April 2026 - Taking Flight: Google Trust Services Unveils Revolutionary "Carrier-Pigeon-01" Domain Validation!

Date: April 1, 2026

Here at Google Trust Services, we're constantly striving to enhance security and streamline processes for domain owners. While digital methods are great, we felt something was missing – a tangible, physical touch. That's why today, we're incredibly excited to announce a groundbreaking new domain validation method: Carrier-Pigeon-01!

Tired of emails? Bored with DNS changes? We're bringing back a time-tested communication technology, enhanced for the digital age.

How Carrier-Pigeon-01 Works:

  • Initiation: When you need to validate your domain, select the "Carrier-Pigeon-01" challenge type.
  • Pigeon Deployment: To support Multi-Perspective Issuance Corroboration (MPIC) and protect against pigeon hijacking or misdirection, Google Trust Services will release 6 highly trained, GPS-equipped carrier pigeons, sourced from 6 unique global locations. Each bird will carry a small, eco-friendly capsule containing the same unique token.
  • Destination: The pigeon will be dispatched to the physical address listed in the domain's WHOIS record. (Make sure your WHOIS info is up to date!)
  • Retrieve the Code: Upon the pigeon's arrival, the domain owner (or designated recipient) retrieves the token from the capsule and computes the keyAuthorization as per RFC8555 Section 8.1.
  • Return Journey: The domain owner then attaches the base64url-encoded SHA-256 digest of the keyAuthorization to each of the 6 pigeons' leg capsules and directs it to return to its originating data center.
  • Confirmation: Upon arrival of pigeons at our data centers, we check the returned digest. Provided at least 5 of the 6 pigeons return successfully with the correct value, we will confirm control of the domain.

Benefits of Carrier-Pigeon-01:

  • Unparalleled Security: Bypasses digital interception methods. It's pigeon-to-peer!
  • MPIC Ready: Uses 6 pigeons from diverse locations for Multi-Perspective Issuance Corroboration.
  • Physical Layer Authentication: Adds a tangible layer of verification.
  • Eco-Friendly: Reduces carbon footprint compared to server-based methods (pigeons run on seeds!).
  • Nostalgic Charm: Who doesn't love carrier pigeons?

We believe Carrier-Pigeon-01 represents the pinnacle of secure and reliable domain validation. We're confident this blend of natural wonder and technical verification will set a new standard.

While we continue to offer certificates at no cost, our pigeons do expect payment in birdseed upon delivery of the challenge token.