Yoursafe ID enables businesses to link YOU account holders to their platforms without needing to know the individual's true identity, while still ensuring the natural person's identity has been verified by Yoursafe. Regular checks, including daily sanction and PEP screenings, are conducted to maintain the integrity of the customer base. Customers may also leave the service, and businesses need to be aware of any changes to account status.
The DNS querying method provided by Yoursafe offers a way for businesses to check the status and compliance of YOU accounts without revealing personal attributes of the Yoursafe YOU account holder. This integration ensures platforms can meet compliance requirements while preserving user privacy.
The Domain Name System (DNS) is a fundamental protocol of the internet that translates human-readable domain names (e.g., www.example.com) into machine-readable IP addresses (e.g., 192.0.2.1). This system enables users to access websites and other internet resources using recognizable names rather than numeric IP addresses. DNS operates as a distributed database, with various record types storing different pieces of information related to domain names.
DNS TXT records are text-based records that can store arbitrary data associated with a domain. These records are commonly used for verification purposes, such as domain ownership verification, email security (SPF, DKIM), and other custom implementations. In the context of Yoursafe ID, DNS TXT records provide non-personal information about Yoursafe users, which can be useful for verifying account statuses and attributes.
A DNS TXT record consists of:
Several modern tools are available for making DNS queries. These tools help inspect DNS records, verify domain configurations, and diagnose issues. Common tools include:
To query the TXT records of accountstatus. <aliastoken>.yoursafe.id, you can use:
dig TXT accountstatus.<aliastoken>.yoursafe.id
This command will return the account status (e.g., <active> or <inactive>) of the given Yoursafe user.
The Alias Token product for DNS utilizes a specific structure for its TXT records. The field specifications are as follows:
Field Descriptions
aliasserial
|
A serial associated with the account that changes when there is a significant modification to the account. |
accountstatus
|
Indicates whether the account is active or inactive. |
country
|
Specifies the country of residence of the Yoursafe YOU customer. |
countrycode
|
The ISO-3166 country code for the customer's country of residence. |
eighteenplus
|
A Boolean value indicating whether the customer is over 18. The value could be True or False |
idverifieddate
|
The date of the last ID verification. Format YYYY-MM-DDTHH24:MM:SSZ |
peplistdate
|
The timestamp of the last check against the PEP list. Format YYYY-MM-DDTHH24:MM:SSZ |
sanctiondate
|
The timestamp of the last check against the sanction list. Format YYYY-MM-DDTHH24:MM:SSZ |
uksanctionlists
|
Returns "Negative" if the customer is not listed on any known UK sanction lists. |
unsanctionlists
|
Returns "Negative" if the customer is not listed on any known UN sanction lists. |
ussanctionlists
|
Returns "Negative" if the customer is not listed on any known US sanction lists. |
eusanctionlists
|
Returns "Negative" if the customer is not listed on any known EU sanction lists. |
ibanserials
|
Serial numbers of IBANs associated with the Yoursafe YOU customer. |
An example TXT record with the Alias Token structure for accountstatus. <aliastoken>.yoursafe.id could look like:
accountstatus.xyz123.yoursafe.id. 300 IN TXT "active"
This record provides the account status, ensuring that businesses querying the DNS can validate and interact with the provided token data.