net domain-name registrations, a 24% increase every year.

Wkileaks.org lawsuit dropped. The dismissal of the Wikileaks.org suit by the Swiss bank came after a warning about liability. The bank's notice of dismissal warns of the possibility that the bank may bring the same lawsuit in a different court.

MySpace steps us its safety education efforts with a series of measures to educate users and the parents on Internet safety. The program will include public service announcements, partnerships with nonprofit organizations and a new website linked to MySpace to promote online safety.

e-crime is largely the domain of organized gangs in the UK. And money is the motive. e-commerce websites and their customer databases are targeted by hackers who look for flaws in software. Security applications are put together as quickly as possible in order to get a working system out there, without due regard being given to the security implications.

An authorized website that will sell tickets to the 2010 Vancouver Winter Olympics is not as secure as it claims in fending off software that can jump the queue and snap up a myriad of tickets.  The committee organizing the 2010 winter games admits it's concerned about security of ticket sales and said it is working with ticket.com to develop a new system they hope will be fair.

Connecticut Attorney General Richard Blumenthal is proposing new restrictions on ticket brokers and others by limiting the amount they can charge customers for tickets sold at the secondary level. Blumenthal wants to see a cap imposed on tickets where brokers and others can only charge 50 percent above face value.

The Internet Commerce Association (ICA) is opposing new legislation introduced by Sen. Olympia Snowe (R-Maine) on Feb. 25, Anti-Phishing Consumer Protections Ace of 2008 (APCPA). ICA claims that as a measure that is seemingly designed to fight phishing,  the APCPA is far too broad in scope, and some provisions in the proposed bill appear to be unrelated to those issues.