Anchoring Specification (IEC)

Version 1.0 — Frozen
Status Normative
Publication Date 2026-02-26
Canonical URI https://anchoring-spec.org/v1.0/

Non-Normative Introduction

Anchoring is defined as an infrastructure primitive built on cryptographic commitments, for establishing existence-at-or-before-T of a byte sequence.

It provides a verifiable commitment to the existence of specific bytes at or prior to a consensus-derived timestamp, without asserting authorship, ownership, identity, or legal status.

This specification formally defines the semantics, verification function, and independence requirements of this primitive.

This introduction is non-normative. Normative requirements begin in Section 1.

1 Scope

This specification defines anchoring as a cryptographic method for establishing existence-at-or-before-T of a byte sequence.

This document normatively defines:

the verification function
output semantics
proof structure requirements
ledger qualification requirements
independence requirements
explicit semantic exclusions
cryptographic requirements
threat model
time semantics
non-retroactivity conditions
compliance requirements
archival considerations

This specification is normative.

2 Terminology

Artifact (B): A finite byte sequence. B may represent any byte sequence, including derived artifacts. IEC does not interpret the semantic meaning of B.
Proof Bundle (P): A structured set of data sufficient to verify anchoring claims.
Ledger Infrastructure (L): A publicly verifiable consensus system capable of establishing temporal ordering.
Time (T): A timestamp derived from consensus-confirmed ledger inclusion. Time T must not be self-asserted by the issuing entity.

3 Definition of Anchoring

Anchoring establishes one property only:
A specific byte sequence existed on or before time T.

Existence refers solely to the presence of a cryptographic commitment to the byte sequence in ledger L at or prior to time T.

No additional claims are implied.

4 Verification Function

Verification must be defined as:

V(B, P, L) → { valid | invalid | unverifiable }

B: The exact byte sequence of the artifact under verification.
P: The proof bundle.
L: Publicly verifiable ledger infrastructure.

Output semantics are defined in Section 5.

5 Output Semantics

An implementation must return exactly one of the following outputs:

Output	Condition
valid	All required conditions hold: Hash(B) equals the hash stated in P. Ledger inclusion proof is valid under L. Ledger timestamp T is derivable.
invalid	At least one required condition fails, including: hash mismatch, invalid ledger proof, or corrupted/malformed proof structure.
unverifiable	Verification cannot be completed due to: missing artifact, missing proof data, inaccessible ledger infrastructure, or unsupported ledger type.

Implementations must evaluate all required conditions prior to returning "valid".

Implementations must not return intermediate, partial, or qualified results outside this set.

6 Proof Structure Requirements

A compliant proof bundle must include:

a cryptographic hash of B
a timestamp claim
a ledger inclusion proof or commitment

Optional:

attestation metadata (non-normative)

Attestation metadata is explicitly non-normative and has no effect on verification outcome under IEC.

7 Ledger Qualification Requirements

A ledger L qualifies if it:

provides public verifiability
provides consensus-based ordering
resists unilateral timestamp rewriting
allows reconstruction of historical state

Permissioned or centrally mutable systems do not qualify unless their historical state is independently verifiable without reliance on a single controlling authority.

This specification is ledger-agnostic.

8 Semantic Exclusions

Anchoring does not establish:

authorship
ownership
originality
identity
intent
legal enforceability
truthfulness

Claims beyond existence-at-or-before-T are out of scope.

An implementation must not present anchoring results in a manner that implies any excluded claim.

9 Independence Requirement

A compliant anchoring proof must remain verifiable without reliance on the issuing entity.

Verification must not require:

issuer-controlled databases
issuer-controlled accounts
issuer-controlled infrastructure

Practical convenience of verification tools does not affect compliance. Verification must be technically achievable without issuer-controlled infrastructure.

If verification depends exclusively on the issuer, the proof is non-conformant.

10 Legal Scope

This specification defines technical verification semantics only.

It does not create legal rights, obligations, or guarantees.

Legal interpretation of anchoring proofs depends on applicable jurisdiction and independent evaluation.

11 Versioning

IEC uses MAJOR.MINOR versioning.

MAJOR increments indicate breaking semantic changes
MINOR increments indicate clarifications without semantic change

All published versions must remain permanently accessible at their canonical URI.

Current version: v1.0
Canonical URI: https://anchoring-spec.org/v1.0/

12 Governance

The Anchoring Specification (IEC) is a public, versioned technical specification.

IEC was initially authored by Umarise. The specification is published openly and may be implemented by any party without restriction.

The specification is not proprietary to any single implementation or commercial entity.

Implementations may reference compliance with a specific IEC version.

No implementation has normative authority over the specification.

If conflicts arise between an implementation and the specification, the specification prevails.

Governance of IEC may evolve independently of any single organization, including its original author.

13 Threat Model

Anchoring assumes:

collision resistance of the selected hash function
integrity of ledger consensus
availability of public ledger validation data
continued availability of cryptographic verification algorithms

Anchoring does not protect against:

pre-image attacks
collusion attacks against ledger consensus
artifact substitution prior to anchoring
social engineering
legal misinterpretation

14 Cryptographic Requirements

Hash functions used in anchoring must:

be publicly specified
have no known practical collision attacks
be widely reviewed by the cryptographic community

If a hash function becomes compromised, future IEC versions may deprecate its use.

IEC permits future versions to introduce alternative cryptographic primitives. Algorithm agility is supported through versioned specification updates.

15 Time Semantics

Time T is defined as the earliest consensus-confirmed inclusion point of the commitment in ledger L.

Anchoring establishes existence-at-or-before-T.

It does not establish exact creation time.

Finalization criteria are ledger-specific and defined by the operational consensus rules of ledger L. IEC does not prescribe a fixed confirmation threshold.

16 Non-Retroactivity

Anchoring does not permit retroactive modification of proof validity once ledger inclusion is finalized.

If a ledger undergoes reorganization prior to finalization, verification status may change from valid to unverifiable.

17 Compliance Statement

An implementation claiming compliance must state:

the IEC version
the hash function used
the ledger type used
any deviations from default proof structure

Compliance claims must reference a specific IEC version.

An implementation is non-conformant if it:

extends or alters the outputs defined in Section 5
omits or weakens the exclusions defined in Section 8
requires issuer-controlled infrastructure in violation of Section 9

18 Archival Considerations

Long-term verifiability depends on:

preservation of proof bundle integrity
continued availability of ledger validation data
continued availability of cryptographic verification algorithms

Anchoring proofs should be stored in durable, non-proprietary formats.

Conformance note. An implementation that extends or alters the outputs defined in Section 5, omits or weakens the exclusions defined in Section 8, or requires issuer-controlled infrastructure in violation of Section 9, is non-conformant with this specification.