Analysis updated 2026-07-03
Build an auditable certificate transparency log where any issued certificate can be publicly verified and proven unaltered.
Add a tamper-evident audit trail to a system where recorded events must be provably immutable, such as financial records or access logs.
Study the Merkle tree log architecture used by Certificate Transparency to understand how cryptographic verifiability works in production systems.
| google/trillian | cheggaaa/pb | looplj/axonhub | |
|---|---|---|---|
| Stars | 3,727 | 3,723 | 3,733 |
| Language | Go | Go | Go |
| Setup difficulty | hard | easy | moderate |
| Complexity | 4/5 | 1/5 | 3/5 |
| Audience | developer | developer | developer |
Figures from each repo's GitHub metadata at analysis time.
Requires a running MySQL database and enough familiarity with Merkle tree concepts to build a useful personality layer on top.
Trillian is a Google project that provides a transparent, tamper-evident log for storing data. The core idea is that once something is written to the log, you can prove mathematically that it has not been altered or secretly removed. This property is called transparency, and it is the same idea that underlies Certificate Transparency, a system used to keep track of SSL certificates issued by certificate authorities. The underlying structure is a Merkle tree, a data structure where each entry is linked cryptographically to all previous entries. Anyone who holds a copy of the log can independently verify that nothing has been changed or deleted. Trillian is designed as a foundation that other systems build on top of. Those application-specific layers are called personalities. The most well-known personality is Certificate Transparency, which uses Trillian to create public, auditable records of which certificates have been issued for which websites. The README notes that Trillian is now in maintenance mode. New projects wanting similar functionality are directed to a newer system called Tessera, which uses updated API conventions. Community contributions to Trillian are still accepted, but the maintainers ask that contributors file an issue or discuss changes in the project Slack channel first. Trillian requires a MySQL database and is written in Go.
Trillian is a Google library for building transparent, tamper-evident logs using Merkle trees, any data written to it can be cryptographically proven unaltered, powering systems like Certificate Transparency. Now in maintenance mode, new projects should use Tessera.
Mainly Go. The stack also includes Go, MySQL.
Setup difficulty is rated hard, with roughly 1h+ to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.