I think if keys are stored in DNS based on a digest of the key which then also becomes part of the verification method id it would solve https://github.com/danubetech/did-method-dns/issues/3 as well. In signed documents you would include that key id and fetch exactly the single DNS record you need. I guess the key id could be supplied as extra metadata to the DID resolver which essentially resolves to a subset of the complete DID doc. It's an optimization but an important one I think.
I think if keys are stored in DNS based on a digest of the key which then also becomes part of the verification method
id
it would solve https://github.com/danubetech/did-method-dns/issues/3 as well. In signed documents you would include that key id and fetch exactly the single DNS record you need. I guess the key id could be supplied as extra metadata to the DID resolver which essentially resolves to a subset of the complete DID doc. It's an optimization but an important one I think.