mandatory author:ursuscamp
The protocol described in this document is a strict improvement over v0. It resolves data availability issues by putting all name ownership on chain, and it also enables transfers.
- Indexer: A server which maintains an index of name claims made on Bitcoin and correlates them to records events on public Nostr relays.
- Claim: A claim to a new name published in an
OP_RETURNoutput on the Bitcoin blockchain. - Public Key: A 32-byte X-Only Public Key, following the Nostr and Taproot styles.
- Signature: A 64-byte Schnorr signature, following the Nostr and Taproot styles.
When a new name is claimed, it is published to the Bitcoin blockchain in an OP_RETURN output. When a new v1 claim is found, an indexer should recalculate the v0 NSID, and if the it matches a previous v0 claim, then that v0 claim is updated to v1. Otherwise if it is not the first claim, it is invalid.
Additionally, indexers monitor for transfers, which require two transactions (due to size limits on OP_RETURN outputs).
Indexer monitor the blockchain for new blocks with Nomen claims, indexing them in order. Indexers also monitor public Nostr relays to find corresponding record events to associate with the name.
Claims are indexed in blockchain order. In other words: Block height -> Transaction height (inside block) -> Output height (inside transaction).
Claims are published inside OP_RETURN outputs and follow this format: "NOM" 0x01 0x00 <PUBKEY:32> <NAME:3-43>. This is a pure binary output, formatted here readability.
"NOM": This is a protocol tag. It is a 3-byte bytestring consisting of ASCII characters This helps indexers identity claims.0x01: Protocol v1 tag.0x00: The transaction byte. 0x00 indicated aCREATE.PUBKEY: 32-byte X-Only Public Key.
To initiate a transfer, someone must publish a transaction with an OP_RETURN output as such: "NOM" 0x01 0x01 <PUBKEY:32> <NAME:3-43>. This is similar to a create except:
PUBKEYmust be the pubkey for the NEW owner, not the original.- The transaction type is
0x01for aTRANSFER.
Upon seeing this output, the indexer will cache it and watch for a signature in a later output or later transaction. If the transfer isn't completed by a signature in TRANSFER_BLOCK_HEIGHT <= (CURRENT_BLOCK_HEIGHT - 100) then the indexer will forget about the transfer and it must be reinitiated again. This is simply to prevent the transfer cache from growing unbounded forever.
To complete a transfer, a signature from the original owner authorizing the transfer must be published in an OP_RETURN output. The output will take this form: "NOM" 0x01 0x02 <SIGNATURE:64>. In this case, the transaction type is 0x02 for TRANSFER SIGNATURE.
Upon seeing a transfer signature, an indexer will compare the signature to all cached transfers, and if it exists, it will update the name to match the cached transfer, and remove the transfer from the cache.
To obtain a signature, we use a dummmy Nostr event, which must be signed by the previous owner. After the owner signs the event, the sig value is removed from the signed event, and that is the signature that is published on chain.
{
"pubkey": "previous owner pubkey",
"created_at": 1,
"kind": 1,
"tags": [],
"content": "<NEW OWNER PUBLIC KEY><NAME>"
}The rationale behind using a dummy Nostr event as the message format is that this is intended to be a Nostr native protocol. Nostr's ecosystem is built around browser extensions that conform to the NIP-07 standard, which can sign only Nostr events, not generic messages. Using this dummy Nostr event allows users to make use of the existing tooling in the ecosystem.
Nostr is the propogation layer of the protocol. The only required information on-chain is the information necessary to determination ownership of a name.
There is one new kind of Nostr event. It is a parameterized replaceable event (all events are idempotent and thus replaceable).
| Event kind | Event type | Description |
|---|---|---|
| 38300 | NAME | Matches 0x00 tranaction type. Publishes records for a name. |
NOTE: This is unchanged from protocol v0.
After publishing a 0x00 name transaction, publish a 38300 kind Nostr event. The d tag for the event should be the lower case hex representation of the NAMESPACE ID. Additionally, there should be a nom tag with the name value as the parameter. content must be a JSON-serialized object of key/value pairs. These key/value pairs represent the records for the name. For example, NPUB might be the owner's Nostr npub, EMAIL might be the owner's email, etc.
When the records need to be updated, the owner may just publish another name event with different records and it will be replaced.
When receiving new events, an indexer should recalculate the namespace ID and compare to the d tag to validate the event. Valid records for a name can only be accepted when published by the name's owner.
It is necessary to limit the characters used in names. While it might be tempting to allow any valid UTF-8 string, there are good reasons not to do this. In the Unicode standards, there are sometimes different ways to the construct the same character, invisible characters, or "whitespace" characters that may not necessarily be rendered, etc. This could allow for malicious individuals to trick unsuspecting users into clicking/pasting incorrect names.
While it is desirable to have a wide range of characters and languages be usable, for the time being it is necessary to restrict the use of characters to the basic characters typically used in domain names today.
Names must match the following regular expression [0-9a-z\-]{3,43} and must be ignored by indexers otherwise.
# Key data for vectors
keys:
- sk: 2a1a6fe815e69e09c95093ff04b7deee2182a56c55c8d4f07a3872a7f77208dc
pk: 60de6fbc4a78209942c62706d904ff9592c2e856f219793f7f73e62fc33bfc18
- sk: 1b435623bccbf4b9b3b43fc8275f4aade5f26f3602675d6c70c58afd8a465f1b
pk: 74301b9c5d30b764bca8d3eb4febb06862f558d292fde93b4a290d90850bac91
# On chains claims for testing OP_RETURN validity
claims:
- name: hello-world
type: create
pk: 60de6fbc4a78209942c62706d904ff9592c2e856f219793f7f73e62fc33bfc18
op_return: 4e4f4d010060de6fbc4a78209942c62706d904ff9592c2e856f219793f7f73e62fc33bfc1868656c6c6f2d776f726c64
valid: true
- name: hello-world
type: transfer
new_pk: 74301b9c5d30b764bca8d3eb4febb06862f558d292fde93b4a290d90850bac91
op_return: 4e4f4d010174301b9c5d30b764bca8d3eb4febb06862f558d292fde93b4a290d90850bac9168656c6c6f2d776f726c64
valid: true
- name: hello-world
type: signature
old_sk: 2a1a6fe815e69e09c95093ff04b7deee2182a56c55c8d4f07a3872a7f77208dc
new_pk: 74301b9c5d30b764bca8d3eb4febb06862f558d292fde93b4a290d90850bac91
op_return: 4e4f4d0102489e4e3ab29408da53733473156040a25e5a84cbca788c2b7143f971ead84192ae8bd8e4890cfabb08dca693875c28a1949ae0d13f5c6b08617e4fdc022bc751
valid: true
- name: ld
type: create
pk: 60de6fbc4a78209942c62706d904ff9592c2e856f219793f7f73e62fc33bfc18
op_return: 4e4f4d010060de6fbc4a78209942c62706d904ff9592c2e856f219793f7f73e62fc33bfc186c64
valid: false
# Checking name validity
names:
- name: hello-world
valid: true
- name: hello!
valid: false
- name: ld
valid: false
- name: abcdefghijklmnopqrztuvwxyzabcdefghijklmnopqrztuvwxyz
valid: false
- name: 123abc
valid: true2023-11-04:
- This protocol document has been re-issued as part of the set of
NOMspecifications.