🧩 1. What are the problems to solve in this domain?

Technical Problems (Overview only)

  1. Deniable Presentation: Support plausible deniability for both issuance and presentation to protect users from coercion or surveillance.
  2. Everlasting Privacy: Ensure that personal data remains private even if current cryptographic schemes are broken in the PQ future.
  3. Long VC Validity Periods: Design verifiable credential systems that remain secure and manageable over long lifespans without overloading revocation mechanisms.
  4. Blind Issuance / Blind Signatures: Enable issuance of credentials to prevent the issuer from learning or linking to future presentations.
  5. Secure Multi-VC Linking: Allow users to prove information across multiple credentials without leaking data. (PODs)
  6. Centralized Wallet Secure Cryptographic Device (WSCD) Attacks Descaling: Reduce reliance on single secure components (e.g., TEE, HSMs, SEs) to avoid centralized attack surfaces.
  7. Communication & Trust-Minimized Verification: Enable offline, decentralized verification and reduce dependency on centralized trust infrastructures.
  8. Revocation: Scalable, privacy-preserving mechanisms for invalidating credentials.
  9. Guardianship: Delegated control of digital identities (e.g., for minors or vulnerable adults) while preserving user autonomy and privacy.
  10. PKI - Key Rotation: Secure, user-friendly updating or rotating of cryptographic keys without compromising existing credentials.
  11. Differential Privacy Analysis: Understand and minimize identity leakages in metadata and usage patterns.
  12. Threat Modeling: Holistic analysis of attack surfaces and adversary capabilities for identity
  13. Interactive proving

Some of these are non- ethereum specific/related but critical to realize end goals.

<aside> 📜

Expanded Here: zkID open problems

</aside>

Ecosystem Problems