add: NIP-80 hardware-attested media provenance#2409
Open
PrarthanaPurohit wants to merge 1 commit into
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This NIP defines events for media provenance anchored in capture hardware: a camera signs each photo at the moment it's taken, and the proof is published to relays keyed by the content itself, so verification survives metadata stripping, re-hosting, and platform takedowns. Re-encoded copies are handled through derivation attestations rather than fuzzy matching.
The motivation is journalists and human rights defenders documenting events in places where "that's AI-generated" is the default dismissal. C2PA exists, but it embeds manifests in file metadata that every major platform strips on upload, and its trust model runs through certificate authorities and expensive proprietary cameras. This puts the proof out-of-band on relays and lets every verifier pick their own trust roots. There are no authorities anywhere in the design.
To be upfront about scope, since it's the first thing everyone asks: an attestation proves capture provenance—this exact image came from this device at roughly this time, unmodified or modified only in declared, provable ways. It does not prove the scene was real. A trusted camera pointed at a screen will faithfully attest a photo of that screen. The specification explicitly forbids clients from collapsing results into a bare "authentic" badge.
New event kinds
(Checked against the README table, registry-of-kinds, and nostrdata/kinds. Happy to renumber if I missed an existing allocation, including the NIP number.)
Existing NIPs reused
xtag semantics)imeta)Status
This specification grew out of building the camera first and then realizing the event format itself needed standardization.
I have a working prototype, OpenVeilCam, a Rust camera runtime for Raspberry Pi using an ATECC608 secure element:
I'm currently updating it to publish these event kinds, along with a standalone verifier. The
px1reference decoder and test vectors will also live in that repository. The specification intentionally makes a canonicalization identifier unusable until its reference implementation and test vectors are published, so nothing depends on trusting my implementation.Feedback I'd especially appreciate