Universal Trust Infrastructure for Tokenized Assets and Digital Identity
Verify Once. Transact Everywhere. Abraxas is not a KYC provider. It is a trust and credential orchestration layer. licensed verifiers perform KYC; Abraxas standardizes, secures, and distributes cryptographic proof with user consent.
The problem
Every exchange, protocol, RWA platform, and lender performs KYC independently because each is legally responsible for it. They do not trust each other's verification, and there is no universal trust framework.
Complete verification once with an approved provider. Receive a signed W3C Verifiable Credential bound to your wallet. Abraxas records only proofs. never passports or selfies. When another protocol needs compliance, it asks Abraxas for a signed answer instead of making the user upload documents again.
What Abraxas is. and is not
- Another KYC vendor
- Storing passports on-chain
- Replacing Veriff's legal liability
- Proprietary identity format
- Trust registry & credential orchestration
- Trusted issuer registry (roadmap)
- Revocation & compliance engine (roadmap)
- W3C VC + did:sui open standards
- One API instead of five KYC integrations
Core principles
- Users own their identity credentials
- No passports or driver's licenses stored on-chain
- PII remains with approved identity providers (Veriff, manual review)
- On-chain: hashes, issuer attestations, timestamps, expiration, revocation status only
- Every credential is cryptographically signed (W3C VC · Ed25519)
- Every credential is revocable
- Every verification is portable across participating protocols
- User consent required before any proof is shared
What Abraxas stores (never the passport)
How integrators use AIL
When a protocol needs compliance, it asks Abraxas. the user does not upload documents again.
System architecture
Licensed third parties perform verification. Abraxas does not replace their legal role.
- Government ID + liveness (Veriff. live on /passport)
- AML / sanctions screening (via Veriff outcome)
- Business / property / asset manual review (Abraxas verifier queue)
- Future: Persona, Sumsub, Trulioo, Parallel Markets (trusted issuer registry)
→ Signed W3C Verifiable Credential to user's wallet
Validates provider outcomes, issues Abraxas-signed JWTs, tracks lifecycle.
- Validate signatures · create credential hashes
- POST /api/credentials/issue · POST /api/credentials/verify (live)
- Track expiration · revocation · credential identifiers
- Encrypt off-chain metadata where required
→ did:sui credential + stamp bitmask reference
Who can issue, what was revoked, issuer reputation. the Stripe-of-trust registry.
- Trusted issuer registry (roadmap)
- Credential registry + revocation registry (partial. Supabase + on-chain revoke bit)
- Issuer licensing metadata · supported jurisdictions (roadmap)
- Institution reputation scores (roadmap)
→ Integrators trust one registry instead of five KYC vendors
Policy evaluation. PASS / FAIL / REVIEW for institution-specific rules.
- Jurisdiction eligibility · accredited investor rules
- Credential freshness (e.g. KYC within 12 months)
- Sanctions re-screening · Travel Rule hooks
- Institution-defined policy DSL
→ Signed compliance proof without exposing underlying PII
User-facing credential container. proofs only, no sensitive documents.
- zkLogin sign-in → Sui holder address (live)
- Sui Move Passport object. stamp bitmask (devnet live)
- Multi-wallet binding + recovery (roadmap)
- Cross-chain identifiers (roadmap. Sui primary today)
→ Abraxas Passport. reusable credentials for every participating protocol
Credential catalog (beyond KYC)
Identity lifecycle
Role-based credentials
Different participants need different reusable credentials. each maps to Passport stamp bits.
Trust score (roadmap)
Dynamic 0–1000 score. not just initial KYC. Factors include:
- Identity strength
- Credential freshness
- Verification history
- Institutional attestations
- Wallet age
- Credential diversity
- Sanctions history
- Humanity verification
Developer API
- POST /api/credentials/verify
- POST /api/credentials/issue
- GET /api/credentials/public-key
- GET /api/sui/passport
- POST /api/auth/zklogin/register
- POST /api/idv/create-session
- POST /verify · GET /proof · POST /consent · POST /revoke · POST /refresh
- GET /trust-score · GET /credential/status · POST /wallet/link
- GET /issuer · GET /supported-jurisdictions
- Webhooks · policy engine · enterprise dashboard
Privacy by design
- PII stays with identity provider whenever possible
- Selective disclosure. reveal only what the request requires (zk roadmap)
- On-chain: stamp bitmask + hashes. never document images
- User consent before every proof share
- Encrypted off-chain metadata where Abraxas must store references
Long-term vision
Build the core as a general-purpose trust engine. Ship reusable identity (KYC/KYB) as the first application. Expand to real estate, metals, IP, licenses, carbon credits, supply chain, and AI agent credentials - all on the same infrastructure.
- Verification orchestration fees
- Credential refresh & rescreening
- Institution / enterprise subscriptions
- Trust Score API
- Compliance automation & white-label infrastructure
- API usage · premium analytics