The DNS Stamps Specification

The DNS Stamps Specification Individual Contributor

fde@00f.net

Internet-Draft This document specifies DNS Stamps, a compact format that encodes the information needed to connect to DNS resolvers. DNS Stamps encode all necessary parameters including addresses, hostnames, cryptographic keys, and protocol-specific configuration into a single string using a standard URI format. The specification supports multiple secure DNS protocols including DNSCrypt, DNS-over-HTTPS (DoH), DNS-over-TLS (DoT), DNS-over-QUIC (DoQ), and Oblivious DoH. Discussion Venues Discussion of this document takes place on the Domain Name System Working Group mailing list (namedroppers@nic.ddn.mil), which is archived at . Source for this draft and an issue tracker can be found at .

Introduction The Domain Name System (DNS) has evolved significantly from its original design as specified in . While traditional DNS operates over unencrypted UDP and TCP connections on port 53, modern DNS deployments increasingly use encrypted transports to provide confidentiality and integrity. These secure protocols include DNSCrypt , DNS-over-TLS (DoT) , DNS-over-HTTPS (DoH) , DNS-over-QUIC (DoQ) , and Oblivious DNS-over-HTTPS . Each secure DNS protocol requires different configuration parameters. DNSCrypt needs a provider public key and provider name in addition to server addresses. DoH requires HTTPS endpoints and paths. DoT and DoQ need TLS configuration including certificate validation parameters. This diversity in configuration requirements creates significant challenges for both users and applications attempting to configure secure DNS resolvers. Current approaches to DNS configuration suffer from several limitations. Operating system interfaces typically support only IP addresses for DNS servers, providing no mechanism to specify encryption protocols or authentication parameters. Application-specific configuration files lack standardization, making it difficult to share configurations across different DNS client implementations. Manual configuration is error-prone, particularly when dealing with cryptographic parameters like public keys or certificate hashes. There is no standard way to distribute complete resolver configurations that would enable users to easily switch between different secure DNS providers. DNS Stamps address these challenges by encoding all parameters required to connect to a DNS resolver into a single, compact string using a URI format. This approach enables simple sharing of resolver configurations through copy-paste, QR codes, or URLs. It provides a consistent format across different client implementations, reduces configuration errors through format validation, and supports multiple protocols through a unified specification. DNS Stamps have been implemented in numerous DNS client applications and are used by several public DNS resolver operators to publish their server configurations. The remainder of this document is organized as follows. Section 2 establishes conventions and defines the encoding primitives used throughout the specification. Section 3 provides a high-level overview of the DNS Stamps format. Section 4 details the specific format for each supported protocol. Section 5 covers operational aspects including generation, parsing, and validation. Section 6 analyzes security considerations. Section 7 discusses implementation considerations. Section 8 specifies IANA registrations. The appendices provide test vectors and examples.

Conventions and Definitions The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “NOT RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in BCP 14 when, and only when, they appear in all capitals, as shown here.

Terminology This document uses the following terminology:

DNS Stamp: A URI-formatted string that encodes all parameters needed to connect to a DNS resolver.
Protocol Identifier: A single byte value that identifies the DNS protocol type encoded in the stamp.
Properties: A 64-bit little-endian integer encoding informal properties about the DNS resolver.

Encoding Primitives The following encoding primitives are used throughout this specification:

‖: Denotes concatenation of byte sequences.
|: Denotes the bitwise OR operation.
len(x): A single byte (unsigned 8-bit integer) representing the length of x in bytes, where x is a byte sequence of maximum length 255.
vlen(x): Variable length encoding. Equal to len(x) if x is the last element of a set. Otherwise equal to (0x80 | len(x)), indicating more elements follow.
LP(x): Length-prefixed encoding, defined as len(x) ‖ x.
VLP(x1, x2, ...xn): Variable-length-prefixed set encoding, defined as vlen(x1) ‖ x1 ‖ vlen(x2) ‖ x2 ... ‖ vlen(xn) ‖ xn. For a single-element set, VLP(x) == LP(x).
[x]: Denotes that x is optional and may be omitted.
base64url(x): The URL-safe base64 encoding of x as specified in Section 5 of , without padding characters.

DNS Stamps Format Overview This section provides a high-level overview of the DNS Stamps format before detailing specific protocol encodings.

URI Structure A DNS Stamp is a URI with the following format: The stamp begins with the scheme sdns:// followed by a base64url-encoded payload. The payload is a byte sequence that encodes all parameters needed to connect to the DNS resolver.

Payload Structure The general structure of the payload is: The payload always begins with a single-byte protocol identifier that determines how to interpret the remaining bytes. The base64url encoding is applied to the entire payload as a single operation after concatenating all components.

Protocol Identifiers The following protocol identifiers are defined:

Value	Protocol	Description
0x00	Plain DNS	Traditional unencrypted DNS
0x01	DNSCrypt	DNSCrypt protocol
0x02	DNS-over-HTTPS	DNS queries over HTTPS
0x03	DNS-over-TLS	DNS queries over TLS
0x04	DNS-over-QUIC	DNS queries over QUIC
0x05	Oblivious DoH Target	Target server for Oblivious DoH
0x81	Anonymized DNSCrypt Relay	Relay for DNSCrypt anonymization
0x85	Oblivious DoH Relay	Relay for Oblivious DoH

Protocol identifiers in the range 0x80-0xFF are reserved for relay/proxy protocols that forward queries to other servers.

Properties Field Several stamp types include a properties field, which is a 64-bit little-endian integer. Each bit in this field represents a property of the resolver:

Bit	Property	Description
0	DNSSEC	The server validates DNSSEC signatures
1	No Logs	The server does not keep query logs
2	No Filter	The server does not filter or block domains
3-63	Reserved	Must be set to zero

When encoding, undefined property bits MUST be set to zero. When decoding, undefined property bits MUST be ignored to allow future extensions.

Protocol-Specific Stamp Formats This section specifies the exact format for each supported protocol type. Each format is presented with its structure, field descriptions, and encoding requirements.

Plain DNS Stamps Plain DNS stamps encode parameters for traditional unencrypted DNS resolvers.

Format

Fields

0x00: Protocol identifier for plain DNS.
props: Properties field (8 bytes, little-endian).
addr: IP address and optional port as a string. IPv6 addresses MUST be enclosed in square brackets. Default port is 53.

Address Format

IPv4: 192.0.2.1 or 192.0.2.1:5353
IPv6: [2001:db8::1] or [2001:db8::1]:5353

DNSCrypt Stamps DNSCrypt stamps encode parameters for DNSCrypt servers.

Format

Fields

0x01: Protocol identifier for DNSCrypt.
props: Properties field (8 bytes, little-endian).
addr: IP address and optional port. IPv6 addresses MUST be enclosed in square brackets. Default port is 443.
pk: Provider’s Ed25519 public key (exactly 32 bytes, raw binary format).
provider_name: DNSCrypt provider name (e.g., 2.dnscrypt-cert.example.com).

Requirements

The public key MUST be exactly 32 bytes.
The provider name MUST be a valid DNS name.
The provider name MUST NOT include a terminating period.

DNS-over-HTTPS Stamps DoH stamps encode parameters for DNS-over-HTTPS servers.

Format

Fields

0x02: Protocol identifier for DNS-over-HTTPS.
props: Properties field (8 bytes, little-endian).
addr: IP address of the server. May be empty string if hostname resolution is required.
hash1, ..., hashn: SHA256 digests of certificates in the validation chain (each exactly 32 bytes).
hostname: Server hostname with optional port. Default port is 443.
path: Absolute URI path (e.g., /dns-query).
bootstrap1, ..., bootstrapn: Optional IP addresses for resolving hostname.

Requirements

Certificate hashes MUST be exactly 32 bytes each.
The hostname MUST NOT be percent-encoded or punycode-encoded.
The path MUST start with “/”.
Bootstrap addresses follow the same format as addr.

DNS-over-TLS Stamps DoT stamps encode parameters for DNS-over-TLS servers.

Format

Fields

0x03: Protocol identifier for DNS-over-TLS.

Other fields have the same meaning as DoH stamps, except:

Default port is 853.
No path field is included.

DNS-over-QUIC Stamps DoQ stamps encode parameters for DNS-over-QUIC servers.

Format

Fields

0x04: Protocol identifier for DNS-over-QUIC.

Other fields have the same meaning as DoT stamps.

Oblivious DoH Target Stamps ODoH target stamps encode parameters for Oblivious DoH target servers.

Format

Fields

0x05: Protocol identifier for Oblivious DoH targets.
props: Properties field (8 bytes, little-endian).
hostname: Server hostname with optional port. Default port is 443.
path: Absolute URI path.

Anonymized DNSCrypt Relay Stamps DNSCrypt relay stamps encode parameters for anonymization relays.

Format

Fields

0x81: Protocol identifier for DNSCrypt relays.
addr: IP address and port. Port specification is mandatory.

Oblivious DoH Relay Stamps ODoH relay stamps encode parameters for Oblivious DoH relays.

Format

Fields

0x85: Protocol identifier for ODoH relays.

Other fields have the same meaning as DoH stamps.

Usage and Operations This section describes how to generate, parse, and validate DNS stamps in practice.

Generating DNS Stamps To generate a DNS stamp:

Select the appropriate protocol identifier.
Encode the properties field as 8 bytes in little-endian format.
Encode each parameter using the specified length-prefixing.
Concatenate all components in the specified order.
Apply base64url encoding to the complete payload.
Prepend "sdns://" to create the final stamp.

Implementation Requirements Implementations generating DNS stamps MUST:

Validate that all parameters meet format requirements.
Ensure strings are valid UTF-8.
Set undefined property bits to zero.
Include all mandatory fields for the protocol type.
Generate stamps that can be parsed by compliant implementations.

Parsing DNS Stamps To parse a DNS stamp:

Verify the stamp begins with "sdns://".
Extract and base64url-decode the payload.
Read the first byte as the protocol identifier.
Parse remaining fields according to the protocol format.
Validate all fields meet requirements.

Error Handling Implementations MUST detect and handle these error conditions:

Invalid base64url encoding
Unknown protocol identifier
Truncated payload
Invalid length prefixes
Malformed fields

Implementations SHOULD provide descriptive error messages indicating the specific validation failure.

Validation Requirements

Length Validation

Length prefixes MUST NOT exceed remaining payload size.
Certificate hashes MUST be exactly 32 bytes.
Ed25519 public keys MUST be exactly 32 bytes.
Properties field MUST be exactly 8 bytes.

Format Validation

IP addresses MUST be valid IPv4 or IPv6 addresses.
Hostnames MUST be valid DNS names.
Ports MUST be in the range 1-65535.
Paths MUST begin with /.

Semantic Validation

Certificate hashes SHOULD be validated against actual certificates.
Provider names SHOULD be verified to exist in DNS.
Bootstrap resolvers SHOULD be reachable.

Internationalization Hostnames in DNS stamps MUST be represented in their Unicode form within the stamp payload. Implementations MUST NOT apply punycode encoding before storing hostnames in stamps. When using the hostname for actual DNS queries or TLS connections, implementations MUST apply the appropriate encoding for the protocol being used. This approach:

Preserves readability when stamps are decoded for display
Avoids double-encoding issues
Allows implementations to apply protocol-specific encoding rules

Security Considerations

Stamp Integrity DNS stamps contain security-critical configuration including server addresses, cryptographic keys, and certificate hashes. The integrity of stamps is essential - a modified stamp could redirect users to malicious resolvers.

Threats

Substitution: Replacing legitimate stamps with malicious ones
Modification: Altering addresses, keys, or certificate hashes
Downgrade: Replacing secure protocol stamps with insecure ones

Mitigations Implementations SHOULD:

Obtain stamps over authenticated channels (HTTPS with certificate validation)
Verify stamps against known-good values when available
Warn users when importing stamps from untrusted sources
Validate all cryptographic parameters before use

Certificate Validation For protocols using TLS (DoH, DoT, DoQ), stamps may include SHA256 hashes of certificates in the validation chain. These provide certificate pinning but require careful management.

Security Requirements Implementations MUST:

Verify at least one certificate in the chain matches a provided hash
Follow standard certificate validation per
Check certificate validity periods and signatures
Verify the certificate matches the specified hostname

Operational Considerations Implementations SHOULD:

Support multiple certificate hashes to enable rotation
Provide clear errors for validation failures
Allow optional fallback to standard WebPKI validation
Cache certificate validation results appropriately

Privacy Considerations DNS stamps may reveal information about resolver configuration:

Server Locations: IP addresses indicate geographic regions
Logging Policies: Properties flags indicate data retention
Query Privacy: Bootstrap resolvers may see some queries

Users should understand the privacy implications of their chosen resolvers. Applications SHOULD display relevant properties clearly.

Implementation Security

Parsing Safety Malformed stamps could trigger implementation vulnerabilities:

Buffer Overflows: Validate all lengths before allocation
Integer Overflows: Check length calculations
Resource Exhaustion: Limit maximum stamp size

Cryptographic Safety

Validate Ed25519 public keys are valid points
Ensure certificate hashes are compared in constant time
Use cryptographically secure random numbers where needed

Downgrade Prevention Applications supporting multiple protocols MUST NOT automatically downgrade from secure to less secure protocols. For example:

Never downgrade from DoH to plain DNS
Never ignore certificate validation failures
Never bypass authentication requirements

If a secure connection fails, the implementation SHOULD report the error rather than attempting insecure alternatives.

Implementation Considerations

Platform Integration DNS stamp support can be integrated at various levels:

Operating System Level

System resolver configuration
Network configuration tools
VPN client integration

Application Level

Web browsers
DNS proxy software
Network diagnostic tools

Library Level

DNS client libraries
HTTP client libraries
Security frameworks

Performance Optimization

Caching Implementations SHOULD cache:

Decoded stamp data structures
Certificate validation results
Bootstrap resolver results
Connection state for persistent protocols

Connection Management

Reuse connections for multiple queries
Implement appropriate timeout strategies
Handle connection failures gracefully
Support connection pooling for concurrent queries

User Interface Considerations Applications SHOULD:

Display decoded stamp contents clearly
Allow copying stamps to clipboard
Support QR code generation/scanning
Provide stamp validation feedback
Show security properties prominently

Debugging Support Implementations SHOULD provide:

Detailed logging of stamp parsing
Connection attempt diagnostics
Certificate validation details
Performance metrics
Error context for troubleshooting

IANA Considerations

DNS Stamps URI Scheme Registration IANA is requested to register the “sdns” URI scheme in the “Uniform Resource Identifier (URI) Schemes” registry:

Scheme name: sdns
Status: Permanent
Applications/protocols: DNS client applications using DNS Stamps
Reference: This document

References Normative References Domain names - implementation and specification This RFC is the revised specification of the protocol and format used in the implementation of the Domain Name System. It obsoletes RFC-883. This memo documents the details of the domain name client - server communication. Uniform Resource Identifier (URI): Generic Syntax A Uniform Resource Identifier (URI) is a compact sequence of characters that identifies an abstract or physical resource. This specification defines the generic URI syntax and a process for resolving URI references that might be in relative form, along with guidelines and security considerations for the use of URIs on the Internet. The URI syntax defines a grammar that is a superset of all valid URIs, allowing an implementation to parse the common components of a URI reference without knowing the scheme-specific requirements of every possible identifier. This specification does not define a generative grammar for URIs; that task is performed by the individual specifications of each URI scheme. [STANDARDS-TRACK] The Base16, Base32, and Base64 Data Encodings This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet characters in encoded data, use of different encoding alphabets, and canonical encodings. [STANDARDS-TRACK] Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile This memo profiles the X.509 v3 certificate and X.509 v2 certificate revocation list (CRL) for use in the Internet. An overview of this approach and model is provided as an introduction. The X.509 v3 certificate format is described in detail, with additional information regarding the format and semantics of Internet name forms. Standard certificate extensions are described and two Internet-specific extensions are defined. A set of required certificate extensions is specified. The X.509 v2 CRL format is described in detail along with standard and Internet-specific extensions. An algorithm for X.509 certification path validation is described. An ASN.1 module and examples are provided in the appendices. [STANDARDS-TRACK] Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS) Many application technologies enable secure communication between two entities by means of Internet Public Key Infrastructure Using X.509 (PKIX) certificates in the context of Transport Layer Security (TLS). This document specifies procedures for representing and verifying the identity of application services in such interactions. [STANDARDS-TRACK] Specification for DNS over Transport Layer Security (TLS) This document describes the use of Transport Layer Security (TLS) to provide privacy for DNS. Encryption provided by TLS eliminates opportunities for eavesdropping and on-path tampering with DNS queries in the network, such as discussed in RFC 7626. In addition, this document specifies two usage profiles for DNS over TLS and provides advice on performance considerations to minimize overhead from using TCP and TLS with DNS. This document focuses on securing stub-to-recursive traffic, as per the charter of the DPRIVE Working Group. It does not prevent future applications of the protocol to recursive-to-authoritative traffic. DNS Queries over HTTPS (DoH) This document defines a protocol for sending DNS queries and getting DNS responses over HTTPS. Each DNS query-response pair is mapped into an HTTP exchange. DNS over Dedicated QUIC Connections This document describes the use of QUIC to provide transport confidentiality for DNS. The encryption provided by QUIC has similar properties to those provided by TLS, while QUIC transport eliminates the head-of-line blocking issues inherent with TCP and provides more efficient packet-loss recovery than UDP. DNS over QUIC (DoQ) has privacy properties similar to DNS over TLS (DoT) specified in RFC 7858, and latency characteristics similar to classic DNS over UDP. This specification describes the use of DoQ as a general-purpose transport for DNS and includes the use of DoQ for stub to recursive, recursive to authoritative, and zone transfer scenarios. The DNSCrypt Protocol Individual Contributor The DNSCrypt protocol is designed to encrypt and authenticate DNS traffic between clients and resolvers. This document specifies the protocol and its implementation, providing a standardized approach to securing DNS communications. DNSCrypt improves confidentiality, integrity, and resistance to attacks affecting the original DNS protocol while maintaining compatibility with existing DNS infrastructure. Key words for use in RFCs to Indicate Requirement Levels In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements. Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings. Informative References Guidelines for Writing RFC Text on Security Considerations All RFCs are required to have a Security Considerations section. Historically, such sections have been relatively weak. This document provides guidelines to RFC authors on how to write a good Security Considerations section. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements. An Interface and Algorithms for Authenticated Encryption This document defines algorithms for Authenticated Encryption with Associated Data (AEAD), and defines a uniform interface and a registry for such algorithms. The interface and registry can be used as an application-independent set of cryptoalgorithm suites. This approach provides advantages in efficiency and security, and promotes the reuse of crypto implementations. [STANDARDS-TRACK] Usage Profiles for DNS over TLS and DNS over DTLS This document discusses usage profiles, based on one or more authentication mechanisms, which can be used for DNS over Transport Layer Security (TLS) or Datagram TLS (DTLS). These profiles can increase the privacy of DNS transactions compared to using only cleartext DNS. This document also specifies new authentication mechanisms -- it describes several ways that a DNS client can use an authentication domain name to authenticate a (D)TLS connection to a DNS server. Additionally, it defines (D)TLS protocol profiles for DNS clients and servers implementing DNS over (D)TLS. This document updates RFC 7858. Oblivious DNS over HTTPS This document describes a protocol that allows clients to hide their IP addresses from DNS resolvers via proxying encrypted DNS over HTTPS (DoH) messages. This improves privacy of DNS operations by not allowing any one server entity to be aware of both the client IP address and the content of DNS queries and answers. This experimental protocol has been developed outside the IETF and is published here to guide implementation, ensure interoperability among implementations, and enable wide-scale experimentation.

Complete Examples This appendix provides complete examples of DNS stamp encoding with step-by-step explanations.

Example 1: Plain DNS Configuration:

Server: 192.0.2.53
Port: 53 (default)
Properties: DNSSEC (bit 0 set)

Step-by-step encoding:

Protocol identifier: 0x00
Properties: 0x01 0x00 0x00 0x00 0x00 0x00 0x00 0x00 (bit 0 set, little-endian)
LP(“192.0.2.53”): 0x0A ‖ “192.0.2.53” = 0x0A 0x31 0x39 0x32 0x2E 0x30 0x2E 0x32 0x2E 0x35 0x33
Concatenate: 0x00 0x01 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x0A 0x31 0x39 0x32 0x2E 0x30 0x2E 0x32 0x2E 0x35 0x33
Base64url encode: AAEAAAAAAAAACjE5Mi4wLjIuNTM
Final stamp: sdns://AAEAAAAAAAAACjE5Mi4wLjIuNTM

Example 2: DNSCrypt Configuration:

Server: 198.51.100.1
Port: 5553
Provider public key: e801...bf82 (32 bytes)
Provider name: 2.dnscrypt-cert.example.com
Properties: DNSSEC, No logs, No filter (bits 0, 1, 2 set)

Step-by-step encoding:

Protocol identifier: 0x01
Properties: 0x07 0x00 0x00 0x00 0x00 0x00 0x00 0x00
LP(“198.51.100.1:5553”): 0x11 ‖ address
LP(public key): 0x20 ‖ 32 bytes of key
LP(“2.dnscrypt-cert.example.com”): 0x1B ‖ provider name
Concatenate all components
Base64url encode
Final stamp: sdns://AQcAAAAAAAAAETE5OC41MS4xMDAuMTo1NTUzIOgBsd...

Example 3: DNS-over-HTTPS Configuration:

Hostname: dns.example.com
Path: /dns-query
No specific IP address
Certificate hash: 3b7f...b663 (32 bytes)
Properties: No logs (bit 1 set)

Step-by-step encoding:

Protocol identifier: 0x02
Properties: 0x02 0x00 0x00 0x00 0x00 0x00 0x00 0x00
LP(“”): 0x00 (empty address)
VLP(cert hash): Since it’s the only hash, same as LP: 0x20 ‖ 32 bytes
LP(“dns.example.com”): 0x0F ‖ hostname
LP(“/dns-query”): 0x0A ‖ path
No bootstrap IPs
Concatenate, base64url encode
Final stamp: sdns://AgIAAAAAAAAAAAAAD2Rucy5leGFtcGxlLmNvbQovZG5zLXF1ZXJ5

Test Vectors This appendix provides test vectors for validating DNS stamp implementations.

Test Vector 1: Plain DNS with IPv6

Test Vector 2: DoH with Multiple Certificate Hashes

Test Vector 3: DoT with Bootstrap

Acknowledgments The author would like to thank the DNSCrypt community for their extensive feedback and implementation experience. Special recognition goes to the developers of the various DNS stamp implementations who helped refine the format through practical deployment. Thanks also to the teams behind secure DNS protocols: DNSCrypt, DoH, DoT, and DoQ whose work made DNS stamps both necessary and useful. Their efforts to improve DNS privacy and security provided the foundation for this specification.