How VeriSources Delivers Verifiable Media Provenance

This optional image add-on sends the uploaded image from the VeriSources Java backend to a trusted cloud AI engine, which returns a probability score indicating whether the image may be AI-generated or synthetically manipulated. The result is then stored and displayed as part of the trust record.

Used correctly, this gives organizations a second lens: VeriSources can both prove origin through identity, hashes, C2PA, and Bitcoin-backed evidence, and screen for deception using modern AI detection. That makes the platform especially compelling for media, legal, insurance, compliance, and investigative workflows.

• AI Image analysis
• Probability score stored with asset record
• Visible in review and verification workflows
• Designed as an optional paid add-on

The Coalition for Content Provenance and Authenticity (C2PA) is the open industry standard for provenance metadata, backed by Adobe, Microsoft, Intel, the BBC, and over 300 organisations. When enabled, VeriSources embeds a signed C2PA manifest directly into the trusted image file at certification time — meaning provenance data travels with the file.

Tools like Adobe Content Credentials, Microsoft's Content Integrity feature, and AI detection platforms can read the embedded proof without ever contacting VeriSources. This is the recognised standard for newsrooms and publishing workflows.

• C2PA 1.x manifest embedded in JPEG/PNG
• Signed provenance assertion in XMP
• Readable by Adobe, Microsoft & others
• Proof travels with the certified file
• AI-detection platform compatible
• Newsroom-ready provenance signal

At the exact moment of certificate issuance, VeriSources records the precise timestamp, GPS coordinates (if the device permits), and a device integrity hash. These values are cryptographically signed and sealed into the certificate record using HMAC-SHA256 — they cannot be altered after issuance without detection.

This makes the when and where of an image independently auditable. Combined with the uploader's verified identity, this is the same kind of chain-of-custody evidence used in professional photojournalism and legal documentation workflows.

• Cryptographically signed timestamp
• GPS coordinates sealed at upload
• Device integrity hash included
• Tamper-evident after issuance
• Chain-of-custody ready
• Legal documentation compatible

Mobile Camera Certification — No App Required

VeriSources is a mobile-first web platform. The upload workflow uses standard browser file capture APIs to open the device's native camera directly — no third-party app, no QR code scanner, no extra download needed. Works on iOS Safari and Android Chrome out of the box.

When combined with the Timestamp & Location add-on, images captured directly through the browser workflow carry the GPS coordinates and capture time from the device — creating an unbroken chain from the physical moment of capture to the issued certificate.

• Works on iOS Safari & Android Chrome
• No app download required to mobile phone
• Native camera API integration
• GPS & timestamp captured at shoot
• Pairs with Timestamp add-on for full proof
• Secure upload over HTTPS

Three additional provenance signals are automatically extracted from every certified image at issuance time, requiring no action from the photographer or registered user. Together they create a richer, more searchable evidence layer that goes beyond hashes and watermarks.

• GPS extracted image if available
• Near-duplicate search powered by Hamming distance
• IPTC IIM record 2 and XMP APP1
• Steganography on PNG outputs (optional, user opt-in, plan-specific)