A present proof protocol is a core component of decentralized identity and verifiable credential ecosystems, such as those defined by the W3C Verifiable Credentials Data Model. It governs the interaction flow where a verifier (e.g., a website requiring age verification) requests specific proofs, and a holder (the user) selectively discloses credentials from their digital wallet. The protocol ensures the entire exchange—from request formulation to proof submission and verification—is secure, privacy-preserving, and interoperable across different systems. It is the digital equivalent of presenting a physical driver's license, but with cryptographic guarantees and minimal disclosure.
LABS
Glossary
Present Proof Protocol
A Present Proof Protocol is a defined sequence of messages, such as in DIDComm, that governs the interaction between a holder and a verifier for credential presentation.
Chainscore © 2026
definition
DECENTRALIZED IDENTITY
What is a Present Proof Protocol?
A present proof protocol is a standardized method for one party (the verifier) to request and verify cryptographically signed claims from another party (the holder), enabling trustless verification of attributes, credentials, or statements.
The protocol's mechanics rely on advanced cryptographic techniques to protect privacy and ensure integrity. A key feature is selective disclosure, allowing the holder to prove a specific claim (e.g., "I am over 21") without revealing the entire credential or unnecessary personal data. This is often achieved using zero-knowledge proofs (ZKPs) or BBS+ signatures. The verifier's request is structured as a presentation definition, specifying the required claims and the trust frameworks (like which issuers are accepted). The holder's response is a verifiable presentation, a packaged set of signed credentials that satisfies the request.
Implementing a present proof protocol eliminates the need for verifiers to store sensitive user data, shifting the paradigm from data collection to cryptographic verification. Common implementations include the W3C-CCG's Presentation Exchange specification and protocols within Sovrin, Hyperledger Aries, and DIDComm. For example, a job portal using this protocol can request proof of a university degree. The applicant's wallet would generate a verifiable presentation containing a cryptographically signed credential from the university, which the portal can instantly verify without contacting the issuer directly, reducing fraud and streamlining processes.
how-it-works
VERIFIABLE CREDENTIALS
How Does a Present Proof Protocol Work?
A present proof protocol is a cryptographic process that enables one party (the holder) to selectively disclose verifiable claims to another party (the verifier) without revealing unnecessary information or requiring direct contact with the issuer.
The protocol begins when a verifier sends a presentation request to a holder. This request specifies the exact claims needed (e.g., "prove you are over 21") and may define the required credential format, such as W3C Verifiable Credentials, and the cryptographic proof type, like BBS+ signatures for zero-knowledge proofs. The holder's wallet evaluates this request against the verifiable credentials they possess, which were previously issued by a trusted authority.
If the holder consents and has the required credentials, they construct a verifiable presentation. This involves applying a cryptographic proof to the credential data to create a new, tamper-evident package. Crucially, advanced protocols allow for selective disclosure and predicate proofs, enabling the holder to prove a statement about a credential (e.g., "age > 21") without revealing the actual data (their exact birth date) or other unrelated attributes within the credential.
The verifier receives this presentation and validates it through a series of checks. This includes verifying the digital signature on the issuer's credential to ensure it hasn't been tampered with and is from a trusted source, checking the cryptographic proof to confirm the holder correctly derived the presented claims, and ensuring any revocation status (e.g., via a revocation registry) is still valid. The entire exchange occurs peer-to-peer, often without the issuer's direct involvement after the initial credential issuance.
This architecture enables key privacy-preserving features. By minimizing disclosed data, it reduces correlation risks and protects holder identity. It also shifts the trust model from centralized databases to cryptographic assurances, enabling self-sovereign identity (SSI). Common implementations of these protocols include Hyperledger Aries protocols, the W3C Verifiable Presentation data model, and the AnonCreds credential system, which form the backbone of decentralized identity networks.
key-features
CORE MECHANICS
Key Features of Present Proof Protocols
Present Proof protocols are the mechanisms that enable a Verifier to request and receive cryptographically verifiable claims from a Holder. These features define their security, privacy, and interoperability.
01
Selective Disclosure
A privacy-preserving technique allowing a Holder to reveal only specific attributes from a credential, not the entire document. For example, proving you are over 21 by revealing only a birthdate > 2003-01-01 predicate, without disclosing the exact date or other personal data. This minimizes data exposure and is a cornerstone of data minimization principles.
02
Zero-Knowledge Proofs (ZKPs)
Cryptographic methods enabling a Holder to prove a statement is true without revealing the underlying data. Common types include zk-SNARKs and zk-STARKs. For instance, proving you have a valid driver's license from a specific jurisdiction without showing the license number or your address. This provides the highest level of privacy for credential presentation.
03
Presentation Request & Submission
The structured interaction flow between Verifier and Holder.
- Request: The Verifier sends a Presentation Request specifying the required credentials, predicates (e.g.,
age >= 18), and optional constraints. - Submission: The Holder uses a Wallet to gather the required credentials, apply any proofs (like ZKPs), and send back a Verifiable Presentation. This creates a clear, auditable protocol for proof exchange.
04
Non-Correlation & Unlinkability
Features designed to prevent a Verifier from linking multiple presentations back to the same Holder or correlating them across different services. Techniques include using one-time identifiers, randomized proofs, and blinding signatures. This protects user anonymity and prevents the creation of a cross-service activity profile.
05
Proof Formats & Interoperability
Standardized data structures for proofs ensure systems can understand each other. Key formats include:
- JSON Web Tokens (JWTs) with embedded proofs.
- JSON-LD Linked Data Proofs for semantic web compatibility.
- AnonCreds presentations, common in Hyperledger Indy/Aries ecosystems. Adherence to W3C Verifiable Credentials Data Model is the primary standard for cross-platform interoperability.
06
Holder Binding & Authentication
The mechanism that cryptographically binds the presentation to the specific Holder who owns the credentials, preventing presentation by anyone else. This is typically achieved by requiring the Holder to sign the Verifiable Presentation with a private key they control (e.g., a DID key). It authenticates the presenter as the legitimate subject of the claims.
visual-explainer
PRESENT PROOF PROTOCOL
Visualizing the Protocol Flow
A visual guide to the sequence of messages and cryptographic operations that enable the secure, privacy-preserving exchange of verifiable credentials.
The Present Proof protocol is a defined interaction sequence, often visualized as a state machine or flow diagram, that governs how a verifier requests and a holder presents one or more verifiable credentials. This protocol is a core component of decentralized identity frameworks like W3C Verifiable Credentials and is implemented in standards such as Aries RFC 0454. The flow ensures that all parties—the issuer, holder, and verifier—can interoperate using a shared understanding of message types, data formats, and required proofs, such as zero-knowledge proofs or simple attribute disclosure.
A typical protocol flow begins with a proof request from the verifier. This request is not a simple query but a structured message specifying the precise claims required (e.g., "age over 21"), the accepted credential schemas, and any constraints on the issuing DID. The holder's wallet processes this request, matches it against the credentials in its secure storage, and prepares a proof presentation. This preparation may involve creating derived proofs to reveal only the necessary attributes, thereby enforcing data minimization, a key privacy principle.
The final stage is the exchange and verification. The holder sends the proof presentation message back to the verifier. The verifier then performs cryptographic checks: verifying the digital signatures from the issuer(s) on the original credentials, checking that any zero-knowledge proofs are valid, and ensuring the presented data satisfies the original request. Successful verification concludes the protocol without the verifier learning any extra information about the holder's identity or other credentials, completing a trust interaction based on cryptographic evidence rather than centralized authority.
examples
PRESENT PROOF PROTOCOL
Examples & Implementations
The Present Proof protocol is implemented across various frameworks and ecosystems to enable verifiable, privacy-preserving credential exchanges. These examples showcase its practical applications.
VERIFIABLE CREDENTIALS ECOSYSTEM
Presentation Protocol vs. Related Concepts
A technical comparison of the Presentation Protocol with adjacent cryptographic and data exchange standards.
| Feature / Attribute | Presentation Protocol | Digital Signature | OAuth 2.0 / OIDC |
|---|---|---|---|
Primary Purpose | Selective disclosure of verifiable claims | Data integrity and authentication of a signer | Delegated access to protected resources |
Cryptographic Foundation | Zero-Knowledge Proofs (e.g., BBS+) | Digital Signatures (e.g., ECDSA, EdDSA) | Bearer Tokens (JWT) & TLS |
Data Minimization | |||
Holder in the Loop | |||
Verifier Learns Raw Data | |||
Standardization Body | W3C (Verifiable Credentials) | IETF, NIST | IETF |
Typical Latency | 300-800 ms (ZK proof gen) | < 100 ms | < 50 ms |
Prevents Correlation |
security-considerations
PRESENT PROOF PROTOCOL
Security & Privacy Considerations
The Present Proof protocol enables verifiable, selective disclosure of credentials, but its implementation must address core security and privacy challenges to prevent data leakage and fraud.
01
Selective Disclosure
A core privacy feature that allows a holder to reveal only specific attributes from a credential, rather than the entire document. This minimizes data exposure.
- Example: Proving you are over 21 by revealing only a
birthdate > 2003-01-01predicate, without disclosing the exact date or name. - Relies on zero-knowledge proofs (ZKPs) or BBS+ signatures to cryptographically guarantee the truth of the statement without revealing the underlying data.
02
Replay Attacks & Session Binding
A security risk where a valid proof presented to one verifier is maliciously re-submitted to another. Mitigation requires binding the proof to a specific session or verifier.
- Nonce Challenge: The verifier provides a unique, random nonce that must be included in the proof signature, making each proof single-use.
- Audit Trail: Without proper binding, it becomes impossible to distinguish between legitimate presentations and fraudulent replays, compromising system integrity.
03
Credential Status & Revocation
Mechanisms to invalidate credentials before their expiration date are critical for security. The presentation protocol must check status in a privacy-preserving way.
-
Status List 2021: A privacy-preserving method where a verifier checks if a credential's index is on a bitstring status list without learning other indices.
-
Accumulator-based Revocation: Uses cryptographic accumulators (e.g., RSA accumulators) to allow holders to prove non-revocation without revealing which specific credential they hold.
04
Holder Binding & Authentication
Ensuring the entity presenting the proof is the legitimate holder of the credential, not someone who stole the presentation data. This prevents credential theft and impersonation.
- Holder Binding: The credential is cryptographically bound to a holder's DID or public key during issuance.
- Proof of Possession: During presentation, the holder must sign the proof with the private key corresponding to the bound public key, proving control.
05
Verifier Trust & Policy Enforcement
The verifier must establish trust in the issuer and correctly evaluate the proof against its access policy. Misconfiguration leads to security failures.
- Trust Registry: Verifiers consult a registry of trusted issuers and credential schemas before accepting a proof.
- Policy Language: Verifiers use a precise policy (e.g., JSON-LD frame, W3C Presentation Definition) to specify exactly which credentials and attributes are required, preventing acceptance of malformed or insufficient data.
06
Metadata Leakage & Correlation
Even with selective disclosure, auxiliary data can leak information, allowing verifiers to correlate holders across sessions or build profiles.
- Presentation Format: The choice of JSON-LD Linked Data Proofs vs. AnonCreds impacts what metadata (e.g., issuer DID, schema ID) is inherently visible.
- Timing & Network Analysis: The time of presentation or the IP address used can be correlatable data. Decentralized identifiers (DIDs) and peer-to-peer exchanges can help mitigate this.
PRESENT PROOF PROTOCOL
Common Misconceptions
The W3C Verifiable Credentials Present Proof protocol is often misunderstood. This section clarifies its core mechanisms, limitations, and relationship to other decentralized identity components.
No, a Verifiable Presentation is a distinct data structure from a Verifiable Credential. A Verifiable Credential is the original, signed attestation issued by an issuer to a holder. A Verifiable Presentation is a package created by the holder, which can contain one or more Verifiable Credentials, along with optional proofs and a presentation-specific signature, to be shared with a verifier. The presentation allows selective disclosure without revealing the raw credential or other unrelated claims.
PRESENT PROOF PROTOCOL
Technical Deep Dive
The Present Proof protocol is a core component of verifiable credentials (VC) and decentralized identity (DID) systems, enabling a holder to selectively disclose cryptographically verifiable claims to a verifier. This section details its mechanisms, components, and practical applications.
The Present Proof protocol is a standardized interaction that allows a credential holder to generate and present a verifiable presentation to a verifier to satisfy a specific proof request. It works through a multi-step message flow where the verifier sends a presentation request (or proof request) specifying the required claims and constraints. The holder's wallet retrieves the relevant verifiable credentials from their storage, applies any required cryptographic proofs (like zero-knowledge proofs for selective disclosure), and compiles them into a verifiable presentation. This presentation is then sent back to the verifier, who cryptographically verifies the signatures, the credential status, and that the presentation meets the request's criteria, all without needing to contact the original issuer.
PRESENT PROOF PROTOCOL
Frequently Asked Questions
The Present Proof protocol is a core component of decentralized identity (DID) and verifiable credentials (VCs) that enables a holder to selectively disclose cryptographically verifiable claims to a verifier. This section answers common questions about its purpose, mechanics, and implementation.
The Present Proof protocol is a standardized interaction, defined in specifications like W3C Verifiable Credentials and DIF's Presentation Exchange, that allows a holder of verifiable credentials to generate and present a verifiable presentation to a verifier. It works by the verifier sending a presentation request (or proof request) specifying the required claims and constraints, to which the holder responds by constructing a presentation from their credentials, potentially applying zero-knowledge proofs or selective disclosure to reveal only the necessary information. The verifier then cryptographically validates the presentation's signatures and the issuer's status to establish trust without contacting the issuer directly.
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall