Proof of Verification — EDMA's Consensus Mechanism

What this page covers

Proof of Verification (PoV) is the consensus mechanism that distinguishes EDMA from generic Layer 2 rollups. Where most blockchains secure transactions through computational work (PoW) or economic stake (PoS), PoV adds a third axis: verification of real-world events. Only events that have passed PoV's evidence-quality checks enter settled state; nothing else can mint tokens or move value through the protocol.

This page covers the four-stage PoV flow that runs on every protocol event, and the four accountability mechanisms that hold attestors to truthful signing. Together these make the verification machinery self-funding and self-correcting at the protocol level — the integrity check is built into consensus rather than bolted on as an audit step.

SOURCE → VERIFY → GATE → MINT

Proof of Verification (PoV) is EDMA's consensus mechanism. Unlike Proof of Work (which secures by computational expense) or Proof of Stake (which secures by economic commitment), PoV secures by binding chain state to verifiable real-world events. The four-stage flow runs on every event before any token mints or any value moves.

Source

Evidence captured at origin

Verify

Attestor signatures

Gate

Quorum + One-Claim

Mint

Only on PASS

P1Source: evidence captured at origin

A real-world event generates evidence at its source — a smart meter recording kilowatt-hours of renewable generation, an IoT sensor logging emissions data, a customs system releasing a shipment, a lab analyzing soil carbon. The evidence is signed cryptographically at the source using a canonical schema (MeterReadingBatch.v1, EmissionsBatch.v1, ShipmentEvent.v1) so downstream systems can verify origin authenticity.

P2Verify: attestor signatures

Registered attestors — certified auditors, utility operators, satellite operators, accredited labs — review the evidence and co-sign with their cryptographic identity. Attestors are in the on-chain registry with role classification (AUDITOR, METER_OP, REGISTRAR, etc.) and reputation history. Multiple attestor signatures with required role diversity are common for higher-trust applications.

P3Gate: quorum, equality, One-Claim

The PoV Gate runs three checks on every event: (1) attestation quorum — minimum number of valid signatures with required role diversity, (2) equality of evidence — every signature references the same canonical evidenceHash, (3) One-Claim exclusivity — the evidenceHash has not been finalized elsewhere on the protocol, preventing double-counting across registries or platforms.

P4Mint: only on PASS

On Gate PASS, the appropriate token mints to the producer's wallet: $ETT for energy generation (1 per 10 kWh), $CLE for retail-tier energy (1 per 1 MWh), Carbon NFTs for verified removals or avoidance, EMTs for trade milestones. On Gate FAIL, nothing mints; the event is logged for review but does not enter settled state. This is the structural invariant: no PASS, no value moves.

Every event that affects protocol state passes through this exact flow. No exceptions, no workarounds, no privileged bypasses. The mint contract checks Gate state on every call; transactions that have not cleared the Gate revert at the contract level rather than being held in a pending queue.

The PoV flow runs four stages on every event before any token mints. P1 captures evidence at the source with cryptographic signing. P2 collects attestor signatures from registered, role-classified verifiers. P3 validates quorum, equality, and One-Claim exclusivity. P4 mints only on Gate PASS. No exceptions, no workarounds — failed Gate means no value moves.

Why PoV differs from PoW and PoS

Proof of Work secures transactions by making them computationally expensive to forge — an attacker would need to outspend the honest network on hash power. The security model assumes hash power is hard to acquire.

Proof of Stake secures transactions by making forgery economically expensive — an attacker would need to stake more than the honest network's stake and accept slashing when caught. The security model assumes capital is hard to misuse.

Proof of Verification secures real-world claims by making mis-attestation economically and reputationally expensive. An attestor who signs false evidence faces slashing of staked $EDM, reputation degradation in the on-chain registry, exposure to dispute panel review, and revocation of downstream claims. The security model assumes accountable identity is hard to abuse — and that the cost of being caught lying outweighs the value of any single false attestation.

The three are complementary, not alternative. PoV does not replace PoS at the L2 transaction-ordering level; the rollup still uses Ethereum-anchored consensus for transaction sequencing. What PoV adds is a layer on top: a check that the events being settled are verifiable real-world events with attestor backing. The combination produces a chain that is both cryptographically secure (PoS-anchored) and evidentially admissible (PoV-gated).

ATTESTOR ACCOUNTABILITY

PoV's security model depends on attestors signing truthfully. Four mechanisms enforce that: an on-chain registry with public reputation, economic slashing for proven mis-attestation, a dispute panel reviewing contested claims, and revocation when essential evidence is later proven false. The mechanisms compose; attestors face accountability at multiple levels.

On-chain attestor registryIdentified, role-classified, reputation-tracked

Every attestor is registered on-chain with their cryptographic identity, role classification (AUDITOR, METER_OP, REGISTRAR, FORWARDER, etc.), and reputation history. Signatures from unregistered addresses are rejected at the Gate. Reputation accumulates across successful attestations and degrades from proven errors or slashing events.

Economic slashing5-100% of staked $EDM by severity

Attestors stake $EDM to participate. Proven mis-attestation — evidence later shown to be false or duplicate — triggers slashing on a severity scale: first-time minor offenses slash 5-15 percent of stake; repeated or severe offenses slash 50-100 percent. Slashed stake routes to the insurance pool, making the accountability mechanism self-funding.

Dispute panelsveEDM-weighted review

When attestations are contested, the dispute resolution module routes the claim to a veEDM-weighted panel that reviews evidence and votes. Panel members earn a share of the counter-escrow on the disputed claim. Frivolous claim forfeitures accrue to the panel as compensation; active participation builds reputation and additional reward streams.

Revocation with append-only lineageNarrow, replayable

When essential evidence is later proven false — attestor finds a fault, registry pulls the underlying serial, regulator disqualifies the methodology — the protocol flags dependent assets through flagRevoked(claimId) and provides a rectify path when quorum is restored. Lineage is append-only; the receipt history is never erased, just amended with the revocation event. Auditors can replay the full sequence from L1.

The four mechanisms compose. An attestor who mis-attests faces immediate slashing (A2), reputation degradation in the registry (A1), exposure to dispute panel review (A3), and revocation of downstream claims (A4) — with the slashed stake funding the insurance pool that makes counterparties whole. The accountability structure is self-funding and self-correcting.

Four mechanisms compose to hold attestors accountable. A1 on-chain registry with public reputation. A2 economic slashing on a severity scale, routed to the insurance pool. A3 dispute panels with veEDM-weighted review. A4 revocation with append-only lineage preserving the audit trail. Each mechanism is checked at a different point in the lifecycle.

The end-to-end integrity properties

Uniqueness. One-Claim Ledger ensures the same evidenceHash cannot mint twice across the protocol — even if the evidence is also registered on an external registry like Verra or Gold Standard. Registry mirrors bind external serials to the on-chain claim, preventing cross-registry double monetization.

Admissibility. Only registered, role-classified attestors can sign. Quorum and role diversity requirements prevent any single attestor from gating evidence into the protocol alone. The signature requirements make protocol entry a multi-party authorization rather than a single-counterparty trust decision.

Replayability. Every event from source through mint produces a receipt that auditors can replay from L1: the evidenceHash, the attestor signatures, the Gate result, the per-bucket fee distribution, the burn hash. Audit time collapses because the audit trail is the protocol's natural artifact rather than a downstream compilation.

Reversibility. When essential evidence is later proven false, revocation flags dependent assets without erasing history. The receipt continues to exist; an amendment records the revocation event. This handles real-world corrections (an attestor finds a fault, a registry pulls a serial) without breaking the audit trail.

Continue exploring

For the structural comparison of consensus mechanisms see PoW → PoS → PoV. For how PoV-gated settlement flows feed downstream economics see Split and Fee Schedule. For the settlement architecture built on top of PoV see Settlement Overview and ESG Flows. For the energy platform that produces verified events at scale see Energy Platform.

Proof of Verification — How EDMA Binds Chain State to Real-World Events

What this page covers

Why PoV differs from PoW and PoS

The end-to-end integrity properties

Continue exploring

Own the rail, not the ride

Edma’s uber blockchain moment for carbon

Edma Network

Verify first. Then mint.

Community Chat