Capability · attestation certificates

Cryptographic attestation certificates

Signed compliance proofs that anyone can verify without trusting Attestry.

Attestation certificate showing SHA-256 hash, framework list, expiry date, QR-coded verify URL, and revocation status

An attestation is only as strong as the math behind it. Every Attestry certificate is a SHA-256 hash binding a specific system, a specific assessment, the framework set, and the score at the moment of issuance, wrapped in a W3C Verifiable Credential envelope and signed. Where score privacy matters, a Sigma-protocol zero-knowledge proof attests "score ≥ threshold and no critical gaps" without revealing the underlying numbers. Each certificate ships a public verify page, an embeddable SVG badge, a QR-coded PDF, and a stable revocation status, so a buyer, partner, or regulator can verify a vendor's compliance claim independently.

What's included

Built to be auditor-ready out of the box

SHA-256 hash + W3C Verifiable Credential

Each attestation is a SHA-256 hash over the system, assessment, score breakdown, and timestamp, wrapped in a W3C VC envelope (HMAC-SHA256 signed) so the format is interoperable with any VC-aware verifier.

Zero-knowledge score proofs

Optional Sigma-protocol ZK proofs (Fiat–Shamir non-interactive) attest score ≥ threshold and absence of critical gaps without revealing the actual score, useful when buyers need assurance but the vendor doesn't want to publish a number.

Public verify page + QR-coded PDF

Every certificate has a /verify/[hash] page anyone can hit without authentication. The same page is reachable from a QR code embedded in the rendered PDF, so paper attestations remain machine-verifiable.

Embeddable SVG badges, risk-based expiry

Six badge styles render as SVG so they paste into any site or doc. High-risk attestations expire after 6 months; lower-risk attestations after 12 months, automatically tracked and alerted before they lapse.

Cryptographic primitives behind this capability

Each capability rests on signed, verifiable signature components.

Component

Signed attestations

Component

Trust registry

Component

Evidence chain

Start attesting in 60 seconds.

Free plan includes fingerprinting, unverified attestations, and a public registry listing. Upgrade when you need signed proofs or SLA-backed verification.

Create a free account See pricing

Capability · attestation certificates

Cryptographic attestation certificates

Signed compliance proofs that anyone can verify without trusting Attestry.

Start free See all features

What's included

Built to be auditor-ready out of the box

SHA-256 hash + W3C Verifiable Credential

Zero-knowledge score proofs

Public verify page + QR-coded PDF

Embeddable SVG badges, risk-based expiry

Cryptographic primitives behind this capability

Each capability rests on signed, verifiable signature components.

Component

Signed attestations

Component

Trust registry

Component

Evidence chain

Start attesting in 60 seconds.

Free plan includes fingerprinting, unverified attestations, and a public registry listing. Upgrade when you need signed proofs or SLA-backed verification.

Create a free account See pricing