Protects Products.
Prove Ownership.
RavenTag links NTAG 424 DNA NFC chips to Ravencoin blockchain tokens. Brands stop counterfeiting. Buyers prove ownership. Thieves cannot resell what they cannot prove they own.
Not just authenticity: ownership
SaaS anti-counterfeiting services tell you whether a product is real. RavenTag also tells you whether the person selling it actually owns it. When a brand transfers the blockchain token to a buyer, that buyer holds cryptographic proof of legitimate ownership, linked to the physical NFC chip. No subscription service offers this.
- ✗NFC signature
- ✗Blockchain asset
- ✗Token in wallet
NFC signature invalid. The chip is a clone or has been tampered with. The product is a fake.
- ✓NFC signature
- ✓Blockchain asset
- ✗Token in wallet
NFC signature valid: the product is genuine. But the seller's wallet does not hold the linked token. No proof of legitimate ownership. The buyer can report the theft to the brand, who can revoke the asset: future verifications will then fail.
- ✓NFC signature
- ✓Blockchain asset
- ✓Token in wallet
NFC signature valid and the linked token is confirmed in the seller's wallet. Authentic and legitimately owned.
A thief has the physical product but not the blockchain token. Without the token they cannot prove ownership at resale. The buyer scans the NFC tag, sees the product is genuine, then checks the wallet and finds the token is missing. The sale cannot proceed. No SaaS anti-counterfeiting service can offer this: it requires on-chain ownership, which only Ravencoin provides in a decentralized, self-hosted, subscription-free way.
How it works
Brand programs the chip
The Brand Android App derives per-chip AES-128 keys from BRAND_MASTER_KEY, issues a Ravencoin unique token (5 RVN) with RTP-1 IPFS metadata, and writes the keys and SUN URL to the NTAG 424 DNA chip via ISO 7816-4 APDUs.
Consumer scans
The NFC chip generates a signed SUN URL on every tap (AES-128-CMAC, hardware-backed, unclonable). The brand server verifies the MAC, decrypts the UID, and checks the replay counter. Keys never leave the brand infrastructure.
Blockchain confirms
The server fetches the Ravencoin asset metadata from IPFS and matches the nfc_pub_id (SHA-256 of UID and brand salt). If the asset is revoked or the fingerprint does not match, the result is NOT AUTHENTIC.
Two apps, one ecosystem
RavenTag ships as two separate Android apps: one for brand operators to manage assets and program chips, one for end consumers to verify authenticity. Both are fully open source and white-label ready.
- Issue Ravencoin assets: root (500 RVN), sub-asset (100 RVN), unique token (5 RVN)
- Program NTAG 424 DNA chips with AES-128 derived keys via ISO 7816-4 APDUs
- Multi-level access: Admin (full) and Operator (chip programming only)
- Built-in BIP44 HD wallet (coin type 175, Ravencoin) with BIP39 12-word mnemonic
- Transfer tokens to buyers as proof of purchase, revoke counterfeits instantly
- Tap NFC tag to verify: AUTHENTIC, NOT AUTHENTIC, or REVOKED
- Full verification: SUN MAC check, counter replay protection, blockchain asset lookup
- Built-in Ravencoin wallet to receive and hold transferred ownership tokens
- Verification URL configurable for any brand using RavenTag; brands can ship their own version of the app with the URL pre-set so users need no configuration
- Fully white-label: custom logo, primary color, and brand name in one config file
- No admin features, clean consumer verification UX
Built-in Ravencoin Wallet
Non-custodial. Backend-independent.
Both apps include a full BIP44 HD wallet. Your private keys are encrypted in the Android Keystore and never leave your device. The wallet connects directly to ElectrumX public nodes: you can manage your RVN and transfer assets even when the brand's server is offline.
Private keys encrypted in Android Keystore (StrongBox/TEE). Never shared, never transmitted.
Connects directly to public Ravencoin ElectrumX nodes. No brand backend required.
12-word mnemonic. Standard derivation path m/44'/175'/0'/0/0. Compatible with any BIP39 wallet.
The brand transfers the Ravencoin token to your wallet as proof of purchase. Yours forever.
Why RavenTag
Hardware AES-128 chip. Unclonable: the AES key is embedded in silicon and cannot be extracted. Each tap generates a unique MAC signature via SUN (Secure Unique NFC).
Your AES master key lives only on your server. Per-chip keys are derived on demand and never stored. Zero third-party trust required.
Every serialised item is anchored to a unique on-chain token (BRAND/PRODUCT#SERIAL). Public, immutable, auditable by anyone querying a Ravencoin node.
Mark stolen or counterfeit items as revoked in seconds via API or admin dashboard. Revocation is instant and reversible via the backend.
Program NTAG 424 DNA chips directly from the Brand Android App using ISO 7816-4 APDUs. No extra hardware or NFC reader required.
Protocol RTP-1, all code, and documentation are open source under RTSL-1.0. Audit every line, fork, extend, self-host. Ravencoin is required in all derivative works.
Self-hosted backend, your data, your keys
Deploy the RavenTag backend on any Linux server or VPS with a single command. Your BRAND_MASTER_KEY and BRAND_SALT never leave your infrastructure. The Consumer App is pre-compiled with your server URL. docker compose up.
Brands using RavenTag
Brands that have deployed RavenTag infrastructure automatically appear in this public registry.
No brands registered yet.
Brands appear here automatically when they deploy the RavenTag backend with BRAND_NAME set.
Questions?
Everything you need to know about NTAG 424 DNA, Ravencoin assets, and the RTP-1 protocol.
Read the FAQ