Reputation is a liability. Storing user scores or transaction histories directly on-chain, as seen in early Soulbound Token (SBT) experiments, creates an immutable, public record of user behavior. This data becomes a permanent cost center for the protocol and a privacy vulnerability for users, unlike ephemeral off-chain attestations.
decentralized-identity-did-and-reputation
Blog
The Hidden Cost of On-Chain Reputation Storage
A cynical but optimistic look at why storing permanent reputation data on-chain creates an unsustainable economic burden, analyzing the unfunded mandate of perpetual storage and its implications for protocols like ENS, Gitcoin Passport, and on-chain social graphs.
introduction
THE BLOCKCHAIN BLIND SPOT
Introduction
On-chain reputation systems create a permanent, public liability that most protocols fail to account for.
The cost is perpetual storage. Every reputation point minted on Ethereum or L2s like Arbitrum or Optimism incurs a one-time gas fee but a lifetime of state bloat. This forces protocols to subsidize storage for inactive users, creating a scaling bottleneck antithetical to modular blockchain design principles.
Evidence: A simple reputation NFT on Ethereum Mainnet costs ~$50 to mint and commits the network to storing that data forever. Scaling this to millions of users makes the economic model untenable, as seen in the stalled adoption of fully on-chain social graphs.
key-insights
THE STATE CAPTURE
Executive Summary
On-chain reputation systems like NFT-based loyalty or soulbound tokens are creating a permanent, expensive, and rigid liability on the base layer.
01
The Problem: Permanent State Bloat
Storing immutable reputation data on L1s like Ethereum creates permanent state bloat, a cost borne by all network participants forever. This is a tragedy of the commons where a single protocol's feature imposes a perpetual tax on the entire chain's scalability and node operation costs.
- Example: A 1KB soulbound token for 1M users adds 1GB to Ethereum's historical state.
- Impact: Increases sync times, hardware requirements, and gas costs for all unrelated transactions.
1GB+
State Bloat
~$5M
Perpetual Cost
02
The Solution: Verifiable Off-Chain Attestations
Shift the storage burden off-chain while preserving cryptographic verifiability. Protocols like Ethereum Attestation Service (EAS) and Verax allow reputation data to be stored in cost-efficient data layers (e.g., Ceramic, Tableland) or even centralized servers, with only a tiny, verifiable fingerprint (hash) stored on-chain.
- Key Benefit: Reduces on-chain footprint by >99% for most use cases.
- Key Benefit: Enables rich, updatable, and even private reputation models without L1 constraints.
>99%
Cost Saved
Flexible
Data Model
03
The Architecture: Layer 2s Are Not a Panacea
While L2s like Arbitrum or Optimism offer cheaper storage, they only delay the problem. Data availability and final settlement still anchor to L1, and their own state grows unbounded. The correct architectural pattern is a modular data layer decoupled from execution and settlement.
- Reference: EigenLayer's restaking secures new data availability layers like EigenDA.
- Outcome: Reputation becomes a portable, chain-agnostic asset, not a chain-specific liability.
Delayed
L2 Problem
Modular
Solution
04
The Precedent: ENS & The Urbit Lesson
Ethereum Name Service (ENS) demonstrates the high cost of permanent, popular on-chain state. Its ~2.5M .eth registrations consume significant global state. Contrast this with Urbit's architecture, where identity is a native, off-chain primitive with on-chain settlement. The lesson: core identity and reputation should be a system primitive, not an application-level contract.
- Result: Cleaner separation of concerns and sustainable long-term scaling.
- Action: Build with attestation standards first, direct storage only as a last resort.
2.5M+
ENS Records
Primitive
Not an App
thesis-statement
THE STORAGE TAX
The Core Argument: An Unfunded Mandate
On-chain reputation systems impose a permanent, unaccounted-for storage cost on the underlying blockchain.
Reputation is a public good that protocols like Ethereum Attestation Service (EAS) or Gitcoin Passport create, but the blockchain pays the storage cost forever. This creates a classic tragedy of the commons where the utility is socialized but the cost is borne by node operators.
Storage is the only permanent cost. Unlike compute or bandwidth, which are one-time gas fees, storing a reputation attestation on-chain, as with ERC-4337 account abstraction paymasters or Sybil resistance scores, creates a perpetual liability. The initial transaction fee does not cover decades of state bloat.
The comparison to DeFi is stark. A Uniswap swap consumes gas and vanishes. A POAP badge or Proof of Humanity registration lives on-chain indefinitely, accruing a hidden subsidy from future validators. This misalignment makes on-chain reputation a parasitic data structure under current economic models.
Evidence: Ethereum's state size grows ~20 GB/year. A significant portion is immutable, low-utility attestation data from identity and social protocols, directly increasing sync times and hardware requirements for every node.
market-context
THE STORAGE TRAP
The Current Rush to On-Chain Reputation
Protocols are racing to store user history on-chain, creating a permanent, expensive, and often unnecessary data liability.
On-chain reputation is permanent debt. Every attestation, credit score, or transaction history stored on Ethereum L1 or an L2 like Arbitrum becomes a non-deletable data commitment. This creates a perpetual cost for protocols like EigenLayer or EAS that must pay for calldata or state bloat forever.
The cost model is inverted. Unlike traditional databases where storage is cheap, on-chain state expansion is the most expensive resource. A protocol storing 1MB of user data on Ethereum Mainnet today commits to paying for its storage in perpetuity, a cost that compounds with network adoption.
Most reputation data is ephemeral. A user's creditworthiness or Sybil-resistance score from Gitcoin Passport changes monthly, but its on-chain record is immutable. This forces continuous appends instead of updates, accelerating state growth without proportional utility.
Evidence: The Ethereum State Size grows by ~50 GB annually. A single byte of storage costs ~20,000 gas to write and 2,500 gas to read forever. Storing a simple 256-bit reputation score for 1 million users creates a one-time write cost of ~5 ETH and a permanent read tax for every future node.
ON-CHAIN REPUTATION SYSTEMS
The Economics of Permanent Storage
A cost-benefit analysis of data persistence models for storing user reputation and attestations, comparing gas economics, data integrity, and scalability trade-offs.
| Storage Metric | Fully On-Chain (e.g., ENS, Some SBTs) | Hybrid Indexing (e.g., Ethereum Attestation Service) | Off-Chain + Validity Proofs (e.g., Verifiable Credentials) |
|---|---|---|---|
Data Persistence Guarantee | Permanent (L1 Finality) | Permanent (L1 Anchor) | Ephemeral (Depends on Issuer) |
Avg. Write Cost per Attestation | $10-50 (Mainnet Gas) | $2-5 (L2/Alt-L1) | < $0.01 (Signature Only) |
Read Cost for Verification | $0.10-1.00 (Contract Query) | $0.01-0.10 (RPC Call) | $0.00 (Local Proof Verify) |
Data Mutability / Revocation | Immutable or Permissioned Update | Revocable via Schema Rules | Revocable via Status List |
Trust Assumption for Data Integrity | Ethereum Consensus | Attestation Registry Integrity | Issuer's Signing Key Security |
Scalability Limit (TPS for Writes) | ~15-45 (Ethereum Base) | ~2,000-10,000 (Optimism, Arbitrum) | Unlimited (Off-Chain Issuance) |
Protocol Examples | ERC-721, ERC-1155 | EAS, Graph Protocol Indexing | W3C VCs, Sign Protocol, Disco |
deep-dive
THE DATA
The Slippery Slope: From Feature to Liability
On-chain reputation storage creates permanent, composable liabilities that outlive their utility.
Permanent data liability is the primary cost. Once a user's transaction history or credit score is written to a public ledger like Ethereum or Solana, it becomes an immutable target. This data persists long after the original application shuts down, creating a permanent attack surface for deanonymization and social engineering.
Composability becomes a curse. A reputation score designed for a lending protocol like Aave or Compound is instantly accessible by any other on-chain actor. This enables predatory front-running, discriminatory pricing, and cross-protocol exploits that the original system never intended.
Storage costs are non-linear. While initial writes are cheap, the EVM's state bloat imposes a perpetual tax on all network participants. Every node must store and compute over this growing dataset, a cost ultimately borne by users through higher gas fees, as seen in historical Ethereum congestion.
Evidence: The ERC-4337 account abstraction standard exposes this tension. While enabling smart contract wallets with session keys, it mandates permanent on-chain storage for user operations, directly trading scalability for functionality and embedding future costs.
case-study
THE HIDDEN COST OF ON-CHAIN REPUTATION STORAGE
Case Studies in Storage Burden
Storing user reputation on-chain is a naive solution that cripples scalability and user experience. These case studies expose the real-world costs and the architectural shifts required to fix it.
01
The Lens Protocol Identity Crisis
Storing social graphs and profile metadata directly on Polygon PoS led to unsustainable bloat. Every follow, post, and mirror was a state update, making user onboarding prohibitively expensive and limiting network throughput.
- Problem: Profile creation cost ~$2-5, a massive barrier to mainstream adoption.
- Solution: Migration to Lens Network on zkSync with off-chain data availability via Bundlr and Ceramic.
- Result: User operations are now ~100x cheaper, shifting the cost burden from users to the protocol.
~$5
Initial Mint Cost
100x
Cheaper Ops
02
Ethereon's Soulbound Token (SBT) Bloat
Early SBT designs naively minted a new NFT for every credential (event attendance, DAO vote, skill proof). This created millions of low-value NFTs, congesting Ethereum and Polygon with permanent, mostly idle data.
- Problem: A user with 50 SBTs pays ~$50+ in perpetual storage rent via base layer security.
- Solution: Off-chain attestation frameworks like EAS (Ethereum Attestation Service) store hashes on-chain, with full data on IPFS or Arweave.
- Result: ~99% reduction in on-chain footprint, making verifiable credentials scalable.
99%
Storage Reduced
~$50+
Legacy User Cost
03
The DeFi Credit Oracle Fallacy
Projects like Cred Protocol attempted to build on-chain credit scores by storing exhaustive transaction histories. This required indexing and storing terabytes of Ethereum and Aave/Compound data, a task better suited for The Graph or Goldsky.
- Problem: Real-time score updates were impossible; the system was a static, expensive snapshot.
- Solution: Zero-knowledge proofs (ZK) for private credit scoring. Projects like zkPass and Sismo generate verifiable proofs of history without exposing raw data.
- Result: Private, verifiable reputation with ~500ms proof generation, moving computation off-chain.
TB Scale
Data Burden
~500ms
ZK Proof Time
04
Optimism's AttestationStation Scaling
Optimism's AttestationStation is a canonical case of minimalist on-chain design. It stores only a creator, recipient, and data hash on-chain (Optimism), pushing the actual attestation content to off-chain storage.
- Problem: A fully on-chain alternative would make RetroPGF rounds and Citizen House voting economically unfeasible.
- Solution: Base layer as a commitment layer, leveraging Ethereum's security for consensus, not storage.
- Result: Billions of attestations can be managed for the cost of thousands, enabling large-scale decentralized governance.
~$0.001
Attestation Cost
Billions
Scale Capacity
counter-argument
THE OPTIMIST'S VIEW
Steelman: "Storage is Cheap, Stop Worrying"
This section presents the argument that on-chain data storage costs are negligible and should not be a primary constraint for reputation system design.
Storage costs are negligible compared to compute. A 1KB state write on Ethereum L1 costs ~$0.05 at 50 gwei; on Arbitrum or Optimism, it's a fraction of a cent. The real expense is the gas for state updates, not the persistent storage itself.
Reputation is a public good that benefits the entire ecosystem. Protocols like Aave and Compound already store user positions on-chain. Treating reputation as a similar long-term asset justifies the minimal storage overhead for its network effects.
Data availability layers like Celestia and EigenDA commoditize storage. They provide blobspace at scale, decoupling data posting from execution costs. This architectural shift makes storing merkle roots for reputation graphs economically trivial.
Evidence: The total state size for a reputation system serving 10M users with 1KB per user is 10 GB. Storing this on Arweave costs ~$200. The bottleneck is state growth on L1s, not the raw storage medium.
takeaways
THE DATA LAYER
Architectural Imperatives for Builders
On-chain reputation is a foundational primitive, but its naive storage is a silent killer of scalability and user experience.
01
The Problem: State Bloat is a Protocol Tax
Storing mutable user data directly in smart contract state forces every node to pay the perpetual cost. This creates a quadratic scaling problem where protocol growth directly inflates the base layer's burden.\n- Cost: Adds ~20k gas per storage slot for every update, paid by users.\n- Impact: Makes lightweight clients and fast syncs impossible, centralizing node operations.
20k+ gas
Per Slot Write
Quadratic
Scaling Cost
02
The Solution: Verifiable Off-Chain Attestations
Shift the storage burden off-chain while preserving cryptographic verifiability. Systems like Ethereum Attestation Service (EAS) and Verax allow protocols to issue signed statements about a user, stored in cheap decentralized storage (e.g., IPFS, Arweave).\n- Key Benefit: On-chain verification cost is ~5k gas vs. 20k+ for storage.\n- Key Benefit: Enables portable, composable reputation across chains without re-publishing full state.
~5k gas
Verify Cost
Portable
Cross-Chain
03
The Problem: Privacy vs. Utility Trade-off
Fully public on-chain reputation graphs are toxic. They enable sybil detection but also allow for extraction, front-running, and discrimination. This creates a perverse incentive for users to fragment identities, defeating the reputation system's purpose.\n- Consequence: Valuable behavioral data (e.g., reliable loan repayment) is either leaked or not recorded at all.
Data Leakage
Primary Risk
Fragmented IDs
User Response
04
The Solution: Zero-Knowledge Reputation Primitives
Use ZK proofs to allow users to prove properties of their reputation without revealing the underlying data or graph. Projects like Sismo and Semaphore enable this.\n- Key Benefit: User proves "I have a score > X" or "I am part of group Y" with a single proof.\n- Key Benefit: Unlinkability between actions preserves privacy while maintaining sybil-resistance.
ZK Proof
Verification
Unlinkable
Actions
05
The Problem: Fragmented, Incomposable Silos
Reputation built in one dApp (e.g., GMX trader history) is locked in and useless elsewhere (e.g., Aave credit assessment). This forces every protocol to rebuild its own graph, multiplying the state bloat problem and limiting network effects.\n- Result: Low utility-to-storage ratio for the ecosystem as a whole.
Siloed Data
Low Utility
Repeated Work
Per Protocol
06
The Solution: Standardized Schemas & On-Chain Registries
Adopt shared data schemas (like Credential Protocol) and canonical on-chain registries for attestation issuers. This turns reputation into a composable Lego brick.\n- Key Benefit: Any protocol can trust and build upon attestations from a vetted issuer (e.g., Coinbase Verified).\n- Key Benefit: Enables cross-protocol reputation aggregation without centralized intermediaries.
Composable
Lego Brick
Aggregated
Cross-Protocol
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall