Skip to main content
Strategic Integration Guide for Enterprise Issuers

Executive Summary

This document outlines the end-to-end journey for private sector organizations adopting Truthlocks to issue, manage, and verify digital attestations. Truthlocks provides a high-integrity “Source of Truth” without the overhead of blockchain, utilizing signed checkpoint transparency and robust tenant isolation.

1. Architecture Overview

Truthlocks is built on the principle of High-Integrity Provenance.
  • No Blockchain: Unlike legacy DLT solutions, we focus on high-speed, verifiable transaction logs that are cryptographically signed by both the Issuer and the Platform.
  • Signed Checkpoint Transparency: Every action within a tenant realm is logged and periodically “checkpointed.” These checkpoints are public-eligible but payload-private, ensuring transparency without data leakage.
  • Proof Bundles: End-users (consumers) receive self-contained proof bundles that can be verified offline or via the Truthlocks Verify portal.

2. Security & Trust Model

Our security architecture follows a multi-layered defense strategy:
LayerImplementation
IdentityFederated SSO (OIDC/SAML) + Hardware MFA support.
CryptographyEd25519 signing keys for issuers; AES-256-GCM for data at rest.
IsolationRow-Level Security (RLS) ensures absolute separation between tenant data.
Key LifecycleAutomated rotation schedules and tamper-evident revocation logs.

3. The Onboarding Workflow

Issuers move through four distinct phases:
  1. Application: Submission of organizational evidence to the Platform Admin.
  2. Verification: Platform review of institutional credentials and signing key ownership.
  3. Tier Assignment: Allocation of trust tiers (Standard vs. Verified) based on evidence depth.
  4. Activation: Issuance of API keys and configuration of tenant webhook endpoints.

4. Integration Roadmap

Engineering teams should follow this sequence for a successful rollout:
  • Auth & API Keys: Issue system-to-system keys via the Tenant Console.
  • Webhook Registration: Subscribe to attestation.minted and issuer.updated events.
  • SDK Setup: Initialize the Go or JavaScript SDK with your tenant credentials.
  • Environment Separation: Utilize separate Development and Production realms for CI/CD safety.

5. Billing & Entitlements

Truthlocks utilizes a “Pay-as-you-grow” model controlled via Entitlements:
  • Quotas: Soft and hard limits on attestation volume and concurrent users.
  • Features: Modular access to advanced auditing, multi-region residency, and enterprise SSO.
  • African Gateways: Full support for Flutterwave and Paystack for regional compliance and currency handling.

Appendix: Sample Workflow

This guide is intended for institutional decision-makers and technical leads. For API specifics, see the Technical Integration Pack.