Module zone

Expand description

Self-certifying namespace primitives for the Named Data Architecture (NDA).

A zone is a namespace whose root name is derived directly from its signing key — no CA required. Anyone who holds the private key owns the zone; anyone who knows the zone root name can verify zone-signed content.

§Zone root encoding

zone_root = Name[ BLAKE3_DIGEST(blake3(public_key_bytes)) ]

The single name component has TLV type 0x03 (BLAKE3_DIGEST) and a 32-byte value that is the BLAKE3 hash of the raw Ed25519 verifying key.

Experimental / NDA extension — type 0x03 is not yet in the NDN spec.

Structs§

ZoneKey: A zone signing key: an Ed25519 key bound to its self-certifying zone root name.

Functions§

verify_zone_root: Verify that a given zone root name matches the expected public key.
zone_root_from_pubkey: Compute the zone root name for a given Ed25519 verifying key.
zone_root_to_did: Convert a zone root name to its did:ndn DID string representation.

Module zone

Module zone Copy item path

§Zone root encoding

Structs§

Functions§

Module zone