Microsoft sent a letter to ICANN about Google’s Proposed Dotless Domain to its .search gTLD.Microsoft expressed its continuing concern over Google’s proposed amendment to run its gTLD application for .search as a “dotless” domain, as Microsoft strongly urges ICANN to follow the advice of the SSAC and ensure that dotless domains are only used in the private space.
Microsoft said that “Google’s proposed amendment would interfere with that private space, creating security vulnerabilities and impacting enterprise network and systems infrastructure around the globe.”
Here is the letter:
Google’s Proposed Dotless Domain Amendment to its .search gTLD Application
May 17, 2013
Dear Dr. Crocker, Mr. Chehadé and Mr. Chalaby:
Microsoft Corporation (“Microsoft”) is writing to express its continuing concern over Google’s proposed amendment (through its Charleston Road Registry subsidiary) to run its gTLD application for .search as a “dotless” domain, as its plan is likely to run counter to the 23 February 2012 recommendations of the SSAC in SAC053. As detailed below, Microsoft strongly urges ICANN to follow the advice of the SSAC and ensure that dotless domains are only used in the private space.
Google sent a letter to the ICANN Board on April 6, 2013 requesting permission to expand its application for .search to run this TLD as a dotless domain (http://search/). Dotless domains are currently used as intranet addresses controlled by private networks for internal use. Google’s proposed amendment would interfere with that private space, creating security vulnerabilities and impacting enterprise network and systems infrastructure around the globe.
In 2012, the SSAC advised against dotless domains in SAC053 (linked above). The report
included input from Google experts, and concluded that dotless domains would create significant security risks and recommended “strongly against their use.” Specifically, the SSAC stated that dotless domains “would not always work as expected” and “would lead to unpredictable and unexpected dotless domainbehavior.” Google agreed as a contributor to the Report, and also stated in additional comments to the public forum on this topic that “such an evolution would be actively harmful.” In fact, all three major internet browser developers, Google (Chrome), Microsoft (Internet Explorer), and Mozilla (Firefox), agreed with the SSAC’s conclusions through submissions to the public forum.
Google’s .search application amendment actively contravenes the security, stability, and reliability concerns raised by the SSAC and its contributors, and explicitly proposes using technical specifications (such as AAAA records) that the SSAC advised against. Further, Google failed to acknowledge its prior positions or the SSAC Report in its April 6, 2013 letter.
Google’s about-face in applying for .search as a dotless domain is likely to harm the internet ecosystem and should be rejected out of hand, as should similar requests by any applicants in the future.
If ICANN would like further direct dialogue with Microsoft on technical aspects of the dotless domain issue, we are happy to make engineers available. Meanwhile, if you have questions or comments, please do not hesitate to contact either myself, M3 Sweatt (firstname.lastname@example.org) or Russell Pangborn (email@example.com).
Thank you for your consideration.
Corporate Vice President, Technology Policy