Whitepapers
No working papers have been published yet.
When AttestLayer publishes its first working paper on record-only evidence rails, packet structure, fail-closed verification, or partner-led delivery, it will be listed here. AttestLayer does not publish speculative titles, anticipated dates, or implied institutional pilots.
Anything published here in the future will be a working paper, not legal, audit, security, insurance, or investment advice.
Get notified
Email program@attestlayer.com with subject "Program whitepapers — notify me" and you will be added to the notification list. You will only be emailed when a real working paper is published.
No recurring marketing emails. Notification-only.
The AttestLayer trust model
AttestLayer’s trust model is intentionally narrow. It records what was submitted, what was accepted into scope, what was issued, and how the issued kit can be checked.
The model uses
- SHA-256 artifact hashing
- manifest-based evidence inventory
- canonical receipt hashing
- Ed25519 receipt signatures
- JWKS public-key discovery
- offline verification
- fail-closed verification behavior
What it proves
- files match the manifest
- manifest matches the receipt
- receipt key ID matches a public key
- receipt signature verifies
- the kit has not been modified since issuance
What it does not prove
- company compliance status
- company security status
- controls are operating effectively
- a buyer, auditor, insurer, bank, regulator, or PSP has accepted the packet
- the evidence content is legally sufficient
Integrity and issuance evidence only. Not audit, certification, or compliance guarantee.