SiGR™ makes every AI inference call cryptographically accountable — a post-quantum signed receipt that proves exactly what the model saw, when, and which backend signed it. Verifiable by anyone. Forgeable by no one.
Four properties bound inside one signature. Alter any field and the proof breaks — no NDA, no shared secret, no trust required.
Every product below is live on the same signing endpoint right now. Each emits a post-quantum signed receipt you can verify offline with no shared secret. Copy a curl, run it, paste the envelope into the matching verify call. Verification is always free.
A signed, ordered, tamper-evident trail of an entire agent run. Every step — plan, tool call, final — is hashed into a step-sealed chain and bound under one signature. Alter any step, reorder them, or drop one, and the proof breaks. The record of what the agent saw and did before it acted, not reconstructed after.
# sign a multi-step agent run — returns a verifiable envelope curl -s -X POST https://hive-typed-signer.onrender.com/sigr/chain \ -H 'Content-Type: application/json' \ -d '{"run":{"run_id":"run-1","agent_ref":"research-agent-v2","steps":[ {"step_id":"s1","kind":"plan","seq":0,"parents":[],"input":{"goal":"compare"},"output":{"plan":["a","b"]}}, {"step_id":"s2","kind":"tool_call","seq":1,"parents":["s1"],"input":{"q":"a"},"output":{"r":"A"}}, {"step_id":"s3","kind":"final","seq":2,"parents":["s2"],"input":{"r":"A"},"output":{"answer":"done"}}]}}' # verify it — free, no secret, paste the envelope returned above curl -s -X POST https://hive-typed-signer.onrender.com/sigr/chain/verify \ -H 'Content-Type: application/json' -d '{"envelope": ENVELOPE_FROM_ABOVE }'
Binds the model, the backend, the exact token counts, and the price schedule into one verifiable receipt per request. The bill stops being "trust our meter" and becomes a fact the customer, an auditor, or a regulator can check independently — silent model or quantization swaps become detectable.
# sign an inference cost / billing receipt curl -s -X POST https://hive-typed-signer.onrender.com/sigr/bill \ -H 'Content-Type: application/json' \ -d '{"request":{"request_id":"r1","model_id":"llama-3.1-70b","backend":"h100", "input_tokens":100,"output_tokens":50,"cached_tokens":0, "request_text":"...","response_text":"...","tokenizer_hash":"tok-v1", "price_input_micro_usd":5,"price_output_micro_usd":15,"price_cached_micro_usd":2}}' # verify — free curl -s -X POST https://hive-typed-signer.onrender.com/sigr/bill/verify \ -H 'Content-Type: application/json' -d '{"envelope": ENVELOPE_FROM_ABOVE }'
A signed SLA bond. The latency ceiling, uptime floor, tolerance, and penalty are committed up front; every measurement against them is signed. When the service misses, the breach is provable and the penalty is mechanical — not a renegotiation. The SLA stops being a clause and becomes a measurement anyone can verify.
# sign an SLA bond (accepts terms or a measurement) curl -s -X POST https://hive-typed-signer.onrender.com/sigr/bond \ -H 'Content-Type: application/json' \ -d '{"terms":{"bond_id":"bond-1","customer_ref":"acme","service_ref":"llama-70b-prod", "window_start":"2026-06-01","window_end":"2026-06-30","latency_ceiling_ms":500, "uptime_floor_ppm":990000,"slow_tolerance_ppm":100000,"penalty_micro_usd":1000000}}' # verify — free curl -s -X POST https://hive-typed-signer.onrender.com/sigr/bond/verify \ -H 'Content-Type: application/json' -d '{"envelope": ENVELOPE_FROM_ABOVE }'
Signs the verdict of a multi-model panel — which models voted, what each produced, the method, and the result — into one receipt. When a panel of models decides something consequential, the decision becomes a signed, replayable fact instead of an opaque ensemble call no one can audit.
# sign a model-panel verdict curl -s -X POST https://hive-typed-signer.onrender.com/sigr/consensus \ -H 'Content-Type: application/json' \ -d '{"panel":{"panel_id":"p1"},"method":"majority","members":[ {"panel_id":"p1","model_id":"gpt-4o","output_digest":"aa","score":50,"seq":0}, {"panel_id":"p1","model_id":"claude","output_digest":"aa","score":50,"seq":1}, {"panel_id":"p1","model_id":"llama","output_digest":"bb","score":50,"seq":2}]}' # verify — free curl -s -X POST https://hive-typed-signer.onrender.com/sigr/consensus/verify \ -H 'Content-Type: application/json' -d '{"envelope": ENVELOPE_FROM_ABOVE }'
Public key for offline verification: GET /pubkey · every endpoint accepts an OpenAI-compatible drop-in at your API edge.
When an enterprise customer, an auditor, or a regulator asks "what did the model actually see, and is this the model we paid for?" — logs are not proof. Logs are editable. A signature is not.
The first platform that emits SiGRs makes the ones that don't look negligent by comparison.
Verification is free forever — anyone, offline, no secret. You pay only to sign, and only past the free tier. One receipt = one Bill receipt, one Bond measurement, one Chain step-sealed run, or one Consensus panel. Roll-ups are free. The metered fee is the wedge; the license is the close.
| Tier | Monthly signed receipts | Per receipt |
|---|---|---|
| Build | first 1M | Free |
| Scale | 1M – 50M | $0.0008 |
| Platform | 50M – 1B | $0.0004 |
| Hyperscale | 1B+ | $0.0002 floor |
Graduated — each band priced at its own rate, like cloud egress. Hyperscale floor negotiable. Trust-tier add-ons and per-product / suite / sovereign licenses below.
Drag to your monthly inference volume. This is the revenue line SiGR adds to your platform — and the cost line you bill through to enterprise customers who demand proof.
The base receipt is post-quantum and verifiable by anyone. For buyers who need entropy you can prove, time you can anchor, or signing rooted in silicon, three add-ons stack onto any SiGR product.
Quantum-derived randomness bound into the signing material, so the entropy behind every receipt is itself provable. Available per-receipt as a premium, or as a sovereign / on-prem custody license for buyers who must hold their own key material.
Anchors the receipt's time in a verifiable chain of custody — capture, soft-commitment, then L1 finality on Base. Choose soft-confirm for speed or full L1 anchoring when the timestamp itself has to be unforgeable.
Signing rooted in attested hardware with no software fallback. Available today as a software-attested backend under license; dedicated silicon acceleration is in development and not yet generally available.
Per-receipt pricing gets you in. When SiGR becomes load-bearing for your platform — embedded at the edge, in every enterprise RFP answer — the annual license is how serious platforms own the rail. Metered usage credits against the license.
Three paths, one rail. Start signing in under a minute on the free tier, meter on USDC over Base when you cross 1M receipts, or book a license when SiGR becomes load-bearing.
First 1M signed receipts every month, free. Instant key, usable immediately against every live endpoint above. No card, no call.
Past the free tier, metered at the graduated ladder and settled in USDC on Base — the same rail Hive uses for nano-payments. No invoices, no minimums, pay only for what you sign.
See the ladderSingle-product, suite, or sovereign on-prem. Tell us your volume and jurisdiction and we will scope the deal — metered usage credits against it.
SiGR is not a feature you bolt on. It is the trust and accountability layer the platforms serving inference at scale will be forced to adopt to stay credible. Here's the revenue at stake as it spreads.
A drop-in on your existing OpenAI-compatible API. Customers opt in per call. Zero change to your inference path beyond the ~7ms signing step, which fails closed.
A regulated buyer chooses you over a hyperscaler specifically because you can prove what you served and what you charged. Trust becomes your differentiator, not your liability.
That win puts "can you emit verifiable receipts?" into every subsequent RFP. Your competitors now field a question they can't answer — and the category tips.
You're not the platform scrambling to add accountability after an incident. You're the one who defined what accountable inference looks like. Inevitable, and yours.
A 30-day pilot on one model family. We instrument your API edge, you emit live SiGRs on opt-in traffic, and we put a verifiable receipt in front of your most demanding enterprise prospect. If the bill, the provenance, and the timeline don't verify in front of them, you owe us nothing.