Trust primitives for the agentic web.
Origin Protocol is an open standard for attaching cryptographic proofs to existing domains and email addresses.
Any developer can build verified identity, credential exchange, and delegation chains into their own platform.
Trust requires proof.
– Proof starts with identity.
Origin is built on three primitives. Together, they make trust verifiable for every digital interaction.
Read the docsOpen
For developers
Cryptographic
Identity
Your email address or domain, bound to a keypair you control. Anyone can resolve and verify it.
Anchored to the domain or email address you already control
Resolved via a public discovery protocol — any verifier can look you up
Dual-verified through HTTPS and DNS, so no single point of compromise
One format for companies, employees, and agents
Issued by one identity, bound to another
Any alteration breaks the cryptographic signature
Verify once, carry the proof everywhere
One flexible structure for any type of claim
Revocable at any time
Ready to use
For teams and individuals
Verifiable
Credentials
Signed claims where one identity vouches for another. One flexible structure for roles, authorizations, and expertise — for people, companies, and agents.
Open
For developers
Encrypted
Exchange
A secure channel where every message carries proof of who sent it and what they're authorized to do. Without a trusted delivery mechanism, verification breaks at the point of exchange.
Pull-based message retrieval, so spam is structurally impossible
Forward secrecy for every message
Zero-knowledge architecture: only you have access to your data
Sender identity and authority travel with every message
Works across organizations, not just within one