Self Protocol: An Overview

Self Protocol implements a zero-knowledge identity system that enables individuals to produce cryptographically verifiable attestations derived from government-issued identity documents. The design focuses on providing a "proof of human" for web platforms and AI agents while avoiding disclosure of underlying Personally Identifiable Information (PII) or the originating document.

Verification is performed by reading the Near Field Communication (NFC) chip present in biometric passports and compatible government identity cards issued by more than 180 countries.

Overview

Self Protocol describes itself as a private, user-governed "zkKYC" (Zero-Knowledge Know Your Customer) approach. Its aim is to remedy privacy and security weaknesses found in conventional identity verification, which frequently require users to submit full identity documents to centralized services that are common targets for data breaches. In contrast, the protocol emphasizes privacy by design, user control, and cryptographic protections.

The protocol's primary capability is enabling a user to prove a discrete assertion—for example, being over 18, holding a specific nationality, or being a unique person—to a relying party. The verifier can check this claim cryptographically without ever receiving the passport or ID card used to derive the proof.

All sensitive data and any issued verifiable credentials remain on the user's local device, such as a smartphone. The individual retains exclusive custody and control of this information and only discloses it when they explicitly consent to a particular interaction.

This method contrasts with traditional KYC in several specific ways: Self Protocol shares only a particular proven attribute (for instance, "age > 18"), whereas traditional KYC typically requires full identity documents and PII; data is stored locally on the user's device rather than in centralized third-party databases; the process can be instantaneous through an automated NFC scan without document uploads, compared with potential manual review of uploaded files; privacy risk is reduced because there is no central repository of PII to breach, while traditional systems carry higher risk due to centralized storage; and the authoritative source in Self Protocol is government-issued biometric IDs, as opposed to uploaded documents that may sometimes be augmented with other data.

Technology

The protocol's technical approach combines the hardware security features built into government identity documents with advanced cryptographic techniques to deliver private, verifiable identity assertions.

Core Architecture

The protocol's architecture is described as being organized around three main components:

Verification Process

From the end-user perspective, creating a verifiable credential is intended to be completed through a sequence of straightforward steps:

• NFC Scanning: The principal method of verification requires reading the secure NFC chip embedded in a biometric passport or an NFC-compliant government ID card using a smartphone, leveraging the high-assurance infrastructure already present in official identity documents.
• Zero-Knowledge Proofs (ZKPs): The system employs Zero-Knowledge Succinct Non-Interactive Arguments of Knowledge (zk-SNARKs) to produce cryptographic proofs that validate the document's authenticity and specific attributes without exposing any additional information.
• On-Device Storage: Any PII obtained from the document and the generated verifiable credentials are created and retained solely on the user's local device. The architecture deliberately avoids cloud or centralized storage for sensitive user data, preventing even the protocol's developers from accessing it.
• Download App: A user installs the Self application on a supported iOS or Android device.
• Scan ID: The user follows the application prompts to read the NFC chip of their biometric identity document. For Indian Aadhaar cards, which do not use NFC for this purpose, verification is performed using a secure QR code produced by the official mAadhaar application.
• Receive Credential: The verification is processed locally on the device, producing a secure, reusable credential that remains stored on the device.
• Electronic Passports: Refers to biometric passports that conform to International Civil Aviation Organization (ICAO) 9303 specifications and are recognizable by the biometric emblem on the cover.
• Biometric ID Cards: National and regional identity cards that implement ICAO standards for electronic identity documents.
• Aadhaar Cards (India): Verified through a secure QR code generated by the government's mAadhaar app.
• First and last name

Features and Use Cases

Self Protocol is applied across Web3, artificial intelligence, and general web services to establish "proof of human" status and to enable privacy-preserving compliance workflows.

Key Features

These capabilities form the basis for developing systems that are more trustworthy and secure online.

Use Cases

The protocol has been deployed in multiple application areas:

• Proof of Human: Provides a cryptographic demonstration that an online identity or action corresponds to a real, unique human, serving as a primary defense against Sybil attacks where a single actor creates many fake identities to gain disproportionate influence or resources.
• Age Verification: Enables users to confirm they meet age thresholds (for example, 18+ or 21+) for access to services or content without disclosing their exact date of birth.
• Geographic Verification: Lets users assert their country of residence or prove they are not a resident of a restricted jurisdiction.
• Compliance Checks: Supports regulatory compliance by allowing privacy-preserving proofs that a user is not present on sanction lists such as the U.S. Office of Foreign Assets Control (OFAC) list.
• Web3 and DeFi: Supplies an anti-fraud and compliance layer for decentralized applications, ensuring distributions like airdrops reach distinct human users and filtering out bots and farm accounts; it also enables token-gated community access and safer governance participation.
• Social Media: Can be used to implement "humanity checks" so platforms can validate that profiles belong to real people and reduce the influence of bot networks.
• Quadratic Funding: Helps protect grant and public goods funding systems against Sybil attacks in which multiple fake accounts distort allocation outcomes.
• Wallet Recovery: Functions as a secure account recovery option by allowing a user to re-establish access to a digital wallet through identity verification using their government ID.

Self AgentID

Self AgentID is a product within the protocol intended to provide AI agents with a cryptographically anchored, human-backed identity. As agents gain autonomy, this product allows an agent to act on a user's behalf with verifiable authorization.

For example, an AI agent might perform transactions or access services for its owner, with the agent's identity and permissions cryptographically linked to the human user while preserving the user's private data through the use of zero-knowledge proofs during agent interactions.

Ecosystem and Adoption

Self Protocol has reported notable adoption figures and formed partnerships across various industries.

Metrics

As of early 2026, the protocol has stated it has:

Partnerships and Integrations

Self Protocol has been integrated with a diverse set of platforms and organizations.

• Delivered over 120 million verified human proofs to its partners.
• Helped prevent over $20 million in fraud and chargeback exposure for partners.
• Achieved geographic coverage supporting identity documents from over 180 countries.
• Customer Spotlight: Google is highlighted as a customer using Self's proof-of-human technology within its products.
• Cloud Partner: The protocol utilizes Google Cloud.
• DeFi & Web3: Key partners in this space include Aave, Uniswap, Celo Names, Espresso, Karma, Velodrome, Morpho, and Merkl.
• Agentic AI Platforms: Integrations include SelfClaw, AgentHaus, and Trust Agent.
• Other Platforms: Talent Protocol, Lemonade, and Openbands are also listed as partners.