Problems & Solutions
Trust & Identity AI Fakes & Deepfakes Duplicate Accounts & Bots CAPTCHA: Prove You're Human Passwords, Spam & Phishing
Content & Discovery Invisible Content Data You Don't Own Better Apps Don't Win
Control & Freedom Censorship & Manipulation Platform Lock-in Cognitive Decline & Feeds Internet Centralization
Comparisons
IPFS Nostr ActivityPub AT Protocol ToIP Secure Scuttlebutt Qortal HyperMesh BitTorrent
Framework
Economy Trust Security Governance Database Identity Verification Why Nothing Less Works
Docs FAQ Roadmap About
Join us on Discord

Atlas Sign

Atlas Sign is the identity and request-signing module of Atlas. It is designed to stand on its own: a stable root identity key stays in a custodian, apps receive delegated signing keys, and every signature is paired with proof objects that explain why that delegated key is allowed to act.

Any wallet, browser extension, local daemon, hosted provider, or enterprise auth service can adopt this contract. Atlas Registry and the rest of the network are optional consumers, not a requirement.

What The Module Defines

The current Atlas implementation exposes Atlas Sign through the local-only Custodian, but the protocol definition is broader than that one runtime. An adopter only needs to reproduce the session shape, proof objects, and verification chain.

Session Contract

A caller asks for an identity session with its Origin and a list of requested scopes. The response bundles the stable identity key, delegated signing material, proofs, and portable user preferences in one object.

Atlas Sign Session Request
GET /identity/session?scopes=MessageCreateAction HTTP/2.0
Origin: https://app.example
Atlas Sign Session Response
{
  "publicKey": "<root-public-key>",
  "publicEncryptionKey": "<xwing-public-key-or-null>",
  "delegatedPrivateKey": "<delegated-private-key>",
  "proofs": [
    {
      "data": {
        "@type": "Permit",
        "additionalType": "atlas:delegatedKey",
        "validFrom": "2026-04-02T10:15:00.000Z",
        "validUntil": "2026-05-02T10:15:00.000Z",
        "identifier": {
          "@type": "PropertyValue",
          "propertyID": "delegatedKey",
          "value": "<delegated-public-key>"
        },
        "potentialAction": [
          {
            "@type": "Action",
            "object": { "@type": "MessageCreateAction" }
          }
        ]
      },
      "signature": "<root-signature>"
    },
    {
      "data": {
        "@type": "Intangible",
        "additionalType": "atlas:proofOfWork"
      },
      "signature": "<pow-signature>"
    }
  ],
  "preferences": {
    "theme": "dark",
    "language": "en",
    "guides": [{ "url": "https://guide.example", "publicKeyHash": "..." }],
    "shelters": []
  }
}
Element Meaning Current Atlas handling
Root identity key Stable user identifier and trust anchor. Stored in the Custodian and exposed as publicKey.
Delegated key App-facing signer used instead of the root private key. Minted per origin, reused while valid, rotated when scopes change or the permit expires.
Scopes Requested capabilities for the delegated signer. Normalized and embedded in the permit as potentialAction entries.
Validity Time bounds for delegated authority. The permit carries validFrom and validUntil; Atlas currently issues 30-day delegations.
Proofs Portable evidence that the session is authorized. proofs contains the signed delegated-key permit plus a signed proof-of-work object.
Preferences User routing and UX configuration bundled with identity. Theme, language, guide registries, and shelters travel alongside the session.

Transport Contract

Atlas Sign separates identity from signing authority. The root public key identifies the user, while requests and envelopes are signed with the delegated key and accompanied by proofs.

Atlas Sign Headers
GET /envelopes HTTP/2.0
atlas-identity:  <root-public-key>
atlas-signature: t=<timestamp>; s=<delegated-signature>
atlas-proofs:    [{...}]

Verification Chain

A verifier does not need to trust the custodian that issued the session. It can validate the signature chain directly from the material on the request or envelope.

verify.ts
// Verifier flow
// 1. Read atlas-identity, atlas-signature, and atlas-proofs.
// 2. Extract the delegated public key from the signed Permit proof.
// 3. Verify the delegated signature against that delegated key.
// 4. Verify the Permit signature against atlas-identity.
// 5. Enforce any local policy for validFrom, validUntil, scopes, and proof requirements.
  • Custodian responsibility — keep the root key private, mint or reuse per-origin delegations, and attach proofs plus preferences to the session bundle.
  • App responsibility — request only the scopes it needs, sign with the delegated key, and forward the proof bundle with each signed request or envelope.
  • Verifier responsibility — validate the delegated signature, validate the permit against the root key, and enforce any local policy for scopes, validity windows, and proof requirements.

Why It Is Reusable

Atlas Sign is not tied to Atlas Registry, Atlas Guide, or FairShares. A SaaS app can use it as decentralized auth. A desktop app can use it as a local signing bridge. A provider can use it as a portable account session format. The only requirement is agreement on the session object, permit proof, proof bundle, and verifier behavior.

Previous ← Transport Layer