
Evidence Chain of Custody: Court-Admissible Media Signing
Definition: Evidence chain-of-custody signing binds a manifest and timestamp to media at the point of capture or intake, so a court can confirm the item is unaltered and trace its handling without depending on any single vendor.
TL;DR: An open verifier lets opposing counsel run the check themselves with no vendor in the loop. Signing at intake plus an RFC 3161 timestamp gives indefinite validity per the C2PA spec, and the Bitcoin anchor proves when the item existed. Admissibility is always for the court to decide.
Why vendor independence matters in court
A proprietary verification tool creates a dependency: opposing counsel must trust the vendor's black box. An MIT-licensed open verifier removes that, because anyone can run ots verify against the public anchor and validate the signature offline. The chain of custody does not rest on a company staying in business or cooperating.
Indefinite validity by design
C2PA spec section 1.3.1 lets a signature remain verifiable indefinitely when it carries an RFC 3161 timestamp, because the timestamp proves validity at signing time regardless of later certificate expiry. For evidence that may be litigated years later, that continuity is the point.
How it maps to evidentiary standards
Federal Rule of Evidence 901(b)(4) allows authentication by distinctive characteristics, and a verifiable manifest plus anchor is exactly that. Under Daubert, an open, reproducible verification method is easier to defend than a proprietary score. None of this guarantees admission; it gives the proponent a strong, testable foundation.
The incident behind this
The deepfake audio targeting Baltimore principal Eric Eiswert in January 2024 showed how synthetic media enters disputes that end up in legal proceedings, where the authenticity of a recording becomes the whole case.
Regulatory mapping
| Regime | Effective | Bite | Why it applies |
|---|---|---|---|
| FRE 901(b)(4) | Live | Evidentiary standard | Authentication by distinctive characteristics |
| Daubert standard | Live | Admissibility test | Reproducible method |
FAQ
Does signing make evidence automatically admissible?
No. Admissibility is for the court. Signing and anchoring give a strong, independently testable foundation for authentication.
Where Original Pictures stands today
Original Pictures ships three things today: a Sign API, a Verify API, and the SDKs that wrap them. One POST /v1/sign attaches a C2PA-format manifest, an invisible TrustMark watermark, and an OpenTimestamps anchor. The open-source verifier checks any of it without calling us.
Two things are on the near roadmap, and we name them as roadmap, not as shipped: C2PA Conformance Program recognition (target Q3 2026, until then our manifests use the published C2PA v2.2 format and any C2PA-aware validator can read them, but third-party validators will show our signer as not-yet-listed), and a consumer capture app (Q3 2026). We do not sell a capture SDK, and we do not claim Trust-List membership we do not yet hold.
Bottom line: Sign at intake, timestamp for indefinite validity, anchor to a public chain, and verify with an open tool so the chain of custody survives without vendor dependency.
Related
Original Pictures is progressing through the C2PA Conformance Program; our signing certificate is not yet on the official C2PA Trust List. Target: Q3 2026. We will not describe ourselves as "C2PA-certified" until it is true.
Original Pictures provides content-provenance infrastructure. It does not by itself constitute legal compliance with the EU AI Act or any other regime; compliance depends on how you deploy it, your disclosures, and your governance. Figures are drawn from public reporting, verify against primary sources before citing in regulated materials. Nothing here is legal advice.
Last verified 2026-05-25. Author: Mahdi Kazempour, Founder, Original Pictures.