Identity Registrar

The Identity Registrar is a centralized service which signs certificates & is the first layer of protection for the network. The IR protects the network by filtering faulty certificates,Sybil Attacks, and nefarious actors. The Identity Registrar ensures malicious certificates aren’t signed which allows services to efficiently deny their connection attempts. False signatures can be denied by the DIS and therefore potentially protect a service and save some of its resources. A decentralized network and dynamic blockchain will be leveraged to help validate newly submitted certificates for signing. If the certificated is successfully vetted by the network the IR signs the certificate and then it can be successfully used by services and the DIS. During the initial handshake, the first packet contains the certificates required to establish a UDSP bi-directional stream. If signatures are successfully validated the rest of the handshake process continues.