Verida and Marlin: A Partnership to Power Private AI
Verida is on a mission to empower individuals to own and control their data, ultimately enabling a future of private AI. This vision…
Verida is on a mission to empower individuals to own an
As artificial intelligence (AI) and decentralized applications (dApps) continue to evolve, they have the potential to enable users to delegate decision-making and automate tasks by securely leveraging their private data. In the future, AI-powered financial assistants could manage expenses, healthcare agents might monitor health records for early risk detection, and identity services could streamline verification, all while ensuring that users retain control over their sensitive data. For this vision to become a reality, AI agents must be able to access and compute private data securely and verifiably, without exposing it to third parties.
However, this presents key challenges:
Verida acts as a confidential database storage and compute layer for the self-sovereign data economy, enabling users to store and access private data securely. But storing data alone isn’t enough—users also need a way to enable AI agents to process this data and make decisions on their behalf without exposing it.
To bridge this gap, Verida leverages Trusted Execution Environments (TEEs) through Marlin, allowing AI agents to compute over private data in a secure, verifiable environment. This ensures that users retain complete control over their information while benefiting from AI-driven automation and protecting their sensitive data from unauthorized access.
Marlin is a decentralized confidential compute marketplace that provides Trusted Execution Environments (TEEs)—hardware-isolated execution areas that ensure data remains private, even during computation.
By leveraging Marlin’s TEEs, Verida achieves three critical breakthroughs:
The following sections break down each of these, demonstrating how Verida successfully implemented them.
Traditional APIs rely on TLS encryption to protect data in transit, but TLS alone doesn’t guarantee that the backend processing the requests is trustworthy. If a malicious actor gains control over the server, they could intercept traffic, alter API responses, or redirect requests to unauthorized backends. Standard DNS certificates bind only to servers (domains), not to the specific code running on them, leaving users vulnerable if the server’s code is compromised or altered.
Verida uses Marlin TEEs and a secure DNS-locked enclave to ensure:
With Verida, both developers and users can trust that API requests are processed within a secure and unmodified backend, without requiring complex cryptographic setups. Developers can integrate Verida seamlessly, while users can confidently grant access to third-party services, knowing their data remains protected from unauthorized modifications or misuse.
When the API server starts, it exposes a HTTPS endpoint managed by an ACME client running inside a Marlin TEE. To ensure that only the enclave can obtain a valid TLS certificate, CAA accounturi records are used. CAA records act as a lock on certificate issuance, restricting which Certificate Authorities (CAs) are allowed to issue certificates for a domain. With the accounturi extension, this restriction goes further by specifying exactly which ACME account is authorized to request and obtain certificates. By generating and managing the ACME account within the enclave, only the enclave can acquire the certificate, preventing unauthorized issuance.
The process works as follows:
By enforcing TEE-bound certificate issuance, Verida ensures that API requests are always processed within a trusted enclave, preventing MITM (Man-in-the-Middle) attacks, API response manipulation, and credential hijacking.
A detailed explanation of the approach is available at https://blog.marlin.org/case-study-oyster-tee-3dns-on-chain-management-of-verifiable-decentralized-frontends
As a decentralized data layer, Verida enables applications to access user data from third-party services (e.g., social accounts, financial accounts, and healthcare records) in a secure and privacy-preserving manner. Instead of requiring users to manually retrieve and upload their data, Verida allows users to seamlessly grant access while ensuring their credentials remain protected and data retrieval happens within a verifiable, trusted execution environment (TEE).
To ensure that credentials are handled safely and data is accessed only as intended, Verida leverages Marlin TEEs, preventing unauthorized access, misuse, or overreach. Without such safeguards, traditional approaches introduce several risks:
To mitigate these risks, Verida uses Marlin TEEs to act as a secure execution environment where user credentials are processed without exposing them to the application, developers, or even Verida itself.
The process works as follows:
AI agents are becoming essential for automating tasks and making personalized decisions on behalf of users, whether it’s managing financial transactions, monitoring health records, or verifying identities. However, for these agents to be truly useful, they need secure access to user data while ensuring that users retain complete control over what is shared, with whom, and for what purpose.
As a decentralized data layer, Verida ensures that AI agents can access only the data they need to make informed decisions, without exposing raw user information to external parties. By leveraging Oyster TEEs, Verida enables private, verifiable data access that lets AI agents function effectively while preserving user privacy and security.
By leveraging TEEs and Verida’s decentralized data layer, AI agents can enhance user decision-making and automation without compromising security, privacy, or data ownership.
Developers can get started with the Verida AI Developer Console, the central hub for managing your Verida developer account, monitoring your application usage, and interacting with the Verida API ecosystem.
Agent Kyra is a personal AI assistant powered by Verida AI and Marlin technology, showcasing a new meta of private AI applications. Securely connect your personal Gmail, Calendar, Youtube, Telegram and Spotify to deliver private personal intelligence insights on demand.
Privacy is no longer an afterthought; it’s a fundamental requirement. Verida’s approach demonstrates how decentralized applications can securely interact with private data without compromising usability or security.
Follow our official social media channels to get the latest updates as and when they come out!
Twitter | Telegram Announcements | Telegram Chat | Discord | Website
Subscribe to our newsletter.