.png)
We’re excited to announce that QuorumOS (QOS), the foundation of the first end-to-end verifiable computing environment operating at massive scale in production, is now open source.
QOS is a minimal, deterministic operating system that enables verifiable applications inside Trusted Execution Environments (TEEs). For over two years it has served as the critical verification layer for Turnkey’s secure infrastructure. Open-sourcing this piece of Turnkey’s stack marks a crucial step in advancing our vision of a future where critical systems are secured verifiably, not via blind trust.
What is QuorumOS?
QOS is the essential bridge between hardware security environments and verifiable applications. It requires multiple parties to deploy applications, and provides cryptographic proof that TEEs are running the correct software. This enables true end-to-end verifiability for security-sensitive applications.
Think of this like an offchain smart contract. QOS guarantees that code cannot be unilaterally changed, and provides transparency and verifiability at any moment about the application running in the TEE.
Okay… so what?
QuorumOS matters because it provides an unparalleled level of verifiability and control for secure applications.
- Multi-party governance for deployments: No single actor can unilaterally provision or update an enclave application. A threshold of quorum members must attest to the configuration before an application can run, ensuring coordinated security.
- Cryptographic authentication for application output: Each enclave application operates with a stable Quorum Key, allowing it to sign and encrypt data. If data is signed by the Quorum Key, it’s provably legitimate — otherwise, it isn’t. For a deeper dive, check out how we secured our OAuth flows using Quorum Key signatures here.
- An unbroken chain of verifiability: Combined with remote attestation and reproducible builds (powered by StageX), QOS ensures full traceability from source code to runtime. You not only know what is running inside an enclave — you can also prove exactly how it was built and the code it contains. Without this, TEE attestations alone would only provide a hash — leaving you to blindly trust that a binary was built from legitimate source code.
This isn’t theoretical technology — it’s battle-tested production code. QOS has been operating in production for over two years as a critical component of Turnkey’s verifiable infrastructure, proving that truly verifiable systems are not just possible, but practical at scale. We’ve started by launching verifiable wallet infrastructure, but this platform powered by QOS could be used for verifiable AI agents, offchain order books, cosigners and more.
We believe transparent, verifiable infrastructure is critical for the future of secure computing. Making QOS public is just the first step. We'll be sharing much more about our approach to verifiable systems in the coming months.
Get involved
The source code is available at github.com/tkhq/qos. If you're building systems that need verifiable execution, we'd love to hear from you.
- Check out our technical documentation to learn more about how QOS fits into Turnkey’s architecture
- Subscribe to our engineering blog for deep dives on verifiable infrastructure
- Join our TG chat, Quorum, to continue the discussion. Email [email protected] for an invite.
Related articles
