The did:gns method is a decentralized identifier implementation built on the GNU Name System (GNS), a censorship-resistant naming system that operates without reliance on blockchain technology. This method leverages GNS's inherent capabilities as a public-key infrastructure to create and manage digital identities.
Each identity in the system is represented by a zone key pair (public-private), allowing users to maintain multiple independent identities. The system stores DID Documents in GNS zones, with each document encrypted and digitally signed using zone-specific keys. This approach ensures both privacy and authenticity of identity data.
Key features include:
The method provides strong security guarantees through its cryptographic foundation while maintaining user privacy. Unlike blockchain-based methods, did:gns relies on distributed hash tables for data distribution, making it resistant to denial of service attacks and offering efficient resolution.
Technical Implementation:
did:gns:<Base32GNS-encoded-zone-key>
did:gns:000G006K2TJNMD9VTCYRX7BRVV3HAEPS15E6NHDXKPJA1KAJJEG9AFF884
Base32GNS encoding for public keysDID_DOCUMENT record type at Apex LabelBase32GNS decodingDID_DOCUMENT record type (GANA 65566)Base32GNS encoding schemeIf you are featured in the Web of Trust Map and wish to exercise your GDPR rights, including the right to be forgotten, visit the privacy policy page