V3RUM verum

a format for proving a moment was real

Pay once for an identity.
Sign anything, forever, free.

V3RUM is a portable cryptographic identity, witnessed by a constellation of independent sources that can't be faked together. One deliberate ceremony establishes who you are. After that, every signature you make is free, derived, and inherits the trust of the founding moment.

Open standard. No vendor lock-in. The math is the trust anchor; the artifact carries its own proof. Pricing intentionally too small to fund a venture-backed company.

Mint a preview verum → See how it works
  1. phone biometric
  2. watch attestation
  3. drand beacon
  4. btc block hash
  5. rfc 3161 timestamp
  6. geospatial fix
  7. market state
  8. ai-gate ack

§ 01 · what it is

A seal is one bit of proof.
A constellation is a different problem.

One signature can be forged. One GPS fix can be spoofed. One biometric reading can be lifted. A timestamp from one server can be replayed.

Forging the agreement between witnesses — phone GPS and watch GPS within three meters of each other, both clocks within fifty milliseconds, the WiFi BSSID set matching the public registry for that neighborhood, the drand beacon value matching the round published four seconds earlier, the AI envoy's signed acknowledgment arriving 1.2 seconds after the human's biometric assertion — that's a different category of problem.

You'd need to compromise multiple unrelated vendors, predict unpredictable beacons, and synthesize physically-consistent sensor data across uncoupled devices. The attack surface is the intersection of every system, not the union.

parallel

The same logic that makes nuclear test detection work. Seismic, infrasound, hydroacoustic, radionuclide. Any one is fakeable. The four agreeing is not.

The Comprehensive Nuclear-Test-Ban Treaty Organization runs the International Monitoring System with four modalities chosen specifically because they fail independently and lie independently. The treaty's credibility rests on cross-modal coherence, not on any single sensor's accuracy.

V3RUM applies the same epistemics to a much smaller question: did this moment really happen?

§ 02 · the witnesses

Additive. Substitutable. Decorative when you want it.

A verum is built from witnesses. Each witness contributes points. Nothing is required; everything counts. Stack a few for a casual seal, stack many for a foundational one. The score is on the artifact, the breakdown is auditable, and a single failed witness doesn't break the seal — it just doesn't add its points.

structural

Cryptographic attestations, time anchors, biometric devices, geospatial witnesses. Load-bearing. The constellation that does the work.

  • WebAuthn assertion · 15 pts
  • Apple Watch attestation · 10 pts
  • OpenTimestamps anchor · 12 pts
  • RFC 3161 token · 8 pts each
  • drand beacon round · 5 pts
substitutable

Defined by category, not by vendor. If NWS dies, EUMETSAT slots in. If FreeTSA shuts down, DigiCert slots in. The category is the contract; the members come and go.

  • atmospheric observation · 4 pts
  • financial market state · 4 pts
  • news consensus · 2 pts each, capped
  • public randomness · 5 pts
  • blockchain state · 6 pts
decorative

Easter eggs. They contribute nothing to fabrication-resistance. They contribute to the seal's character. Sign from the Burj Khalifa. Sign during a thunderstorm. Sign with your heart rate at 140. Strangers will read it later and form opinions.

  • altitude tag · 0–1 pts
  • elevated heart rate · 0–1 pts
  • concurrent eclipse · 1 pt
  • signed at 3:33 AM · 0 pts
  • border crossing · 0 pts

Numbers illustrative. Final weights live in the spec. Diminishing returns within categories. Independence requirements between witnesses. The point isn't the math — the point is that the math exists, is auditable, and doesn't require trusting V3RUM.

§ 03 · how strong

Sender-chosen rigor. The seal carries its own score.

sketch20–40 ptsCasual replies, low-stakes attribution. Roughly: phone biometric + one timestamp + a few world signals.
brief50–100 ptsStandard for substantive disclosures. Adds watch attestation, BTC anchor, AI-gate, full geospatial constellation.
record100–200 ptsFoundational disclosures meant as defensive prior art. Multiple time anchors, multi-AI witnessing, per-page attention chain.
archive250+ ptsWhen you want indisputability. Stack everything. The score itself signals how seriously the author treats the disclosure.

§ 04 · mint

Mint a verum. Right now. In your browser.

Drop a file or paste some text. Your browser hashes it locally. A WebAuthn passkey ceremony binds the hash to your device. Public world-signals — a drand round, a Bitcoin block, the current time — get pulled in as witnesses. The result is a downloadable .verum.json that anyone can verify against the spec.

v0.1 preview. This is the demo seal. Witness count is intentionally minimal. Verums minted here will re-validate against v1.0 when the spec finalizes, but the score will be modest. Use it to feel the shape of the thing.

§ 05 · why this stands

The format is the trust anchor. Not V3RUM.

The right model isn't trusted root DNS servers. It's closer to Certificate Transparency logs or OpenTimestamps calendars — public infrastructure where the spec is canonical and any operator can implement against it.

A verum produced by V3RUM today is verifiable by anyone, anywhere, without contacting V3RUM. The verifier reads the spec, fetches the public witness values from their original sources, and checks the math. We could vanish tomorrow and existing verums would still verify.

That's the property that makes this credible. Patents depend on the USPTO existing and the courts honoring its records. Notarization depends on the notary's commission. Verums depend on some qualifying witness existing in each category at verification time — and the bar for "some witness exists" is very low.

the genesis verum

On a date soon, the V3RUM v1.0 specification will be sealed using V3RUM. The verum will be public. The spec will verify its own seal. The lineage starts there.

That's the move that makes V3RUM v1.0 canonical. Not by anyone's permission. By the format being good enough to be worth adopting, and the math working.

§ 06 · soft spots

What's honestly not solved yet.

  • WebAuthn portability. Passkeys aren't fully portable across ecosystems yet. A verum signed with an Apple passkey verifies fine, but the user can't easily move that key to Android.
  • Score inflation through low-quality witnesses. Padding 50 trivial witnesses to game tier. Mitigated by per-category caps and independence requirements; not eliminated.
  • Decorative-tier status games. "Signed from the Burj Khalifa" might become a flex. Score breakdown shows structural-vs-decorative separately, so 200 points of which 180 are decorative reads as performative, not fortified.
  • Health-data commitment risks. Even hashing health data on a public artifact creates a permanent target if the underlying data leaks elsewhere. Regulatory status uncertain — HIPAA, BIPA, GDPR all have unsettled positions.
  • Witness source mortality. Substitutability handles this in principle. In practice, if a category loses all qualifying witnesses simultaneously, that category degrades.
  • The legal status of a verum. Untested in court. Probably stronger than current notarization. Probably weaker than a fully-litigated patent. Where exactly it lands is empirical and will take real cases to determine.