Brand Console
Technology

Hardware-grade encryption, global edge architecture

Authentag™ security doesn't rest on a database lookup. It's built on chip-level hardware encryption, cryptographic proof, and a distributed edge network. From the physical layer to the protocol layer, every link is engineered so a verification result can't be forged and data can't be tampered with.

Verification Architecture

A three-tier verification model
security that scales with the carrier

Three carriers share one infrastructure for traceability, tracking and DPP compliance. What differs is the depth of protection: a QR code delivers digital identity and an event record, NTAG 213 adds dynamic clone resistance, and NFC DNA delivers cryptographically uncloneable verification.

📱

QR · digital identity layer

Each product's QR binds a unique product code (UID) and a dedicated URL pointing to its own landing page. This satisfies DPP requirements while generating a unique scan event in the system — timestamp and country-level geography — combined with geo-jump detection and replay alerts, for a basic but complete product identity and monitoring layer.

🔄

NTAG 213 · dynamic anti-clone layer

The chip's built-in UID + counter mirroring generates a dynamic URL on every NFC tap; the old link expires automatically, exposing most static-copy and forwarding-style clones. It likewise records scan time, country-level geography and UID association, raising geo-jump and replay alerts.

🔐

NFC DNA · cryptographic layer

Built on NXP NTAG DNA chips. Each chip is written with a unique AES-128 key and then permanently locked. Every read produces an encrypted message packet that the server verifies cryptographically. The result is a mathematical proof, not a simple database match — and it distinguishes far more clone and attack patterns.

Infrastructure

Global, distributed
edge-first architecture

The system is deployed in the U.S., with verification logic running on 250+ global edge nodes and China acceleration for factory access — keeping the factory, verification and regulatory sides fast and stable.

Global edge compute network

  • Serverless edge runtime — verification logic executes at 250+ nodes near the user
  • Edge-distributed database — read/write close to the request, millisecond response
  • Global object storage — DPP files and landing-page assets delivered nearby
  • EU consumer verification latency < 100 ms

China acceleration

  • Chinese factories reach the system through in-country nodes — stable, low latency
  • Localized acceleration for the AT Writer desktop app and brand Dashboard
  • Writes flow back to the primary database for global consistency
  • Compliant with China's cross-border data transfer requirements

eIDAS signing & blockchain anchoring

  • DPP data is electronically signed to meet the EU's non-repudiation requirements
  • Signed data is anchored to the blockchain daily, forming irreversible on-chain proof
  • Meets the ESPR mandate for data integrity

Data security & backup

  • AES-256 encryption at rest, TLS 1.3 in transit
  • Daily EU S3 backups, a 10-year data retention commitment
  • Privacy-first design
  • Aligned with GDPR and China's PIPL
Technical Specifications

Core technical specifications

Key parameters across the three carriers, side by side.

Dimension QR Code NTAG 213 NFC DNA
Chip manufacturerNXP SemiconductorsNXP Semiconductors
Unique identifierSystem-generated UIDSystem-generated UIDSystem-generated UID
CryptographyAES-128 (SUN message authentication)
Clone protectionSystem-side recordsCounter + system-side recordsAES-128 encryption + system-side records
Read distanceWithin camera focus1 – 5 cm1 – 5 cm
Data storageURL-encoded144 bytes user memory256 bytes user memory
DPP complianceFully supportedFully supportedFully supported
Go deeper

Want the technical detail?
Book a technical walkthrough

Our engineering team will walk through the verification chain, deployment architecture and integration options for your specific product scenario.

Book a technical walkthrough Explore products →