For the past several years, much of the conversation around content authenticity has focused on verifying media before it’s published. That’s important, but it leaves an obvious question: What if trust could begin before the content ever leaves the device?
That’s where the industry is heading. And it’s why DigiCert is expanding its content authenticity portfolio to support C2PA-enabled signing at the point of capture.
As AI-generated and manipulated media become more sophisticated, organizations are looking beyond simple detection. They want a way to establish provenance—a way to answer fundamental questions about where content came from, who created it, and whether it’s been altered along the way.
That's why industry momentum has coalesced around the Coalition for Content Provenance and Authenticity (C2PA), an open standard that enables trusted Content Credentials to travel with digital media. Rather than relying on visual cues or AI detection alone, C2PA provides cryptographic evidence about a piece of content's origin and history.
For many organizations, that's a significant step forward. But it's also prompted a new question: When should that trust begin?
For years, content authenticity solutions have focused on signing media as part of publishing or distribution workflows. That approach is valuable because it helps establish trust before content reaches its audience.
But for many use cases, the strongest proof of authenticity starts even earlier.
When an image or video is cryptographically signed by the device that captures it, the chain of trust begins at the source. Whether the content comes from a professional camera, a security system, a medical imaging device, or scientific equipment, organizations gain verifiable proof of origin from the moment it's created—not after it enters another workflow.
That distinction can be especially important in environments where maintaining provenance is critical, including journalism, public safety, healthcare, manufacturing, and scientific research.
For years, DigiCert has helped organizations establish trust through digital identities, PKI, and device security. Extending that trust to the content those devices create is a natural next step.
By adding C2PA support to Device Trust Manager, DigiCert enables manufacturers of cameras, scanners, microscopes, CCTV systems, and other imaging devices to embed trusted Content Credentials directly into their products. The result is cryptographically signed images and video from the moment they're captured, creating verifiable proof of origin that travels with the content throughout its lifecycle.
Device Trust Manager also allows manufacturers to provision and manage C2PA certificates at scale while integrating signing into existing manufacturing and provisioning workflows, making it easier to deploy trusted content credentials across fleets of devices.
Point-of-capture signing isn't intended to replace cloud-based signing; it's designed to complement it.
Organizations have different operational requirements depending on how content is created, managed, and distributed. Some need to establish authenticity directly on trusted hardware. Others need to sign content as part of publishing workflows. Many will benefit from both.
Together, DigiCert Device Trust Manager and Content Trust Manager give organizations the flexibility to establish trust wherever it makes the most sense, whether that's at the moment content is created, before it's published, or throughout both stages of the workflow.
Learn more about DigiCert's content authenticity solutions and how they can help you build verifiable trust from capture to publication.