JPEG Content Provenance
Sign, embed, and verify C2PA manifests in JPEG files (.jpg, .jpeg)
What Is JPEG Provenance?
The most widely used image format on the web and in photography. JPEG provenance enables publishers, photographers, and news organizations to embed proof of origin directly into their images.
With Encypher, JPEG files carry their own cryptographic proof of origin. A C2PA manifest is embedded directly into the file, recording who created it, when, and whether it has been modified. Anyone can verify a signed JPEG file for free, without authentication.
How C2PA Manifests Are Embedded in JPEG Files
- MIME Type
- image/jpeg
- File Extensions
- .jpg, .jpeg
- Embedding Method
- JUMBF box appended to file after EOI marker, per C2PA specification
- Container Type
- JUMBF
- Verification Pipeline
- c2pa-python (native C2PA library support)
The C2PA manifest contains a JUMBF (JPEG Universal Metadata Box Format) store with COSE-signed claims. For JPEG files, the manifest is stored using jumbf box appended to file after eoi marker, per c2pa specification. The signing process does not alter the image content itself. The manifest is metadata, not a modification of the pixels.
Use Cases for JPEG Provenance
- News photography
- Stock photography
- Editorial images
- Product photography
- Social media images
How to Sign JPEG Content with Encypher
JPEG signing is available at the Enterprise tier through the unified /sign/media API endpoint. Upload your JPEG file, and the API returns a signed copy with an embedded C2PA manifest.
curl -X POST https://api.encypher.com/api/v1/sign/media \ -H "Authorization: Bearer YOUR_API_KEY" \ -F "file=@example.jpg" \ -F "title=My JPEG Content" \ -F "action=c2pa.created" \ -o signed.jpg
Verify JPEG Provenance (Free)
Verification is free and requires no authentication. Any third party can verify a signed JPEG file to confirm its origin, check for tampering, and read the embedded rights information.