Free local-first reference tool

CREDAScan™

Free canonical evidence capture for wet-signed documents. Create replay-verifiable integrity records for scanned legal, governance, and compliance documents without uploading or storing the document.

Create CredaScan Record Verify Existing Record
No document custody The file is processed locally in your browser.
No upload or storage CredaScan does not retain the document after close, refresh, or reset.
Replay verification Re-check the file later against its manifest record.

Turn a wet-signed scan into a canonical evidence record.

A wet-signed document may begin on paper, but once it is scanned, the scan becomes the digital evidence object people rely on. CredaScan helps preserve that object by generating a SHA-256 document hash, a structured evidence manifest, and a human-readable verification report.

CredaScan is designed for scanned legal, governance, credentialing, audit, compliance, and formal submission records where the practical question is simple: is this the same digital evidence object later?

Method boundary: CredaScan verifies the integrity of the scanned digital evidence object. It does not authenticate the wet signature, determine legal validity, prove signer intent, establish possession, replace notarization, or guarantee admissibility.

Local-first privacy

CredaScan reads the selected file only long enough to calculate its hash and generate user-downloaded proof records.

Evidence manifest

The manifest JSON is the primary proof container and records the document hash, evidence context, and verification metadata.

Verification report

The report provides a human-readable summary for review, sharing, or filing support.

Local-only prototype: files are processed in your browser using the Web Crypto API. This page does not upload, transmit, or store documents. CredaScan verifies the integrity of the scanned digital evidence object; it does not authenticate the wet signature, determine legal validity, or replace notarization.

Privacy Note — No Document Storage

CredaScan does not retain the document. The selected file is read locally in your browser only long enough to calculate its SHA-256 hash and generate the manifest/report downloads. When this page is closed, refreshed, or reset, the document is not stored by CredaScan.

The only records that persist are the files you choose to download and keep, such as the CredaScan manifest, hash file, and verification report.

Create CredaScan Record

Upload the canonical scan of a wet-signed document and create a deterministic integrity manifest.

No record generated yet.
The document hash, manifest hash, and proof downloads will appear here.

Verify CredaScan Record

Re-upload a document and its CredaScan manifest to determine whether the digital evidence object matches the canonical record.

No verification performed yet.
Verification results will appear here.
Verified Mismatch Invalid Manifest Unverifiable
Method boundary: CredaScan treats the uploaded scan as the canonical digital evidence object. Separate scans of the same paper document may produce different hashes because scanner settings, compression, metadata, cropping, OCR, and rotation can change the resulting file.

CredaScan Resources

User Guide

CredaScan helps create a simple, independently verifiable record that a scanned document file has not changed since the CredaScan record was made. This is useful when a specific wet-signed scan, exhibit, credentialing record, governance document, or formal submission needs to be preserved as a fixed digital evidence object.

Why this is stronger than only saving the file

  • File dates, screenshots, and ordinary metadata can be changed, stripped, or disputed.
  • A SHA-256 hash is a verifiable file fingerprint. Anyone can recompute it later and compare it to the CredaScan manifest.
  • When future timestamp support is added, an RFC 3161 timestamp token may support that the file fingerprint existed at a recorded time without sending the file itself to a timestamp authority.

How it works

  1. Select the scanned document on your device.
  2. CredaScan calculates the file's SHA-256 hash locally in your browser.
  3. CredaScan generates a manifest JSON record containing the file hash, evidence context, method boundary, and verification metadata.
  4. Download and keep the manifest, document hash file, and verification report.
  5. To verify later, upload the document and matching manifest. CredaScan recomputes the file hash and returns a clear match or mismatch result.

What it proves

  • Integrity: if the document's SHA-256 hash matches the hash in the CredaScan manifest, the file is identical to the version used to create the record.
  • Time, if timestamp evidence is later added: an RFC 3161 token may support that the document hash existed at the recorded time.

What it does not prove

  • It does not prove authorship, ownership, possession, signer intent, signature authenticity, or legal enforceability by itself.
  • It does not replace chain-of-custody documentation, notarization, or legal review.

Privacy and storage

  • CredaScan processes the selected file locally in the browser.
  • The document is not uploaded, transmitted, stored on a server, or retained by CredaScan after the page is closed, refreshed, or reset.
  • CredaScan does not create a copy of the document. It only calculates a hash from the file bytes and generates user-downloaded proof records.
  • The only persistent records are the files the user downloads and keeps.

What to keep

  • The exact scanned document file you want to prove.
  • The CredaScan manifest JSON file.
  • The verification report, if you want a human-readable summary for sharing or filing.
Legal / Court Exhibit Note

This explanatory technical note assists review. It is not legal advice and does not guarantee admissibility; legal assessment depends on applicable law and case-specific circumstances.

Potential exhibit structure

  1. Exhibit A — Subject File: the scanned digital file being tested.
  2. Exhibit B — CredaScan Manifest JSON: the machine-readable record containing the subject file SHA-256 hash, evidence context, and optional timestamp fields.
  3. Exhibit C — Verification Report: the human-readable summary. The manifest is the primary cryptographic artifact.

What these exhibits may demonstrate

  1. Integrity of the subject file: if the SHA-256 hash computed from the subject file matches the SHA-256 hash recorded in the manifest, this supports that the subject file is identical to the file version for which the manifest was generated.
  2. Existence-in-time, only if timestamp evidence is present: if a future CredaScan manifest contains an RFC 3161 timestamp token, that token may support that the file hash existed at the recorded time, subject to verification of the token signature and timestamp authority validation approach.
  3. Scope limitation: the evidence packet does not, by itself, establish authorship, ownership, possession, chain of custody, signature authenticity, signer intent, or legal enforceability.
Technical Verification Note

This section is for technical reviewers. The CredaScan manifest is designed to remain useful even if CredaScan is unavailable, because the core verification relies on standard SHA-256 hashing and, in future versions, optional RFC 3161 timestamp tokens.

Evidence objects

  • Target file: the scanned document being tested.
  • CredaScan manifest JSON: the source-of-truth record containing the target file's SHA-256 hash and proof metadata.
  • Optional timestamp token: future versions may store an RFC 3161 TimeStampResp / TSR token in the manifest as base64.

Independent verification summary

  1. File integrity: compute SHA-256 over the target file bytes and compare the result to the hash stored in the manifest.
  2. Manifest consistency: review the manifest schema and required fields, including manifest version, artifact type, created time, document hash algorithm, and document hash.
  3. Manifest fingerprint: if a manifest self-hash is provided, canonicalize the manifest according to the stated scope and recompute the SHA-256 to determine whether the manifest itself has been altered.
  4. Timestamp token: if a future RFC 3161 token is present, decode it, verify the signature under the applicable trust policy, and confirm that the token message imprint corresponds to the document hash.
Evidence Pack Format & Independent Verification

The CredaScan manifest JSON is the primary proof container. It is intended to be sufficient for independent verification without relying on CredaScan.

Minimum fields

  • document.hash_algorithm: SHA-256
  • document.hash: file hash in hexadecimal format
  • created_at: ISO 8601 timestamp generated by the browser
  • timestamp_evidence.present: false in this local-only prototype

Future timestamp fields

  • timestamp_evidence.standard: RFC 3161
  • timestamp_evidence.token_format: TimeStampResp / TSR
  • timestamp_evidence.token_value: optional base64 timestamp token in a future version

Service-independent verification

CredaScan records remain verifiable over time because they rely on standard SHA-256 hashes and, if later included, standard RFC 3161 timestamp tokens stored inside the manifest. Verification can be performed without CredaScan using the file, the manifest, and standard tools.