ETIP – EsReal Trust Integrity Protocol

ETIP is the protocol that adds objective, publicly verifiable trust to the internet — without requiring end users to install software or create accounts.

While classic internet security mainly focuses on transport (TLS/HTTPS) and email rules (SPF/DKIM/DMARC), ETIP focuses on the question that truly matters: “Can this domain or this link be cryptographically verified?”

  • vDOMAIN – domain authenticity (whitelist + external anchoring)
  • vURL – integrity and provenance of public links & data
  • ”API – machine-verify: the same verification via JSON
  • Anchors – publicly verifiable integrity anchoring

ETIP is sector-neutral (banks, government, e-commerce, EPC, accountants, 
) and is not an “identity system”: it does not prove people, but verifies the origin and integrity of information.

View vURL View vDOMAIN
What does ETIP solve?
  • Phishing where “it looks real” is no longer enough
  • Look-alike domains, subdomain deception and QR phishing
  • Secure link sharing (email, SMS, WhatsApp, PDF, QR)
  • Verifiable publication of documents, certificates and datasets
What ETIP does NOT claim
  • ETIP does not claim to be “unhackable”
  • ETIP does not promise attacks will never happen
  • ETIP focuses on: attacks do not lead to a trusted outcome
  • ETIP is not an identity or login platform
1) vDOMAIN

Domains are not trusted because they “look right”. They are trusted when they are explicitly included in the EsReal whitelist and their hash is externally anchored in a publicly verifiable way.

2) vURL

Links and documents become verifiable through a cryptographic signature and a deterministic hash. Any change results in a different verification outcome.

3) ”API

The same verification is available to systems via JSON. This allows trust to be used automatically in apps, plugins, email gateways and enterprise tooling.

ETIP in one sentence

ETIP makes trust verifiable instead of “assumable” — by linking domains and links to cryptographic proof.

Why this is scalable
  • No installation needed to verify a vURL
  • Works globally: independent of DNS providers, email providers or browsers
  • Anyone can reproduce the same result
  • Recipients don’t need to “trust” the sender
Core principles
  • Verification > Assumption
  • Publicly verifiable (no black box)
  • Protocol independent (works on top of HTTP/HTTPS/SMS/PDF)
  • No user identity (no tracking, no login required)