Ledger architecture
- Append-only, cryptographically chained audit log.
- Every issuance and retirement is signed by two authorised officers (four-eyes).
- Daily reconciliations between the operational database and the chained audit log.
- External auditors receive read-only access to the audit log.
Serial numbers
Every CRU is serialised at issuance. Serial numbers are non-reusable, monotonically increasing per methodology and vintage, and encode the host country and vintage year.
ISO/IEC 27001:2022
The registry platform is designed to ISO/IEC 27001:2022 controls. Independent audit reports are published annually.
