In early November 2025, Torzon Market completed an overhaul of its buyer feedback system, implementing mandatory PGP signing for all newly submitted reviews. The change represents a significant improvement in feedback authenticity and creates an immutable audit trail for all post-transaction assessments.
How PGP-Signed Feedback Works
When a buyer submits feedback, the platform generates a structured string containing the transaction details, rating, and written review. The buyer signs this string with their PGP private key before submission. The resulting signature is stored alongside the feedback and can be verified by any observer — including prospective buyers and vendors — using the buyer's public key.
Why This Matters
Unsigned feedback systems are vulnerable to fabrication, modification, and deletion. With PGP-signed feedback, neither the marketplace nor any third party can alter or remove feedback without invalidating the cryptographic signature. Buyers can prove they left specific feedback; vendors can prove what feedback they received.
Grandfathering Policy
Unsigned reviews submitted before the mandatory signing date were grandfathered and remain visible but are marked with a 'legacy unsigned' indicator to distinguish them from cryptographically verified reviews. Vendors' cumulative ratings include both legacy and signed feedback in the calculation.