An on-chain reputation system quantifies and stores a user's trustworthiness, contributions, or history directly on a blockchain. Unlike off-chain scores, this data is transparent, portable, and composable across decentralized applications (dApps). The core architectural challenge is balancing data richness with cost efficiency, as storing and computing on-chain is expensive. A well-designed system typically separates the reputation logic (smart contracts) from the data sources (oracles, attestations) and provides clear mechanisms for reputation accrual and decay.
LABS
Guides
How to Architect an On-Chain Reputation System
This guide explains the core architectural decisions for building a reputation system on-chain, including data structures, storage patterns, and the trade-offs between on-chain and hybrid designs.
Chainscore © 2026
introduction
DEVELOPER GUIDE
How to Architect an On-Chain Reputation System
A technical guide to designing and implementing a reputation system using smart contracts, covering core components, data models, and Sybil resistance.
Start by defining your reputation model. What behavior are you measuring? Common models include: transaction volume (e.g., total value bridged), participation frequency (e.g., governance votes cast), peer attestations (e.g., other users' endorsements), or outcome-based scoring (e.g., successful loan repayments). Your model dictates the required data. For example, a simple model might track a single cumulative score in a mapping(address => uint256), while a complex one may need a struct storing a history of actions with timestamps to implement reputation decay over time.
The next step is data sourcing and verification. Pure on-chain actions (like token transfers) are easy to verify. For off-chain actions (like completing a task on a platform), you need a verification oracle or attestation protocol like Ethereum Attestation Service (EAS). These systems allow trusted entities or decentralized communities to issue signed statements about a user's action, which your reputation contract can then verify and incorporate. This decouples data collection from scoring logic.
A critical component is Sybil resistance—preventing users from artificially inflating their score by creating multiple identities. Native solutions are difficult on-chain. Common mitigations include: requiring a stake (bonded deposits), leveraging existing identity (like ENS names or proof-of-personhood tokens from Worldcoin or BrightID), or using context-specific constraints (like linking reputation to a non-transferable NFT). The chosen method must align with your system's threat model and accessibility goals.
Finally, design the smart contract architecture. A modular pattern is recommended. A core ReputationRegistry contract holds the canonical scores. Separate Issuer contracts, authorized by governance, have permission to update scores based on verified data. An Aggregator contract can compute a final score from multiple sources. Use events like ReputationUpdated for off-chain indexing. Always include a dispute period or challenge mechanism for scores derived from subjective attestations, allowing the community to flag malicious issuers.
When implementing, use established libraries like OpenZeppelin for access control and consider storing data on Layer 2s or using storage proofs to reduce gas costs. Test extensively with scenarios for score manipulation. A well-architected system becomes a composable primitive, enabling use cases in undercollateralized lending, curated registries, governance weight, and anti-bot measures, ultimately moving Web3 beyond simple token-based governance.
prerequisites
PREREQUISITES AND CORE CONCEPTS
How to Architect an On-Chain Reputation System
Building a robust on-chain reputation system requires understanding its core components, data models, and the trade-offs between decentralization and utility. This guide covers the foundational concepts you need before writing your first line of code.
An on-chain reputation system quantifies and records an entity's historical behavior and contributions directly on a blockchain. Unlike traditional systems controlled by a central authority, these systems are transparent, composable, and resistant to unilateral censorship. The core architectural challenge is designing a data model that is both verifiable (anyone can audit the score's derivation) and efficient (cost-effective to query and update). Common entities that accrue reputation include wallet addresses (for users), smart contract addresses (for protocols or DAOs), and even off-chain identities verified through attestations.
Reputation is fundamentally built from attestations or proofs of action. These are cryptographically signed statements, often implemented as tokens or non-transferable NFTs (Soulbound Tokens), that record a specific event. Examples include: a DAO issuing a "Voter" SBT for participating in governance, a protocol minting a "Liquidity Provider" NFT for depositing assets, or a user receiving a "Verified Contributor" attestation on Ethereum Attestation Service (EAS) for a GitHub commit. The reputation system's logic defines which attestations are valid and how they contribute to a score.
The scoring algorithm is the heart of the system. It must be deterministic, so the same inputs always produce the same reputation score. Common models include: summation (summing token balances or attestation values), time-decay (weighting recent activity more heavily), and graph-based scoring (where reputation flows through a network of trust, like in Gitcoin Passport). This logic is typically encoded in a verifier contract or an off-chain indexer that calculates scores on-demand, publishing only the resulting attestation or score NFT to the chain to save gas.
A critical decision is the storage architecture. Storing raw data and calculating scores fully on-chain (e.g., in a smart contract's state) offers maximum verifiability but can be prohibitively expensive. A hybrid approach is often optimal: store immutable attestations on-chain (as cheap log events or on an L2 like Base), compute scores using an off-chain indexer or a verifiable oracle (like HyperOracle), and then post the final score attestation back on-chain. This balances cost, transparency, and computational complexity.
Finally, consider sybil-resistance and context. A reputation score is only meaningful if it's tied to a unique, non-gameable identity. This often requires integrating with identity primitives like Ethereum's ERC-4337 account abstraction for smart contract wallets, ENS names, or proof-of-personhood protocols (e.g., Worldcoin). Furthermore, reputation is not universal; a score for "code contributor" in one DAO may not translate to "debt underwriter" in a lending protocol. Architect your system with clear, scoped contexts to ensure scores are interpretable and useful.
key-concepts
ARCHITECTURE
Core Reputation Models and Data Structures
Foundational patterns for building decentralized reputation. These models define how identity, actions, and trust are encoded and computed on-chain.
storage-patterns
ARCHITECTURE GUIDE
On-Chain vs. Hybrid Storage Patterns
This guide explains how to design a reputation system's data layer, comparing the trade-offs between fully on-chain and hybrid storage models for scalability and cost.
An on-chain reputation system stores all user data directly on the blockchain. This includes reputation scores, attestations, and historical actions. The primary advantage is maximum transparency and verifiability; any user or application can independently audit the entire reputation history without trusting a third-party data source. This model is ideal for protocols where censorship resistance and permissionless verification are paramount, such as in decentralized governance or on-chain credit scoring. However, storing complex data structures and frequent updates on-chain can lead to prohibitively high gas costs, especially on Ethereum Mainnet, limiting the system's scalability for a large user base.
A hybrid storage pattern addresses the cost and scalability limitations of a fully on-chain system. In this model, the canonical source of truth remains on-chain, but bulk data is stored off-chain. A common implementation uses a struct on-chain to store a cryptographic commitment (like a Merkle root or hash) of the off-chain data. The detailed reputation data—individual scores, review text, or metadata—resides in a cost-efficient off-chain database, decentralized storage network (like IPFS or Arweave), or an indexing service (like The Graph). Users submit proofs (e.g., Merkle proofs) to the smart contract to verify specific data points against the on-chain root.
For example, consider a builder reputation contract. The on-chain component might be a simple registry storing a user's address and a bytes32 reputationDataHash. Off-chain, a service maintains a detailed JSON profile containing project history, peer reviews, and a computed score. When a user applies for a grant, they can present their off-chain profile along with a Merkle proof. The grant contract verifies the proof against the stored hash before considering the application. This pattern is used by systems like Ethereum Attestation Service (EAS), where attestations are made on-chain but the associated schema and data can be stored off-chain.
Choosing between these patterns depends on your application's requirements. Use a fully on-chain pattern if: auditability is non-negotiable, data volume is low, updates are infrequent, or you're building on a low-cost L2. Opt for a hybrid pattern if: you need to store rich data (text, arrays), require frequent updates, or are optimizing for mainnet deployment. A practical hybrid approach is to store critical state changes (e.g., a major score adjustment) as on-chain events and use an indexer to build the complete off-chain state, ensuring verifiability where it matters most.
When implementing a hybrid system, security is critical. The off-chain data provider becomes a trust assumption. Mitigate this by using decentralized storage to prevent data loss and implementing challenge periods or fraud proofs, as seen in optimistic systems, to allow users to dispute incorrect state roots. Furthermore, design your on-chain contracts with upgradeability in mind for the commitment logic, as hashing algorithms or proof formats may need to evolve. The goal is to create a system that is sufficiently decentralized for its use case while remaining practical and usable.
CORE MODELS
Reputation Architecture Comparison
Comparison of foundational approaches for building on-chain reputation systems, detailing trade-offs in decentralization, cost, and data handling.
| Architectural Feature | Soulbound Tokens (SBTs) | Reputation Registry | Attestation Graph |
|---|---|---|---|
Data Immutability | |||
Storage Cost | High (on-chain) | Low (off-chain ref) | Variable (on/off-chain) |
Portability | High (wallet-native) | Low (app-specific) | High (graph query) |
Privacy Control | None (public) | Configurable | Granular (per attestation) |
Update Frequency | Low (mint/burn) | High | High |
Gas Cost per Update | $10-50 | < $1 | $1-5 |
Decentralization | Full (L1/L2) | Partial (depends on verifier) | High (decentralized graph) |
Composability | ERC-721/1155 standard | Custom integration | GraphQL/Subgraph API |
ARCHITECTURE PATTERNS
Implementation Examples and Code Patterns
Smart Contract Implementation
Here's a basic, non-upgradable reputation contract using a linear summation model with permissioned attestations.
solidity// SPDX-License-Identifier: MIT pragma solidity ^0.8.19; contract LinearReputation { address public admin; mapping(address => uint256) public scoreOf; mapping(address => bool) public isIssuer; event AttestationAdded(address indexed issuer, address indexed subject, int256 change); constructor() { admin = msg.sender; isIssuer[msg.sender] = true; } function addIssuer(address _issuer) external { require(msg.sender == admin, "Not admin"); isIssuer[_issuer] = true; } function attest(address _subject, int256 _scoreChange) external { require(isIssuer[msg.sender], "Not authorized issuer"); require(_scoreChange != 0, "Change cannot be zero"); // Update score, preventing underflow for negative changes if (_scoreChange > 0) { scoreOf[_subject] += uint256(_scoreChange); } else { uint256 decrease = uint256(-_scoreChange); if (decrease > scoreOf[_subject]) { scoreOf[_subject] = 0; } else { scoreOf[_subject] -= decrease; } } emit AttestationAdded(msg.sender, _subject, _scoreChange); } }
Key Considerations: This pattern is simple but centralized. For decentralization, replace the admin with a governance mechanism or use a schema-based attestation model like EAS (Ethereum Attestation Service).
scoring-mechanisms
ARCHITECTURE GUIDE
Designing Reputation Scoring and Aggregation
On-chain reputation systems transform subjective social capital into verifiable, portable assets. This guide explains how to design the core scoring logic and aggregation mechanisms that power these systems.
An on-chain reputation system quantifies a user's past actions into a persistent, composable score. Unlike traditional credit scores, these systems are transparent, self-sovereign, and interoperable across applications. The core architecture has two main components: a scoring engine that defines how actions translate into points or badges, and an aggregation layer that combines signals from multiple sources into a unified score. This design allows protocols to incentivize positive contributions, mitigate Sybil attacks, and enable reputation-based access control.
Designing the scoring logic requires mapping desirable on-chain behavior to mathematical models. Common approaches include linear accumulation for simple point systems, decaying scores to prioritize recent activity, and staking-weighted models that tie reputation to economic commitment. For example, a DAO might award reputation_points for each successful governance vote, with a 10% monthly decay. The logic is typically enforced by a ReputationScoring smart contract that emits events when scores are updated, creating an immutable audit trail.
Aggregation is critical for creating a holistic view from disparate data sources. A user might have reputation from protocol usage (e.g., Uniswap LP positions), social attestations (e.g., Ethereum Attestation Service records), and off-chain achievements (e.g., verified GitHub commits). The aggregator contract must weight and combine these signals, often using a formula like total_score = (source_a * weight_a) + (source_b * weight_b). Using oracles like Chainlink Functions can securely fetch and verify off-chain data for inclusion.
To ensure security and scalability, reputation systems should implement upgradeable contracts using proxies (e.g., OpenZeppelin's UUPS) to allow logic improvements without losing historical data. Scores should be stored in a merkle tree or a similar data structure to enable efficient proofs for cross-chain reputation portability via protocols like LayerZero. This allows a user's reputation on Arbitrum to be verifiably used for a lending application on Base, without constant cross-chain queries.
Finally, consider the privacy trade-offs. Fully public scores are transparent but can lead to gamification. Zero-knowledge reputation systems, using tools like Semaphore or Noir, allow users to prove they have a score above a threshold without revealing the exact value. This enables private, reputation-gated airdrops or voting. The choice between transparency and privacy will define your system's use cases and community trust.
resource-links
GUIDE COMPONENTS
Essential Tools and Resources
These tools and frameworks are commonly used to design, implement, and maintain on-chain reputation systems. Each resource addresses a specific layer such as identity, attestations, sybil resistance, or data availability, and can be combined into a modular architecture.
ON-CHAIN REPUTATION
Frequently Asked Questions
Common questions and technical clarifications for developers building decentralized identity and reputation systems.
On-chain reputation is derived from immutable, verifiable actions recorded on a blockchain, such as governance votes, loan repayments, or protocol interactions. Off-chain reputation relies on data stored in centralized databases or attestations from trusted entities, like credit scores or social media profiles.
Key differences:
- Verifiability: On-chain data is cryptographically verifiable by anyone; off-chain data requires trust in the issuer.
- Composability: On-chain reputation can be programmatically integrated into smart contracts (e.g., for loan collateral discounts). Off-chain data requires oracles or manual verification.
- Persistence: On-chain records are permanent; off-chain data can be altered or deleted. A hybrid approach, like using Ethereum Attestation Service (EAS) for off-chain attestations that reference on-chain identities, is common.
conclusion
ARCHITECTURAL REVIEW
Conclusion and Next Steps
This guide has outlined the core components for building a robust on-chain reputation system. Here's a summary of key principles and actionable steps for further development.
Building an effective on-chain reputation system requires a multi-layered approach. The foundation is a flexible attestation schema using standards like EAS, which allows you to define and issue verifiable claims about user actions. This data is aggregated into a computation layer where custom logic, often implemented in a ReputationEngine.sol contract, calculates scores based on weighted, time-decayed attestations. Finally, a query layer with subgraphs or indexers makes this aggregated reputation data easily accessible for dApps to consume and integrate.
The next step is to implement and test your architecture on a testnet. Start by deploying your attestation schema registry and a simple scoring contract. Use a framework like Foundry to write comprehensive tests that simulate user behavior: issuing attestations, triggering score updates, and verifying that Sybil resistance mechanisms like proof-of-personhood or stake-weighting work as intended. Testing edge cases, such as attestation revocation or conflicting claims, is crucial for security.
Consider the trade-offs between on-chain and off-chain computation. Complex reputation algorithms can be gas-intensive. A hybrid model, where raw attestations are stored on-chain but scores are computed off-chain with verifiable proofs (e.g., using zk-SNARKs), can optimize for cost and complexity. Explore frameworks like Semaphore for anonymous reputation or World ID for Sybil-resistant identity primitives to enhance your system's design.
To move from prototype to production, focus on integration and governance. Develop clear documentation for dApp developers on how to query reputation scores. Plan for a decentralized governance process to manage the reputation schema: who can issue attestations, how scoring weights are adjusted, and how the system upgrades. Tools like OpenZeppelin Governor can manage proposals for parameter changes.
Finally, analyze existing systems for inspiration and avoid common pitfalls. Study how Gitcoin Passport aggregates off-chain credentials, how Optimism's AttestationStation is used, or how ENS establishes a primitive form of on-chain identity. The goal is to create a system that is not only technically sound but also economically sustainable and aligned with the community it aims to serve.