As we've mentioned several times, we've been working on a way to retrieve CT data over DNS to improve the privacy properties of inclusion proofs.
So, I'm pleased to announce that we now have a test DNS service up for some of our logs. The documentation for the protocol can be found here: https://github.com/google/certificate-transparency-rfcs/blob/master/dns/draft-ct-over-dns.md The base domains for the supported logs are: aviator.ct.googleapis.com pilot.ct.googleapis.com testtube.ct.googleapis.com and a demo showing use of the DNS records is here: https://github.com/google/certificate-transparency/blob/master/python/utilities/dnslookup/dnslookup.py The demo is pretty primitive, but does show all the things you can get from the DNS. Comments and improvements welcome.
_______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
