See week 44, month 10 or year 2022 or testing/Input Buffer
-
Can I perform a DNS lookup (hostname to IP address) using client-side Javascript? - Stack Overflow↗
-
byu-imaal/dohjs: DNS over HTTPS client for use in the browser↗
-
rfc 4034↗ Resource Records for the DNS Security Extensions
-
List of DNS record types - Wikipedia↗
RFC 7929
-
RFC 7929 - DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP↗
DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP
Abstract
OpenPGP is a message format for email (and file) encryption that lacks a standardized lookup mechanism to securely obtain OpenPGP public keys. DNS-Based Authentication of Named Entities (DANE) is a method for publishing public keys in DNS. This document specifies a DANE method for publishing and locating OpenPGP public keys in DNS for a specific email address using a new OPENPGPKEY DNS resource record. Security is provided via Secure DNS, however the OPENPGPKEY record is not a replacement for verification of authenticity via the "web of trust" or manual verification. The OPENPGPKEY record can be used to encrypt an email that would otherwise have to be sent unencrypted.
-
RFC 7929 - DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP↗
For example, to request an OPENPGPKEY resource record for a user whose email address is "hugh@example.com", an OPENPGPKEY query would be placed for the following QNAME: "c93f1e400f26708f98cb19d936620da35 eec8f72e57f9eec01c1afd6._openpgpkey.example.com". The corresponding RR in the example.com zone might look like (key shortened for formatting):
c9[..]d6._openpgpkey.example.com. IN OPENPGPKEY