by Mason Cole
Vice President, Donuts Inc.
Chair of DNA Healthy Domains Initiative Committee
The domain name system is in good health. But it’s about to get even better.
In 2016, the DNA undertook an effort in 2016 it named the Healthy Domains Initiative (HDI). It’s an ambitious, self-motivated effort to build on the DNS’ already secure and stable platform and meet select challenges head-on, before they develop.
While HDI is designed primarily to advance the safe and beneficial evolution of the domain name system, its secondary goal is to demonstrate to Internet stakeholders the capability of industry operators to effectively self-regulate. HDI is not under the aegis of ICANN or any other regulator—it’s an industry-led program that operates independently, guided by the organizations that have the operational experience to keep the namespace healthy.
How HDI came about
DNA members, as stewards of the naming infrastructure, have long been attentive to ensuring their customers and Internet end-users have a safe experience with online identities. This became more the case with the proliferation of new top-level domains (TLDs), when so many new registries joined the community.
Interested DNA members persuaded the organization to form a committee to take on the project and outlined the following objectives:
- Establish a network of industry partners that communicate and collaborate with one another to support a healthy domain name ecosystem.
- Identify and/or develop industry-accepted healthy practices and specific programs that provide tangible ways of promoting standards for healthy domains.
- Demonstrate to the community a desire to implement best practices and otherwise fulfill stewardship obligations
After a year-long process of consultation with registries, registrars, law enforcement, civil society, child protection authorities, pharmaceutical experts, content providers and others, the HDI committee identified the program’s first deliverable: a set of “healthy practices” that members may voluntarily adopt in order to address or prevent various issues that arise in namespace administration.
The DNA first surveyed its membership on what, if any, healthy practices already were employed by members, and further, regarding the appeal of proposed new practices.
An impressive 78% of respondents said that their companies already employed healthy practices outside the scope of their contracts with ICANN.
89% of respondents said they intend to expand this list to include additional practices. However, the conclusion of the survey, agreed to by most involved in HDI, is that there exists an opportunity to expand practice ideas, and contracted parties are receptive to doing so.
Healthy practices bring HDI to public notice
On February 8, HDI made its formal debut by publishing the first set of recommended healthy practices, grouped into four areas that address:
- online security abuse;
- child abuse mitigation;
- complaint handling from illegal online pharmacies; and
- online copyright infringement.
The practices are housed in an ambitious 21-page document you can find on the DNA’s website.
The belief is these four areas present a good avenue not only for establishing HDI, but to have an immediate impact on areas of known persistent issues.
The DNA’s Four Healthy Practice Areas for Domain Registries and Registrars
HDI practices are focused on:
- Addressing online security abuse (e.g., malware, phishing, pharming) — this area encompasses 20 voluntary practices for registrars and registries to employ as means for combating domain name system (DNS) abuse. Recommendations include measures to mitigate abuse, receive and handle abuse reports, and otherwise minimize risks associated with potentially compromised domains.
- Enhancing child abuse mitigation systems — the DNA proposes that registries and registrars put in place a formalized system for handling of abusive child imagery, and establish “trusted notifier” relationships with child protection authorities.
- Streamlining complaint handling from illegal or “rogue” online pharmacies — these measures are designed to enhance registry and registrar capability to field, evaluate and handle complaints regarding online outlets suspected of being unlicensed pharmacies or otherwise distributing harmful or counterfeit medication.
- Establishing a voluntary third party system for handling copyright infringement — The DNA supports the creation of a voluntary third party mechanism, similar to the Uniform Dispute Resolution Policy, for handling trademark violations, which would address illegal infringement of copyrighted material through the use of domain names. The system would be available for voluntary participation by registries and registrars who would like to work with content owners to combat illegal activity on a more efficient and cost-effective basis, but still adhering to key tenets of due process.
The HDI committee briefed DNA members on the final details of the plan during the NamesCon conference in Las Vegas in late January. Members also heard from companies with a successful track record of implementing voluntary measures to combat abuse, as a point of reference for how to move forward.
As member companies voluntarily implement measures, the DNA plans to collect and make known examples of the efficacy of healthy practices, so the Internet community can understand the efficacy of these measures and contribute additional ideas. The HDI committee also looks forward to considering additional measures—even beyond healthy practices—that DNA members can consider as contributions to the healthy evolution of the Internet namespace.