Soulbound tokens bound to FHE-encrypted biometrics. Verifiable credentials attested through the H33 Substrate — three PQ signature families (Dilithium, FALCON, SPHINCS+) in 74 bytes. Chain bindings anchor to Bitcoin (OP_RETURN), Solana (PDA), or any blockchain at 32 bytes on-chain. Zero-knowledge selective disclosure that proves attributes without exposing data.
Traditional digital identity binds credentials to private keys. Keys can be stolen, shared, or lost. H33 binds credentials to the person through FHE-encrypted biometrics — creating true soulbound identity.
Credentials are cryptographically bound to FHE-encrypted biometric templates. Verification requires a live biometric match performed entirely in ciphertext space. The credential cannot be transferred because it is tied to the person, not to a key pair. Even a compromised server cannot extract the biometric binding.
Prove you are over 18 without revealing your birthdate. Prove you hold a medical license without exposing your license number. H33 generates ZK-STARK attribute proofs in 2.0 microseconds. The verifier learns only that the condition is satisfied — nothing more. SHA3-256 based, post-quantum secure, no trusted setup.
H33 credentials are compatible with the W3C Verifiable Credentials data model. Issue credentials as JSON-LD documents signed with Dilithium instead of Ed25519. Resolve identities through standard DID methods. The cryptographic layer is post-quantum; the data model is standards-compliant.
Issuers revoke credentials via cryptographic accumulators — no need to contact the holder or maintain a centralized revocation list. Verifiers check revocation status inside the ZK proof itself. The revocation check reveals nothing about other credentials or revocation reasons.
From credential presentation to cryptographic attestation — the entire flow runs on encrypted data.
The holder submits their Dilithium-signed credential and a live biometric capture. Both are encrypted client-side before transmission.
H33 performs inner-product matching on FHE ciphertexts. The biometric template never leaves encryption. Match completes in ~937µs for a 32-user batch.
Dilithium signature verified. ZK-STARK attestation proof generated. The verifier receives a post-quantum proof of identity — no plaintext exposed.
Post-quantum credential verification with biometric binding and selective disclosure.
// Verify a credential with biometric binding + selective disclosure const result = await h33.verifyCredential({ credential: signedCredential, // Dilithium-signed VC biometric: liveCapture, // FHE-encrypted template selectiveDisclosure: [ { attribute: 'age', condition: 'gte', value: 18 }, { attribute: 'jurisdiction', condition: 'eq', value: 'US' } ], securityLevel: 'h33-128' }); // result.verified → true (biometric match + signature valid) // result.disclosureProof → ZK-STARK proof (age ≥ 18 & jurisdiction = US) // result.attestation → Dilithium-signed attestation // result.revocationCheck → valid (accumulator proof) // // Biometric NEVER decrypted. Full credential NEVER exposed. // Verifier learns only: age ≥ 18 and jurisdiction = US.