The AKR in DIDAKR stands for Authenticated Key Rotation. It is a decentralized identifier method in which the identifier carries a stable unique identifier, the current verification method, and a mandatory authorization proof. The authorization proof is a signature created with the previously trusted private key over the hash of the current verification method, allowing a verifier that already trusts the previous verification method to validate continuity from the earlier identity state to the current one.

Resolution in DIDAKR is continuity-based. A resolver compares the presented identifier against the last known trusted state for the same identifier. If no prior state exists, the identity is treated as a new unknown identity and the user should be shown a cautious first-seen trust prompt. If the current verification method matches the previously trusted verification method and the authorization proof verifies against that previously trusted verification method, the identity is considered verified. If the current verification method differs from the previously trusted verification method and the authorization proof verifies against that previously trusted verification method, the rotation is considered authenticated and continuity is preserved. If the current verification method differs but the authorization proof cannot be verified, for example because one or more intermediate rotations were missed, the resolver should warn the user that continuity could not be fully established and ask whether to trust and re-anchor the new verification method.