Why it matters
- Digital evidence authenticity is increasingly challenged in litigation
- Chain-of-custody documentation is critical for admissibility
- eDiscovery volumes require automated verification at scale
What Raina does
Per-event Ed25519 signed audit log
Every new audit log row is signed with Ed25519 over a canonical (sequence, hash, action, resource, timestamp) tuple. Pre-existing rows remain unsigned and are surfaced honestly, never backfilled with synthetic signatures.
Chain-of-custody endpoint
GET /api/v1/legal/chain-of-custody/:scanId returns every audit event for a scan with its per-event signature, hash-chain integrity status, and an explicit unsignedEventCount for legacy rows.
Hash record + Wayback verification
Each scan generates a SHA-256 hash record with a Raina verification ID. URL inputs are checked against the Internet Archive's Wayback Machine for an earliest-capture timestamp.
Reliability tier + editing-software detection
Scans are tagged PRIMARY / SECONDARY / TERTIARY / INADMISSIBLE based on score, timestamp verifiability, and metadata-derived signs of editing software (Photoshop, Lightroom, GIMP, Affinity).
Legal report formatted for review
Plain-text report with hash record, Wayback verification, reliability tier, and chain of custody. Every report carries the Raina Ventures disclaimer verbatim, without abbreviation.
eDiscovery exports (EDRM-XML, Concordance)
POST /api/v1/legal/export/edrm and /export/concordance return EDRM-XML and Concordance .dat load files for ingestion into Relativity, Reveal, and similar review platforms.
Example workflows
Evidence collection
Digital evidence is ingested, hashed, and signed on receipt
Forensic analysis
Multi-layer verification including metadata, compression, C2PA provenance, and AI detection
Expert reporting
Generate signed reports formatted for legal review and expert testimony preparation
For compliance officers
Raina is readiness-only on the controls listed below. Audit attestations are not in place. Readiness assessments are available under NDA.
SOC 2 Type II
Readiness assessed against AICPA Trust Service Criteria; no audit attestation in place.
Request the readiness assessmentHIPAA
Readiness assessed against the Security, Privacy, and Breach Notification Rules; no signed BAAs in place.
Request the readiness assessmentFedRAMP Moderate
Low-to-Moderate uplift gap analysis complete against NIST 800-53 Rev 5; no 3PAO engagement.
Request the readiness assessmentIRS 1075
Pub 1075 gap analysis complete; no Safeguard Procedures Report submitted.
Request the readiness assessmentCJIS
Assessed against FBI CJIS Security Policy v5.9.3; no agency-level CJIS agreement signed.
Request the readiness assessmentRaina does not currently hold any third-party security attestations. The frameworks above represent control-design readiness against published criteria, not audited compliance. Contact sales for the gap analysis specific to your procurement requirements.
Evidentiary readiness: Raina has no documented litigation history and does not hold itself out as admissible under Federal Rules of Evidence 901/902 or as having survived a Daubert challenge. The platform produces hashed, Ed25519-signed verification artifacts and chain-of-custody logs suitable for legal review and expert testimony preparation; whether those artifacts are accepted as evidence in any specific matter is determined by the court and retained experts. Raina does not currently operate a formal expert witness program. Counsel relying on Raina output should contact sales to review current methodology disclosures, sample reports, attorney work product handling, and remaining control gaps before use in active matters.