Inferensys

Glossary

Rekor

An append-only, cryptographically verifiable transparency log service within the Sigstore ecosystem that records digitally signed metadata about software artifacts, enabling public auditability and preventing retroactive forgery.
Data scientist building training data pipeline on laptop, data preprocessing visible, technical workspace.
TRANSPARENCY LOG

What is Rekor?

Rekor is the immutability and transparency log service within the Sigstore project that stores cryptographically verifiable records of software signatures, enabling users to audit and verify that an artifact was signed and included in the public ledger.

Rekor is an append-only, transparency log that provides an immutable record of software signing events. It stores signed metadata—including signatures, certificates, and attestations—in a Merkle tree data structure, generating a verifiable root hash that makes retroactive tampering or log manipulation computationally infeasible. This architecture ensures non-repudiation, proving that a specific artifact was signed at a specific point in time.

As a core component of the Sigstore ecosystem, Rekor works alongside Fulcio (the certificate authority) to enable keyless signing workflows. When a developer signs an artifact, the signature and ephemeral certificate are uploaded to Rekor, creating a publicly auditable entry. Monitors can then query the log to verify inclusion proofs, ensuring that no signed artifact exists outside the public record and enabling detection of unauthorized signing events.

TRANSPARENCY LOG

Key Features of Rekor

Rekor provides the immutable, verifiable ledger that underpins the Sigstore ecosystem, ensuring every software signature is publicly auditable and cryptographically undeniable.

01

Append-Only Immutability

Rekor operates as a Write-Once-Read-Many (WORM) data store. Once an entry is recorded in the log, it cannot be modified, deleted, or reordered without detection. This is enforced through a cryptographically verifiable Merkle Tree structure, where each new entry strengthens the integrity of all previous entries by incorporating their hashes into a new root hash. Any attempt to retroactively alter a historical record would invalidate the entire tree structure, making tampering mathematically evident to any auditor.

WORM
Data Model
02

Cryptographic Verifiability

Rekor enables offline and online verification of the inclusion and consistency of entries without requiring trust in the log operator. It achieves this through:

  • Inclusion Proofs: Verifies that a specific entry exists within the log.
  • Consistency Proofs: Verifies that a newer version of the log is a valid extension of an older version, preventing a malicious operator from forking the history. These proofs are lightweight and can be generated and verified by any client, ensuring that the monitoring of software supply chain integrity is not centralized.
Merkle Tree
Core Data Structure
04

Timestamping and Non-Repudiation

Every entry in Rekor is assigned a verified timestamp, providing a critical property of non-repudiation. This proves that a software artifact existed and was signed before a specific moment, which is essential for:

  • Vulnerability Response: Determining if a build occurred before or after a vulnerability was disclosed.
  • Compliance Audits: Demonstrating to regulators that a specific artifact was the one approved for deployment at a given time. The timestamp is integrated into the log's Merkle Tree, making it immutable and globally verifiable.
Non-Repudiation
Security Property
06

Public Auditability and Ecosystem Trust

The primary function of Rekor is to act as a public, community-operated audit log. By making the act of signing transparent, it enables a 'trust but verify' model for the entire open-source ecosystem. A user running a container image can check Rekor to confirm:

  • The signature was valid at the time of signing.
  • The signing identity matches the expected publisher.
  • The artifact has not been signed by an unexpected or malicious actor. This global visibility deters malicious signing and enables rapid detection of compromised identities.
Public
Access Model
REKOR TRANSPARENCY LOG

Frequently Asked Questions

Clear answers to common questions about Rekor's role in the Sigstore ecosystem, its cryptographic guarantees, and how it enables auditable, tamper-proof software supply chains.

Rekor is the immutability and transparency log service within the Sigstore project that provides an append-only, cryptographically verifiable ledger of software signing events. It works by accepting signed metadata and artifact hashes, integrating them into a Merkle tree structure, and publishing a periodic, signed root hash. This allows any party to verify that a specific signature was recorded at a specific point in time without trusting a central authority. The log is publicly auditable: monitors can continuously watch for unexpected entries, and verifiers can cryptographically prove inclusion. Rekor separates the act of witnessing a signature from the certificate authority (Fulcio), ensuring that even if a short-lived certificate is compromised, the evidence of the signing event remains permanently and immutably recorded.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.