Skip to main content

Security Model

Providers sign Data Packages using EIP-712 typed data.
Gateways validate signatures, anchor records, and payload hashes.
Consumers can independently verify the proof bundle.
MVP trust: score updates are centralized via ScoreUpdater role.
Slashing is admin-managed in MVP with a path to governance.

Threats addressed:

Tampered payloads (hash mismatch)
Replay attacks (nonce registry)
Unregistered providers (registry validation)