Four vendors, one incident
Each device signs its own reading at the source with its own key. Lumra verifies every signature against the vendor's published key, seals each record, and binds the four by a shared incident label into one fused, time-ordered readout.
What the incident ProofPack seals
- Each vendor's own device signature, verified against its published key
- Lumra's seal over each record, so any later change to any record is detectable
- A fused, time-ordered timeline anchored on the highest-risk event, with corroboration raising confidence, never inventing risk
- One complete, independently verifiable ProofPack per source, inside the incident document
- Exported so anyone can verify every source signature and every seal offline, no PriviNet servers involved
What this proves, and what it does not
Proves
Each record is exactly what its own vendor device signed and what Lumra sealed, at the stated times. The four came from four independent vendors, so the timeline does not rest on any single vendor's word. Anyone can re-verify every source signature and every seal with open tools and no PriviNet involvement.
Does not prove
That any sensor observed its reading completely or accurately, what caused the excursion, who is at fault, or that a tribunal will admit these records. The fused classification is automated context, not a determination of fact or liability.
Why no single platform can do this
A temperature-monitoring platform can sign its own readings. A lock vendor can sign its own. A telematics vendor can sign its own. Each is a strong witness for its own data and a stranger to everyone else's. None of them is a neutral party across all four, and none can bind a competitor's signed record into the same verifiable incident.
That cross-vendor, vendor-neutral binding is the whole point. A locked bucket at one vendor says nothing about another vendor's record. An incident ProofPack carries each vendor's own signature, side by side, checkable by an outsider who trusts none of them. In a dispute, that is the difference between four competing accounts and one corroborated timeline.
How four vendors become one proof
Break it yourself
Below is a real incident pack generated by the live engine from four synthetic vendors. Open it, or download the machine JSON, pull out any one source's ProofPack, and run the standalone verifier against it: it checks that vendor's own source signature and Lumra's seal offline. Change a single character of any hash, and verification fails. Every source key is published at keys.txt.
For logistics, cold-chain, and IoT platforms
If you run telemetry, tracking, or sensor infrastructure, the strongest version of this is the one your devices sign at the source. Enroll your keys once, keep sending events the way you already do, and every record comes back verified against your own signature and ready to bind into a cross-vendor incident. If you want your data to carry independent weight in a dispute, that is the version worth building together.
brad@privinet.net