AI Decision Evidence

What Is a Signed AI
Decision Certificate?

A signed AI decision certificate is the tamper-evident receipt for a single governed AI decision: the verdict, the policy version that produced it, and a digest of the inputs — bound together and signed so anyone can confirm, offline, that it is authentic and unaltered.

Verify one nowHow it works

The definition of the AI Decision Evidence category

The Definition

From dashboard claim to verifiable record

Most AI governance tools tell you a decision happened. A decision certificate lets you prove it — to an examiner, a regulator, or a counterparty who does not trust you.

📄

Structured & canonical

Each certificate is JCS-canonicalized (RFC 8785) so the exact bytes that were signed are reproducible. No ambiguity about what was attested.

🔑

Signed at issue

The verdict, policy id, request digest and timestamp are signed the moment the decision is made — bound so a single altered field breaks verification.

🔗

Hash-chained

Certificates link to the prior record by hash. Removing or reordering a decision is detectable: the chain no longer validates.

governed_decision_certificate.jsoneve.decision.certificate.v1
{
  "certificate_id": "gdc_8f31a0c4e9b7",
  "issued_at": "2026-06-20T14:08:21Z",
  "tenant_id": "org_acme",
  "policy_set": "lending_v1",
  "request_digest": "sha256:5c1f…a902",
  "decision": "BLOCKED",
  "reason_code": "ECOA.adverse_action.unexplained",
  "prev_hash": "sha256:0b77…1e4d",
  "signature": { "alg": "ed25519", "key_id": "eve-prod-2026", "value": "f3a1…b9c0" }
}
Anatomy

What each field proves

FieldWhat it isWhat it proves
issued_atUTC timestamp, signed inline.When the decision was made — back-dating breaks the signature.
policy_setThe named, versioned policy that evaluated the action.Exactly which rules were in force — the basis for replay.
request_digestSHA-256 digest of the request.Binds the decision to its inputs without storing raw or sensitive data.
decisionALLOWED · BLOCKED · MODIFIED.The governed outcome that actually reached the world.
reason_codeStructured, citable reason."Why," decided before the action — not a post-hoc rationalization.
prev_hashHash of the prior certificate.Tamper-evidence: removing or reordering a decision breaks the chain.
signatureEd25519 signature, alg, key id.Authenticity + integrity, verifiable with the public key alone.
What It Is Not

A certificate is not a log line

A traditional audit log is a record you ask others to trust. A decision certificate is a record they can check for themselves. The difference is not cosmetic:

  • A log can be edited by anyone with write access; a certificate cannot be altered without breaking its Ed25519 signature.
  • A log proves nothing about why a decision was made; a certificate carries the policy version and reason code, decided before the action.
  • A log requires the vendor to still exist and cooperate; a certificate verifies with a public key and stock crypto, forever.

See the full contrast on Logs vs. Dashboards vs. Cryptographic Evidence.

Keep Reading

Related

Guide
How It Works
Decide → sign → chain → aggregate → verify.
Verification
Offline Verification
Confirm a certificate without trusting the vendor.
Audit
Evidence Packs
Bundle certificates into a portable, examiner-ready artifact.

See a real certificate verify

Verify a live decision certificate in your browser — then hand the evidence to your own auditor and watch them verify it without us.

Verify a Certificate Book a Pilot
FAQ

Common questions

What is a signed AI decision certificate?
It is a canonical, cryptographically signed record of one governed AI decision — the verdict, reason code, policy version, and a SHA-256 digest of the request — signed with Ed25519 so anyone can verify offline that it is authentic and unaltered.
How is it different from an audit log?
An audit log asks you to trust the system that wrote it. A decision certificate can be independently verified with a public key and stock cryptography, with no dependency on EVE infrastructure, and any alteration breaks the signature.
What is actually signed?
The signature covers the certificate payload minus the signature field, canonicalized per RFC 8785: the verdict, reason code, policy set/version, request digest, timestamp, and prior-certificate hash.
Does the certificate contain sensitive data?
No raw payload — only a SHA-256 digest of the request plus structured metadata. It proves what was decided and under which policy without embedding the underlying sensitive data.
One Control-Plane Stack

Governance decides. Enforcement acts. Proof attests.

Decides
EVE Governance ↗
Deterministic policy — the same verdict every time, with a reason.
Enforces
EVE CoreGuard ↗
Blocks, allows, or modifies the action before it executes.
Attests
EVE Proof
Signs the decision into a certificate anyone can verify.
The EVE Control-Plane Stack

Explore the ecosystem

evecore.com
EVE Core
The brand hub for the EVE control-plane stack.
eveaicore.com
EVE AI Core
The deterministic governance platform, docs & trust center.
evecoreguard.com
EVE CoreGuard
The enforcement engine that blocks before execution.
evegovernance.com
EVE Governance
Deterministic AI governance, principles & mappings.