• Bitcoin, Ethereum, and similar systems use proof-of-work or proof-of-stake
• Trust derives from computational difficulty or economic stake
• Provides strong binding but locks identifiers to specific ledger infrastructure
• Higher cost and lower performance compared to cryptographic approaches
• Shared governance creates dependencies on network consensus

Cryptographic Trust Basis: The approach KERI pioneered, where trust derives entirely from cryptographic operations:

• Self-certifying identifiers bound to key pairs through one-way functions
• No external infrastructure required for initial verification
• Truly decentralized with no shared governance requirements
• Portable across different systems and platforms

The evolution toward cryptographic roots-of-trust addresses fundamental weaknesses in both administrative and algorithmic approaches, particularly the problem of insecure key rotation that plagues traditional PKI systems.

KERI's Approach

Cryptographic Root-of-Trust Architecture

KERI establishes its root-of-trust through self-certifying identifiers (SCIDs) that are cryptographically derived from public keys. This creates what KERI terms an autonomic trust basis—a trust foundation that is self-contained, self-managing, and requires no external validation infrastructure.

The KERI root-of-trust is established through:

1. Entropy-Based Key Generation: High-entropy random seeds (minimum 128 bits of cryptographic strength) generate private keys
2. Cryptographic Derivation: Public keys are derived from private keys through one-way functions
3. Identifier Binding: The identifier is cryptographically derived from the public key, creating an unbreakable binding
4. Key Event Logs: The KEL provides a verifiable history of all key state changes, maintaining the root-of-trust across key rotations

Primary vs. Secondary Roots-of-Trust

KERI distinguishes between two categories of roots-of-trust:

Primary Roots-of-Trust: These are irreplaceable foundational components that form the base layer of trust. In KERI, the KEL serves as the primary root-of-trust, providing:

• Cryptographically verifiable key state from inception through all rotations
• Direct one-to-one relationship with the entropy used to generate the initial keys
• End-verifiable proof of control authority without external dependencies
• Immutable audit trail of all establishment events

The characteristic that makes a root-of-trust primary is its direct relationship to the entropy used during key generation—the cryptographic randomness that serves as the ultimate foundation of security.

Secondary Roots-of-Trust: These are replaceable trust components that depend on primary roots for their security guarantees. Examples include:

• TEL (Transaction Event Log) for credential registry state
• Blockchain-anchored data that references KERI identifiers
• Service endpoints and witness configurations

Secondary roots-of-trust maintain high trustability through cryptographic anchoring via seals to primary roots-of-trust. They can be automatically verified by tracing their cryptographic binding back to the primary root.

Pre-Rotation and Root-of-Trust Continuity

A critical innovation in KERI's root-of-trust model is pre-rotation—the mechanism that maintains the root-of-trust across key rotations:

• Each establishment event includes a cryptographic digest of the next rotation keys
• This creates a forward-chained commitment that cannot be altered retroactively
• Even if current signing keys are compromised, the pre-rotated keys remain secure
• The root-of-trust persists through key rotations because each rotation was cryptographically committed in the prior event
• This provides post-quantum security since the pre-rotated key digests are protected by one-way hash functions

This solves the fundamental problem that plagued traditional PKI: key rotation events signed by potentially compromised keys cannot be trusted. KERI's pre-rotation ensures the root-of-trust remains unbroken even through key compromise and recovery.

Trust Basis Formation

The collection of all roots-of-trust (both primary and secondary) together form the trust basis for the entire identity system. In KERI, this trust basis provides:

• Cryptographic Verifiability: Every trust relationship can be verified through cryptographic proofs
• End-to-End Verification: No trusted intermediaries required for validation
• Ambient Verifiability: Anyone, anywhere, at any time can verify the trust relationships
• Duplicity Detection: Conflicting versions of key event logs can be detected through comparison

Replacing Human Trust with Cryptographic Trust

KERI's fundamental paradigm shift is replacing human basis-of-trust with cryptographic root-of-trust. Traditional systems rely on trusting what was said (content veracity), but KERI enables trusting who said it (attribution) through:

• Verifiable digital signatures from asymmetric key cryptography
• Consistent attribution through integral non-repudiable statements
• Cryptographic binding between identifiers, keys, and controllers
• End-verifiable proof of control authority

This transformation enables secure attribution—proving "whodunit in cyberspace"—without requiring trust in organizational entities or consensus networks.

Practical Implications

Use Cases and Applications

Organizational Identity (vLEI Ecosystem): GLEIF's implementation of verifiable Legal Entity Identifiers demonstrates root-of-trust in practice:

• GLEIF establishes itself as the root-of-trust through its Root AID
• Qualified vLEI Issuers receive delegated authority through cryptographic delegation
• Legal entities and their representatives form a verifiable chain of trust
• All credentials can be verified back to GLEIF's root without requiring online access to GLEIF systems

Decentralized Key Management: KERI's root-of-trust enables truly portable identifiers:

• Identifiers can be moved off blockchain systems while maintaining verifiable control
• No lock-in to specific infrastructure providers
• Key rotation without breaking the chain of trust
• Recovery from key compromise through pre-rotated keys

Zero-Trust Computing: The cryptographic root-of-trust supports zero-trust architectures:

• "Never trust, always verify" becomes practical through end-verifiable proofs
• No reliance on network perimeter security
• Every interaction can be independently verified
• Ambient duplicity detection across distributed systems

Benefits

Security Independence: KERI's root-of-trust has no security dependency on external infrastructure:

• No reliance on DNS, certificate authorities, or blockchain consensus
• Immune to infrastructure compromise or failure
• Verifiable even if all supporting infrastructure is malicious
• Post-quantum secure through pre-rotation mechanism

Scalability: Cryptographic roots-of-trust enable massive scale:

• No global consensus required for identifier operations
• Verification is local and independent
• Linear scaling with number of identifiers
• No blockchain transaction costs or throughput limits

Interoperability: The cryptographic foundation enables universal interoperability:

• Works across any network or platform
• No protocol-specific dependencies
• Standards-based cryptographic primitives
• Compatible with existing PKI where needed

Trade-offs and Considerations

Key Management Responsibility: With cryptographic root-of-trust comes responsibility:

• Controllers must protect their private keys and seeds
• Loss of key material can mean loss of identifier control
• Requires secure key generation, storage, and rotation practices
• However, KERI's pre-rotation provides recovery mechanisms not available in traditional systems

Complexity: The cryptographic approach introduces technical complexity:

• Understanding key event logs and their verification
• Managing witness pools and watcher networks
• Implementing proper key rotation procedures
• However, this complexity is encapsulated in libraries and tools

Reputational Trust: Cryptographic root-of-trust provides attributional trust but not reputational trust:

• KERI proves who made a statement, not whether the statement is true
• Reputation must be built on top of the cryptographic foundation
• Real-world identity assurance still requires trusted parties like GLEIF
• However, attribution is a prerequisite for reputation—you can't have reputation without attribution

Initial Bootstrap: Establishing the initial root-of-trust requires secure key generation:

• High-entropy random number generation is critical
• Initial key ceremony must be protected
• For high-value identifiers, hardware security modules or trusted execution environments may be required
• However, once established, the root-of-trust is maintained through cryptographic proofs

Architectural Implications

The cryptographic root-of-trust enables KERI's distinctive architecture:

Hourglass Model: KERI serves as a trust spanning layer:

• Narrow waist of cryptographic verification
• Supports diverse applications above
• Works with any infrastructure below
• Universal interoperability through standardized trust basis

Witness and Watcher Networks: The root-of-trust is protected through distributed infrastructure:

• Witnesses provide promulgation consensus
• Watchers provide confirmation consensus
• Duplicity detection through comparison of key event logs
• No single point of failure or control

Delegation Trees: The root-of-trust can be extended through delegation:

• Hierarchical trust structures for organizations
• Bivalent key management (high security root, performant operations)
• Cooperative delegation requiring both delegator and delegate participation
• Verifiable chain of authority from root to leaves

The root-of-trust concept is thus not merely a technical detail but the foundational principle that enables KERI's vision of a secure, decentralized, and verifiable internet identity layer.

End-to-End Verification: Implement complete verification chains:

• Verify KEL from inception through all rotations
• Check pre-rotation commitments match actual rotations
• Validate witness signatures and thresholds
• Detect duplicity through comparison with watchers
• Verify secondary root anchoring to primary roots

Performance Optimization: Balance security with performance:

• Cache verified KEL tails (complementary integrity verification)
• Implement efficient KEL replay mechanisms
• Use CESR encoding for compact representation
• Parallelize witness and watcher queries

Operational Considerations

Key Rotation: Maintain root-of-trust through rotations:

• Follow pre-rotation commitments strictly
• Use one-time rotation keys when possible
• Document rotation events and reasons
• Test recovery procedures regularly
• Maintain secure storage of pre-rotated keys

Monitoring and Auditing: Continuous protection of root-of-trust:

• Monitor for duplicity attempts
• Audit witness and watcher responses
• Track key state changes
• Alert on anomalous events
• Regular security reviews of key management practices

Integration Patterns

Trust Spanning Layer: Implement KERI as infrastructure:

• Provide cryptographic root-of-trust for applications
• Abstract key management complexity
• Enable portable identifiers across platforms
• Support multiple trust domains from single root

Hybrid Approaches: Combine with existing systems:

• Use KERI root-of-trust with traditional credentials
• Bridge to blockchain systems when needed
• Integrate with existing PKI where required
• Maintain KERI as authoritative root-of-trust