Wallets are bloated identity oracles. Today's wallets broadcast your entire transaction history and asset portfolio to every dApp you connect to, creating massive privacy and security risks.
zero-knowledge-privacy-identity-and-compliance
Blog
Why Every Wallet Will Become a Selective Disclosure Hub
We argue that the core function of a crypto wallet is shifting from key custody to credential curation. The winning wallet will manage attestations and generate ZK proofs, enabling private, compliant, and context-aware interactions across all dApps.
introduction
THE IDENTITY SHIFT
Introduction
The monolithic wallet is dying, replaced by a hub for selective disclosure of identity, assets, and intent.
Zero-knowledge proofs enable selective disclosure. Protocols like Sismo and Polygon ID allow users to prove attributes (e.g., 'I own an NFT' or 'I am over 18') without revealing the underlying data.
This transforms wallet architecture. The wallet becomes a verifiable credential manager, curating proofs for specific interactions instead of granting blanket access. This is the logical endpoint of account abstraction and ERC-4337.
Evidence: Over 500,000 ZK-based attestations have been issued via Sismo, demonstrating demand for granular, reusable identity proofs over all-or-nothing key access.
key-trends
FROM CREDENTIAL VAULTS TO CONTEXT ENGINES
Executive Summary
The current wallet model is a privacy and UX dead end. The next evolution turns wallets into intelligent agents that disclose only what's necessary.
01
The Problem: The All-or-Nothing Privacy Trap
Today's wallets leak your entire transaction graph for simple actions. Signing a login or proving age reveals your full balance and history, creating permanent on-chain surveillance risks.
- Data Leak: A single
eth_signreveals your entire address history. - User Friction: Manual chain/asset selection for every dApp is a UX nightmare.
- Security Risk: Broad permissions (e.g., unlimited ERC-20 approvals) are the norm.
100%
Graph Exposed
~15s
Avg. Connect Time
02
The Solution: Intent-Based Abstraction with Zero-Knowledge Proofs
Wallets become hubs that fulfill user intents ("swap X for Y") by constructing optimal transactions and proving only required credentials via ZKPs.
- Selective Disclosure: Prove you hold an NFT without revealing which one, or prove solvency without revealing assets.
- Gasless UX: Sponsorship via ERC-4337 Account Abstraction or systems like UniswapX.
- Cross-Chain Native: Intents are solved by the best executor, abstracting chains away via LayerZero or Across.
~500ms
Intent Resolution
0
Gas for User
03
The Architecture: Modular Signing & Session Management
Future wallets decompose the signing key. A session key handles routine transactions, while a secure enclave or MPC protects the master key, enabling programmable privacy.
- Modular Security: Use Safe{Wallet} smart accounts for policy-based spending limits.
- Session Keys: Temporary keys power dApp sessions, revoked automatically.
- Proof Aggregation: Batch proofs for multiple actions (e.g., zkEmail verification + token claim) into one signature.
10x
Fewer Master Key Signs
-99%
Approval Risk
04
The Business Model: From Gateway to Marketplace
The wallet is no longer a passive keychain. It becomes a marketplace for solvers, privacy services, and data attestations, capturing value from flow.
- Solver Fees: Earn revenue by routing intents to the most efficient solver network (CowSwap, 1inch).
- Attestation Services: Charge for generating ZK proofs of credentials or reputation.
- Data Ownership: Users can permission anonymized data to earn, flipping the surveillance economy.
$10B+
Solver Market
New Rev Stream
For Wallets
thesis-statement
THE IDENTITY SHIFT
The Core Argument: From Keychain to Credential Hub
Wallets are evolving from simple key managers into programmable identity hubs that control and selectively disclose user data.
Wallets are identity endpoints. Today's wallets like MetaMask and Phantom manage keys and sign transactions. Their next function is to become the user's primary agent for managing credentials, from KYC proofs to social graphs.
Selective disclosure is the killer app. Users will prove attributes (e.g., 'over 18', 'DAO member') without revealing raw data. This moves trust from centralized validators to cryptographic proofs and zero-knowledge circuits.
The hub aggregates fragmented data. A user's on-chain activity, Gitcoin Passport score, and World ID verification exist in silos. The credential wallet becomes the unified interface, reducing friction for DeFi, governance, and access control.
Evidence: The ERC-4337 account abstraction standard enables this by making wallets programmable. Projects like Sismo and Disco are already building ZK attestation layers that wallets will natively integrate.
market-context
THE IDENTITY SHIFT
The Burning Platform: Why Key Management Is No Longer Enough
The wallet's core function is shifting from asset custody to selective identity disclosure for cross-chain and cross-application interactions.
Key management is a commodity. Hardware security modules and multi-party computation (MPC) from providers like Fireblocks and Web3Auth have standardized secure custody, removing it as a primary differentiator.
The new battleground is attestation orchestration. Wallets must become selective disclosure hubs, managing verifiable credentials (VCs) from sources like Ethereum Attestation Service (EAS) or Verax to prove reputation, KYC status, or holdings without exposing the underlying data.
This enables intent-centric flows. Users express desired outcomes (e.g., 'swap X for Y at best rate'), and the wallet, acting as an agent, uses disclosed proofs to route through UniswapX, CowSwap, or Across without manual chain-hopping.
Evidence: The ERC-4337 account abstraction standard, with over 5.5 million smart accounts, embeds this logic, allowing transaction execution to be conditioned on verified attestations, not just signatures.
WALLET DATA LAYER COMPARISON
The Attestation Explosion: On-Chain Data Doesn't Lie
Comparing core infrastructure enabling wallets to become selective disclosure hubs for on-chain attestations.
| Core Capability | Ethereum Attestation Service (EAS) | Verax | Solana Compressed NFTs |
|---|---|---|---|
Native Attestation Standard | EIP-712 Schemas | EVM Schema Registry | SPL Compression Standard |
Data Storage Model | On-chain registry + off-chain signatures | On-chain registry + on-chain data | On-chain state compression (~1/1000th cost) |
Attestation Revocation | |||
Schema Flexibility | Fully customizable by any user | Fully customizable by any user | Fixed metadata structure |
Gas Cost per Attestation (Mainnet) | $2 - $15 | $5 - $20 | < $0.01 |
Primary Use Case | Portable reputation (e.g., Gitcoin Passport) | Cross-chain credential layer | High-volume, low-cost status (e.g., loyalty points) |
Decentralized Attester Set | |||
Integration with ZK Proofs (e.g., Sismo, Axiom) |
deep-dive
THE IDENTITY LAYER
Anatomy of a Selective Disclosure Hub
Wallets are evolving from simple key managers to intelligent agents that programmatically control data exposure.
Wallets become policy engines. They will execute user-defined rules for sharing identity attributes, moving beyond the all-or-nothing model of connecting a wallet. This is the core function of a Selective Disclosure Hub.
ERC-4337 enables this shift. Account Abstraction provides the execution framework for complex, conditional logic, allowing wallets to act as autonomous agents that manage credentials without constant user signatures.
The hub mediates all interactions. It sits between the user and every dApp, verifying proofs from sources like Verax or Ethereum Attestation Service before releasing minimal data, such as a proof-of-humanity without the actual wallet address.
Evidence: Projects like Sismo and Gitcoin Passport demonstrate the demand for composable, reusable identity proofs, which require a hub architecture to manage the underlying zero-knowledge credentials.
protocol-spotlight
THE IDENTITY STACK
Protocol Spotlight: Who's Building the Plumbing?
The next wave of user-centric infrastructure moves beyond simple key storage to programmable, privacy-preserving identity layers.
01
The Problem: Wallets as All-or-Nothing Data Vaults
Your wallet address is a global identifier that links all your activity across DeFi, NFTs, and social graphs. This creates permanent reputation leakage and front-running risk. Every dApp gets your full history, not just the proof you need to share.
- Privacy Nightmare: Your NFT purchase reveals your entire token portfolio.
- Sybil Vulnerability: Protocols can't distinguish real users from bots without doxxing everyone.
- User Experience Tax: Manual signing for every trivial action.
100%
Data Exposure
~$1B+
MEV Leakage
02
The Solution: Zero-Knowledge Proofs for Selective Disclosure
Platforms like Sismo and Polygon ID enable users to generate ZK proofs about their on-chain credentials without revealing the underlying data. Your wallet becomes a hub for generating verifiable claims.
- Minimal Disclosure: Prove you hold >1 ETH without revealing balance or tx history.
- Sybil Resistance: Issue a proof of unique humanity via Worldcoin or Gitcoin Passport.
- Portable Reputation: Carry proof of your DeFi experience or DAO contributions across apps.
ZK-SNARKs
Tech Core
<1s
Proof Gen
03
The Enabler: Decentralized Identifiers & Verifiable Credentials
The W3C Verifiable Credentials standard, implemented by Spruce ID and Ethereum Attestation Service (EAS), provides the data model. DIDs (Decentralized Identifiers) create persistent, non-correlatable pseudonyms.
- Interoperability: Credentials work across chains and off-chain via Sign-In with Ethereum.
- User Sovereignty: Credentials are stored in your wallet, not a corporate database.
- Composable Trust: Build complex proofs by combining attestations from multiple issuers.
W3C Standard
Foundation
Multi-Chain
Scope
04
The Application: Programmable Privacy for DeFi & Social
This stack enables new primitives. Aztec Network for private DeFi. Farcaster frames with gated actions. Aave with risk-adjusted rates based on proven credit history.
- Private Swaps: Use zk.money to hide transaction amounts and recipient.
- Gated Communities: Prove NFT ownership or token stake to access channels.
- Under-collateralized Lending: Use verified income streams or repayment history as collateral.
10x
Use Cases
-99%
Data Footprint
05
The Infrastructure: Proof Aggregation & Key Management
ZK Email and reclaim bridge web2 data. Privy and Dynamic abstract key management for mainstream users. Lit Protocol enables conditional decryption based on proofs.
- Proof Markets: Services that generate complex ZK proofs off-chain for a fee.
- Social Recovery: Use verifiable social graphs for wallet recovery, moving beyond seed phrases.
- Session Keys: Grant limited smart contract permissions for seamless app interaction.
~500ms
Proof Service
Web2 <> Web3
Bridge
06
The Economic Model: Attestations as a Network Good
The value accrues to the issuers of trusted credentials and the protocols that standardize them. Ethereum Attestation Service (EAS) schema registry becomes critical. Optimism's AttestationStation shows early adoption.
- Schema Registry: A public good for credential formats, akin to ENS for names.
- Issuer Reputation: Trust scores for entities issuing credentials (e.g., Coinbase vs. a random DAO).
- Fee Markets: For priority proof generation and attestation revocation services.
Public Good
Core Primitive
Issuer Rep
Value Accrual
counter-argument
THE INEVITABLE PIVOT
Steelman: The Privacy-Compliance Paradox
The future of user sovereignty is not absolute anonymity, but cryptographically verifiable selective disclosure.
The compliance bottleneck is terminal. Every wallet that interacts with regulated DeFi or real-world assets will need to prove its legitimacy without exposing its entire transaction graph. This creates a zero-sum game between privacy and access that current on-chain models lose.
Selective disclosure wins. Protocols like zkPass and Sismo demonstrate the model: users generate zero-knowledge proofs to attest to specific credentials (e.g., KYC status, accredited investor proof) without revealing the underlying data. The wallet becomes a verifiable credential hub.
Privacy becomes a compliance feature. For institutions, the ability to prove regulatory adherence on-chain is more valuable than hiding. This flips the narrative: privacy tech like Aztec or Tornado Cash is not for evasion, but for constructing minimal, compliant proofs.
Evidence: The EU's MiCA regulation mandates transaction traceability for VASPs, directly creating demand for the ZK-proof-of-KYC pattern that emerging identity standards like Polygon ID are built to serve.
risk-analysis
THE ADOPTION CLIFF
What Could Go Wrong? The Bear Case
The vision of wallets as selective disclosure hubs faces non-trivial technical and market risks that could stall mainstream adoption.
01
The UX Friction Cliff
Zero-Knowledge proofs for selective disclosure add ~500ms-2s latency per action, a death sentence for consumer apps. Managing hundreds of granular data policies creates decision fatigue worse than cookie pop-ups. The average user will choose convenience over privacy every time, rendering the tech a niche tool.
~2s
ZK Latency
>80%
Abandonment Rate
02
The Interoperability Mirage
Without a universal standard like ERC-4337 for accounts, each hub (e.g., Privy, Dynamic) creates a walled garden. Proof formats from zkLogin (SuÃ), ZK Email, and Polygon ID are incompatible, fracturing user identity. This defeats the core Web3 promise of composability and portability.
0
Dominant Standard
5+
Competing Stacks
03
The Regulatory Ambush
Selective disclosure is a regulatory gray zone. Proving you're over 18 without revealing your birthday is still transmitting Personal Identifiable Information (PII), potentially triggering GDPR and BIPA liability. Regulators may classify the ZK proof itself as a regulated data transfer, killing the model with compliance overhead.
100%
Legal Uncertainty
$50K+
Compliance Cost/App
04
The Centralization Reversion
High computational cost of on-chain ZK verification pushes logic off-chain to centralized prover networks (e.g., RISC Zero, Succinct). This recreates the trusted intermediary problem. If the prover is down or censored, your 'self-sovereign' proof is worthless.
3-5
Major Prover Ops
1
Failure Point
05
The Economic Misalignment
There's no sustainable business model. Wallets can't monetize private data, so hub features become a cost center. Protocols like Uniswap won't pay extra for verified traits unless it directly boosts volume. This leads to underfunded, insecure implementations or abandoned projects.
$0
Direct Revenue
$2M+
Dev Cost
06
The Social Recovery Backdoor
Selective disclosure hubs rely on smart accounts for key management, which use social recovery. Your privacy is now only as strong as your 5 guardians. This creates a social attack vector far easier to exploit than stealing a private key, making high-value identities perpetual targets.
5
Attack Vectors
10 min
Recovery Time
future-outlook
THE IDENTITY SHIFT
The 24-Month Outlook: Wallets as Context-Aware Agents
Wallets will evolve from simple key holders to intelligent agents that manage user identity and permissions across applications.
Selective disclosure replaces all-or-nothing signing. Current wallets ask for blanket transaction approval, exposing users to risk. Future wallets, using standards like EIP-4361 (Sign-In with Ethereum) and ERC-4337 Account Abstraction, will parse transaction intent and reveal only the necessary data, like a specific token allowance for a Uniswap swap.
Context is the new private key. The wallet's intelligence, not the user's vigilance, becomes the primary security layer. A wallet will differentiate between a routine Aave deposit and a suspicious contract interaction, requesting appropriate verification levels. This shifts security from user education to wallet-level policy enforcement.
Evidence: The adoption curve of ERC-4337 smart accounts, which enable this programmability, shows over 4 million deployed accounts as of late 2024, creating the foundational infrastructure for this agent-based model.
takeaways
THE PRIVACY-FIRST INFRASTRUCTURE SHIFT
TL;DR for Builders and Investors
The universal wallet is dead. The next wave is the selective disclosure hub, where users prove claims without exposing data. This is the infrastructure for compliant DeFi, on-chain credit, and enterprise adoption.
01
The Problem: The All-or-Nothing Data Dump
Today's wallets leak your entire transaction graph with every connection. This creates massive privacy risks and regulatory friction, blocking institutional capital and sophisticated DeFi.\n- KYC/AML compliance is impossible without exposing all user data.\n- Front-running and profiling are trivial when balances and history are public.
100%
Data Exposed
$0B
Institutional TVL
02
The Solution: Zero-Knowledge Credential Protocols
Infrastructure like zkPass, Sismo, and Polygon ID enables wallets to become verification hubs. Users generate ZK proofs of specific claims (e.g., 'I'm accredited', 'balance > X') without revealing the underlying data.\n- Selective Disclosure: Prove only what's needed for a dApp or service.\n- Reusable Attestations: On-chain verifiable credentials from trusted issuers.
~500ms
Proof Gen
$10B+
Addressable TVL
03
The Killer App: Under-Collateralized Lending
Selective disclosure unlocks the holy grail of on-chain finance: credit. Prove your income, reputation, or off-chain assets via a ZK proof to access loans at >10x capital efficiency.\n- **Protocols like Goldfinch and Maple can move fully on-chain.\n- Risk engines can price loans based on verified, private data.
10x
Capital Efficiency
-90%
Collateral Required
04
The Architecture: Intent-Based UserOps with Privacy
The stack converges: Account Abstraction (ERC-4337) for transaction flexibility meets ZK proofs for privacy. Users express intents ("swap with best price") and prove constraints ("my wallet is whitelisted") in a single, private UserOperation.\n- Bundlers (like Stackup, Pimlico) execute complex, private flows.\n- Paymasters sponsor gas based on verified user attributes.
1-Click
Complex Flows
-99%
User Friction
05
The Business Model: Privacy as a Premium Service
Wallets and infrastructure providers will monetize privacy and compliance layers. This isn't a feature—it's a new revenue line.\n- SDKs for dApps to request verified claims (e.g., Privy, Dynamic).\n- Fee-for-Proof: Charging for generating/composing ZK proofs for complex claims.\n- Enterprise B2B: Selling white-label compliance verification hubs.
$50+
ARPU Potential
B2B
Primary Market
06
The Competition: Who Owns the Verification Layer?
The battle isn't for wallet installs—it's for the standard of trust. The winner defines the schema for on-chain identity.\n- Ethereum's ERC-7231 (ZK-based identity) vs. Solana's State Compression.\n- Centralized Attesters (Coinbase, Circle) vs. Decentralized Attester Networks.\n- Risk: The verification layer could become the new platform lock-in.
Winner-Takes-Most
Market Dynamics
1-2 Years
Timeline
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall