AFFIXIO
AffixIO is verification infrastructure: a stateless API layer that returns signed allow or deny outcomes for payments, AI agents, QR gates, and eligibility workflows. This page routes engineering leaders, security reviewers, and procurement teams through a structured technical evaluation path.
Confirm AffixIO is verification infrastructure, not IAM, not a CRM, not a data lake. Review stack placement, control plane separation, and the request lifecycle.
War Room overview · Technical architectureReview encryption, access control, data minimisation at the verifier boundary, incident response, and responsible disclosure before you share integration plans.
Trust Center · Security documentation · Procurement packMatch your boundary: payments, government programmes, access control, or AI agent gates. Each sector links to a field report you can reproduce.
Sector paths belowCall live verify endpoints, mint QR proofs, run Noir circuits, and inspect Merkle inclusion. No mock data in the public sandbox.
Live API sandbox · OpenAPI specificationRead the developer guide, download the self-hosted demo, and map your first policy gate. Your systems of record stay in place.
Developer documentation · AI Integration guideRequest a security questionnaire, DPA, or partnership track. We respond to genuine technical enquiries within two business days.
Contact · Partnerships and pilotsPick the boundary closest to your stack. Each path includes a use case page, a reproducible field report, and a sandbox flow.
Gate autonomous actions, tool calls, and delegated spend with signed allow or deny before execution. Hub: sector guide, field notes, and comparison with IAM.
Ticketing and venue accessOffline QR verification, spent-proof logic, and post-quantum attestation for gates. Field report: live ticket verification sandbox walkthrough.
Government and public sectorProgramme eligibility with replayable audit evidence and minimal verifier retention. Field report: UK government sandbox walkthrough.
Payments and bankingTransaction eligibility, merchant gates, and AML/KYC augmentation without a standing profile cache. Field report: agentic payments AML/KYC.
Age verification and regulated retailEligibility checks with zero-knowledge paths and no PII hoarding at the verifier. Field report: privacy-preserving age verification.
Post-quantum and long-lived proofsML-DSA attestation, harvest-now-decrypt-later risk, and latency on live endpoints. Field note: PQC attestation guide.
Three papers cover architecture, live reproduction, and partnership integration. The full library has 39 technical papers.
Reference design for append-only audit trees, inclusion proofs, and verifier-independent replay.
WP-036: Live PQC API sandboxReproducible walkthrough of ML-DSA paths, ZK circuits, latency tables, and press-ready checklist.
WP-039: Scan-to-prove partnershipsPartnership eligibility verification without exporting source records. Integration checklist included.
Identity providers establish who someone is and often maintain sessions. AffixIO evaluates a policy question per request and returns allow or deny with signed proof. It sits beneath IAM as verification infrastructure.
Start with the Trust Center, then the full Security documentation. Request the procurement pack for DPA terms and sub-processor transparency.
Yes. Use the live sandbox, read developer documentation, and download the self-hosted demo. API keys for extended testing are available via Contact.
Published at /openapi.json on this site. Production base URL is https://api.affix-io.com.
See the status page for current health, or call GET /api/health on the production API.