Core Concepts

Green Compute Certificate

The certificate binds two independent proofs to one job, a privacy attestation and a carbon attestation, both referencing a staked, slashable node.

Shape

json
{
  "job_id": "ea_9f3a...",
  "node_id": "node-7f3a",       // staked, slashable
  "model": "grove-glm",
  "privacy": {
    "mode": "TEE",              // TEE | FHE | MPC
    "attestation": "0x...",     // hardware/crypto proof
    "data_exposed": false
  },
  "carbon": {
    "energy_source": "solar",
    "grid_gco2_per_kwh": 41,    // live, hour-matched
    "energy_kwh": 0.0123,
    "est_gco2": 0.50
  },
  "hour": "2026-07-03T14:00Z",
  "serial": "GCC-000128401",    // no double-counting
  "status": "verified",         // verified | fallback | degraded
  "settlement": { "rail": "x402", "asset": "GROVE" }
}

Fields

  • privacy, the enclave mode and a signed attestation that data was never exposed.
  • carbon, energy source plus the live, hour-matched grid intensity and metered kWh.
  • serial, a serialized id so a certificate can be retired once and never double-counted.
  • node_id, the staked node accountable for both proofs.

Verifying

Certificates are returned with the result and are queryable in the explorer. The SDK verifies each one locally, you don't have to trust the gateway's word for it.

Why it's defensible

Copying one proof is easy. Reproducing the joint, verifiable, slashable pair, privacy bound to carbon, tied to a staked node, plus the network already producing it, is not. That bound pair is the protocol's central claim.