Post-quantum · On-chain · Independently verifiable

Your domain,
cryptographically
proven.

KXCO Verified seals your domain with ML-DSA-65 and anchors it on KXCO Chain. No central authority. No expiry unless you choose one.

Get Verified →
KXCO Verified
KXCO Verified
KXCO Verified
Three display variants — embed anywhere
Scope

What a seal proves.
And what it doesn't.

Clarity about scope makes the credential stronger, not weaker. KXCO Verified is precise by design.

What it proves
  • The registered owner of this domain initiated the verification at a specific point in time
  • The domain or document hash was signed with an ML-DSA-65 key and registered in the KXCOVerifiedRegistry smart contract
  • The registration exists permanently and immutably on KXCO Chain — it cannot be altered or deleted
  • The signature is quantum-resistant under current NIST FIPS 204 security assumptions
  • Any third party can verify the seal independently using the chain RPC — no trust in KXCO required
What it doesn't prove
  • The legal identity or regulatory standing of the entity behind the domain
  • That the content of a website hasn't changed since sealing (for documents, the hash proves this; for live sites, it doesn't)
  • Compliance with any jurisdiction's specific licensing requirements
  • That the domain is trustworthy — only that ownership was cryptographically asserted at registration time
Process

Three steps to sealed.

Verification is quick. The cryptographic proof is permanent.

01
Submit

Provide your domain, document hash, or article URL at chain.kxco.ai/verify. The system generates the cryptographic payload for signing.

02
Sign

An ML-DSA-65 signature is applied to your domain or document hash. No classical RSA or ECDSA — quantum-resistant from the first byte.

03
Anchor

The seal ID, domain hash, signature, and timestamp are registered in the KXCOVerifiedRegistry contract on KXCO Chain. Permanent. Independently verifiable.

Pricing

Simple, flat pricing.

No hidden fees. No lock-in. The credential lives on-chain regardless of your subscription status.

Domain
Domain Trust
$99
per year
  • One domain + all subdomains
  • ML-DSA-65 on-chain seal
  • Embeddable badge (3 colorways)
  • Public verifier link
  • Annual renewal or perpetual option
Document
Document Trust
$29
per document  ·  or $199/mo unlimited
  • SHA3-256 hash anchored on-chain
  • ML-DSA-65 signature
  • Verifiable proof URL
  • Permanent — no expiry
  • API access on monthly plan
Publisher
Publisher Trust
$29
per article
  • Article-level on-chain seal
  • Author attribution in registry
  • Anti-plagiarism timestamp proof
  • Inline badge for publication
  • Batch pricing available
Institutional
Enterprise
From $25k
per year
  • Unlimited seals across all tiers
  • Private registry instance
  • API integration + webhooks
  • White-label badge options
  • SLA + dedicated support
Technical

Verify it yourself.

No reliance on KXCO infrastructure to verify a seal. Any party with RPC access can confirm a credential independently.

Registry Contract · KXCO Chain (ID 1111)
0x17E0DE1f1DdE7BFC149f979f554865ABf11b57b2
Verify via JSON-RPC eth_call 
// 1. Encode the verify() call
//    function verify(uint256 sealId, string domain, string docHash)
//    returns (bool valid, uint256 timestamp)

const payload = {
  jsonrpc: "2.0",
  method: "eth_call",
  params: [{
    to: "0x17E0DE1f1DdE7BFC149f979f554865ABf11b57b2",
    data: encodeVerify(sealId, domain, docHash)
  }, "latest"],
  id: 1
};

// 2. POST to the RPC endpoint
const res = await fetch("https://chain.kxco.ai/rpc", {
  method: "POST",
  headers: { "Content-Type": "application/json" },
  body: JSON.stringify(payload)
});

// 3. Decode result
const { result } = await res.json();
// result → [bool valid, uint256 timestamp]
How verification works
Every KXCO Verified seal is stored in the KXCOVerifiedRegistry contract. The verify() function returns a boolean and the original registration timestamp.
Because the function is a view method, it requires no gas and can be called from any standard EVM JSON-RPC client — MetaMask, ethers.js, web3.py, curl — against the public RPC endpoint.
The ML-DSA-65 signature and public key are stored in the registration record and can be retrieved via getSeal(sealId) for offline signature verification using any FIPS 204-compatible library.
FAQ

Common questions.

What happens to my seal if KXCO stops operating?

Nothing. The seal exists in the KXCOVerifiedRegistry smart contract on KXCO Chain, which is a decentralised blockchain. The contract state is permanent and independent of KXCO as a company. Anyone can run a node and verify your seal without any involvement from KXCO.

Why ML-DSA-65 instead of RSA or ECDSA?

RSA and ECDSA are broken by Shor's algorithm running on a sufficiently powerful quantum computer. ML-DSA-65 (NIST FIPS 204) is based on module lattice hardness assumptions, which have no known quantum algorithm that breaks them. A seal signed today remains valid in the post-quantum era.

Can I verify a seal without using the KXCO website?

Yes. The contract address is public, the ABI is documented, and KXCO Chain's RPC endpoint is open. You can call the verify() function directly using any EVM-compatible tool. The verify.kxco.ai interface is a convenience layer only.

Does Domain Trust cover all subdomains?

Yes. A Domain Trust seal for kxco.ai covers kxco.ai, chain.kxco.ai, verify.kxco.ai, and all other subdomains. The seal is registered against the apex domain and the verifier matches on the root.

What is the difference between Domain Trust and Document Trust?

Domain Trust seals your domain as an entity — proving that the domain owner registered it at a point in time. Document Trust seals the SHA3-256 hash of a specific file or content blob, proving it existed in that exact form at registration. They serve different purposes and can be used together.

Get Started

Seal your domain.
Permanently.

Post-quantum cryptographic proof, anchored on KXCO Chain. Independently verifiable by anyone, forever.

Get Verified → Verify a Seal