Signing

Sign Content Credentials at scale

Securely sign C2PA content without having to configure complex certificate requirements, all from a single integration.
Image of a protester with a megaphone and fist in the air with a Content Credentials indicator at top right. There is a certificate illustration overlay with the words "Cerficiate Authority" as well as a stack of four modal overlays that each contain a lockbox icon and a random string of letters, numbers, and slashes.

HOW IT WORKS

In the cloud and on device

Sign content at all points across the media lifecycle without workflow disruption, whether locally or in the cloud. Sign original content or verify and re-sign media before it’s delivered.

Illustration of floating images moving up and down. The central image has a green checkmark in the top right corner.

Cloud

Incorporate scaled signing within existing cloud pipelines for generated, modified, or transcoded media.

Enroll, sign, and verify media directly within your application across Mac, Windows, and Ubuntu.
Illustration of a mobile camera taking a photo of mountains overlaying a code snippet with a green checkmark in the top left corner.

Smartphones

Sign any content directly on mobile devices using Truepic native SDKs for iOS and Android. 

Whether it’s user-generated, AI-generated, filtered, or uploaded media, signing occurs on the device without compromising privacy.
Illustration of a hardware chip overlaying a camera with a green checkmark in the top right corner.

Hardware and cameras

Integrate directly into trust zones for the most secure signing of media created within pre-installed applications.

Features

Sign securely

Integrate C2PA signing into any software or infrastructure. With the built-in Truepic Certificate Authority, we simplify complex configurations requiring differentiated certificates, auto-rotation, revocation, and secure implementation to ensure authenticity at scale.

Built-in Certificate Authority

Your implementation is simplified with the included Truepic Certificate Authority (CA), the first and only with a purpose-built, C2PA-trusted CA commercially available to enterprises.

Rapid onboarding for you and your customers
Works out-of-the-box with no configuration or setup required
Time stamping authority (TSA) included
Cross-platform support
Aerial view of cityscape with a certificate illustration overlay that contain the words "Certificiate Authority."
Illustration of a hardware chip with a circle overlay that contains a magnified section of the chip, revealing the words "Key Store."

Key management

Truepic handles the complexities of secure key generation, revocation handling, and integrates across key cloud services.

Automatic key provisioning and key rotation
Integrations with key management providers, like Azure Key Vault and AWS Key Management Service
Android and iOS hardware key management

Fortified security & compliance

Enterprise-level security compliance and advanced features to reduce vulnerabilities.

Short-duration certificates
Allows granular revocation of certificates while allowing others that are valid
SOC 2 Type II, ISO 27001, and ISO 9001
An illustration of a shield with a lockbox surrounded by the logos of the various compliance certificates.

Explore products

Comprehensive C2PA implementations

Truepic Enterprise C2PA covers every critical step in the content authentication process: from signing digital assets to validation, secure display, and managing certificate authorities. 

Mobile camera capturing a bridge along a rocky coastline.

Capture

Capture authentic photos, videos, and audio with the camera in your mobile apps using the Truepic Lens SDK.

Validate and display

Read the C2PA manifest and show Content Credentials on digital media to unveil its origins and edits, all with a single script.

FAQs

Frequently asked questions

Answers to common topics to help you get started.

Can your certificates be used with another signing product?

Yes. Our rigorous vetting process ensures that you are using the certificate for a valid use case. Although we highly recommend our CLI and SDKs for the most seamless experience, once approved, you have the flexibility to use the certificate in our products, open-source projects, or even your own homegrown solutions.

Should I build my own certificate authority?

Truepic has already built its own certificate authority so that you don’t have to! We empower you to focus on your core business and what you do best, leaving the complexities of the C2PA to us. Utilizing the Truepic certificate authority saves you months of paperwork, eliminates five to six figures of setup costs, reduces developer resource allocation, and ensures compliance, including seamless collaboration with the C2PA.

Do I have to purchase certificates separately for use in your mobile SDKs or CLI?

No, the cost of using our products includes certificates. Our mobile SDKs automate the enrollment of each device for certificates, eliminating the need for any developer intervention.

Get Started

Ensure digital media transparency with Enterprise C2PA