AmericaFirst4Us · ELAI

Identity Binding Ledger — Consolev2

Enroll passkey or chip card · authenticate (1/0) · multi-select revoke · self-revoke via passkey proof · recover with surviving credential — live against the ELAI ledger.

Enroll a credential on this device

Platform-bound · non-discoverable · won't sync as a discoverable passkey. Storage backend depends on your OS provider (iCloud Keychain on Safari/Mac; otherwise Google PWM on Chrome — switch via System Settings → Passwords if you want iCloud).
Hardware-bound · no cloud sync, ever. The card itself is the key. Requires the ELAI chip-helper on Windows or Mac desktop ⓘ
Helper not detected Start the Python helper on your computer (see setup), then click "Check helper".

Bind a document NEW · MULTI-SIDE SUPPORT

Each "Choose Files" click adds to the list (it appends — doesn't replace). Use "Clear all files" to start over.

Enrolled credentials (this device)

0 selected

Recovery · continuity proof

Lose a credential (“mark lost”), then Recover with another credential bound to the same identity — the ledger issues a signed continuity proof, verified here with the ledger’s public key.

ELAI decision log

— actions will appear here —

v2 changes: chip-card credential type (Path B — chip wraps an Ed25519 keypair the same way the passkey does, via deterministic chip fingerprint → HKDF → AES-GCM 256 KEK). Multi-select revocation lets you kill any subset of credentials in one operation. Self-revocation via passkey proof (no admin key needed) — your own surviving credential proves the revocation is yours.
Each credential is a per-credential Ed25519 key; the private key is generated on this device and wrapped by your passkey (WebAuthn PRF) or by your chip card (deterministic chip fingerprint) — it never leaves unencrypted. Only the public key + fingerprint are in the ledger.
Demo build · test ledger keys · single-device.