Home › Solutions › Anti-Counterfeit › How It Works

A counterfeit barcode cannot fake
a mathematical proof.

Every barcode Ratifye signs carries an ECDSA P-256 cryptographic signature — the same elliptic-curve standard that secures HTTPS. Copying the label copies pixels, not the private key. Here's exactly what happens from print to consumer scan.

<80ms Scan-to-verdict latency
99.9% Authentication accuracy
ECDSA P-256 · cryptographically signed
Zero Hardware or label changes

From print to consumer — every point covered.

Four layers working together to make counterfeiting mathematically impossible on your existing barcodes.

01 / 04
At production · print time
Every barcode gets a unique private-key signature
When your barcode is generated, Ratifye's signing service uses ECDSA P-256 to create a unique signature for each unit. The signature encodes your GTIN, serial number, batch, and expiry into a short string appended to the barcode's data payload. Your printer outputs an identical-looking barcode. The difference is invisible: the signed payload inside. No label change. No reprinting. No line downtime.
ratifye / sign-event
GTIN08901030858888
SerialSN-00041823
BatchZNV-2025-B07
Expiry2027-03
Signature3045022100f4a91c…d82b019f
✓ SIGNED · ECDSA P-256
02 / 04
At every scan point · <80ms
Authentic or counterfeit — verdict in under 80ms
The Ratifye SDK — 3 days to integrate into any iOS, Android, or Zebra scanner app — extracts the signature from the barcode and runs a public-key verification against Ratifye's authentication API. A genuine product's signature verifies cryptographically. A copied barcode returns a signature mismatch and is flagged red instantly. The verdict reaches the scanner faster than a standard barcode read. An immediate alert with GPS and timestamp fires to your brand protection team on any counterfeit detection.
ratifye / scan-result
Authentic
ECDSA signature valid
ProductMedicine 500mg
BatchZNV-2025-B07
Scanned atDelhi WH · 14:32
Signature✓ Valid
Verified in <80ms
03 / 04
Consumer verify · any smartphone
Consumers verify in 3 seconds — no app download
When your barcode is a QR or GS1 Digital Link, consumers scan it with any smartphone camera. A branded verification page loads in their browser — no app to download, no account to create. The same cryptographic check runs server-side and the result appears in 3 seconds. Genuine products show your brand's verification page with batch and expiry details. Counterfeit products return a warning and instructions to report to your brand protection team — closing the last mile of detection that no warehouse scanner covers.
Consumer verify · browser
verify.ratifye.ai/08901030858888/SN-00041823
PharmaCo
Genuine Product
Cryptographically verified
ProductMedicine 500mg
BatchZNV-2025-B07
ExpiresMar 2027
04 / 04
Every failed scan · evidence log
Every counterfeit detection creates court-admissible evidence
Every failed authentication is logged to an immutable, cryptographically-signed event ledger — GPS coordinates, timestamp, device identity, barcode string, and mismatch details. Logs are tamper-evident and exportable as a signed evidence package for customs filings, legal proceedings, or distributor confrontation. Within 30 days of deployment, most brands have GPS-mapped their counterfeit hotspots. Within 60 days, many have court-ready evidence to act on.
ratifye / counterfeit-events · today
✕ Counterfeit02 Jun · 18:44
Medicine 500mg · Ahmedabad, Gujarat
GPS: 23.0225°N, 72.5714°E
SIGNED LOG
✕ Counterfeit02 Jun · 11:02
CleanPro Disinfectant 250ml · Surat, Gujarat
GPS: 21.1702°N, 72.8311°E
SIGNED LOG

ECDSA: the same cryptography that secures HTTPS.

Elliptic Curve Digital Signature Algorithm (P-256) is mathematically one-way. You can verify a signature with the public key, but you cannot derive the private key from the signature — even with unlimited computing power. A counterfeiter who scans your barcode gets the signature string. They cannot reverse it into the key that created it.

🔑
Private key (HSM)
Held in a hardware security module. Never exposed. Used only at sign time.
🏷️
Signed barcode
Signature in data payload. Label looks identical to unsigned version.
🔍
Public key verify
Any scanner verifies in <80ms. No HSM needed at scan point.
Verdict
Authentic or counterfeit. Cryptographic certainty. No grey area.

Every other method can be copied. A private key cannot.

Capability Ratifye ECDSA Hologram QR landing page UV ink
Can a counterfeiter replicate it?✗ Mathematically impossible✓ Specialist equipment✓ Clone the URL✓ UV printer
Works on existing packaging✓ Zero changes✗ New labels neededPartial✗ New labels needed
Consumer verifiable in-browser✓ Any browser, 3 seconds✗ Expert eye only✓ But clonable✗ Special light
Evidence-grade audit trail✓ Cryptographic, signed
Scan verdict speed<80msManual inspection2–5 secondsManual inspection
Go-live time⚡ 2 weeks3–6 months4–8 weeks3–6 months

Start with 500 free authentications.
No card. No reprinting.

See the cryptographic verdict on your own barcodes before you spend a rupee.