Why curated, not open
The first instinct in crypto is to make every layer permissionless. For verification of physical-world events, that instinct is wrong. A meter reading isn't verifiable by a random wallet on the internet, only by the meter operator who physically owns the device. A customs clearance isn't signable by a community DAO, only by the customs broker or office that handled the shipment.
EDMA's attestor model is permissioned by role and accountable by identity. Five role types cover the universe of real-world events the protocol verifies. Within each role, the attestors are KYC-bound, stake-backed in $EDM, and slashable for misattestation. Governance can add, suspend, or remove attestors via a 72-hour timelock and public diffs.
The five roles
- 01
METER_OP. Meter operators
Utility meter operators with physical custody of grid-connected metering devices. They sign readings for energy generation, gas flow, and similar continuous-measurement events. Onboarded with proof of meter ownership and grid-connection documentation.
- 02
AUDITOR. Third-party audit firms
Independent audit and certification firms with relevant accreditation (ISO 17025 for testing labs, IAF MLA for management-system certification, ANAB for forensic audit). AUDITOR signature is required on every PoV claim, they're the cross-check that no other role is acting alone.
- 03
GRID. Grid operators and DSOs
Distribution System Operators and TSOs who confirm that exported energy actually reached the grid. They cross-attest with METER_OP on energy claims, a meter reading without grid confirmation is incomplete.
- 04
INSPECTOR. Surveyor companies
Independent surveyors (SGS, Bureau Veritas, Intertek, etc.) handling QC inspections, batch testing, sample sign-off, AQL inspections, and shipment-loading verification. They sign trade-route claims at production and shipment milestones.
- 05
CUSTOMS. Customs brokers and offices
Licensed customs brokers and, where applicable, customs office endpoints handling HS-code classification, declaration filing, and clearance confirmation. They sign trade-route claims at the customs milestone.
How attestors are managed
Onboarding
KYC/KYB + role-specific credential verification (licenses, accreditations, professional memberships). Sanctions screening on the entity and beneficial owners. Stake bond in $EDM proportional to expected attestation volume.
Performance
Continuous performance score: turnaround time, dispute rate, revocation rate. Persistent low scores trigger suspension review. License expiry tracking: lapsed credentials trigger automatic suspension until renewal.
Slashing
Misattestation (signing evidence later proven false) → stake slashed proportional to downstream damage. Slashed $EDM is burned, not redistributed, keeps the burn schedule clean and prevents incentive games.
