RequirementsSelected requirements from SPEC-1
Each requirement is normative and testable. These eight set the privacy, custody, status and economic envelope the whole system is held to.
R2No PII on-chain
No raw KYC data, personal information, credential payloads, serial numbers or presentation logs are ever written to the chain. The ledger holds commitments and roots, never identities or checks.
R3User custody of keys
The holder keeps custody of their own keys and proof secrets. No issuer, verifier or operator can present on a user’s behalf or recover their credentials.
R8Root-based status
Validity is checked against a published status root, not per-user state on-chain. The chain commits to a root; holders prove inclusion or exclusion without revealing who they are.
R11Holder self-revocation
A holder can revoke their own credential while revealing neither their identity nor the credential id. Losing a device never means exposing who you are to revoke it.
R1410-second perishable proofs
A presentation is perishable, valid for ten seconds, and fully bound to its context. A captured proof cannot be replayed, forwarded or reused against a different verifier.
R17Hard-capped monetary policy
The native token follows a hard-capped, declining issuance schedule with burns. Supply is bounded by protocol, not by operator discretion.
R19Bounded state growth
Chain state scales with the number of issuers, verifiers and validators — not with the number of holders. The system stays small no matter how many people use it.
R20Security-first release
No mainnet before independent audits. The launch gate requires external review of the application, cryptography, infrastructure and economics.