letmaik
commented
2 years ago Nevermind, I realized that the id is already part of the DNS records, so this is already possible.
Closed letmaik closed 2 years ago
letmaik
commented
2 years ago Nevermind, I realized that the id is already part of the DNS records, so this is already possible.
I think if keys are stored in DNS based on a digest of the key which then also becomes part of the verification method
idit would solve https://github.com/danubetech/did-method-dns/issues/3 as well. In signed documents you would include that key id and fetch exactly the single DNS record you need. I guess the key id could be supplied as extra metadata to the DID resolver which essentially resolves to a subset of the complete DID doc. It's an optimization but an important one I think.