This is the reference implementation for the server-side component of the Public Key Directory specification, written in Go.
The hardest part of designing end-to-end encryption for the Fediverse, as with most cryptography undertakings, is key management. In short: How do you know which public key belongs to a stranger you want to chat with privately? And how do you know you weren't deceived?
Our solution is to use Key Transparency, which involves publishing all public key enrollments and revocations to an append-only ledger based on Merkle trees. This allows for a verifiable, auditable log of all key-related events, providing a strong foundation for trust.
This project, and the accompanying specification, are the result of an open-source effort to solve this problem. You can read more about the project's origins and design philosophy on Soatok's blog, Dhole Moments:
For detailed information on how to deploy and configure the server, please see the online documentation.
This project is licensed under the ISC License.