The OMI spec is under heavy development, and every piece of it is subject to change. We are documenting the core primitives for sovereign application lifecycles. Join us in defining the v1.0 draft.
Documentation
The OMI Provisioning Protocol
Application Registration

Application Registration

Objective: To declare a new app within the developer’s namespace and generate its globally unique identifier.

App Registry is “Zero-Knowledge”. It only knows Public Keys and Endpoints. It cannot see user’s or database content.

Prerequisites

The Protocol Workflow

  1. Manifest Creation: The developer creates an app manifest defining the project:
{
  "version": "1.0",
  "data": {
    "owner_namespace": "alice",
    "project_slug": "business_app",
    "display_name": "Business App",
    "description": "A decentralized business app",
    "timestamp": 1705412400,
  },
  "signature": "a28ce01ec0f851...",
  "public_key_hint": "key_id_8812"
}
  1. Signing: The developer hashes the manifest data and signs it with their Master Private Key. The signature is set in the signature field.
  2. Submission: The payload (Manifest data + Signature) is sent to the App Registry.
  3. Cryptographic Validation: The App Registry looks up the Public Key for alice (stored in Developer Identity & Namespace Registration) and verifies the signature. This proves the request came from the real namespace owner.
  4. RDAID Generation: If valid, the registry generates the Reverse Domain AppID (RDAID): org.omiappreg.alice.business_app.7f8a9d
  5. Outcome: The App Registry now acts as the “Source of Truth” for this ID, but has zero services attached to it yet.
Developer Identity & Namespace RegistrationProvisioning the Trust Anchor (Auth)