September 2009 | FairWinds

Crying Wolf

Posted on September 17, 2009 by jbourne

It is no surprise that brand owners have registered countless domain names that they don’t need. Over the past few years, ICANN approved and released TLDs such as .EU, .INFO, and others. Since there was a lack of real data, brand owners did the only thing they could, which was to register names defensively because of the threat of what might happen. When .ASIA was released, we saw the number of registrations from brand owners begin to drop – likely a result of being fed up with registrar/registry profit driven domain policies.

The problem is that these prior new TLDs have rightly caused brand owners to be suspect of new launches. After so many sunrise periods that hyped the need for defensive domain name registrations, now it’s like the boy who cried wolf—many launches are largely ignored. However, every now and again an important TLD change occurs that does necessitate action by brand owners. One example of that is .CM.

This landscape of the .CM TLD was just recently formed. When FairWinds published a “Perspectives” on .CM cybersquatting back in 2006, the Cameroonian government was running the .CM registry. At that time, there were only 200 domain names registered to .CM and all other names ending in .CM resolved to a PPC site. NETCOM.cm Sari took over control of the registry in 2009 and opened registration of domains in .CM. Trademark owners were allowed to apply for their corresponding domains during a one-month sunrise period between June 14 and July 15 of 2009. Sunrise periods allow those with valid trademarks to register their domain name for a hefty sum before all domains become available to the general public. As of August 1, 2009, .CM domains can be registered on a first come, first serve basis regardless of trademark rights.

Because .CM, the ccTLD for Cameroon, is a very common typo error of .COM, its recent launch of unrestricted domain names opened up a new front on the war against cybersquatters. As with typosquatting of domain name roots (as in “comcasft.com” for “comcast.com”), this form of typosquatting also involves third parties registering domains containing brand names with the intent of profiting off of users’ typing errors.

In light of this change, we conducted a study to examine the actual response to .CM’s change. We drew on the data used for a forthcoming study on general typosquatting to examine this phenomenon. We began with Quantcast’s list of the most highly trafficked domain names, and from that list, we selected the top 250 that ended in .COM and whose root contained more than six characters. That initial number expanded to 255 in order to include possible hyphenated versions (i.e., wal-mart.com and walmart.com). Along with these 255, we included typo variations that receive high volumes of traffic and then checked to see whether each of these domains had been registered in the .CM extension. A total of 183 had been registered in .CM; 121 domains contained the target root and the remaining 62 were typo variations of those targets.

Out of the 183 domains, an astounding 97 percent are owned by a third party—only 6 domain names are owned by the target company.

Of those owned by the target company, only 4 resolve to the target site, while one displays search results and the last does not resolve. In total, 97 of the domains owned by a third party lead to pay-per-click sites, meaning cybersquatters are directly profiting off 55% of those domains.

Another interesting tidbit was found in four domains that led to sites for competing brands. Staples.cm resolves to OfficeDepot.com, Travelocity.cm resolves to Expedia.com, Walgreens.cm resolves to DrugStore.com and Walmart.cm resolves to eBay.com. None of these four domains are owned by the competitor, but rather by third parties. While cybersquatters are not profiting directly from these sites, they are still causing damage to the brands in question and potentially depriving them of sales.

When ICANN approved new TLDs in the past and registries held sunrise periods for brand owners, many brands rushed out to buy domain names in TLDs like .PRO and .INFO only to realize later that they held very little value for their business. Although .CM has opened to the public, the registration rates among brand owners remain low. This may be a result of brand owners being skeptical of the value of a .CM domain name. Some may be failing to realize how different this new TLD is—after all, it is common for Internet users to accidentally type .CM in place of .COM. Others may be distrustful of a new registry sunrise period given that ICANN’s policy of allowing registries to operate however they want has essentially resulted in brand domain names being held for ransom by the registry in the form of sunrise periods. In the case of .CM though, brand owners must learn that even if they have no intention of doing business in Cameroon, owning key names in that extension is critical because users are typing them into the browser bar accidently.

What I take from this situation is that while we are all growing incredibly frustrated with the name space and ICANN policies, we need to be diligent in our review of each change. It is usually best to be conservative with launches, but there are cases – like .CM – where a more aggressive and targeted strategy is warranted.

Game, Set, Domain Name Match

Posted on September 11, 2009 by jbourne

The US Open championship is in full swing in New York City right now, with the finals just around the corner this weekend. As one of the four events that make up the Grand Slam, one of the highest achievements in tennis, the US Open is always hugely popular. When I searched for the official Web site of the Open to find out how Roger Federer is doing, I typed “usopen.com” into my browser’s address bar. Indeed, I arrived at a page for the U.S. Open – but for golf, not tennis.

As it turns out, the official site for the US Open for tennis is usopen.org. The United States Golf Association (USGA) owns the domain name in the .COM, while the United States Tennis Association (USTA) owns the domain name in the .ORG. The trademark “US Open” is registered to the USTA, while the trademark “U.S. Open” is registered to the USGA. The only real difference between the two marks is the use of punctuation in “US,” which does not transfer well into forming distinct domain names.

I did a little digging into what other domains users might search in hopes of accessing the site for either the golf or tennis championship. First I tried usopengolf.com and usopentennis.com. The former does not resolve, while the latter leads to a site that is not affiliated with the USTA but hosts links to buy U.S. Open tickets and merchandise. Then I searched theusopen.com and theusopen.org. A pay-per-click site and one that doesn’t resolve, but is owned by a Florida ticket broker. Finally, I typed in usopen.net. Interestingly, this last domain leads to a pay-per-click site that happens to be for sale. Argh, do I dare say it? What if there was .tennis and .golf – could they make life simpler – usopen.golf and usopen.tennis – or am I just asking for even more trouble? According to a recent article I read, .Sports would argue that these TLDs shouldn’t exist, since they belong under a general sports umbrella.

Attempts to set up TLDs like this in the past have kind of gone bust. Last time I checked the major aerospace company names in .aero, most did’t even resolve. One domain, Airbus.aero, promotes the business of MelbourneIT, a registrar.

Never a simple answer.

Uncharitable Contribution

Posted on September 9, 2009 by jbourne

Another landmark legal case was decided last week – this time, a jury awarded hefty damages against a group of Internet service providers (ISPs) for contributory trademark infringement. Louis Vuitton Malletier, S.A., sued Akanoc Solutions, Inc. and Managed Solutions Group, Inc., two ISPs, as well as Steven Chen, who controls both Akanoc and Managed Solutions Group. The luxury luggage and handbag manufacturer charged the ISPs with contributory trademark infringement under the Federal Trademark Act after discovering that the ISPs’ customers (and their customers’ customers) operated Web sites selling counterfeit goods bearing Louis Vuitton trademarks. Louis Vuitton had sent several letters to the ISPs requesting that they remove the sites, which the court ruled was enough evidence to prove that the defendants knew of the infringement. The jury found that the ISPs committed contributory infringement because they knew, or should have known, that their customers were using the defendants’ services to infringe Louis Vuitton’s marks. In addition, the jury found the infringement to be willful and ordered the defendants to pay Louis Vuitton $31.5 million in damages.

This case marks the first time a court has awarded statutory damages against a party for contributory trademark infringement. Although the Federal Trademark Act does include a provision that allows a plaintiff to recover damages from the party that enabled the infringement, never before has a jury actually awarded damages in this type of case. This decision could have serious ramifications for ISPs in the future: currently, the law is unclear as to whether ISPs are liable when their users commit trademark or copyright infringement. As such, this case will serve as a powerful precedent and demonstrates that courts will not accept the argument that ISPs are unaware of the activities of users on their networks.

Louis Vuitton’s actions also raise the question of whom a firm can pursue legal action against when infringements occur. Specifically, in the case of cybersquatting, could domain name registrars be held liable for contributory trademark infringement?