A Soulbound Token (SBT) is a non-transferable digital asset bound to a single blockchain address, often called a "Soul." Unlike fungible tokens (ERC-20) or typical NFTs (ERC-721), SBTs cannot be sold or transferred, making them ideal for representing immutable personal credentials. They were popularized by Ethereum co-founder Vitalik Buterin in a 2022 whitepaper as a core primitive for decentralized society (DeSoc). SBTs enable verifiable, composable identity on-chain, moving beyond simple financial assets to encode reputation, memberships, and achievements.
LABS
Guides
Setting Up a Soulbound Token (SBT) Identity Layer
A technical tutorial on implementing non-transferable Soulbound Tokens (SBTs) as a foundational identity and reputation layer for access control in Web3 applications.
Chainscore © 2026
introduction
GUIDE
Introduction to Soulbound Tokens (SBTs)
Soulbound Tokens (SBTs) are non-transferable, blockchain-based tokens that represent credentials, affiliations, and commitments. This guide explains how to establish a foundational identity layer using SBTs.
To set up an SBT identity layer, you must first define the credentials your system will issue. Common examples include educational degrees, professional licenses, event attendance proofs, and guild memberships. Each credential type requires a smart contract, typically built on standards like ERC-5192 (the minimal SBT standard) or ERC-721 with transfer locks. The contract's mint function must include logic to bind the token permanently to the recipient's address, often by overriding or restricting the standard transferFrom function to revert all transfer attempts.
Here is a minimal example of an SBT contract using the ERC-721 standard with a transfer lock, written in Solidity 0.8.0+. The key is the internal _beforeTokenTransfer hook, which prevents all transfers after the initial mint.
solidity// SPDX-License-Identifier: MIT import "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract SimpleSBT is ERC721 { constructor() ERC721("SimpleSBT", "SBT") {} function mint(address to, uint256 tokenId) public { _safeMint(to, tokenId); } function _beforeTokenTransfer(address from, address to, uint256 tokenId, uint256 batchSize) internal virtual override { require(from == address(0), "Token is soulbound and non-transferable"); super._beforeTokenTransfer(from, to, tokenId, batchSize); } }
After deploying your SBT contract, the next step is to establish a verification and issuance framework. Issuance can be permissioned (only a trusted entity mints) or self-sovereign (users claim via proof). For off-chain verification, you can use EIP-712 signed typed data to create verifiable claims that a user presents to the contract for minting. This pattern is used by protocols like Gitcoin Passport for aggregating Web2 and Web3 credentials. The on-chain SBT then becomes a persistent, public record of that verified claim, readable by any other application.
The true power of an SBT identity layer emerges through composability. DApps and smart contracts can permission access or tailor experiences based on the SBTs held by a user's Soul. For instance, a lending protocol could offer uncollateralized loans to addresses holding a "Credit Score SBT" from a trusted issuer. A DAO could restrict governance votes to members with a "Contributor SBT." By querying a user's SBT collection, developers can build context-aware applications that recognize reputation and history, creating a richer, more trustworthy ecosystem than anonymous wallet addresses alone.
When implementing SBTs, consider key challenges: privacy (public SBTs reveal personal data), revocation (handling expired credentials), and key management (losing a Soul's private key is permanent). Emerging solutions include zero-knowledge proofs for private attestations (e.g., Sismo ZK Badges) and delegatable SBTs for recovery. Start by issuing non-sensitive credentials to understand the flow, then explore advanced standards like ERC-4973 (Account-bound Tokens) and frameworks from identity providers like Disco.xyz and Orange Protocol.
prerequisites
PREREQUISITES AND SETUP
Setting Up a Soulbound Token (SBT) Identity Layer
This guide covers the foundational steps to implement a non-transferable identity layer using Soulbound Tokens (SBTs) on EVM-compatible chains.
Soulbound Tokens (SBTs) are non-transferable, non-financialized tokens that represent credentials, affiliations, or memberships. Unlike standard ERC-20 or ERC-721 tokens, SBTs are permanently bound to a user's wallet address, or "Soul," creating a persistent on-chain identity. This makes them ideal for building decentralized reputation systems, proof-of-attendance protocols (POAPs), and verifiable credentials. The core technical standard for implementing SBTs is often an extension of ERC-721, with the critical addition of logic to prevent transfers after minting.
Before writing any code, you must set up your development environment. You will need Node.js (v18+ recommended) and a package manager like npm or yarn. The primary tools are Hardhat or Foundry for smart contract development and testing. Install Hardhat globally with npm install --global hardhat or set up a Foundry project using the instructions from Foundry's official book. You will also need a wallet like MetaMask and test ETH from a faucet (e.g., for Sepolia or Goerli) to deploy contracts.
The core of your setup is the smart contract. While no single official ERC standard for SBTs has been finalized, the common approach is to use ERC-721 and override the transfer functions. Below is a minimal example using Solidity and the OpenZeppelin library, which you can install with npm install @openzeppelin/contracts. This contract inherits from ERC721 and burns the _beforeTokenTransfer hook to prevent all transfers, making tokens soulbound.
solidity// SPDX-License-Identifier: MIT pragma solidity ^0.8.20; import "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract SimpleSBT is ERC721 { constructor(string memory name, string memory symbol) ERC721(name, symbol) {} // Mint an SBT to a recipient (only contract owner logic not shown for brevity) function safeMint(address to, uint256 tokenId) public { _safeMint(to, tokenId); } // Override to make token non-transferable function _beforeTokenTransfer(address from, address to, uint256 tokenId, uint256 batchSize) internal virtual override { require(from == address(0), "Token is soulbound and non-transferable"); super._beforeTokenTransfer(from, to, tokenId, batchSize); } }
After writing your contract, compile it with npx hardhat compile or forge build. Next, write a deployment script. For Hardhat, create a script in the scripts/ directory that uses the ethers.js library to deploy your contract to a network. You must configure your hardhat.config.js file with network details and your wallet's private key (securely using environment variables). Run the script with npx hardhat run scripts/deploy.js --network sepolia to deploy to the Sepolia testnet. Always verify your contract's source code on a block explorer like Etherscan after deployment.
With your SBT contract deployed, you can interact with it. Use the safeMint function to issue tokens to user addresses, which they cannot subsequently transfer. Consider integrating this minting logic with a backend API for gated access or using signature verification (EIP-712) for permissioned claims. For frontend integration, use libraries like ethers.js or wagmi to connect user wallets and call contract functions. The immutable, non-transferable nature of these tokens forms the bedrock for building complex, trust-minimized identity graphs on-chain.
key-concepts-text
SOULBOUND TOKENS
Core Concepts: Non-Transferability and Identity
Soulbound Tokens (SBTs) are non-transferable digital assets that represent credentials, affiliations, and reputation on-chain. This guide explains how to implement them as a foundational identity layer.
A Soulbound Token (SBT) is a non-transferable, non-fungible token permanently bound to a single wallet address, known as a "Soul." Unlike NFTs, which can be bought and sold, SBTs are designed to be soulbound—they cannot be transferred after minting. This property makes them ideal for representing persistent, verifiable identity attributes such as educational degrees, professional licenses, event attendance, or community membership. The concept, popularized by Vitalik Buterin's 2022 paper Decentralized Society: Finding Web3's Soul, proposes SBTs as the building blocks for a decentralized identity and reputation system.
Implementing non-transferability requires modifying standard token logic. In the widely-used ERC-721 standard, the critical function to override is transferFrom. A basic implementation involves adding a check to revert any transfer attempt. Here's a minimal Solidity example for an SBT contract:
solidityfunction transferFrom(address, address, uint256) public pure override { revert("Soulbound: token is non-transferable"); }
This simple override makes the token permanently locked to its original owner. However, a robust SBT standard like ERC-5192 (Minimal Soulbound NFT) formalizes this by introducing a locked state and a standard interface for querying it, ensuring interoperability across applications that need to verify an asset's soulbound status.
Beyond simple locking, a practical SBT identity layer involves several key considerations. First, issuance authority: contracts should restrict minting to verified issuers (e.g., universities, DAOs, employers) using access control like OpenZeppelin's Ownable or role-based permissions. Second, revocation mechanisms are often necessary; an issuer may need to revoke a credential if it becomes invalid. This can be implemented via a burn function restricted to the issuer or by maintaining an on-chain revocation registry. Third, privacy and data minimization are critical; SBTs should store only a minimal identifier or hash on-chain, with detailed metadata stored off-chain (e.g., on IPFS) and disclosed selectively, perhaps using zero-knowledge proofs.
The primary use case for SBTs is constructing a decentralized identity (DID) system. A user's "Soul" (wallet) can accumulate a collection of SBTs from various issuers, creating a rich, composable identity graph. For example, a DAO could grant governance rights based on an SBT proving membership, a DeFi protocol could offer uncollateralized lending based on reputation SBTs, and a conference could issue attendance tokens for exclusive access. This moves beyond simple wallet addresses to verifiable, context-rich identities that are owned by the user, not a centralized platform, enabling trust-minimized social coordination and new economic models.
When developing with SBTs, security is paramount. Key risks include ensuring the immutability of the non-transferable property—the transferFrom function must be unforgeable and un-upgradable if not intended. Use established libraries and audit thoroughly. Furthermore, consider the user experience implications of permanent binding; users must understand they cannot recover a token if they lose their private key. For testing and development, refer to implementations like the OpenZeppelin ERC-721 base and the EIP-5192 specification. Starting with a battle-tested foundation is essential for building a secure and functional identity layer.
STANDARD COMPARISON
ERC-721 vs. ERC-1155 for SBT Implementation
Technical and functional differences between the two primary Ethereum token standards for building a Soulbound Token (SBT) identity layer.
| Feature / Metric | ERC-721 | ERC-1155 |
|---|---|---|
Token Standard Type | Non-Fungible Token (NFT) | Multi-Token (Fungible, Non-Fungible, Semi-Fungible) |
Native Batch Operations | ||
Gas Efficiency for Bulk Minting | High cost per token | Up to 80% lower cost per token |
Native Support for SBT Traits (Non-Transferable) | ||
Required Customization for SBTs | Override or restrict | Override or restrict |
Identity Data Storage | Metadata URI per token (IPFS, Arweave) | Metadata URI per token ID (IPFS, Arweave) |
Contract Deployment Cost | ~1,200,000 gas | ~2,400,000 gas |
Ideal Use Case | Unique, high-value identity credentials | Scalable identity systems with role badges or attestations |
implementation-erc721
TUTORIAL
Implementing SBTs with ERC-721
A technical guide to building a non-transferable identity layer using the ERC-721 standard as a foundation.
Soulbound Tokens (SBTs) represent non-transferable digital credentials on the blockchain, ideal for identity, memberships, and attestations. While no universal SBT standard exists yet, the widely adopted ERC-721 standard provides a robust starting point. By overriding its transfer functions, developers can create tokens that are permanently bound to a wallet, forming the core of an on-chain identity layer. This approach leverages existing infrastructure, including wallets, marketplaces, and indexers, ensuring immediate compatibility.
The primary technical modification involves disabling token transfers. In a standard ERC-721 contract, the transferFrom and safeTransferFrom functions are the entry points for moving tokens. To create an SBT, you must override these functions to revert any transfer attempt. A common practice is to inherit from OpenZeppelin's ERC721 implementation and add a custom error like SoulboundTokenNonTransferable. This makes the token's soulbound property explicit and auditable on-chain.
Here is a minimal Solidity implementation example:
solidity// SPDX-License-Identifier: MIT import "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract SoulboundERC721 is ERC721 { error SoulboundTokenNonTransferable(); constructor() ERC721("SoulboundBadge", "SBT") {} // Override and lock transfer functions function _update( address to, uint256 tokenId, address auth ) internal virtual override returns (address) { address from = _ownerOf(tokenId); if (from != address(0) && to != address(0)) { revert SoulboundTokenNonTransferable(); } return super._update(to, tokenId, auth); } }
This code uses the internal _update hook introduced in OpenZeppelin v5.0, which consolidates transfer logic, providing a single point of enforcement.
Beyond locking transfers, consider additional features for a complete identity system. Implement a revocation mechanism controlled by an issuer address to handle credential updates or misuse. Use the tokenURI to point to off-chain metadata (like a JSON file on IPFS) containing the credential details. For complex attestations, you can store reference data or hashes directly in the contract's storage via the _setTokenMetadata pattern. Remember that gas costs for minting are similar to standard NFTs, but storage operations for on-chain data will increase costs.
Deploying this contract creates a foundational identity primitive. Practical use cases include: DAO membership passes, event proof-of-attendance protocols, educational certificates, and professional license verification. Because the token is non-transferable, it serves as a persistent, tamper-resistant record linked directly to an individual's wallet. This forms a verifiable data backbone that other smart contracts can query for permissions or reputation scoring, enabling more sophisticated on-chain social and governance systems.
implementation-erc1155
TUTORIAL
Implementing SBTs with ERC-1155
A technical guide to building a non-transferable identity layer using the ERC-1155 multi-token standard.
Soulbound Tokens (SBTs) represent non-transferable credentials on the blockchain, ideal for building persistent identity, reputation, and attestation systems. While the concept was popularized by Vitalik Buterin, there is no single official SBT standard. A practical implementation approach is to use the widely adopted ERC-1155 standard and modify it to disable transfers. This standard is efficient for batch operations and managing multiple token types, making it suitable for issuing various credentials to a single address. This guide walks through creating a basic SBT contract by extending ERC-1155.
The core mechanism for enforcing soulbinding is to override the transfer functions. In a standard ERC-1155, the _beforeTokenTransfer hook is called before any token movement. To make tokens non-transferable, you must revert all transfer attempts except for the initial mint. The key is to check if the from address is the zero address (address(0)), which indicates a minting operation. If from is any other address, the transaction should fail. Here is a simplified Solidity implementation:
solidityfunction _beforeTokenTransfer( address operator, address from, address to, uint256[] memory ids, uint256[] memory amounts, bytes memory data ) internal virtual override { super._beforeTokenTransfer(operator, from, to, ids, amounts, data); // Allow minting (from == address(0)) but block all transfers and burns. require(from == address(0), "SBT: Non-transferable token"); }
This code ensures tokens can only be assigned to a user once and cannot be sent to another wallet thereafter.
With the transfer logic locked down, you can build an identity layer. Common use cases include issuing membership badges, educational certificates, proof-of-attendance protocols (POAPs), or on-chain credit scores. Your contract would include a minting function, likely permissioned to a trusted issuer or a decentralized attestation protocol. Since ERC-1155 supports batch minting, you can efficiently issue multiple credential types to a user in a single transaction, saving gas. It's crucial to design your token IDs and URI metadata schema carefully to represent different credential classes meaningfully.
When implementing SBTs, consider the privacy and revocation trade-offs. Storing all credentials fully on-chain is transparent but may expose sensitive data. A common pattern is to store only a hash of the credential data on-chain, with the full details (like a PDF certificate) hosted off-chain via IPFS or Arweave, referenced in the token's URI. For revocation, you can implement a mechanism where the issuer can "burn" a token from a user's address, or maintain an on-chain revocation list that applications must check. Frameworks like EAS (Ethereum Attestation Service) provide more sophisticated schema-based attestation systems that can be represented as SBTs.
To test and deploy your SBT contract, use development frameworks like Hardhat or Foundry. Write comprehensive tests that verify: minting works, transfers are blocked, and batch operations function correctly. Remember that while this ERC-1155 approach is effective, the community is exploring dedicated standards like ERC-5484 (Consensys) for SBTs with built-in burn authorization controls. For now, the modified ERC-1155 provides a robust, audited, and gas-efficient foundation for building non-transferable identity primitives in your dApp.
access-control-integration
DEVELOPER TUTORIAL
Integrating SBTs for Token-Gated Access
A technical guide to implementing a Soulbound Token (SBT) identity layer for managing permissions in decentralized applications.
Soulbound Tokens (SBTs) are non-transferable, non-financialized NFTs that represent credentials, affiliations, or memberships bound to a single wallet address. Unlike traditional ERC-20 or ERC-721 tokens, SBTs cannot be sold or transferred, making them ideal for building persistent on-chain identity. This property is crucial for token-gated access, where you need to verify a user's persistent attributes—like completing a course, holding a professional certification, or belonging to a DAO—rather than their temporary asset holdings. The concept, popularized by Vitalik Buterin's "Decentralized Society" paper, provides a foundational primitive for moving beyond pure financialization in Web3.
To implement a basic SBT, you typically extend the ERC-721 standard while overriding the transfer functions to make the token soulbound. The following Solidity snippet demonstrates a minimal, non-transferable SBT contract using OpenZeppelin's libraries. The key is to override _beforeTokenTransfer to block all transfers except minting (from the zero address) and burning (to the zero address).
solidity// SPDX-License-Identifier: MIT pragma solidity ^0.8.19; import "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract SimpleSBT is ERC721 { constructor(string memory name, string memory symbol) ERC721(name, symbol) {} // Mint an SBT to a recipient (only callable by contract owner in practice) function safeMint(address to, uint256 tokenId) public { _safeMint(to, tokenId); } // Override to make token non-transferable function _beforeTokenTransfer( address from, address to, uint256 tokenId, uint256 batchSize ) internal virtual override { require(from == address(0) || to == address(0), "SBT: Non-transferable"); super._beforeTokenTransfer(from, to, tokenId, batchSize); } }
With the SBT contract deployed, you can build the gating logic into your dApp. The access control check is straightforward: your application's smart contract or frontend simply queries whether a user's wallet holds a specific SBT token ID or belongs to a collection. For example, a gated forum might check for an SBT proving completion of an onboarding tutorial. In a smart contract, this can be done with a modifier. On the frontend, using libraries like ethers.js or viem, you would call the balanceOf or ownerOf functions. More advanced systems can use SBTs as keys in a merkle tree or as verifiable credentials in a Zero-Knowledge Proof (ZKP) system for privacy-preserving access.
Several established projects demonstrate practical SBT implementations. Ethereum Attestation Service (EAS) allows for the creation of on- or off-chain attestations (a form of SBT) that can be schematized for various credentials. Gitcoin Passport aggregates Web2 and Web3 identity signals into a non-transferable NFT, which is used to weight governance votes and combat sybil attacks. When designing your system, consider data permanence—SBTs are immutable by default, so you may need a revocation mechanism, often managed by the issuing authority. Also, evaluate whether your use case requires the SBT data to be stored fully on-chain, referenced via IPFS, or kept off-chain with an on-chain proof.
use-cases
IMPLEMENTATION PATTERNS
Practical Use Cases for SBT Identity
Soulbound Tokens (SBTs) enable non-transferable, programmable identity on-chain. These are concrete applications developers are building today.
06
Real-World Asset (RWA) Tokenization
SBTs provide the identity layer for compliant ownership of tokenized physical assets. Use cases:
- Property Ownership: Link a non-transferable SBT representing legal identity to a transferable property deed NFT, ensuring KYC/AML compliance.
- Licensed Assets: Tokenize patents or intellectual property where ownership rights are tied to a credentialed entity.
- Supply Chain Provenance: Assign SBTs to verified manufacturers or auditors to create an immutable chain of custody.
This merges DeFi with traditional finance, requiring robust identity solutions.
$100B+
Projected RWA Market by 2030
security-considerations
SOULBOUND TOKEN IMPLEMENTATION
Security and Design Considerations
Designing a robust Soulbound Token (SBT) system requires careful planning around security, privacy, and user experience. This guide outlines critical considerations for developers building an identity layer on-chain.
The core security principle for SBTs is non-transferability. Unlike ERC-20 tokens, SBTs must be permanently bound to a single wallet address. The simplest technical implementation is to override the transfer and approve functions in your smart contract to always revert. For example, using Solidity and the OpenZeppelin library, you would inherit from ERC721 and include a function like function _beforeTokenTransfer(address from, address to, uint256 tokenId) internal virtual override that requires from to be the zero address (minting) or to to be the zero address (burning), preventing all other transfers. This ensures tokens are truly soulbound and cannot be lost or sold.
Beyond the transfer lock, consider the data architecture. Will token metadata be stored fully on-chain, referenced via a decentralized storage protocol like IPFS or Arweave, or managed off-chain with a centralized API? On-chain storage provides maximum immutability and decentralization but is expensive for large data. Using IPFS (e.g., ipfs://bafybeid...) is a common compromise, but you must ensure the permanence of the pinned data. For sensitive identity attributes, consider storing only a cryptographic commitment (like a hash) on-chain, with the holder controlling access to the full data via zero-knowledge proofs or selective disclosure protocols.
Privacy is a paramount concern for identity systems. A naive SBT implementation can create a public, permanent record linking all of a user's affiliations and credentials to their wallet address. To mitigate this, explore privacy-preserving patterns. Users could hold SBTs in a separate, dedicated identity wallet rather than their main asset-holding wallet. For higher security, implement SBTs using stealth address protocols or zkSNARKs, where the credential is valid and verifiable without revealing the holder's public address on-chain. Frameworks like Semaphore or the proposed ERC-7231 standard for aggregating identity under a root SBT can help manage this complexity.
Finally, plan for key management and recovery. Since SBTs are non-transferable, losing access to the private key for the bound wallet means losing the associated identity. While fully decentralized social recovery or multi-sig schemes for SBTs are complex, you can design a contract that allows a user to nominate guardians (via their own SBTs or trusted addresses) who can collectively authorize a migration to a new wallet after a time-lock. This process must be transparent and resistant to coercion. Always conduct thorough audits on these recovery mechanisms, as they create privileged roles within your system.
SOULBOUND TOKENS (SBTs)
Frequently Asked Questions (FAQ)
Common technical questions and solutions for developers implementing a Soulbound Token identity layer.
A Soulbound Token (SBT) is a non-transferable, non-fungible token that represents credentials, affiliations, or reputation. Unlike standard NFTs on ERC-721 or ERC-1155, SBTs are permanently bound to a single wallet address (a "Soul"). The key technical difference is the disabling of the transferFrom function. While early implementations used modified ERC-721 contracts, the ERC-4973 standard formalizes the specification for non-transferable tokens. SBTs are designed for persistent, verifiable identity attributes like education certificates, employment history, or DAO membership, creating a decentralized identity graph.
resource-links
GUIDES
Developer Resources and Tools
Resources and protocols for building a Soulbound Token (SBT) identity layer on Ethereum-compatible networks. These tools cover token standards, attestations, credential aggregation, and production-grade smart contract patterns.
conclusion
IMPLEMENTATION SUMMARY
Conclusion and Next Steps
You have successfully set up a foundational Soulbound Token (SBT) identity layer. This guide covered the core concepts and a basic implementation.
Your deployed SoulboundIdentity contract now provides a non-transferable, on-chain credential system. This is the technical bedrock for building reputation, attestations, and verifiable credentials. The key features you implemented include: minting SBTs to a specific wallet, enforcing non-transferability through the _beforeTokenTransfer hook, and providing a public view function to check an address's SBT holdings. This simple contract can be extended with metadata standards like ERC-721 Metadata or ERC-5192 for minimal soulbound NFTs.
The next step is to integrate this identity layer with real-world applications. Consider connecting your SBT contract to an attestation protocol like EAS (Ethereum Attestation Service) or Verax. These systems allow trusted entities to issue signed, on- or off-chain attestations (e.g., "completed course," "KYC verified") that are linked to a user's SBT identity. You could also build a gated community or DAO voting system where holding a specific SBT grants access, using a modifier like onlySoulholder in your governance contracts.
For production, significant upgrades are required. You must implement a robust revocation mechanism, which is critical for managing credentials. Explore using expiry timestamps, revoker roles, or integrating with a registry contract. Privacy is another major concern; storing all data on-chain is often unsuitable. Look into zero-knowledge proofs (ZKPs) with systems like Sismo or Semaphore to prove credential ownership without revealing the underlying SBT identifier. Always conduct thorough security audits on any contract handling permanent identity assets.