Decentralized Identifiers (DIDs) on-chain vs DID Documents on IPFS/Arweave

Direct State Machine Integration: DID state (creation, updates, revocation) is a native blockchain transaction. This provides cryptographic finality and enables seamless composability with DeFi protocols (Aave, Compound), smart contract wallets (Safe), and governance systems (Compound Governor). The DID is a first-class on-chain object.

Cost-Prohibitive for High-Volume Data: Storing even a JSON document on-chain (e.g., Ethereum) can cost $10-$100+ per DID creation/update. This limits scalability for applications like mass user onboarding or frequent credential updates. Throughput is constrained by the underlying chain's TPS.

Substantially Lower Storage Costs: Anchoring a DID document hash on-chain costs pennies, while the document itself (with VC schemas, service endpoints, large public keys) lives cheaply on IPFS (Filecoin) or Arweave (permanent storage). Ideal for verifiable credentials, identity graphs, and resource-heavy DID documents.

Dependence on Pinning Services & Gateway Availability: The DID document is only accessible if the CID is pinned and a gateway is online. This introduces liveness risk and operational overhead versus always-available on-chain state. Requires managing services like Pinata, nft.storage, or Arweave gateways.

Guaranteed State Consistency: The DID's status (active/revoked) and its public keys are resolved directly from the blockchain's consensus state. This eliminates external dependencies, making it ideal for high-security DeFi integrations (e.g., smart contract permissioning) and real-time verification where liveness is critical.

High Storage Cost & Scalability Limits: Storing mutable data (like key rotations) directly on L1s like Ethereum is prohibitively expensive. This model struggles with data-rich identity profiles (verifiable credentials, social graphs) and can lead to bloated state size, conflicting with scaling roadmaps for chains like Solana and Polygon.

Liveness & Pinning Dependency: Resolution depends on the availability of off-chain data. If IPFS nodes unpin the document or Arweave gateways are slow, the DID becomes unresolvable. This adds fragility for time-sensitive operations and requires careful infrastructure management, introducing a point of centralization.

Direct Immutability & Guaranteed Resolution: The DID document is stored directly on the L1/L2 ledger. This provides cryptographic certainty of persistence and a single, always-available resolution endpoint via the chain's RPC. This matters for high-value, permanent identities like institutional credentials or protocol admin keys where liveness is non-negotiable.

Cost-Effective & Flexible Storage: Storing only a content hash (CID or Arweave TX ID) on-chain decouples document size from gas fees. IPFS allows unlimited updates for pinning costs, while Arweave offers permanent, one-time payment storage (~$0.02/KB). This matters for scaling to millions of users or storing large, mutable Verifiable Credentials (VCs).

High Variable Cost & Size Limits: Every document update (adding a key, service endpoint) requires a new on-chain transaction with associated gas fees and is constrained by block size/VM limits. This is prohibitively expensive for frequent changes and impractical for embedding large service endpoints or VCs directly.

Resolution Dependency & Pinning Complexity: Resolving the DID requires a separate, reliable gateway (IPFS node, Arweave gateway). IPFS introduces pinning service centralization risk, while lazy Arweave nodes may not store all data. This adds a liveness assumption and complexity that breaks the "trustless" guarantee of pure on-chain resolution.