atPlatform™
Secure, private, and direct connections for People, Entities, and Things.
Unlike traditional systems where connections are established before authentication, atPlatform follows a true zero trust model and prevents footholds for attackers.
Security and connectivity, built from the ground up.
atPlatform™ is an open-source, full-stack platform created by Atsign for developing applications and services that prioritize security, privacy, and data control. It enables direct, end-to-end encrypted communication between any internet-connected person, entity, or thing, without the need to create intricate network setups. Building on atPlatform means you can focus on creating world-class products, knowing that complexities such as encryption, authentication, and certificate management are handled for you.
Built-in Invisibility
Connected devices are invisible by default and instantly reachable by authorized parties.
With atPlatform, devices don’t require open ports for communication. This blocks port scanning, a primary attack vector. Only authorized parties can find and connect to devices.
Core Components of Atsign’s atPlatform
atProtocol
A secure, application-layer protocol that operates on top of TCP/IP and enables peer-to-peer data exchange between any two endpoints, ensuring end-to-end encryption and data integrity.
atSDK
atPlatform-specific building tools that allow developers to rapidly build applications or embed the atProtocol into existing software or device firmware.
atSign
A cryptographically verifiable, unique identifier and address that can be owned by individuals and entities and assigned to things and AI agents. For example: @bob, @alice, @camera219
atServer
A personal data service for storing and exchanging encrypted data owned by an atSign, and a point for information exchange. Each atSign has a corresponding atServer.
How it works—the Post Office analogy
A simple mental model of how the atPlatform works is to think of it like a secure, digital post office. An atSign is like a unique, unforgeable digital postal identity and address. Each one is unique, and it’s the only way to send and receive mail in this secure system.
In this example, the atProtocol is the set of rules and procedures that govern how the package is handled. With our atSDK, every package is encrypted, authenticated, and delivered directly to the intended recipient, without any intermediaries being able to interfere.
The atPlatform allows senders to find the correct postal box (atServer) for a specific postal ID (atSign), without revealing any personal information about the box’s owner.
How packages are sent:
- Give a package a unique address (atSign), this is its destination
- The atSDK automatically encrypts the package contents and stores it in the senders postal box (atServer)
- The atProtocol provides the delivery rules to notify the receiver’s post office box
- The receiver’s postal box picks up a clone of the package (it’s digital so it works!)
- The recipient uses their atSign to retrieve from their postal box and the atSDK automatically decrypts their package contents
The atServer acts like a highly secure postal box. Only the atSign owner has the key, and all packages are stored there, encrypted, until the atSign owner retrieves them.
Our Unique Security Triad
Protecting the three core elements of digital security: People, Entities, and Things.
Protecting Data and Access
People are more than just “users”—they have data, accounts, and identities that need protection. The atPlatform ensures that individuals have full control over their personal data, private communications, and digital identity, preventing unauthorized access and exposure. Account security is enforced through cryptographic identity, eliminating traditional vulnerabilities like password leaks or phishing attacks.
How We Protect People:
- Private, cryptographic identity ensures only the right people can access data
- End-to-end encrypted communication prevents exposure
- Decentralized access control reduces reliance on vulnerable passwords and centralized authentication
Securing Organizations, Governments, and AI Systems
Entities include businesses, government institutions, and AI-driven infrastructure, all of which require secure data exchange and controlled access. The atPlatform ensures that organizations and AI agents can interact, share data, and execute workflows without network-based exposure or centralized risk. This is critical for federated security models, AI autonomy, and enterprise compliance.
How We Protect Entities:
- Federated security model enables trusted collaboration without exposing sensitive data
- Zero Trust access controls enforce strict identity-based policies for AI and organizations
- Decentralized policy enforcement ensures privacy-first security at scale
Protecting Connected Devices, Infrastructure, and Technology
Connected devices power modern digital ecosystems, from IoT devices to industrial systems and cloud infrastructure. The atPlatform secures these without relying on network-based protections, ensuring that devices, APIs, and data flows remain protected—even in untrusted environments.
How We Protect Things:
- Device identity & authentication prevent unauthorized access
- End-to-end encryption secures data in motion and at rest
- Event-driven security ensures real-time protection for dynamic environments