Skip to main content
Free and Open Source

The protocol is free.
Always.

PEAC Protocol is Apache-2.0 licensed. Self-host on your own infrastructure with no limits, no fees, and no sign-up required. Verification does not require Originary to be online.

Get started on GitHub
Open Source — Apache-2.0
$0forever

28 packages on npm · 6443 tests · Apache-2.0

Full protocol specification
Verifiable interaction records (JWS)
Interaction Record format (current stable)
Policy discovery (peac.txt)
MCP server — 5 verification tools
CLI and SDK packages
Self-managed signing keys
Offline verification — no Originary dependency
Ed25519 signature verification
Evidence bundles for disputes
A2A and HTTP carrier support
Community support via GitHub

Enterprise support

Terms scoped to your deployment

For organizations that need production deployment support, managed key infrastructure, or compliance evidence for audits and procurement. If you are evaluating Originary for a team deployment or need evidence artifacts for a procurement review, this is the right path.

Best fit: API platforms handling agent traffic, MCP server operators, security and compliance teams, and organizations with procurement requirements.

Guided integration and deployment support
Architecture review, environment setup, and production rollout guidance
KMS-backed attested signing keys
AWS KMS, GCP Cloud KMS, Azure Key Vault, or HashiCorp Vault
Compliance evidence bundles
Pre-packaged verification artifacts for audits and procurement reviews
Dedicated engineering access
Direct channel to the protocol engineering team for troubleshooting and feature requests
SLA and priority support
Defined response windows and escalation paths for production issues

Best for

API platforms handling agent trafficMCP server and tool operatorsSecurity and compliance teamsOrganizations with procurement requirements

Deployment model

Self-hosted with supportManaged cloud (private beta)Hybrid: self-host core, managed keys

Not the right fit yet: If you are still evaluating, start with the open-source packages. They are free and unlimited.

Talk to the team

Open source vs enterprise

 Open sourceEnterprise
Price$0 foreverCustom
LicenseApache-2.0Apache-2.0 + support terms
Signing keysSelf-managedKMS-backed attested keys
DeploymentSelf-hostedSelf-hosted, managed, or hybrid
VerificationOffline, no dependencyOffline, no dependency
SupportGitHub issuesDedicated engineering access + SLA
Compliance evidenceSelf-assembledPre-packaged bundles
Architecture reviewCommunity docsGuided integration

Common questions

Can I self-host everything?+

Yes. PEAC Protocol and all core packages are Apache-2.0 licensed and free to self-host. Verification does not require Originary to be online. No data is sent to any Originary service.

Is the protocol truly open?+

Yes. The protocol specification, all reference implementations, and core tooling are published on GitHub under Apache-2.0. You can build your own conformant implementation without involving Originary.

What payment rails are supported?+

PEAC is rail-neutral. It produces verifiable records of interactions, not payment mandates. HTTP 402 adapters are available for teams that need challenge/response payment flows.

Who should contact you about commercial support?+

API providers, agent platforms, and security or compliance teams that need managed deployments, attested signing infrastructure, or dedicated integration support.

Open source, no exceptions

The protocol specification, reference implementations, and all core tooling are Apache-2.0 licensed. Originary is the commercial steward — not a gatekeeper.