Reverse Domain Name Hijacking: An Emerging Negligence Standard?

Posted on December 7, 2009 by Steve Baird

A recent domain name decision under ICANN's Uniform Domain-Name Dispute-Resolution Policy (UDRP Policy), captioned Bin Shabib & Associates (BSA) LLP v. Hebei IT Shanghai ltd c/o Domain Administrator, found reverse domain name hijacking, under some rather interesting, if not questionable circumstances. The Rules that govern the UDRP Policy define Reverse Domain Name HiJacking as "using the Policy in bad faith to attempt to deprive a registered domain-name holder of a domain name." 

What caught my eye was the three-member panel's use of the ill-fated "knew or should have known" phrase in finding the requisite "bad faith" for hijacking; a phrase well-known to those who follow the trademark fraud case law and appreciate that recently this same "should have known" standard was flatly rejected by the Court of Appeals for the Federal Circuit (CAFC) in In re Bose, as being nothing more than a test for simple negligence. For more on the In re Bose decision, see here and here.

The Bin Shabib & Associates three-member panel, assigned by NAF, was unpersuaded that complainant had proven common law trademark rights in the acronym BSA (under the first UDRP element), so it declined -- as unnecessary -- to make any findings on the second and third elements under the UDRP, namely, the "lack of legitimate interest" and "bad faith" elements. Despite making no findings on either of these two key elements, the panel held as follows:

Also, the Panel finds that Complainant knew or should have known that it was unable to prove that Respondent lacks rights or legitimate interests in the disputed domain name or that Respondent registered and is using the disputed domain name in bad faith. Based on the foregoing, the panel finds that reverse domain name hijacking has occurred. See NetDepositVerkaik v. Crownonlinemedia.com, D2001-1502 (WIPO Mar. 19, 2002) (“To establish reverse domain name hijacking, Respondent must show knowledge on the part of the complainant of the Respondent’s right or legitimate interest in the Domain Name and evidence of harassment or similar conduct by the Complainant in the fact of such knowledge.”); see also Labrada Bodybuilding Nutrition, Inc. v. Glisson, FA 250232 (Nat. Arb. Forum May 28, 2004) (finding that complainant engaged in reverse domain name hijacking where it used “the Policy as a tool to simply wrest the disputed domain name in spite of its knowledge that the Complainant was not entitled to that name and hence had no colorable claim under the Policy”) (emphasis added).

A couple of curious points are worth discussion. First, putting aside for a moment the dubious "should have known" standard of bad faith, how can complainant be guilty of "bad faith" -- sufficient for hijacking -- in failing to appreciate that it had no chance of proving the very two elements for which the panel made no findings? Second, neither of the quoted parentheticals go far enough to support the quoted  "should have known" standard; instead, both speak only of actual knowledge.

As it turns out, however, there is some prior WIPO panel support for the "should have known" standard in finding "bad faith" sufficient for reverse domain name hijacking. Nevertheless, in each of these decisions, the panels made findings on all three UDRP elements before finding "bad faith" and ruling in favor of a claim for reverse domain name hijacking, see here, here, and here.

So, what do you think? Is the "should have known" standard defensible in reverse domain name hijacking decisions? If not, what about gross negligence? How about reckless disregard? What is the appropriate level of culpability? Does it even matter, or is a hijacking finding "of little import" to most complainants?

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ,
Request Info

See our or enter your information below to send us a quick message and we'll reply in one business day or less.

Your privacy is ensured. We will never sell, disclose, or trade contact information.

Fraud at Domain Name Auction House

Posted on November 6, 2009 by Dan Kelly

A bomb exploded in the domain name aftermarket world on Wednesday.  A well-known domain name auction house called SnapNames.com announced that one of its (now former) employees had been bidding as a shill in many online domain name auctions run by the company since 2005.  SnapNames has an FAQ page on the matter here

It is not difficult to decry the many abuses that have gone on in the domaining industry:  cybersquatting, typosquatting, domain name tasting, domain name kiting, pay-per-click fraud, and now shill bidding (to name a few).  As these abuses tend to make for the juciest news, it is not surprising that some (including trademark attorneys) accuse the whole domain name business (or "industry") of being dirty.  But law, being a generally slow, blunt instrument, has so far caught up with only the first two of the abuses listed above.  What is less widely reported is that, for all of its wild-westness, the DN business has policed itself (e.g. cybersquattingdomain tasting) without resort to government intervention.  This is as it should be. 

Even so, self-policing is also slow to catch up to opportunists, so caveat emptor is the rule of the day in domain name transactions, especially when bidding at an auction, especially an online auction.  I recommend reading any auction site's rules, terms and conditions carefully before engaging in a transaction.  Some of these sites will readily represent both buyer and seller, which is a situation well-known to lawyers and real estate agents as a "conflict of interest."  Caveat emptor, indeed. 

Domaining is a buy low, sell high business.  While it has warts, and while some debate whether the business of domain name reselling is at all "legitimate," I do not think that the answer, or even an answer, to any of its problems is that governments step in to regulate it.  One of the virtues of self-policing (and by this, I mean by such umbrella entities as ICANN) is that the rules and regulations developed tend to be transnational, obviating the need for an international potpourri of laws, regulations, and, ultimately, lawyers.  While it is against my self-interest to admit it, I think this is a good thing.
Tags: , , , , , , , , , , , , , ,

Latest gTLD Applicant Guidebook Open for Comment

Posted on October 9, 2009 by Dan Kelly

I assume that most readers have heard that the universe of Internet domain names may be expanding next year.  Instead of being limited to a finite number of relatively mundane top-level domain extensions like ".com" and ".org," ICANN is planning to allow for the registration of any string of characters to the right of the dot.  These plans have been in the works for a while, and just this week, ICANN released the latest version (version 3 for those keeping score at home) of the "Draft Applicant Guidebook."  This version is publicly available here, and ICANN is taking comments on the contents of this draft through November 22, 2009.  Speak now or hold your peace (at least until the next draft comes out).

I have previously observed that the world of Internet domain names bears some semblance to the proverbial "Wild West."  I have also expressed some doubts about the prudence of opening up the gTLD space.  At the risk of being Dr. No, I see a host of potential problems for trademark owners, based principally on current abuses.  Even so, the gTLD roll out process provides at least some opportunity for taking a broader view of the possibilities, both good and bad, and stakeholders should pay attention now and weigh in before it is too late.

Tags: , , , , ,

New gTLDs: Internet Chaos?

Posted on May 1, 2009 by Dan Kelly

I am earnestly trying to reserve judgment on the prospect that the Internet Corporation for Assigned Names and Numbers ("ICANN" -- the proverbial "man behind the curtain" of the Internet) is actually going to go through with its roll out of opening new generic top-level domains ("gTLDs") to anyone (a TLD is the thing that comes to the right of the dot in a domain name -- the most famous being COM).  This is no easy task.  Each month some new report comes out that makes the prospect of throwing open TLDs look worse and worse.  As I have observed before, the Internet has a bit of the Wild West to it.  Despite some drawbacks, it has regulated itself fairly well. 

Perhaps the best proxy for the prudence of doing anything is to gauge the number of acronyms it generates:  the fewer, the better.  (By this measure, some of civilization's more dubious achievements include the military, the federal government (or see here), and, of course, the practice of law.)  The debate about ".anythingoes" is relatively new, and the first draft report from the Implementation Recommendation Team (the "IRT") reads like vegetable soup.  The IRT recommends an RPM (rights protection mechanism), a URS (uniform rapid suspension system), a GPML (globally protected marks list), and possibly SERs (sunrise eligibility requirements) in a SDRP (sunrise dispute resolution policy) -- all this (and more!) in a svelte 47 page document complete with numerous footnotes, appendicies, and even a handy flowchart (itself a warning flag):

Don't get me wrong:  if ICANN wants to allow anybody to register any word as a top level domain name, it is worth protecting brand owners.  I'm still struggling with why ICANN is opening up the top-level domain space in the first place.  If ICANN has to create an armada of administrative procedures to protect entities with acknowledged, existing rights, is it something that is really worth doing?

Tags: , , ,