Is EverCert free to use?

Yes. EverCert is free to use and does not require an account. You can create and verify proofs at no cost.

Do you upload my document when creating a proof?

No. Your file never leaves your device. Only a secure fingerprint is sent to create the document proof.

Is the proof permanent?

Yes. Once created, your proof cannot be changed. After it is anchored to Bitcoin, it becomes a permanent, independently verifiable record.

Can I verify a proof without EverCert?

Yes. Your proof works independently. You can verify it yourself using free, open-source tools.

Why does verification sometimes say "pending"?

Proofs are created immediately and later anchored to Bitcoin. Until that happens, the timestamp proof is valid, but verification will show as pending.

Blog — Legal Technology

How to Authenticate Digital Evidence

A practical guide to establishing provenance and chain of custody for digital files in legal proceedings.

The Challenge of Digital Evidence in Court

Courts require that digital evidence be authenticated before it can be admitted. Under Federal Rule of Evidence 901, the proponent must produce sufficient evidence to support a finding that the item is what they claim it is. For physical documents this is often straightforward — a signed letter, a notarized contract, a photograph with known provenance. For digital files, the challenge is fundamentally different.

Digital files are inherently mutable. Metadata timestamps, EXIF data, file creation dates, and internal document properties can all be altered without leaving visible traces. A PDF can be re-saved with a new modification date. A photograph's GPS coordinates and capture time can be rewritten. An email's headers can be forged. The very properties that make digital files useful — easy copying, editing, and transmission — make them difficult to authenticate.

Opposing counsel routinely challenges the integrity and dating of electronic records. Was this contract really signed on the date claimed? Has this photograph been edited since it was taken? Was this email actually sent when the metadata says it was? These are not hypothetical objections — they arise in discovery disputes, motions in limine, and trial testimony with increasing frequency.

Traditional chain of custody methods — custodian testimony, system access logs, IT department declarations — are increasingly insufficient for sophisticated disputes. A system administrator can testify about server timestamps, but those timestamps rely on system clocks that can be manipulated. An IT forensics expert can examine file metadata, but metadata can be spoofed by anyone with basic technical knowledge.

The stakes are significant. Evidence that cannot be properly authenticated can be excluded entirely. Even if admitted, its weight may be severely diminished by credible challenges to its integrity. A case built on digital evidence without independent verification is a case with a structural vulnerability.

What Courts Need to See

Authentication requires showing that the evidence is what the proponent claims it is. For digital files, this means establishing two things: that the file existed at the claimed time, and that it has not been modified since that time. These are conceptually simple requirements, but in practice they are difficult to satisfy with traditional methods alone.

Expert testimony about metadata is commonly offered, but it is frequently contested. Metadata is data about data — it describes when a file was created, modified, and accessed. The problem is that metadata is stored within the file system or the file itself, and it can be changed by the same party presenting the evidence. This creates a circular trust problem: the evidence's own properties are being used to prove the evidence's authenticity.

What courts increasingly look for is independent corroboration — evidence of authenticity that does not depend on any party to the dispute. A third-party timestamp anchored to a public, immutable ledger provides exactly this. When a file's cryptographic fingerprint is recorded on the Bitcoin blockchain, the resulting proof does not rely on any party's testimony, any company's servers, or any system's internal clock. It is mathematically verifiable by anyone, at any time, using open-source tools.

This shifts the evidentiary foundation from "trust what we're telling you about this file" to "verify it yourself against a public record that neither party controls." That is a fundamentally stronger position for any litigant.

How Cryptographic Timestamps Establish Chain of Custody

At the time of collection or creation, the file is processed through SHA-256, a cryptographic hash function that produces a unique 256-bit fingerprint. This fingerprint is then anchored to the Bitcoin blockchain via OpenTimestamps, an open protocol for creating verifiable timestamps. The result is an immutable record: this exact file existed at this exact time.

The security of this approach rests on a fundamental property of cryptographic hash functions: any alteration to the file — even changing a single byte, one pixel, one character — produces a completely different hash. If someone modifies the file after timestamping, the hash will not match, and the proof will fail. There is no way to alter the file and maintain a valid proof. The math does not allow it.

The proof is independently verifiable by any party using freely available, open-source tools. Opposing counsel, a court-appointed expert, or a judge's clerk can all verify the timestamp without needing access to EverCert, without needing an account, and without needing any proprietary software. The verification checks the file's hash against the Bitcoin blockchain directly.

There is no reliance on any company, server, or proprietary system for the proof to remain valid. Even if EverCert ceased to exist tomorrow, every proof ever created would remain independently verifiable for as long as the Bitcoin blockchain exists. The Bitcoin blockchain serves as a neutral, decentralized, public timestamp authority — a global clock that no single entity controls.

Best Practices for Legal Teams

The most important practice is timing: timestamp evidence at the moment of collection, not weeks or months later. A timestamp created contemporaneously with evidence collection is far more compelling than one created after a dispute has arisen. Build timestamping into your evidence intake workflow so it happens automatically, not as an afterthought.

Store the .ots proof file alongside the original evidence in your case management system. The proof file is small — typically under 10 KB — and should be treated as part of the evidence package. Without the proof file, the timestamp cannot be verified. Treat it with the same care as the original document.

For large document sets, timestamp each file individually rather than creating a single archive. Individual timestamps provide granular proof for each document, which is more useful when opposing counsel challenges specific items rather than the entire collection.

Include the proof files in your privilege log and discovery responses where appropriate. When producing documents, the accompanying timestamp proof strengthens your position by demonstrating that the documents have been preserved in their original form since collection.

The process takes under 30 seconds per file and costs nothing. There is no account to create, no subscription to maintain, and no vendor dependency to manage. Consider timestamping all categories of digital evidence routinely: emails, contracts, photographs, chat logs, financial records, internal reports, and expert reports. The cost of timestamping is negligible; the cost of failing to establish authenticity can be decisive.

Litigation & Evidence Preservation →

Timestamp evidence before it's challenged in court.

How Document Timestamps Work →

The technical foundations of cryptographic document timestamping.

Timestamp a Document Now

Free. Private. No account required.