New gTLDs: what about the FBI screening when submitting an application to the ICANN?

While ICANN (Internet Corporation for Assigned Names and Numbers) does conduct extensive background screening and due diligence for new gTLD applications, including checks for criminal history and general business diligence, the FBI (Federal Bureau of Investigation) does not directly perform the screening for every new gTLD application submitted to ICANN.

Here's a breakdown of ICANN's approach to security and vetting:

• Comprehensive Background Screening: ICANN employs third-party background screening services to conduct checks on applicants and key individuals associated with the application. This typically includes:
  • General business diligence: Verifying the legitimacy and operational history of the applicant entity.
  • Criminal history: Screening for convictions related to financial or corporate governance activities, fraud, breach of fiduciary duty, and other serious offenses.
  • Cybersquatting behavior: Checking against UDRP cases and legal databases for patterns of cybersquatting.
  • Compliance with international sanctions: Ensuring applicants are not on restricted entity lists or from sanctioned regions (e.g., OFAC requirements).
• DNS Security and Stability: A major part of the evaluation focuses on whether the applicant has the technical and operational capability to run a registry that will not adversely affect the security or stability of the Domain Name System (DNS). This includes evaluating their plans for preventing and mitigating issues like malware, botnets, and phishing.
• Governmental Advisory Committee (GAC) Input: The GAC, which represents governments worldwide, plays a significant role in providing advice on public policy issues related to new gTLDs. They can raise concerns about applications, including those that might pose national security risks or cause confusion. While the FBI might participate in discussions related to DNS abuse and law enforcement needs, they don't directly screen individual applications in the way a background check agency would. There have been instances where governments, including the USG (United States Government), have provided "early warnings" or raised concerns about specific applications based on various factors, including potential for misuse or misleading claims.
• No Direct FBI Screening of Every Application: It's important to differentiate between general law enforcement concerns and direct FBI screening of every ICANN applicant. While law enforcement agencies like the FBI are interested in preventing online crime and might collaborate with ICANN on broader issues of DNS abuse, they are not typically involved in the routine background checks for every gTLD application.

In summary, ICANN's process involves rigorous background checks and evaluations to ensure the integrity and security of the DNS, but these checks are performed by specialized third-party services and through ICANN's own evaluation panels, not directly by the FBI for each application.