Dear All,
We have submitted one new individual draft for discussion: A DNS-Based
Framework for Privacy-Preserving Identity.
Feedbacks are welcome.
Yours,
Jun Zhang
Name: draft-duda-dnsop-dns-did
Revision: 00
Title: A DNS-Based Framework for Privacy-Preserving Identity
Date: 2026-03-02
Group: Individual Submission
Pages: 8
URL: https://www.ietf.org/archive/id/draft-duda-dnsop-dns-did-00.txt
Status: https://datatracker.ietf.org/doc/draft-duda-dnsop-dns-did/
HTML: https://www.ietf.org/archive/id/draft-duda-dnsop-dns-did-00.html
HTMLized: https://datatracker.ietf.org/doc/html/draft-duda-dnsop-dns-did
Abstract:
This document presents a framework for privacy-preserving identity
management based on DNS, supporting large-scale management of users,
IoT devices, and AI agents. It introduces Self-Certifying
Identifiers (SIDs), User/Service Trustees as trusted proxies, and
leverages DNSSEC-secured TXT records to bind public keys to
identities. The framework enables privacy-by-design, where real
identities are hidden behind trusted entities, through privacy-
preserving intermediarie. Credentials bound to SIDs support role-
based access control, while ephemeral tokens ensure short-lived
authorization. Although initially DNS-dependent, the model can
extend to other directories like DIDs or IPFS. This approach aligns
with zero-trust architectures and supports automated, AI-driven
interactions in future networks.
_______________________________________________
DNSOP mailing list -- [email protected]
To unsubscribe send an email to [email protected]
