Owner: Robert Taylor (Eng) · Department: Engineering · Status: Live · Version: 1.0
Effective Date: 2026-06-13 · Last Reviewed: 2026-06-13 · Next Review Date: 2026-09-13
Source of Truth: code (FastAPI backend) · Maturity: 4 (Operational)
Cryptographic compliance seals: Ed25519-signed JWS tokens issued per subject (customer/product/vendor), verifiable via a public JWKS endpoint.
seal_signing_key.key_source./.well-known/jwks.json (RFC 8037 Ed25519).seal_scan row.ED25519_SHA_512 algorithm value — likely-bug, may not verify (§10)./verify/seal can return a presigned customer selfie URL — privacy flag (§10.30).Architecture index · Identity Verification Standard · Home
Distilled from docs/audits/backend-truth-audit-2026-06-13.md and portal-maturity-audit-2026-06-13.md.