Avatar
Tim Bouma 2mo ago

The fusion of DNS and NOSTR points toward the kind of Internet infrastructure we now need — one that combines structure with trust. DNS already gives us a resilient, distributed backbone for naming, discovery, and metadata — it tells us what exists and where it lives. NOSTR adds the missing layer of authenticity and continuity: each event is independently signed yet part of a larger, verifiable whole.

Together, they can create a trust-enabled web. DNS can publish verified metadata — like a domain’s NOSTR public key or relay endpoints — while NOSTR provides cryptographically signed attestations tied to those domains. A NOSTR event could prove it originated from example.com without any central authority, while DNS points to the relays carrying its live state. By linking static naming with dynamic proof, the Internet itself becomes self-describing, self-authenticating, and truly sovereign — a network where both information and integrity can travel freely.

#dnspub

Reply to this note

Please Login to reply.

Discussion

Avatar
AU9913 2mo ago

Why is this better than pkarr and iroh?

Avatar
Tim Bouma 2mo ago

Because this leverages the existing infrastructure- so additional software required.

Avatar
AU9913 2mo ago

Is it that hard to run those other services alongside a relay?

Avatar
Tim Bouma 2mo ago

Nope. It is completely independent and redundant. I am working on a docker container that anyone will be able to deploy or point to for their domain.

Avatar
AU9913 2mo ago

How is it redundant? Peer to peer isnt the same as using relays, they are two different things.

Avatar
Tim Bouma 2mo ago

Under the hood, You can specify multiple name servers so there no single point of failure. As well, you can enable to dns resolver to delegate the query, if it does not have the answer. I have that turned off for now, because I am resolving only for a leaf, not a subdomain, or root.

Avatar
AU9913 2mo ago

I understand, but how is this redundant? P2p is direct connection. What youre talking about is basically nostr relay mediated dns. Totally different use cases

Avatar
Tim Bouma 2mo ago

I’m basically proposing to co-opt the DNS system for discovery of npub info.

Avatar
AU9913 2mo ago

Yes, but you said its redundant to use this and something like iroh, how when they have different use cases

Avatar
So Tachi 2mo ago

turns out all that was missing for the web to work is for everyone to carry its own keys

Avatar
ཀռօֆ🝤ʀǟɖǟʍɨᶻ 𝗓 𐰁 2mo ago

Fuck the keys for who is the lock?! 😶‍🌫️🤔

Avatar
So Tachi 2mo ago

if you don't carry your keys, you will be locked in by someone else

Avatar
Tim Bouma 2mo ago

Yup, it really boils down to that. I have the basic prototype working, but plan to get the npub to sign the rr_sig record as well. I am working with a DNS OG to make that happen.

Avatar
So Tachi 2mo ago

Discussed this at the ecash workshop last week, with the tollgate guys. we ended up imagining a vpn marketplace on Nostr with cashu payment by the kb.

Avatar
deeznuts 2mo ago

Fascinating: the partially government funded TCP/IP kicked off a decentralized set of technologies that eventually led to Bitcoin and Nostr - and it’s a knife in the back to the control systems our owners are constructing

Avatar
Tim Bouma 2mo ago

Not really - it’s the knife in the back of the bureaucratic middle managers who think they are building the right things. Now reading the biography of Allen Dulles who really stuck it in the back of JFK.

Avatar
deeznuts 2mo ago

I am somewhat white pilled lately as I cannot see how to stop BTC nodes or websockets relays with an army or with “rules”

17
Brian Gonsalves 2mo ago

Secure DNS?

Avatar
Tim Bouma 2mo ago

Yes, it works with DNSSEC