Consider what your passport actually is. It is a document issued by a government asserting that you are who you say you are — that the name, date of birth, and photograph printed inside correspond to a real person with a documented legal history in that country. The passport has value precisely because other parties trust the issuing government. A British passport gets you through customs quickly at most international airports. A Syrian passport, issued by the same type of institution performing the same verification function, does not. The credential's utility is entirely borrowed from the credibility of the issuer.

The same logic applies to your credit score, your professional licences, your university degree, your employment history. These are all claims that you meet some standard, verified and vouched for by an institution that others have decided to trust. Strip away the intermediary and in most cases the underlying fact — you completed a degree, you repaid your debts, you hold a medical licence — does not disappear. Only the mechanism for conveying that fact to strangers does.

Blockchain-based identity infrastructure proposes to replace the intermediary with cryptographic proof. The fact of your credential gets encoded in a way that anyone can verify without needing to trust the institution that issued it — or, in the more radical versions, without needing an institution at all. That is a substantial claim. The question worth examining is how far the infrastructure has actually developed, where the genuine obstacles lie, and which specific trust problems are close to being solved.

The Architecture of Identity

The technical framework that has emerged for on-chain identity is built around three related concepts: Decentralised Identifiers (DIDs), Verifiable Credentials (VCs), and Soulbound Tokens (SBTs). Each addresses a different layer of the problem.

A Decentralised Identifier is a globally unique identifier — similar in form to a URL — that is controlled by the individual rather than by any registering authority. A traditional identifier like an email address or a national insurance number is assigned by a company or a government and can be revoked by that entity. A DID is anchored to a blockchain and controlled by a cryptographic key pair held by the individual. The World Wide Web Consortium published the DID specification as a formal standard in 2022, which gives it a degree of institutional legitimacy unusual in this space.

Verifiable Credentials are digital equivalents of physical documents — a degree, a driving licence, a professional certification — signed by an issuing authority in a way that allows any recipient to verify the signature without contacting the issuer. The W3C has also standardised this format. A university issues a VC attesting that you completed a computer science degree; you store it in a digital wallet; a prospective employer verifies the cryptographic signature without ever calling the university's registrar.

Soulbound Tokens, a concept articulated by Vitalik Buterin in a 2022 paper co-authored with economist E. Glen Weyl and lawyer Puja Ohlhaver, are non-transferable NFTs that attach to a wallet address and represent credentials, affiliations, or achievements. Unlike a VC held in a private wallet, an SBT is publicly verifiable on-chain. The non-transferability is the point: an SBT representing your law degree cannot be sold to someone else, making the token a genuine signal of your individual history rather than a tradeable asset.

Where It Actually Works Today

The most successful implementations of blockchain identity are not, at the moment, replacing government-issued credentials. They are solving narrower problems where existing intermediaries are conspicuously inadequate.

Credit scoring in emerging markets is the clearest example. Approximately 1.4 billion adults globally are unbanked, and a significant proportion of those who do have bank accounts have no credit history that traditional scoring agencies can assess. FICO's model requires years of borrowing and repayment data held by institutions that much of the world's population has never interacted with. Projects like Spectral Finance and ARCx have built on-chain credit scoring systems that assess creditworthiness based on DeFi transaction history — whether a borrower has consistently repaid loans on Aave or Compound, for example. The signal is different from a FICO score, but it is also harder to fabricate: blockchain transaction histories are immutable and publicly auditable.

The specific trust problem here: Traditional credit bureaus cannot score people who have no relationship with traditional financial institutions. On-chain transaction history creates an auditable financial track record that is independent of any bank's willingness to extend credit in the first place.

Professional credential verification is another area where the inefficiency of current systems makes the blockchain alternative genuinely attractive. Healthcare systems in the United States spend an estimated $2 billion annually on the administrative process of verifying physician credentials — confirming that a doctor's medical licence is current, that their malpractice history is clean, that their board certifications are valid. Each hospital or insurance company performs these checks independently, often manually, creating a system where the same information is verified hundreds of times by different parties who do not share data with each other.

ProCredEx, a subsidiary of symplr, has built a network for credentialing data sharing built on distributed ledger technology. The state of Utah issued the first blockchain-anchored birth certificate in a pilot programme in 2023. Several European universities have begun issuing degrees as Verifiable Credentials. None of these are radical experiments — they are pragmatic responses to systems that are visibly broken.

The Hard Problems

Acknowledging where blockchain identity works today requires being equally clear about where it does not, and why the obstacles are not primarily technical.

The bootstrapping problem is the most fundamental. A verifiable credential is only as useful as the trust others place in its issuer. If Harvard University issues degrees as Verifiable Credentials signed with their cryptographic key, those credentials are valuable because Harvard is trusted. If an unrecognised institution issues identical-format credentials, they are not. The technology does not create trust; it creates a more efficient mechanism for transmitting trust that already exists. For entirely new credentialing systems — an on-chain professional licence issued by a DAO rather than a government body, for example — the trust has to be built from scratch, and that is a social and political problem, not a technical one.

The key management problem is underappreciated outside technical circles. If your credentials are anchored to a cryptographic key pair and you lose the private key, you lose your credentials. This is not an abstract risk: a meaningful percentage of early Bitcoin holders lost access to significant holdings because of lost keys, forgotten passwords, or failed hardware. Extending this model to identity documents — where the stakes include not just financial assets but the ability to prove you exist — requires recovery mechanisms that do not reintroduce the centralisation being eliminated. Current solutions involve social recovery (trusted individuals who can collectively restore access) or institutional custodians. Neither is fully satisfying.

Regulatory acceptance is the third obstacle and the one that will determine timelines. A blockchain-anchored credential is legally meaningful only in jurisdictions that recognise it as such. The EU's eIDAS 2.0 regulation, which came into force in 2024, explicitly requires member states to issue digital identity wallets to all citizens who want them, and creates a framework under which these wallets can carry legally recognised credentials. That is significant progress. The United States has no equivalent federal framework, leaving the landscape fragmented across states and use cases. Most of the rest of the world is watching rather than legislating.

The Privacy Paradox

There is a tension at the centre of on-chain identity that advocates sometimes gloss over. Blockchain's value proposition in this context — immutability, public verifiability, auditability — is also its primary liability when applied to personal data.

An immutable public record of your credentials sounds appealing until you consider what else might end up on that record. The same blockchain that records your medical licence also records your transaction history. A system that credentialing authorities build on public chains risks creating surveillance infrastructure of a comprehensiveness that no government database has yet achieved, simply because the data is permissionlessly readable by anyone.

The technical response to this is zero-knowledge proofs — cryptographic mechanisms that allow you to prove a fact about yourself (you are over 18, you hold a valid driving licence, your credit score exceeds a threshold) without revealing the underlying data. zkSync, StarkWare, and several other projects have made significant advances in making zero-knowledge proofs computationally tractable. The Ethereum Foundation has been explicit that ZK technology is a core component of the long-term Ethereum roadmap.

In practice, zero-knowledge identity verification is real. Age verification using ZK proofs has been deployed in limited contexts. The gap between proof-of-concept and at-scale deployment of ZK-based identity systems is still measured in years, not months. The cryptography works; the infrastructure to make it usable for ordinary people does not yet exist at the required scale.

The Geopolitical Dimension

Nation-states have an obvious interest in controlling the identity infrastructure of their citizens, and several governments are building digital identity systems that are blockchain-adjacent without being permissionless. China's national digital identity system, integrated with its social credit apparatus, is the most cited example — a reminder that the same technical architecture can be deployed in diametrically opposed ways depending on who controls the keys.

The EU's approach with eIDAS 2.0 is more interesting precisely because it attempts to balance state-issued credentials with individual data portability and privacy rights. Citizens will be able to carry credentials across member states without each state building bilateral recognition agreements. The architecture is not fully decentralised — the state remains the issuing authority — but it meaningfully reduces the friction of credential verification across borders and establishes a legal framework that private-sector credential issuers can build on.

The United States remains, characteristically, fragmented. There is no federal digital identity framework. Several states have experimented with mobile driving licences (Georgia, Utah, and Arizona have issued them). The REAL ID Act established minimum standards for state-issued IDs but did not create a federal digital identity infrastructure. This gap is increasingly visible in contexts like age verification for online platforms, where the absence of a trusted digital identity mechanism has produced a range of ugly workarounds.

What Changes First

Predicting which specific applications tip from experiment to infrastructure is genuinely difficult, but the candidates are fairly clear based on where the pain is most acute and where regulatory frameworks are most advanced.

Professional credential verification in heavily regulated industries — healthcare, law, financial services — will likely move to blockchain-anchored systems within the next five years simply because the current system is expensive and inefficient enough that large institutions have financial incentives to adopt alternatives. The intermediaries here are administrative processes, not powerful incumbents with political influence.

Cross-border identity for financial services is the other near-term candidate. Know Your Customer and Anti-Money Laundering compliance requires financial institutions to verify customer identity, and that verification is currently repeated by every institution that onboards a new customer. A reusable, blockchain-anchored KYC credential — verified once, accepted everywhere — would save the industry billions in compliance costs annually. Several banks and fintechs are piloting exactly this. The regulatory question is whether financial regulators will accept a shared credential rather than requiring each institution to perform its own verification. Progress is slow but visible.

Government-issued credentials moving fully on-chain — passports, birth certificates, national identity documents — will take longer, measured in decades rather than years in most jurisdictions. The infrastructure exists in prototype form. The political will, the public trust, and the regulatory frameworks required to move at national scale do not.

The underlying direction is clear regardless of timeline. Every institution that currently vouches for your credentials exists to solve a trust problem that cryptographic infrastructure is progressively better equipped to solve directly. The pace will be determined by bureaucratic inertia and political incentives, not by technical readiness. That is not new. The same dynamic governed the adoption of electronic payments, internet banking, and every prior generation of financial infrastructure. The incumbents slow the transition; they rarely stop it.