As we rapidly approach the ICANN 2026 new gTLD application round—where the boundaries of the digital world will be redrawn—TLDTR stands as the sole RSP (Registry Service Provider) candidate in Türkiye and the region. This unique position entrusts us not only with the responsibility of providing technical infrastructure but also with setting the standards for our region.
Today, we are proud to announce that we have passed a critical milestone on this journey: TLDTR has successfully completed the ISO 27001 Information Security Management System certification.
Why is ISO 27001 More Than Just a “Badge”?
ISO 27001 is the most globally recognized standard for information security. However, for an RSP candidate, this certification represents much more than a document on the wall. Our certificate is audited by accredited institutions and is internationally verifiable. This proves that the infrastructure established by TLDTR speaks the same security language as other players.
The Importance for RSP and ICANN
An RSP (Registry Service Provider) is the technical entity that runs the “engine” of a domain name extension (e.g., .brand, .city, .sector, .extension).
“This engine does not merely ensure the registration of domain names; it guarantees that every stage of the domain lifecycle operates continuously, accurately, and in compliance with international rules. An RSP’s competence directly determines the security of the digital assets of thousands, or even millions, of users who will use that extension. In short, as TLDTR, we are the invisible hero and operational guarantor behind digital identities.”
ICANN’s Security Expectations
ICANN prioritizes DNS Stability above all else. A security vulnerability in an RSP’s system can impact global internet traffic. Therefore, ICANN expects an indisputable security commitment from RSP candidates.
“This expectation covers a wide spectrum, from resilience against cyber-attacks (such as DDoS) to physical security and data backups. ICANN requires players who will operate in the most critical layer of the global internet ecosystem (the Root Zone) to work with a ‘zero-error’ principle. The commitment we provide is a guarantee that a domain extension managed from Türkiye will be as reliable and accessible to a user anywhere in the world as an extension based in New York or London.”
RSP Compliance
ISO 27001, guarantees that the processes, risk management, and disaster recovery scenarios required by ICANN’s Technical Evaluation criteria are implemented. With this certificate, we have transformed the statement “We are secure” into the fact that “Our security is certified.”
“In particular, the approval of our ‘Business Continuity’ and ‘Disaster Recovery’ plans by independent and international auditors gives us a significant advantage in the ICANN evaluation process. This certification documents that TLDTR’s operational maturity level is fully compatible with global internet standards (IETF RFCs and ICANN policies), thereby minimizing the technical risks for applicants (brands or cities) who will work with us.”
Where Are We in the Process? RST and TAMS
With our security certified, we are also nearing the end of our technical processes:
RST (Registry System Testing)
We are in the final stages of the technical tests (Pre-RST) mandated by ICANN, which measure the error-free operation of protocols such as DNS, EPP, and RDAP (which replaces Whois).
“The integration of modern protocols like RDAP (Registration Data Access Protocol) is revolutionary compared to the legacy Whois system in terms of data privacy (GDPR compliance) and access security. As TLDTR, we have built our infrastructure with the most up-to-date technologies; the success of these tests proves not only that our system works today, but also that we are already ready for future internet standards (Next-Gen Registry Systems) and carry no technical debt.”
TAMS (TLD Application Management System)
Upon completion of the technical tests, we will take our place in the TAMS system as an “Approved Service Provider” in April. This means that brands and cities applying for new gTLDs will be able to directly select us as their infrastructure partner through the system.
“Being listed on TAMS is effectively the ‘technical accreditation’ for an RSP candidate. We eliminate the burden of ‘Finding and Auditing a Technical Infrastructure Provider,’ which is the most complex process for applying institutions. With our ‘approved’ status, applicants will be able to confidently integrate our ICANN-verified infrastructure into their projects without entering an additional technical audit process; this will both accelerate the application process and make it cost-effective for them.
TLDTR in the Global Arena
As a reflection of our technical and operational readiness, TLDTR is no longer just a “candidate,” but a recognized stakeholder in the ecosystem. receiving invitations to international organizations and closed sessions organized by ICANN is an indication of the seriousness of this initiative emerging from Türkiye on a global scale.
Our infrastructure is solid, our security is certified, and our route is clear. We are ready to bring new domain extensions to life in 2026.