Stateless. Zero-Knowledge. Real-Time. A stateless coordination layer for Bitcoin multisig transactions.
THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND.
SigningRoom is an open-source coordination tool, not a wallet, custodian, or financial institution.
- We do not hold your private keys.
- We do not hold your funds.
- We cannot recover lost data (rooms are ephemeral and exist only in RAM).
You are solely responsible for verifying the details of any transaction (address, amount, fees) on your hardware device screen before signing.
SigningRoom replaces the insecurity of emailing files and the friction of USB sticks with a secure, ephemeral, real-time signing room. We do not want your data. We cannot read your data.
- Human Rights via Physics: We enforce UN Article 20 (Freedom of Assembly) and Article 12 (Privacy) not through policy, but through physics. By using ephemeral Durable Objects that self-destruct, we ensure that the "Right to Coordinate" is preserved even in hostile jurisdictions.
- Statelessness is Security: Databases are liabilities. SigningRoom stores data in RAM (Cloudflare Durable Objects) only for the duration of the session. When the room expires, the data ceases to exist.
- Zero Knowledge: All transaction data is encrypted client-side (AES-GCM) before it ever touches the network. The decryption key exists only in the URL fragment (
#key), which is never sent to the server. - Don't Trust, Verify: The client is verifiable. The cryptography is standard (Web Crypto API). The code is open.
The "Stateless Pattern" is not just a theory; it is verified in production. We publish our raw Cloudflare traffic logs to prove the "Blind Relay" architecture handles volume without retaining user state.
Live Mainnet Traffic Analysis (Feb 12, 2026):
| Metric | Value | Implication |
|---|---|---|
| Total Requests (24h) | 962 | High Fidelity: Sustained traffic with zero downtime during identified vulnerability probes. |
| Data Served | 55.29 MB | Blind Relay Proven: ~55 MB of encrypted coordination data relayed with 0 bytes stored on disk. |
| Peak Throughput | 14.09 MB (1h) | Institutional Velocity: A massive data spike at 19:00 GMT confirms heavy key ceremonies occurring entirely in RAM. |
| User State Retained | 0.00 B | Proof of Blind Relay. The server retained 0 bytes of user session data. |
Our latest audit reveals the emergence of global, high-intensity coordination cycles:
- Metric: A massive 14.09 MB Uncached Data Spike occurred at 19:00 GMT.
- Analysis: This represents the "Atlantic Convergence"βthe peak daily overlap of US and European coordination windows. At 267 KB/request, this is the definitive signature of multi-sig PSBT exchanges.
- The Proof: Despite moving ~55 MB of total data in 24 hours, the data retention size remained at 0KB. The server acted purely as a "Vacuum," relaying encrypted packets without retaining a single byte of state.
We don't just claim to be stateless; we prove it. We publish our raw traffic logs so you can verify our "Zero-Knowledge" architecture yourself.
- Latest Audit: Feb 12, 2026
- Traffic Volume: 962 Requests / 634 Unique Visitors
- Key Finding: Sustained "Institutional Rhythm" with three distinct 12MB+ coordination sessions across US and Asian timezones.
π View the full Data Manifest to inspect the raw CSV logs.
This software serves as the reference implementation for "The Stateless Pattern," a cryptographic architecture currently being formalized for peer review.
Research Collaboration: Carlin, S. & Curran, K. (2026). The Stateless Pattern: Ephemeral Coordination as the Third Pillar of Digital Sovereignty. arXiv preprint arXiv:2601.17875.
- Multi-Network Support: Full support for Mainnet, Testnet, and Signet for safe testing and development.
- PWA (Progressive Web App): Installable on iOS/Android directly from the browser. Censorship-resistant mobile access without the App Store.
- Real-Time Sync: Utilizing WebSockets for instant state propagation between signers.
- Hardware Agnostic: Works with Coldcard, Sparrow, Electrum, Ledger, Trezor, and any BIP-174 compatible wallet.
- Ephemeral Rooms: All rooms and data self-destruct after 24 hours.
- Audit Logs: Automatically generates a client-side, cryptographically verifiable PDF audit trail of the signing ceremony.
SigningRoom uses a "Blind Relay" architecture. It acts as a temporary switching station, not a warehouse.
sequenceDiagram
participant A as Alice (Coordinator)
participant S as Server (Blind Relay)
participant B as Bob (Signer)
Note over S: 0KB Database (Stateless)
A->>A: Encrypt PSBT (Client-Side)
A->>S: Upload Encrypted Blob
S->>S: Store in RAM (24h Max or Close)
B->>S: Fetch Blob
S->>B: Send Encrypted Blob
B->>B: Decrypt (Key in URL hash)
B->>S: Upload Signed Blob
S->>A: Relay Signature
Note over S: Room Destroys Itself (Immediate Wipe)
We are seeking funding to evolve SigningRoom from a standalone tool into ubiquitous infrastructure.
[x] Phase 1: The Core (Completed)
Launch signingroom-core on Mainnet, Testnet, and Signet (v1.0).
Deploy Censorship-Resistant PWA (Bypasses App Stores).
Achieve 0% Data Retention (Verified).
[ ] Phase 2: Ubiquity (Q1 2026) β π΄ Active Grant Target (Software Dev)
Web Component (): A drop-in HTML element allowing any exchange, wallet, or DAO to embed a secure signing room directly into their UI.
Public API: A documented WebSocket API allowing programmatic coordination for automated signing bots and agents.
(Research Output: Formal Verification of the "Stateless Pattern" will be published independently by Ulster University).
[ ] Phase 3: The UX Upgrade (Q3 2026)
Native iOS/Android App: Specific development to enable NFC support for tapping hardware wallets (Coldcard/Tapsigner) directly against the phone.
Third-party security audit of the cryptographic primitives.
SigningRoom is Free and Open Source Software (FOSS), maintained for the public good. If this tool helps you or your organization, please consider supporting its maintenance.
[Support on OpenSats] (Application Submitted β Pending Review)
[Human Rights Foundation] (Bitcoin Development Fund β Shortlisted March 2026)
[Donate via Lightning] (Instant)
Prerequisites: Node.js v20+.
# 1. Clone the repo
git clone [https://github.com/scarlin90/signingroom.git](https://github.com/scarlin90/signingroom.git)
cd signingroom
# 2. Install dependencies
npm install
# 3. Start the Development Server
# You will need two terminals:
# Terminal A: Start the Backend (Worker)
cd apps/worker
npx wrangler dev
# Terminal B: Start the Frontend (Client)
# (Run this from the project root)
npx nx run client:serve --configuration=development
# Access the Application:
# Frontend: http://localhost:4200
# Worker: http://localhost:8787
We believe in true sovereignty. You should never be locked into a platform. While SigningRoom.io offers a hosted demo for convenience, you are free to inspect the code and run your own infrastructure.
Cloudflare Workers You need a Cloudflare account to deploy the backend.
# Deploy the Worker (Backend)
npm run deploy:worker
# Deploy the Client (Frontend)
npm run deploy:client
Environment Variables Set these in your wrangler.jsonc or Cloudflare Dashboard:
ALLOWED_ORIGIN: Your frontend URL (e.g., https://my-signing-room.com).
We need your help. SigningRoom is a community-run project. We welcome code, documentation, translations, and security audits.
Before contributing, please understand our core constraint:
The server must NEVER know the content of the room. Any PR that introduces server-side logging, analytics, or persistent storage of user data will be rejected immediately.
π οΈ How to Contribute Fork the project on GitHub.
Create your Feature Branch (git checkout -b feature/AmazingFeature).
Commit your changes (git commit -m 'Add some AmazingFeature').
Push to the Branch (git push origin feature/AmazingFeature).
Open a Pull Request.
We are currently looking for help with:
[ ] Translations: Adding new languages for the UI.
[ ] Wallet Support: Testing and verifying new hardware wallets.
[ ] Accessibility: improving ARIA labels for screen readers.
SigningRoom.io is fully open-source under the AGPLv3 License.
- Community Use: Free for everyone. If you modify the code and host it publicly, you must open-source your changes.
- Commercial Use: Institutions requiring a Commercial License (AGPL Waiver) to integrate this technology into proprietary, closed-source infrastructure (e.g., internal banking systems, custodial platforms) must contact Stateless Research Ltd.
Distributed under the GNU Affero General Public License v3.0 (AGPL-3.0). If you modify this code and run it over a network, you must release your source code. See LICENSE for more information.
If you discover a vulnerability, please do NOT open a public issue. Email the maintainer directly or use PGP.
PGP Fingerprint: C642 EB5E 3EB8 5194 98CF 6535 97A4 B80F 7970 DD56
Email: [email protected]
Built with 𧑠and ①by Stateless Research Ltd.