For teams publishing AI-generated or edited media

You signed the file.Did the credential survive?

Attaching a Content Credential is the easy part. The hard part is that your CDN, your CMS, and every social platform quietly strip it on the way to your audience — so the provenance you worked to add never arrives. This gate grades each asset on five C2PA dimensions and returns one verdict — SIGNED, GAPS, or UNVERIFIABLE — with a hard stop on credentials your own pipeline destroys.

Get the Readiness Gate — $79one-time · instant download · yours to keep
Five deliverables · runnable
Provenance scorecard workbook
xlsx
Runnable Python gate
engine
Provenance audit playbook
docx
Credential durability runbook
docx
7-asset worked sample
csv
Pairs with
AI Disclosure & Labeling Kit · Voice & Likeness Compliance Gate
01.The Problem

The credential dies in transit — and you never see it happen.

Stripped
social platforms re-encode on upload and discard the embedded C2PA manifest
Own goal
your own resize / CDN / CMS step quietly drops the credential on every publish
Silent
a stripped file gives no signal the credential ever existed — it just looks unsigned

A checklist that grades the asset as you signed it lies to you. This gate grades the asset as your viewer receives it — so a file signed flawlessly at the source but stripped on publish, with no way to recover the credential, is UNVERIFIABLE, and you find out before you stake a trust claim on it.

02.See It Work

Mark five dimensions. Toggle the stripping path. Watch it flip.

Readiness score
84 / 100
UNVERIFIABLE

Stripping gate: the publish path strips the credential and no durable fallback can recover it — UNVERIFIABLE no matter how cleanly the source was signed. A downstream viewer sees an unsigned file.

Mark five C2PA dimensions

Credential attached at the source
Signature validates & binds to the asset
Signer is known & on a trust list
AI / edit disclosure assertion present
Durability fallback (soft binding)
Fix first
Durability fallback (soft binding)

Same math as the workbook and the Python engine: five weighted dimensions out of 100, SIGNED at 85+, GAPS at 55+, and a stripping gate that forces UNVERIFIABLE when the credential can’t survive publication and can’t be recovered. It grades the credential, not whether the content is real. Not a deepfake detector.

This is the live engine. Grade your whole library in one workbook + a runnable engine Catch credentials your own CDN strips before anyone sees them Get the one durability fix per asset, with the exact runbook step

Get the kit — $79
03.The Runnable Gate

The same verdict, offline, from your terminal.

The workbook and the Python engine share one config — same dimensions, same weights, same stripping gate. Run it against the shipped seven-asset sample:

$ python3 engine/cpr_engine.py engine/sample_assets.csv

Content Provenance & C2PA Readiness Gate
==========================================
Library: UNTRUSTED CHAIN

Newsroom photo (signed, stripping CDN)
  score 84/100  ->  UNVERIFIABLE   [GATE: credential stripped on publish, no durable fallback -> UNVERIFIABLE]
  fix first: Durability fallback (soft binding) for stripping

Newsroom photo (same, durable fallback)
  score 100/100  ->  SIGNED

Firefly hero image (fully durable)
  score 100/100  ->  SIGNED

Marketing video (no disclosure assertion)
  score 76/100  ->  GAPS
  fix first: AI / edit disclosure assertion present

Stock illustration (unknown signer)
  score 54/100  ->  UNVERIFIABLE
  fix first: Signer is known & on a trust list

Screenshot repost (no credential at all)
  score 0/100  ->  UNVERIFIABLE   [GATE: credential stripped on publish, no durable fallback -> UNVERIFIABLE]
  fix first: Credential attached at the source

Pixel capture (signed, no fallback, kept local)
  score 76/100  ->  GAPS
  fix first: Durability fallback (soft binding) for stripping

Provenance is a nutrition label, not a force field.
It grades credential readiness; it is not a deepfake detector. Not legal advice.

Same asset, one field apart (first two rows): a durable fallback is the difference between UNVERIFIABLE and SIGNED on a stripping pipeline.

04.The Standard

Five dimensions, weighted — and one gate that grades survival.

A stripped credential is worth nothing

If the publish path strips the credential and no durable fallback can recover it, the asset is UNVERIFIABLE no matter how well it scored. Where you publish matters as much as how you sign.

Durability is recoverable provenance

Durable Content Credentials — invisible watermark + fingerprint + external manifest repository — let a verifier recover the credential even after a platform strips the embedded copy.

One fix-first per asset

Every verdict names the single highest-leverage move, and the runbook gives the exact pipeline, signing, or disclosure fix to make.

05.What This Is — And Isn't

A readiness gate for the credential. Not a truth machine.

It is
  • A deterministic, per-asset verdict on whether your C2PA credential is real and durable.
  • A test of the credential as your audience receives it — including your own stripping pipeline.
  • A repeatable audit you re-run whenever you change CDN, CMS, or export settings.
It isn’t
  • A deepfake detector — it grades the credential, not whether the content is real or true.
  • A file scanner — you verify each asset and mark it; it doesn’t read your media for you.
  • A compliance certification — for the Article 50 disclosure layer, pair it with the Disclosure Kit.

Provenance is a nutrition label, not a force field. C2PA proves a signed record is present, intact, and bound to the asset — not that the content is real, true, or fairly used, and a missing credential is not proof of fakery. The C2PA spec, trust lists, and surrounding regulations change; re-audit periodically. Not legal advice.

06.Who It's For

Anyone who stakes trust on the media they publish.

Newsrooms and editorial teams attaching capture-to-publish provenance
Creative and marketing agencies shipping AI-generated media
Brand and content teams disclosing AI use on public assets
Stock, marketplace, and platform operators
Teams that attach credentials but never tested their own pipeline
Anyone whose provenance claim has to hold up downstream
08.Common Questions

What teams ask before they buy.

Because the credential lives as a manifest embedded in the file, and almost every publish step rewrites the file. When a CDN re-encodes, a CMS resaves on upload, or a social platform transcodes your image or video, it produces new bytes and discards the embedded C2PA manifest along the way. The signature was never deleted on purpose — it just doesn't survive the round-trip. That is exactly what this gate tests: it grades the asset as your audience receives it, after your own pipeline has touched it, not as you signed it at the source.

Find out if your provenance
actually reaches your audience.

One purchase, lifetime access, 12 months of updates. $79, once.

Provenance is a nutrition label, not a force field. It grades credential readiness — it is not a deepfake detector and does not prove an asset is real. Not legal advice.

Sold by RedHub AI LLC · Secured by Stripe · redhub.ai