Issue 01 · Prospectus
VerifiablyBased
April 22, 2026 · San Francisco
§ 00 — A DECLARATION

Every image is a lie until proven otherwise.

A camera app that signs every photo at the shutter — device-attested, timestamped, and verifiable by anyone. Built on the open C2PA standard.

Get early accessSee how it works →
Available now iOS app, early accessStandard C2PA, open & verifiableNext MagSafe module, in development
Threat
Photorealistic fabrication, trivially cheap.
Failure of
Metadata. Watermarks. AI detection.
Shipping now
C2PA provenance — device-attested & timestamped.
On the roadmap
MagSafe sensor module — physics-rooted, in development.
§ 01  — THE PROBLEM
The collapse of visual trust
Beat 01

Photos used to be proof.

Courts accepted them. Newspapers printed them. For a century and a half, a photograph was an artifact of a moment that actually happened — an imperfect but followable chain from scene to print.

1839 — Daguerreotype accepted as evidence.

1860s — Civil War photojournalism.

1975 — First digital sensor, Kodak.

2010s — Raw metadata as provenance.
Then, in eighteen months, every image on the internet became suspect.— The turn, 2023–2024
Beat 02

AI changed that.

A laptop and a diffusion model now fabricate people who never existed, at events that never happened — indistinguishable from a real photograph on every metric that matters.

The tell is gone

Watermarks come off. Metadata strips. Detection models lag the generators by months — and the gap is widening.
A photorealistic night street sceneCamera · signed
A near-identical night street scene, AI-generatedGenerated
One was captured by a camera. One was generated. Your eyes can't tell them apart — a credential can.
Beat 03

The systems that depend on images are breaking.

Visual truth is load-bearing across civic life. Each of these domains has lost a reliable test for “this image is of a real scene.”

Why now

The cost to fabricate collapsed; the cost to verify didn't. Every domain below assumed an asymmetry that is gone.
01

Journalism

Fabricated “eyewitness” photos outrun the debunk.

02

Legal evidence

Chain-of-custody assumed photos were hard to forge.

03

Insurance

Damage photos are now trivially generated.

04

Identity

Synthetic faces clear liveness checks in bulk.

05

Science

Fabricated figures, climbing retractions.

06

Autonomous vision

Vehicles trust camera feeds with no attestation.

Beat 04 — The turn

It's time to prove what's real.

Not detect. Not guess. Not flag. Prove.

§ 02  — THE PLATFORM
Capture app + open verifier
01 — The capture app

Provenance, built into the shutter.

Take a photo and it is signed at the shutter, then sealed into a tamper-evident Content Credential. No new workflow — the proof travels with the file.

  • Signed in the iPhone's Secure Enclave
  • Device-attested via Apple App Attest
  • RFC 3161 trusted timestamp
  • Written to the open C2PA standard

In early access via TestFlight.

The app's trust-chain screen: a Trusted seal over the C2PA manifest — validation, signing cert, RFC 3161 time, attestation
verify.verifiablybased.com
02 — The open verifier

Anyone can check it.

Drop a photo into the browser verifier or call the SDK. It confirms the photo came from the VB app on an attested iPhone, unchanged since capture — chaining to the VB certificate authority, on track for the C2PA Trust List.

No account · no server · the check runs locally.

Every photo leaves your phone with a credential attached.
§ 03  — HOW IT WORKS
Capture · sign · verify

One photo, end to end.
No trust required.

→ signed photo
→ C2PA credential
Station 01 · In the app
Capture
At the shutter, a key in the iPhone's Secure Enclave signs the image — bound to an App Attest assertion proving it's really our app on a genuine device.
Secure Enclave · App Attest
Station 02 · On-device
Prove
The app assembles a C2PA manifest — signature, device attestation, and an RFC 3161 timestamp — embedded in the file and chained to the VB certificate authority.
C2PA manifest · RFC 3161
Station 03 · Anywhere
Verify
Anyone can check it — in the browser verifier or via the SDK — and see the photo came from the VB app on an attested iPhone, when, and unchanged since. No account.
C2PA · Browser & SDK
§ 04  — ROADMAP
The one gap software can't close

Software proves origin. Hardware will prove the scene.

App provenance proves a photo came from our app on an attested iPhone, at a known time, unchanged since. What it can't prove is that the pixels began at a real sensor pointed at a real scene — show any phone camera a screen or an injected feed and the software faithfully signs it. That gap is why we're building hardware.

Fig. R1 · MagSafe verifiable camera module — concept, in development
Shipping now

Provenance

Origin and integrity: every photo is C2PA-signed, device-attested, and timestamped — verifiable by anyone, no account or server. The trust layer for the phone you already carry.

iOS app · C2PA
In development

Fortress

A MagSafe-attachable camera module that roots trust in physics — the unclonable electrical characteristics of the silicon sensor itself, which cannot be cloned, extracted, or simulated. It attests that a real sensor captured a real scene, closing the gap software can't. It clips to the phone you already carry.

MagSafe module · sensor PUF

We ship the software trust layer today and extend it to hardware-rooted sensor proof tomorrow — same open standard, same verifier, a deeper root of trust.

§ 05  — UNDER THE HOOD
For the crypto-curious

Attestation chain

  1. App Attestdevice
  2. Secure Enclavesigns
  3. C2PA Manifestclaim
  4. RFC 3161 Timestampwhen
  5. VB Trust CAchains
  6. Verifiable PhotoC2PA
verify-image.tsTypeScript · SDK
// verify a photo anywhere — open C2PA standard, no account
import { verify } from "@verifiablybased/sdk";

const { ok, app, device, signedAt } = await verify(imageBytes);

if (ok) {
  console.log("captured in app", app.name);    // VerifiablyBased
  console.log("attested device", device.model);
  console.log("signed at", signedAt); // RFC 3161 timestamp
}
§ 05.1 · C2PA provenance

Provenance to an open standard.

Every photo carries a C2PA manifest — a Content Credential recording who captured it and that it's unaltered. It's the cross-industry standard (Adobe, Microsoft, the BBC), so any compliant tool can read it — the proof isn't ours to gatekeep.

§ 05.2 · Secure Enclave + App Attest

Signed by the device, attested as genuine.

The signing key lives in the iPhone's Secure Enclave and never leaves it. Apple's App Attest vouches that the signature came from the real VB app on a genuine device — not a script, emulator, or tampered build.

§ 05.3 · Trusted timestamp

Independent proof of when.

Each manifest carries an RFC 3161 timestamp from an independent authority — the capture time is asserted by a third party, not merely claimed by the phone.

§ 05.4 · Trust chain + SDK

Open verification, everywhere.

Credentials chain to the VB certificate authority, on track for the C2PA Trust List. Any app can verify a photo in one client-side call. The verifier is free — trust as infrastructure, not a subscription.

§ 05.5 · Hardware — in development

Rooting trust in the sensor.

Software proves a photo's origin and integrity, but not that a real sensor saw a real scene. Our hardware roadmap closes that gap: a MagSafe camera module whose silicon Physical Unclonable Function (PUF) binds each capture to one physical sensor — unclonable, unextractable — with zero-knowledge proofs that attest authenticity without exposing device identity. In development.

§ 06 — EARLY ACCESS

The era of provable images starts here.

The iOS app is in early access — request a TestFlight invite and SDK access. The same list follows the MagSafe hardware module as it comes together.

iOS app early accessC2PA open standardVerifier & SDK freeHardware in development
What you getEarly TestFlight access to the app, and SDK access to verify photos.
What we promiseNo spam. Product and roadmap updates only. Leave anytime.
What we don'tSell your email. Share your address. Use dark patterns.