DNS/CDN/frontend hash drift

USDD (Decentralized USD)'s assessment for RD-F-105 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

DNS/frontend drift signal is applicable to usdd.io. Certificate transparency review (crt.sh retrieved 2026-05-17) shows: main wildcard (*.usdd.io + usdd.io) on Amazon CA (RSA 2048 M04), valid 2026-03-27 to 2026-10-10; docs/docs-zh/legacy-docs/beta-docs subdomains all on Google Trust Services with March-April 2026 issuances (valid 3-month cycles, consistent with automated cert rotation). No anomalous CA change, no unexplained cert rotation, no evidence of DNS hijack in observable cert transparency record. Multi-CA pattern (Amazon for main, Google for subdomains) is internally consistent. T-09 phase-2 signal infrastructure needed for live hash monitoring — static posture assessment only.

Sources #

URL
crt.sh Certificate Transparency for usdd.iocrt.sh certificate transparency — usdd.io wildcard and subdomains, Amazon CA + Google Trust Services, March-April 2026retrieved 2026-05-17

Methodology #

Detect whether the hash of production frontend JS changes versus the prior published hash, or a DNS config change is detected.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol usdd factor RD-F-105 score green collected_at 2026-05-17 11:34:18