CrossSigning

Crosssigning is a cryptographic practice used in distributed identity and messaging systems to establish trust between keys across devices and accounts. By having keys signed by trusted keys, users can verify that a given device or identity truly belongs to the claimed owner.

The central idea is to bind a public key to an identity by means of digital signatures.

Implementation varies by system. In practice, cross-signing often uses multiple keys per identity, including a master

In Matrix, cross-signing is used to enable cross-device verification. A user can sign their own devices and,

Security considerations include key compromise, rotation, and revocation. Cross-signing shifts some trust from centralized servers to