Bugs and bungling slow major Internet name expansion

NEW YORK (CNNMoney) -- Next week, the public will get its first look at the proposed list of new Web domains in the largest-ever expansion of the Internet's naming system. We're headed way beyond .com and .org -- get ready for .google, .sex and thousands more.

But you won't be clicking your way to those new sites any time soon. Expanding the Internet's domains is a slow, wildly complicated process -- and those in the trenches aren't thrilled with how it's gone so far.

"I always tell people to take any timetable with a pinch of salt," said Stuart Lawley, CEO of ICM Registry, speaking of his experience in launching the adult-themed .xxx domain in December. "We lived through huge delays with .xxx, so we expect to see the timeline slipping with this new process, too."

The Internet Corporation for Assigned Names and Numbers (ICANN), the nonprofit organization that manages this piece of the Internet's infrastructure, has been preparing for this almost-anything-goes domain name expansion for nearly a decade.

Last June, it formally approved the expansion and started planning the application process for new generic top-level domains (gTLDs) -- the ".com" part of website addresses.

The current system has 22 gTLDs -- not including geographic domains -- like .com, .net and .org. ICANN has added a handful over the past decade, sprinkling in additions like .biz, .info and .xxx. This new expansion is by far the organization's biggest move.

But the process quickly devolved into a bug-plagued mess.

ICANN began accepting proposals for new domains on January 12 and planned to reveal the list of applicants on April 30. But on April 12 -- which was meant to be the last day to submit an application -- ICANN took the system offline after a "glitch" allowed some users to see other applicants' data.

Brian Cute, the CEO of the Public Interest Registry (PIR), saw the bug firsthand.

"We were going through the process, and all of a sudden someone else's [file name] popped up," he told CNNMoney.

ICANN planned to have the system back within a few days. Instead, the problems persisted for weeks, with ICANN posting "we're working on it" updates almost daily from April 13 to May 9. ICANN finally re-opened the application system on May 21 and extended its deadline until May 30.

"For a company that is so closely connected with running the Internet to have a glitch in an online system is ironic. It's unacceptable," said Adrian Kinderis, CEO of ARI Registry Services, which provides back-end technology for domain-name operators.

"It wasn't necessarily the delay everyone was upset about," he added. "It was more the process and the way that ICANN was handling it. They weren't telling us the impact of what this means."

CNNMoney reached out to ICANN multiple times about the botched application process, but the group's representatives repeatedly said no one was available to comment.

Related story: Google wants to run .lol Web domain

What comes next: Despite the delays, ICANN received more than 1,900 proposals for new domain names. It plans to reveal the list of applicants and their proposed domains in a press conference on June 13.

Those in the running have huge sums at stake. Simply submitting an application cost $185,000 per domain -- meaning ICANN took in more than $350 million from applications alone. (That's a giant windfall for an organization with an annual budget of just $67 million for 2012, but ICANN says the steep fees are needed to cover the extensive technical and legal reviews it will conduct on each proposal.)

After the applications are revealed on June 13, the real fun begins.

With domains like .web and .sport, many suitors are expected to battle for the same coveted keyword. If multiple applicants want a single domain and ICANN deems them equally worthy, it's decision time.

The applicants can try to negotiate between themselves and come to an agreement -- one that will probably involve cash. Otherwise, the name goes to auction. Those tracking the process predict that it could easily cost millions to lock up a coveted domain.

Here's another wrinkle: Even if two keywords aren't exactly the same, "confusingly similar" domain suffixes are forbidden. For example, if an apple farmers' union grabs .apples, then iGizmo maker Apple (APPL) would be blocked permanently from registering .apple.

Sorting out all those logistics is going to take months, at a minimum. ICANN currently expects the first new domains to actually go live in "early" 2013; applicants say April or May seems like the soonest possible target.

More slippage is possible -- and probably likely.

"As a battle-hardened TLD applicant, I tell people: expect it to take three times as much money and three times as long as you think," said ICM Registry's Lawley.

"Every month that .xxx was delayed, it was costing us about another $150,000 in salary and rent," he said. "It got into the millions. You can imagine [new gTLD applicants] pulling their hair out over these delays. It's a lot of money without any revenue."

Some in the queue say they're willing to be patient. After all, they've already been waiting what seems like eons for things to make it this far.

Take Donuts, a year-old startup that scored $100 million from investors to fund its 307 gTLD applications.

"There's so much pent-up demand," said co-founder Daniel Schindler, who thinks the existing name spaces -- especially .com -- are totally saturated.

"The idea has been marinating for 10 years," he said. "And as an individual, I've been working on this for five years. We're ready." 

Microsoft's default Do Not Track not dead yet

Microsoft's plan to have the Do Not Track cookie preference turned on by default in Internet Explorer 10 has hit a pothole, but it's not out of gas yet.

The news sounded bad for Microsoft. Barely six days after the company announced an aggressive stance on blocking advertisers from tracking you in the coming Internet Explorer 10, a new standards draft from the World Wide Web Consortium (W3C) appeared to kill the plan.

Except the new standards for the Do Not Track (DNT) browser header did nothing of the sort.

Microsoft's Chief Privacy Officer Brendon Lynch told CNET in a statement, "We are engaged with the W3C, as we are with many international standards bodies. While we respect the W3C's perspective, we believe that a standard should support a privacy by default choice for consumers."

For its part, the W3C has acknowledged that the DNT standards draft is just that -- a work-in-progress draft. Aleecia McDonald, a co-chair of the W3C Tracking Protection Working Group,wrote in the minutes from the meeting during which the draft was written that, "it will be quite a while before we have a final recommendation with which to comply or not. As I posted before, until there is a final recommendation, there is no way for a user agent (or anyone else) to be complying or not complying: there simply is no published recommendation yet."

In this context, "user agent" refers to the browser itself, and not the person using the browser.

At the very least, the standards draft reveals the difficulty that DNT faces in widespread adoption. While Microsoft has taken an aggressive stance toward protecting the privacy of people using Internet Explorer, other organizations are struggling to find a way to not upset advertisers.

"The development of cross-industry DNT standards is still ongoing, but it's clear that a successful framework will require cooperation from all stakeholders. To deliver on its promise, a browser-based DNT feature requires recognition and technical support from the companies engaged in tracking. Otherwise, it's akin to shouting in a crowded room in which no one is listening," , the CEO of TRUSTe, of which Microsoft is a client.

Meanwhile, the makers of Firefox wrote in a June 5 update to a blog post from last week that their preference is to split the difference. Mentioning but not linking to several academic studies that found that some people like targeted ads, Mozilla's lead privacy engineer Sid Stamm and global privacy and public policy leader Alex Fowler said, "Taken together, we believe the right starting point for a DNT system is a default of preference unknown."

Related Stories

• Facebook App Center has its kinks (First Take)
• U.N. could tax U.S.-based Web sites, leaked docs show
• Asus Windows 8 tablet does the switcheroo to a 'Netbook'
• China's government takes on microblogs, blogs, online forums

CNET reported earlier that Microsoft was facing pushback from the W3C on its plan to turn on DNT by default, based on an analysis by Wired.

McDonald did acknowledge, in the same clarification, that she feels she "accurately captured the consensus of the group." But given Microsoft's stated position on a default DNT, it's hard to imagine Redmond not going forward with its plan.

DNT is a browser header that, when activated, requests tracking cookies to not follow you as you go from one Web site to the next. A small but growing number of sites have agreed to implement it, including Twitter and a handful of advertisers. However, the vast majority of sites have yet to respect it, and only Internet Explorer, Firefox, and Safari have implemented it as a option.

The Microsoft plan for IE10 is to have DNT on by default. Currently, it's off by default in all three browsers.

A key point in the draft specification states that, "an ordinary user agent MUST NOT send a Tracking Preference signal without a user's explicit consent," where "user agent" means "browser." What that means is that the specification calls for browsers not to make a Do Not Track determination of any kind. Although this isn't probable, it is nevertheless possible that the W3C could call for browser makers to introduce a Do Not Track choice screen, or some variation, that appears when a person installs the browser for the first time.