Up to 30% of job applicants fabricate or embellish their references. Traditional reference letters are trivially forgeable: a PDF, a letterhead, and a fake phone number are all it takes.
Every time a candidate changes jobs, their new employer has to call their old employer and request a fresh reference. It's slow, awkward, and doesn't scale. References should travel with the candidate.
RefPassport solves both. Issue once, verify anywhere, forever.
Built on cryptographic signatures and DNS verification for maximum trust and transparency
Every reference is cryptographically signed with Ed25519. If a single character is altered, verification fails instantly.
Your public key is published in your DNS records. Anyone can verify references came from your domain, with no middleman needed.
Issue once, use forever. Candidates carry verified references from job to job, as a PDF or a shareable link.
Scan a QR code or paste a link. Get verification results in under a second. No accounts, no waiting, no phone calls.
Three steps. No technical knowledge required.
Sign up with your company email. Add one DNS TXT record to prove domain ownership. It takes 2 minutes.
Get started →Write your reference letter as normal. We sign it with your private key and generate a branded PDF with a verification QR code.
Go to dashboard →Recipients scan the QR code or visit the verification link. They see instantly whether the reference is authentic, no account needed.
Try verification →Issue tamper-proof reference letters that travel with your former employees. No more fielding verification calls years later. Revoke instantly if circumstances change.
Candidates send you a link or PDF, and you verify in seconds. No more chasing down previous employers or wondering if a letter is genuine.
Carry your verified references from job to job. Share a link or PDF with any employer. They verify instantly without contacting your old company.
RefPassport uses the same Ed25519 signature algorithm trusted by SSH, Signal, and major blockchain networks. But you never need to touch a command line. Just create references and let the cryptography work behind the scenes.
Your private key is encrypted client-side. We never see it.
Public keys live in your DNS records, so anyone can verify independently.
Anyone with a link can check authenticity. Free, instant, no sign-up.
SHA-256 hashes verify PDF integrity. Upload to confirm nothing changed.
This reference has been cryptographically verified and the issuer's domain DNS records confirm authenticity.
Verified
Give your people references they can actually use: portable, verifiable, and tamper-proof.
Set up in under 5 minutes. Free to verify. No credit card required.