hackquest logo

NOAH-KYC

NOAH: Preventing redundant KYC using ZK proofs.

视频

描述

NOAH: Privacy-Preserving KYC for DeFi

NOAH SDK : https://www.npmjs.com/package/noah-protocol-sdk?activeTab=readme

Contracts

Credential Contraact: https://sepolia.mantlescan.xyz/address/0x5d311f246ef87d24b045d961aa6da62a758514f7

Protocol Access Control Contract : https://sepolia.mantlescan.xyz/address/0xf599f186ac6fd2a9becd9edee91fd58d3dc3db0a

ZKverifier Contract: https://sepolia.mantlescan.xyz/address/0x96f43E12280676866bBe13E0120Bb5892fCbfE0b

One pager pitch: https://www.popai.pro/ppt-share?shareKey=f567bd22a43fcf7da522cb110e0ff0e29096a9a3ce32ce2e59718018078a80e8&utm_source=presentationsharepage

NOAH (Network for On-chain Authenticated Handshakes) is a zero-knowledge proof-based Know Your Customer (KYC) system that enables DeFi protocols to verify user eligibility without exposing personal information. Users can prove they meet compliance requirements (age, jurisdiction, accreditation status) while maintaining complete privacy.

Overview

This system enables selective disclosure of KYC credentials using zero-knowledge proofs. Users can prove they meet specific requirements (e.g., "I am over 21 and from an allowed jurisdiction") without revealing their actual age, location, or other sensitive data.

Key Features

  • Privacy-Preserving: Personal data never leaves the user's device

  • Selective Disclosure: Users only prove what's required

  • On-Chain Verification: Fast, gas-efficient proof verification

  • Revocable Credentials: Issuers can revoke credentials when needed

  • Multi-Protocol Support: Each DeFi protocol sets its own requirements

    Use Cases

    Primary Use Case

    NOAH enables DeFi protocols to verify user eligibility for compliance (KYC/AML) without exposing personal data. Users prove they meet requirements (age, jurisdiction, accreditation) while keeping their actual data private.

    Specific Use Cases

    1. DeFi Protocol Compliance

    Problem: Protocols need to verify user eligibility (age, location, accreditation) but want to protect user privacy.

    Solution: Users generate ZK proofs showing they meet requirements without revealing exact values.

    Example: A lending protocol requires users to be 18+ and from allowed jurisdictions. Users prove eligibility without sharing their exact age or location.

    2. Age-Restricted Services

    Use Case: Services requiring minimum age (e.g., 18+, 21+).

    Example: A DeFi protocol restricts access to users 21+ in certain jurisdictions. Users prove they meet both without revealing exact age or location.

    3. Jurisdiction-Based Access Control

    Use Case: Protocols that must restrict access by jurisdiction (e.g., US-only, EU-compliant).

    Example: A protocol allows only users from specific countries. Users prove membership in the allowed set without revealing their exact jurisdiction.

    4. Accredited Investor Verification

    Use Case: Protocols requiring accredited investor status for certain products.

    Example: An investment platform requires accredited status. Users prove they are accredited without revealing other personal details.

    5. Multi-Protocol Credential Reuse

    Use Case: Users can reuse the same credential across multiple protocols.

    Benefit: One KYC credential can be used across multiple DeFi protocols, each with different requirements.

    6. Privacy-Preserving Compliance

    Use Case: Organizations that need to demonstrate compliance without exposing user data.

    Benefit: Maintains regulatory compliance while protecting user privacy.

    Target Users

    1. End Users (DeFi Participants)

    • Want to access DeFi protocols while maintaining privacy

    • Need to prove eligibility without exposing personal information

    • Want to reuse credentials across multiple protocols

    2. DeFi Protocols

    • Need to verify user eligibility for compliance

    • Want to protect user privacy

    • Need flexible, customizable requirements

    • Want on-chain verification for transparency

    3. KYC Issuers

    • Organizations that issue and verify credentials

    • Need to manage credential lifecycle (issue, revoke)

    • Want to maintain trust and compliance

      Real-World Scenarios

      Scenario 1: Decentralized Exchange (DEX)

      Requirement: Users must be 18+ and from allowed jurisdictions.

      Flow: User generates a ZK proof showing they meet requirements → DEX verifies on-chain → Access granted.

      Scenario 2: Lending Protocol

      Requirement: Users must be accredited investors for certain products.

      Flow: User proves accredited status → Protocol verifies → Access to premium products.

      Scenario 3: Cross-Border DeFi Access

      Requirement: Protocol allows users from specific countries.

      Flow: User proves jurisdiction membership → Protocol verifies → Access granted without revealing exact location.


      Benefits

      1. Privacy: Personal data never leaves the user's device

      2. Compliance: Protocols can verify eligibility on-chain

      3. Flexibility: Each protocol sets its own requirements

      4. Efficiency: On-chain verification is fast and gas-efficient

      5. Security: Credentials are revocable and tamper-proof

      6. Reusability: One credential works across multiple protocols


        Value Proposition

        NOAH bridges privacy and compliance in DeFi: users maintain privacy while protocols meet regulatory requirements. It enables selective disclosure users prove what's needed, nothing more.

        This is especially valuable in DeFi, where privacy and compliance are both important.

本次黑客松进展

NOAH HACKATHON PROGRESS 1. Zero-knowledge (ZK) implementation Groth16 zk-SNARK circuit using gnark with 5 constraints (age, jurisdiction, hash, accreditation, validity) Private inputs: actual age, jurisdiction, accredited status, credential hash Public inputs: requirements (minAge, jurisdictions, requireAccredited) and credential hash for verification Proof generation tools: CLI tools for proof generation and Solidity verifier generation 60-bit hash truncation for cross-language compatibility (JavaScript/Go/Solidity) On-chain verification: auto-generated ZKVerifier contract using Ethereum pairing precompile 2. Backend implementation Microservices architecture: API Gateway + 4 services (Issuer, User, Protocol, Proof) 20+ REST API endpoints for credential management, proof generation, and access control Proof generation service: integrates Go circuit, handles BigInt precision, formats proofs for on-chain use Database integration: PostgreSQL for credentials, proofs, and events Additional features: JWT auth, rate limiting, event listening, Redis caching, health checks 3. Smart contracts CredentialRegistry: on-chain credential registry with issuer management and revocation ProtocolAccessControl: protocol requirements management and ZK proof verification for access control ZKVerifier: auto-generated Groth16 verifier contract Testing: 48 Foundry tests covering edge cases and access control Deployment: deployed on Mantle Sepolia testnet with deployment scripts 4. Frontend implementation Main frontend: React app with Material-UI, React Query, and React Router Three dashboards: User (proof generation/verification), Issuer (credential management), Protocol (requirement setting) Services: API client, contract client, wallet service for Web3 integration SDK examples: React and Next.js examples demonstrating SDK integration patterns SDK development and documentation — summary 1. SDK development and documentation TypeScript SDK with modular architecture 5 core clients: ProtocolClient, UserClient, IssuerClient, APIClient, ContractClient 3 React hooks: useProtocol, useUser, useCredentials (with React Query integration) Fixed TypeScript errors: wallet adapter, imports, type mismatches Automatic jurisdiction hashing: converts strings (e.g., "US") to hashes Optional peer dependencies: React Query, React, React-DOM SDK README: API reference, examples, types, migration guide 2. Example projects React example: Vite + React 18, 3 functional sections (Protocol/User/Issuer), fixed runtime errors, improved UI Next.js example: Next.js 16 + TypeScript, Tailwind CSS, fixed build issues, 3 TypeScript components, improved UI 3. Developer documentation Examples README: quick start, use cases (9 scenarios), integration guide, API reference, troubleshooting Main README integration: added SDK Examples section with links 4. Bug fixes and improvements Wallet connection: better error handling, status feedback, auto-reconnection Proof generation: fixed jurisdiction hashing, automatic conversion, better errors Credential management: fixed hash generation, improved validation, auto-fill UI/UX: enhanced input visibility, improved button styling, better feedback 5. Technical achievements Module system: ES modules, dynamic imports, proper webpack/Vite config Type safety: full TypeScript, consistent types, error handling Integration patterns: React Query, wallet abstraction, API/contract patterns 6. Project structure Organized codebase: modular SDK, separate examples, clear docs hierarchy Build system: working pipeline, successful builds, proper dependencies 7. Documentation coverage Comprehensive docs: SDK API, example guides, use cases, integration guides, troubleshooting Developer experience: clear setup, code examples, step-by-step guides 8. Added a practical Vault example on how to integrate Noah

技术栈

Solidity
Go
React
Next
Ethers
Node
Web3
SDK

融资状态

None at the moment

队长
EEagle
Github

Github 关联

https://github.com/Samuel1-ona/Noah
赛道
InfraDeFiRWA