ZKPass is a cryptographic authenticator based on Mina’s Zero Knowledge Proof and acts as a user’s pass to the cryptographic world.
What is the key problem that zkpass is trying to solve?
ZKPass transforms wallet addresses into friendly, readable and easy-to-remember identifiers similar to the Ethereum ENS, and gives you full control over your encrypted identity without the fear of losing your private key through an unmanaged email social recovery solution.
Through Mina Protocol’s the unique ZK Oracle zero-knowledge proof solution , ZKPass can bring in real-world attributes such as the user’s real and valid identity tag according to the user’s wishes, while maintaining privacy, allowing users to bind multiple chain addresses and verify their social accounts to make their encrypted identity more valuable. At the same time, through these real and valid off-chain data and users’ on-chain behaviour data to form the users verifiable reputation, the users’ encrypted identity formed based on ZKPass can ensure the uniqueness of the user and be integrated by all Snapps in the ecosystem through SSO services, which can be used to avoid Bots (e.g NFT or airdrop campaign) and achieve more valuable voting governance to maintain fairness users will also get more potential airdrop opportunities and additional incentives from the Dapp.
Users can use ZKPass without revealing their external wallet address, which will better protect their privacy through the separation of authorisation and asset control identity keys. We also plan to introduce a contract wallet feature to support a certain level of privacy for transactions.
What is the the advantages of #ZKPass?
Some great DID projects, BrightID, Civic, Uport and Litentry, which is overlap to ZKPASS. However, there are significant differences in the details of implement them,
For example, BrightID wants to solve the problem of identity uniqueness by creating and analysing social graphs, but there are many problems with this, such as the need to participate in video conferences in order to obtain a higher level of identity, which requires volunteers to organise identity matching and authentication. This is both a privacy concern and very inefficient.
The existence of the ‘authority’ that is Civic’s identity verification body, for example, is still, in my view, highly ‘centralised’.
In contrast to them, we feel that our strengths lie mainly in the fact that firstly, users can bring in their real world data through ZKPass in a permission-less way, without having to interface with or go through a third party data processor, reducing the leakage of personal privacy, while at the same time revealing the data that the user is willing to display by generating zero-knowledge proofs, which is not only cryptographically verifiable but also makes this data non-guaranteed by a third party witness.
This is even more valuable. We can also enable unmanaged social recovery of emails so that users do not have to worry about losing their private keys and this is not handled by a centralised third party.
What is the ultimate product form for #ZKPass?
The final product will be a browser-only web service that connects to various Dapps via SSO, and the code will be open source so that users can run a web service by themselves.
How does ZKPass combine with Mina to verify the authenticity of an identity?
This solution allows users to connect to third-party websites via Snapp in their browser and access personal data from the third-party websites to generate zero-knowledge proof.
For example, if you register an account in Binance.com and conduct KYC, Binance will store your KYC information; you can access Binance with API through ZKPass to obtain your KYC information. The behaviour of accessing Binance with API through ZKPass takes place in the browser, and only you know the username and password to access it, and this information is not disclosed to us.
The great thing about ZK Oracle’s solution is that you can access your own personal information in your browser and generate zero-knowledge proofs without giving away your privacy to us. This process is known only to you and the third-party website, and ZKPass does not need the third-party website’s consent to authenticate that the data they have given us is actually from that website.