RRID
TOKEN TRUST OS

Offline authenticity. Online policies.RRID — tokens with one-click verification.

Ed25519 signatures, contextual policies and privacy-first telemetry. For CTOs, integrators and brands that need verifiable authenticity offline and at the edge.

Request demoVerify token online
5M+
Checks per day
< 2.5 ms
Offline response time
OWASP ASVS L2
Red team grade
How it works
  1. Step 1. Token issuance

    Issuer generates RRID: payload + policy + Ed25519 signature. Output as QR / NFC / PDF.

  2. Step 2. Offline verification

    Mobile app or device verifies the signature offline without touching the network.

  3. Step 3. Online policies

    Optional check for limits and bindings. Edge + CDN caching with 99.9% SLA.

  4. Step 4. Telemetry

    Aggregate events without PII. Export-ready for SIEM/BI via events/metrics formats.

Trusted by
Quantum ID
Open Secure
NeuroTag
Digital Sign
EdgeTrace
OnPrem+
Platform

RRID product stack

Compact tokens, offline verification and enterprise-ready policies. An engineering stack without magic.

Ed25519 offline

Signature verified locally in milliseconds. Zero-trust without touching the network.

ZIP215 readyNIST ready

Policies & attestation

Limits, geo/time windows, grace periods. Online layer over HTTP/gRPC, edge or on-prem.

Dynamic CRLContext aware

SDK & format

Open RRID format, REST API, iOS SDK, ready-made samples for Swift/Kotlin/TypeScript.

JSON Web ProofBinary RRID

Privacy by default

Anonymisable telemetry. Disable entirely or deploy inside your own perimeter.

100% on-premPII-free
>
Want to dig deeper?

Download the architecture whitepaper and see how the RRID modules fit together.

Whitepaper
Policies

Control you can explain

Define policies through UI or IaC. Apply contextual restrictions while grace periods are surfaced directly in the client.

Limits & grace

TTL, counters, usage windows and progressive grace periods.

Bindings

Bind to device, user, GeoIP or service area.

Edge / on-prem

Cloudflare Workers, AWS Lambda@Edge or fully on-prem Kubernetes.

DevX

CLI, Postman collection, Terraform module for policy rollout.

Telemetry safe

Anonymous analytics

RRID collects just the minimum events: verification fact, issuer, key id and status. No PII stored. Telemetry is available via Plausible, BigQuery or S3.

  • Offline/online verification reports
  • SIEM export (Splunk, ELK, Sentry)
  • JSON Lines data model
Deployment

Choose your rollout lane

Flexible delivery models: managed cloud, air-gapped on-prem or hybrid for sensitive validations.

Managed edge

Cloud

  • Global CDN
  • 99.9% SLA
  • Reports & alerts
Self-host

On-prem

  • Air-gapped mode
  • K8s/VM scripts
  • Per issuer licensing
Split workloads

Hybrid

  • Public verifier
  • Private policies
  • VPN / mTLS
Integrations

Integrate without the pain

SDKs, APIs and production-ready examples. Includes Postman collection, Terraform, Helm chart and sample tokens.

REST / GraphQL

Stable schemas with curl and gql examples.

iOS SDK

Swift Package, offline verification, sample app.

Android

Kotlin multiplatform with Jetpack Compose UI.

Web

React hooks, WebCrypto, WebAuthn bridge.

CLI

rrid-cli for issuing and verifying tokens.

Webhook

HubSpot, Pipedrive, Zapier or SMTP.

Case studies

Where RRID already works

From manufacturers to SaaS — RRID helps eliminate fakes, control access and accelerate pilots.

Electronics manufacturing
-82% counterfeits per quarter

RRID on packaging, in-store offline checks, edge revocation and Grafana monitoring.

B2B SaaS
TTV 2 weeks

API product with limit policies, device binding and web verification for clients.

Logistics
+35% SLA on offline terminals

Grace periods, cached policies, offline operations up to 48h, anonymous telemetry.

Testimonials

What teams say

CISO, engineering and operations leaders already running RRID in production.

RRID helped us digitise dealer audits. The pilot took three weeks and we simply scaled the scenario afterwards.

Elena Parkhomenko
CISO, Nova Electronics

We replaced the zoo of API keys with RRID tokens for partners. Now we have a verifiable view of limits and SLAs in real time.

Andrey Kotov
VP Engineering, FlowSaaS

Offline availability is critical for us. RRID guarantees couriers operate within policy even with no connectivity.

Maria Glinskaya
Head of Logistics, GoShip
Demo

See how RRID fits your stack

Request a pilot — we will send scenarios, SDKs and a security checklist. We respond within one business day.

Demo sandboxSDK + CLISecurity pack

Form protected with honeypot and rate limiting. No extra data stored.

FAQ

Frequently asked questions

How does offline verification work without network?

Ed25519 signatures are verified locally; no network access for libraries is required. Policies sync later or are enforced at the edge.

How do you rotate keys?

We support multiple active keys, grace periods, automatic JWK publication and fast revocation.

Do you support token revocation / CRL?

Yes: short TTL plus online revocation by RRID or batch. Distributed through CDN and webhooks.

What about SLA and on-prem?

Managed edge comes with 99.9% SLA. On-prem ships with Ansible/K8s automation and certification support.

How is pricing structured?

Tiers based on issuance and verifications. Pilots are free, enterprise is custom.

What about privacy?

Telemetry is pseudonymised with no PII. You can self-host and keep the data locally.