How does Chain-Fi Identity work?

Chain-Fi Identity combines four key components: 1) KYC verification through third-party providers (Sumsub, Onfido, Jumio) linked to your Chain-Fi account, 2) Vault creation using factory/clone pattern (EIP-1167) for cost-efficient deployment, 3) Wallet binding through dual signature verification (wallet signature + Chain-Fi app signature), 4) On-chain validation that records all identity linkages immutably on the blockchain. This creates a unified identity that works across all Chain-Fi products and dApps.

What is KYC verification and why do I need it?

KYC (Know Your Customer) verification is a compliance process that verifies your identity through document checks. Chain-Fi integrates with leading KYC providers (Sumsub, Onfido, Jumio) at a cost of $1.50-$5.00 per user (average $2.50). KYC provides the foundation for enterprise-grade security and compliance, creating a trusted identity that works across all Chain-Fi products and can be used for compliant transactions, regulatory reporting, and enterprise integrations.

How does vault creation work?

Chain-Fi uses the EIP-1167 minimal proxy pattern to deploy vaults efficiently. A factory contract is deployed once per blockchain network, and each user's vault is created as a minimal proxy clone pointing to the implementation contract. This dramatically reduces deployment costs (Base: ~$1.00, Multi-chain: ~$7.50 vs. $200+ for full deployments) while maintaining full security and functionality. The vault is initialized with your three-address configuration (Primary, 2FA, Secondary) and linked to your KYC-verified Chain-Fi account identity.

What is wallet binding?

Wallet binding creates a cryptographically verifiable link between your wallet address and your Chain-Fi account. This process requires signatures from both your wallet (MetaMask, etc.) and your Chain-Fi mobile app, proving that you own both devices. The binding process: 1) System generates QR code with unique nonce, 2) You sign binding message with your wallet, 3) You scan QR code with Chain-Fi app which signs the message, 4) Both signatures are verified on-chain using ECDSA recovery, 5) Wallet is linked to your Chain-Fi identity in your user profile.

What is on-chain validation?

On-chain validation ensures that all identity linkages are cryptographically verified and permanently recorded on the blockchain. The process includes: 1) Message construction with action type, sessionId, timestamp, nonce, and wallet address, 2) Signature recovery using ECDSA to verify both wallet and Chain-Fi app signatures, 3) Session validation to ensure active authenticated session exists, 4) Profile update storing wallet binding in user profile, 5) Vault linkage requiring validated wallet binding for all vault operations. This creates an immutable audit trail that cannot be tampered with.

How secure is Chain-Fi Identity?

Chain-Fi Identity provides enterprise-grade security through multiple layers: 1) KYC verification ensures verified identity foundation, 2) Dual signature requirement (wallet + Chain-Fi app) proves ownership of both devices, 3) On-chain validation creates immutable cryptographic proof of identity linkage, 4) Three-address protocol requires multiple approvals for vault operations, 5) Airgapped mobile app operates offline for maximum security, 6) All validations recorded on blockchain preventing tampering. This combination provides institutional-level security for Web3 asset management.

Can I use Chain-Fi Identity with multiple wallets?

Yes! You can bind multiple wallets to your Chain-Fi Identity. Each wallet binding follows the same dual signature verification process (wallet signature + Chain-Fi app signature). You can designate one wallet as your primary address and others as fallback addresses. All bound wallets are linked to your KYC-verified Chain-Fi account identity and can be used for vault operations. This allows you to manage multiple wallets while maintaining a unified identity across all of them.

What happens if I lose access to my Chain-Fi mobile app?

If you lose access to your Chain-Fi mobile app, you can recover access through the three-address recovery system. Any two of your three addresses (Primary wallet, Chain-Fi app address, Secondary address) can recover the third after a security cooldown period (24 hours). This ensures you never lose access to your assets while maintaining maximum security. The recovery process requires on-chain validation and follows the same security protocols as regular operations.

How does Chain-Fi Identity work with other Chain-Fi products?

Chain-Fi Identity is the foundation that connects all Chain-Fi products: 1) Chain-Fi Vault uses your identity for multi-signature protection, 2) Chain-Fi OAuth uses your identity for dApp authentication, 3) Chain-Fi Mobile App uses your identity for 2FA signatures, 4) All products share the same KYC-verified account and wallet bindings. This creates a seamless, secure experience across the entire Chain-Fi ecosystem - one verified identity works everywhere.

Is my identity information stored on the blockchain?

KYC verification data is processed by third-party providers (Sumsub, Onfido, Jumio) and linked to your Chain-Fi account. The blockchain stores: 1) Cryptographic proof of identity linkage (signatures, addresses), 2) Wallet binding records, 3) Vault deployment addresses, 4) Transaction history. Personal KYC documents are not stored on-chain - only the verification status and cryptographic proofs are recorded. This provides privacy while maintaining the security benefits of on-chain validation.

How long does the identity setup process take?

The Chain-Fi Identity setup process typically takes 15-30 minutes: 1) Account creation and setup fee payment (5 minutes), 2) KYC verification (10-20 minutes depending on provider response time), 3) Vault deployment (automatic, 1-2 minutes), 4) Wallet binding (5-10 minutes including QR code scanning and signatures). The entire process is guided and can be completed in one session. KYC verification may take longer if additional documentation is required.

Can I use Chain-Fi Identity for enterprise compliance?

Yes! Chain-Fi Identity is designed for enterprise compliance: 1) KYC verification meets regulatory requirements for institutional use, 2) On-chain validation provides immutable audit trail for compliance and auditing, 3) Complete transaction history with full traceability, 4) Transparent actions that are verifiable and traceable, 5) Real-time compliance monitoring and reporting. The system meets regulatory standards for institutional use and provides the foundation for compliant Web3 operations.

What is the factory/clone pattern and why does it matter?

The factory/clone pattern (EIP-1167) is a smart contract deployment optimization. Instead of deploying a full vault contract for each user (costing $50-$200+), a factory contract is deployed once per network, and each user's vault is created as a minimal proxy clone. This reduces deployment costs by 70-90% (Base: ~$1.00 vs. $50+, Multi-chain: ~$7.50 vs. $200+) while maintaining identical security and functionality. The pattern is industry-standard and used by major DeFi protocols for cost-efficient contract deployment.

How does dual signature verification work?

Dual signature verification requires signatures from both your wallet and Chain-Fi app to prove ownership of both devices. The process: 1) System creates binding message with unique nonce, 2) You sign message with your wallet (proves wallet ownership), 3) You scan QR code with Chain-Fi app which signs the same message (proves app ownership), 4) Both signatures are verified on-chain using ECDSA recovery, 5) System confirms both signatures recover to correct addresses. This cryptographic proof cannot be forged - you must physically control both devices to complete the binding.

What happens if my wallet binding fails?

If wallet binding fails, the system will provide specific error messages: 1) Signature mismatch - signatures don't recover to expected addresses (check wallet connection and Chain-Fi app), 2) Session expired - binding session timed out (restart binding process), 3) Invalid session - session not found or not authenticated (ensure you're logged in), 4) Network error - blockchain interaction failed (retry transaction). Most issues can be resolved by restarting the binding process. Support is available if problems persist.

Can I unbind a wallet from my Chain-Fi Identity?

Yes, you can unbind wallets from your Chain-Fi Identity through the dashboard. However, unbinding a wallet that is used as a primary address for vault operations may require additional security verification. The unbinding process follows the same security protocols as binding - requiring confirmation from your Chain-Fi app. Unbinding a wallet does not affect your KYC-verified account identity or other bound wallets.

How does Chain-Fi Identity compare to other Web3 identity solutions?

Chain-Fi Identity is unique in combining: 1) KYC verification with on-chain validation (most solutions offer one or the other), 2) Unified identity across vault, OAuth, and mobile app (most solutions are fragmented), 3) Factory/clone pattern for cost-efficient vault deployment (most solutions require expensive full deployments), 4) Dual signature wallet binding with on-chain proof (most solutions use simple wallet connections), 5) Enterprise compliance features with immutable audit trail. This creates a complete identity system rather than just wallet management.

What is the cost of setting up Chain-Fi Identity?

The first three steps of Chain-Fi Identity setup are completely free: 1) Download app and create account (FREE), 2) Wallet binding and profile (FREE), 3) Choose your path (FREE). The setup fee is only required in step 4 when you're ready to complete setup. The one-time setup fee includes: Base Chain Setup ($8.75-$22.50 with launch discount) or Extended Multi-Chain Setup ($22.50-$56.25 with launch discount). This includes: 1) KYC verification ($1.50-$5.00), 2) Vault deployment (Base: ~$1.00, Multi-chain: ~$7.50), 3) Account setup and onboarding, 4) First year free access to all Chain-Fi products. There are no additional fees for identity setup - it's all included in the initial setup fee.

Can I use Chain-Fi Identity for free?

Yes! You can use Chain-Fi Identity for free in the first three steps: 1) Download the app and create your account (FREE), 2) Connect the app to your profile for wallet binding (FREE), 3) Choose your path - stick around for free and join the community, or proceed to complete setup (FREE). The setup fee is only required in step 4 when you're ready to unlock premium features like KYC verification, vault deployment, and full access to all Chain-Fi modules. You can explore and participate in the community for free until you're ready to complete your setup.

What can I do with Chain-Fi Identity before paying?

Before paying the setup fee, you can: 1) Download the Chain-Fi mobile app, 2) Create your profile with username and email, 3) Connect the app to your profile (wallet binding), 4) Explore your dashboard and see all available features, 5) Join our community and participate in community activities, 6) Learn about Web3 security and Chain-Fi features. All of this is available at no cost. The setup fee is only required when you're ready to unlock premium features like KYC verification, vault deployment, and full access to all Chain-Fi modules.

What personal information is collected during KYC verification?

During KYC verification, Chain-Fi collects: Full legal name, Government-issued ID number, Proof of address document, Biometric data (if required by jurisdiction), and Date of birth. This information is submitted through the Chain-Fi interface and verified by third-party KYC providers (Sumsub, Onfido, or Jumio). All data is immediately encrypted before storage, and no raw PII (Personally Identifiable Information) is ever stored in plaintext.

How does Chain-Fi protect my KYC data?

Chain-Fi protects your KYC data through multiple security layers: 1) Immediate encryption - All PII is encrypted using AES-256-GCM encryption before storage, 2) Hashing - KYC ID is hashed with a unique salt using keccak256(sha256(kycId || uniqueSalt)), ensuring no two users have the same hash even with identical KYC IDs, 3) Off-chain storage - Encrypted PII is stored in Chain-Fi's secure off-chain database with strict access controls, 4) Audit logs - All access attempts are logged with timestamp, user ID, and purpose, 5) Compliance - Data handling is compliant with GDPR, CCPA, and other data protection regulations. No raw PII is stored on the blockchain.

What happens to my KYC data after verification?

After KYC verification: 1) Raw PII is encrypted with AES-256-GCM and stored off-chain in a secure database, 2) KYC ID is hashed with a unique salt and the hash is used for on-chain operations, 3) Only encrypted data is stored with role-based access control (RBAC), 4) Access is controlled with audit logs tracking all access attempts, 5) No raw PII is stored on the blockchain - only cryptographic proofs. Your encrypted data remains accessible for compliance and audit purposes, but cannot be accessed without proper authorization and is never shared with dApps or third parties.

What encryption algorithm does Chain-Fi use for KYC data?

Chain-Fi uses AES-256-GCM (Advanced Encryption Standard with 256-bit key and Galois/Counter Mode) for encrypting all personally identifiable information. This is the same encryption standard used by banks and government agencies. The KYC identifier is hashed using a two-step process: first SHA-256, then Keccak256, with a unique salt per user. The formula is: keccak256(sha256(kycId || uniqueSalt)). This ensures no two users have the same hash even with identical KYC IDs, and the hash cannot be reversed to reveal the original KYC ID.

How does the KYC ID hashing process work?

The KYC ID hashing process uses a two-step cryptographic hash: 1) First, the KYC ID is combined with a unique salt (generated per user) and hashed using SHA-256, 2) Then, the SHA-256 result is hashed again using Keccak256 (the same hash function used by Ethereum). The formula is: keccak256(sha256(kycId || uniqueSalt)). The salt is generated per user and stored securely. This double-hashing with salt ensures: No two users have the same hash even with identical KYC IDs, the hash cannot be reversed to reveal the original KYC ID, and the process is cryptographically secure and irreversible.

Where is my encrypted KYC data stored?

Your encrypted KYC data is stored in Chain-Fi's secure off-chain database with: 1) Encrypted database with role-based access control (RBAC) ensuring only authorized personnel can access data, 2) Audit logs tracking all access attempts with timestamp, user ID, and purpose, 3) Compliance with GDPR, CCPA, and other data protection regulations, 4) Data encrypted at rest and in transit, 5) Access controlled with strict security protocols. No raw PII is stored on the blockchain - only encrypted data is stored off-chain, and only cryptographic proofs (hashes) are stored on-chain for verification purposes.

Can I access my stored KYC data?

Yes, you can access your KYC verification status and related information through your Chain-Fi dashboard. However, for security and privacy reasons, raw PII (Personally Identifiable Information) is not displayed directly. You can view: 1) KYC verification status and level, 2) Verification date and expiration, 3) KYC ID hash (cryptographic proof), 4) Linked wallet addresses, 5) Vault addresses associated with your identity. If you need to update your KYC information or request data deletion, you can contact support. All data access is logged for audit purposes.

What is a combined hash in Chain-Fi Identity?

A combined hash is a cryptographic proof that links your verified identity to your wallet address. It's computed by concatenating multiple identifiers: your hashed KYC ID, user wallet address, Chain-Fi account address, vault ID, a unique nonce, and timestamp. The formula is: keccak256(kycIdHash || userAddress || chainFiAddr || vaultId || nonce || timestamp). This creates a unique, immutable link between your verified identity and wallet address. The nonce prevents replay attacks, and the timestamp ensures freshness. This combined hash is then signed by the Guardian service to create an attestation.

What is Guardian Attestation and how does it work?

Guardian Attestation is a cryptographic proof that Chain-Fi has verified your KYC and attests to the linkage between your identity and wallet. The process: 1) A combined hash is computed from your KYC ID hash, wallet address, Chain-Fi address, vault ID, nonce, and timestamp, 2) The Guardian service (running on secure infrastructure) signs the combined hash using its private key stored in a Hardware Security Module (HSM), 3) The signature uses ECDSA with secp256k1 curve following EIP-191 standard, 4) The signature proves that Chain-Fi has verified your KYC and attests to the identity-wallet linkage, 5) The signature can be verified on-chain using the Guardian's public key. The private key never leaves the HSM, ensuring maximum security.

What data is stored on-chain vs off-chain?

On-chain data (stored on blockchain): Combined hash (cryptographic proof linking identity to wallet), Guardian signature (ECDSA signature proving KYC verification), Timestamp (when attestation was created), Nonce (prevents replay attacks), and Vault ID (associated vault address). Off-chain data (stored in secure database): Encrypted PII (all personal information encrypted with AES-256-GCM), KYC documents (original verification documents), Access logs (audit trail of data access), and User profile data (account settings, preferences). This separation ensures: Privacy (no PII on public blockchain), Security (encrypted data in controlled environment), Auditability (on-chain proofs are immutable), and Compliance (meets data protection regulations).

How does Chain-Fi Identity integrate with the vault?

Chain-Fi Identity integrates with the vault through on-chain attestation: 1) The vault smart contract verifies the attestation before allowing sensitive operations, 2) It checks that the Guardian signature is valid using the Guardian's public key, 3) It verifies that the attestation links the correct wallet to the verified identity, 4) It ensures the attestation is not expired, 5) Operations require both wallet signature and valid attestation proof. This enables: Regulatory compliance (MiCA, Travel Rule), Identity verification for DeFi protocols, KYC requirements for exchanges, and Secure operations requiring both wallet signature and valid attestation proof. The vault uses the attestation hash to verify operations, creating a secure link between your identity and vault activities.

What are the use cases for Chain-Fi Identity attestation?

Chain-Fi Identity attestation enables: 1) Regulatory compliance - Meets MiCA (Markets in Crypto-Assets) and Travel Rule requirements for identity verification, 2) Travel Rule compliance - Provides verified identity for cross-border transactions, 3) Identity verification for DeFi protocols - dApps can verify your KYC status without accessing your personal data, 4) KYC requirements for exchanges - Exchanges can verify your identity status through Chain-Fi attestation, 5) Enterprise integrations - Businesses can verify user identity for compliant operations, 6) Audit and reporting - Immutable on-chain records for compliance and auditing. The attestation provides proof of identity without revealing personal information, creating a privacy-preserving compliance solution.

How long is my KYC verification valid?

Your KYC verification is valid for one year from the date of verification. When you finalize your Chain-Fi account, KYC verification is included in your one-time setup fee and remains valid for one year. After one year, you'll need to renew your KYC verification to maintain full access to all features. The renewal process is similar to the initial verification and may have reduced fees. Your Chain-Fi Identity, wallet bindings, and vault remain active during the renewal process. You'll receive notifications before your KYC expires to ensure continuous service.

Can I view my attestation on the blockchain?

Yes! All attestations are stored on-chain and can be viewed on blockchain explorers. When an attestation is created, you receive a transaction hash that can be viewed on: Basescan.org (for Base network), Etherscan.io (for Ethereum mainnet), or the appropriate explorer for your network. The on-chain record shows: Combined hash, Guardian signature, Timestamp, Nonce, and Vault ID. This provides complete transparency and auditability. You can also view your attestation status in your Chain-Fi dashboard, which provides a user-friendly interface to all your identity and attestation information.

How does Chain-Fi Identity work?

Chain-Fi Identity combines four key components: 1) KYC verification through third-party providers (Sumsub, Onfido, Jumio) linked to your Chain-Fi account, 2) Vault creation using factory/clone pattern (EIP-1167) for cost-efficient deployment, 3) Wallet binding through dual signature verification (wallet signature + Chain-Fi app signature), 4) On-chain validation that records all identity linkages immutably on the blockchain. This creates a unified identity that works across all Chain-Fi products and dApps.

What is KYC verification and why do I need it?

KYC (Know Your Customer) verification is a compliance process that verifies your identity through document checks. Chain-Fi integrates with leading KYC providers (Sumsub, Onfido, Jumio) at a cost of $1.50-$5.00 per user (average $2.50). KYC provides the foundation for enterprise-grade security and compliance, creating a trusted identity that works across all Chain-Fi products and can be used for compliant transactions, regulatory reporting, and enterprise integrations.

How does vault creation work?

Chain-Fi uses the EIP-1167 minimal proxy pattern to deploy vaults efficiently. A factory contract is deployed once per blockchain network, and each user's vault is created as a minimal proxy clone pointing to the implementation contract. This dramatically reduces deployment costs (Base: ~$1.00, Multi-chain: ~$7.50 vs. $200+ for full deployments) while maintaining full security and functionality. The vault is initialized with your three-address configuration (Primary, 2FA, Secondary) and linked to your KYC-verified Chain-Fi account identity.

What is wallet binding?

Wallet binding creates a cryptographically verifiable link between your wallet address and your Chain-Fi account. This process requires signatures from both your wallet (MetaMask, etc.) and your Chain-Fi mobile app, proving that you own both devices. The binding process: 1) System generates QR code with unique nonce, 2) You sign binding message with your wallet, 3) You scan QR code with Chain-Fi app which signs the message, 4) Both signatures are verified on-chain using ECDSA recovery, 5) Wallet is linked to your Chain-Fi identity in your user profile.

What is on-chain validation?

On-chain validation ensures that all identity linkages are cryptographically verified and permanently recorded on the blockchain. The process includes: 1) Message construction with action type, sessionId, timestamp, nonce, and wallet address, 2) Signature recovery using ECDSA to verify both wallet and Chain-Fi app signatures, 3) Session validation to ensure active authenticated session exists, 4) Profile update storing wallet binding in user profile, 5) Vault linkage requiring validated wallet binding for all vault operations. This creates an immutable audit trail that cannot be tampered with.

How secure is Chain-Fi Identity?

Chain-Fi Identity provides enterprise-grade security through multiple layers: 1) KYC verification ensures verified identity foundation, 2) Dual signature requirement (wallet + Chain-Fi app) proves ownership of both devices, 3) On-chain validation creates immutable cryptographic proof of identity linkage, 4) Three-address protocol requires multiple approvals for vault operations, 5) Airgapped mobile app operates offline for maximum security, 6) All validations recorded on blockchain preventing tampering. This combination provides institutional-level security for Web3 asset management.

Can I use Chain-Fi Identity with multiple wallets?

Yes! You can bind multiple wallets to your Chain-Fi Identity. Each wallet binding follows the same dual signature verification process (wallet signature + Chain-Fi app signature). You can designate one wallet as your primary address and others as fallback addresses. All bound wallets are linked to your KYC-verified Chain-Fi account identity and can be used for vault operations. This allows you to manage multiple wallets while maintaining a unified identity across all of them.

What happens if I lose access to my Chain-Fi mobile app?

If you lose access to your Chain-Fi mobile app, you can recover access through the three-address recovery system. Any two of your three addresses (Primary wallet, Chain-Fi app address, Secondary address) can recover the third after a security cooldown period (24 hours). This ensures you never lose access to your assets while maintaining maximum security. The recovery process requires on-chain validation and follows the same security protocols as regular operations.

How does Chain-Fi Identity work with other Chain-Fi products?

Chain-Fi Identity is the foundation that connects all Chain-Fi products: 1) Chain-Fi Vault uses your identity for multi-signature protection, 2) Chain-Fi OAuth uses your identity for dApp authentication, 3) Chain-Fi Mobile App uses your identity for 2FA signatures, 4) All products share the same KYC-verified account and wallet bindings. This creates a seamless, secure experience across the entire Chain-Fi ecosystem - one verified identity works everywhere.

Is my identity information stored on the blockchain?

KYC verification data is processed by third-party providers (Sumsub, Onfido, Jumio) and linked to your Chain-Fi account. The blockchain stores: 1) Cryptographic proof of identity linkage (signatures, addresses), 2) Wallet binding records, 3) Vault deployment addresses, 4) Transaction history. Personal KYC documents are not stored on-chain - only the verification status and cryptographic proofs are recorded. This provides privacy while maintaining the security benefits of on-chain validation.

How long does the identity setup process take?

The Chain-Fi Identity setup process typically takes 15-30 minutes: 1) Account creation and setup fee payment (5 minutes), 2) KYC verification (10-20 minutes depending on provider response time), 3) Vault deployment (automatic, 1-2 minutes), 4) Wallet binding (5-10 minutes including QR code scanning and signatures). The entire process is guided and can be completed in one session. KYC verification may take longer if additional documentation is required.

Can I use Chain-Fi Identity for enterprise compliance?

Yes! Chain-Fi Identity is designed for enterprise compliance: 1) KYC verification meets regulatory requirements for institutional use, 2) On-chain validation provides immutable audit trail for compliance and auditing, 3) Complete transaction history with full traceability, 4) Transparent actions that are verifiable and traceable, 5) Real-time compliance monitoring and reporting. The system meets regulatory standards for institutional use and provides the foundation for compliant Web3 operations.

What is the factory/clone pattern and why does it matter?

The factory/clone pattern (EIP-1167) is a smart contract deployment optimization. Instead of deploying a full vault contract for each user (costing $50-$200+), a factory contract is deployed once per network, and each user's vault is created as a minimal proxy clone. This reduces deployment costs by 70-90% (Base: ~$1.00 vs. $50+, Multi-chain: ~$7.50 vs. $200+) while maintaining identical security and functionality. The pattern is industry-standard and used by major DeFi protocols for cost-efficient contract deployment.

Chain-Fi Identity

KYC Verification, Vault Creation & Wallet Binding with On-Chain Validation

Chain-Fi Identity creates a cryptographically verifiable link between your KYC-verified Chain-Fi account, your physical mobile app (airgapped 2FA device), and your wallet addresses. When you finalize your Chain-Fi account, KYC verification is included in your one-time setup fee and remains valid for one year. This three-way binding ensures that vault operations require proof of ownership from both your wallet and your Chain-Fi app, providing enterprise-grade security for Web3 asset management.

Unlike traditional Web3 identity solutions that rely on disconnected services, Chain-Fi Identity unifies KYC verification, vault deployment, and wallet binding into a single, seamless system. Every component is validated on-chain, creating an immutable proof of identity linkage that works across all Chain-Fi products and dApps.

Get Started Learn More

Pick me up

Chain-Fi App

99.9%

Uptime Guarantee

3-Way

Security Binding

On-Chain

Immutable Proof

1 Year

KYC Validity

Security & Compliance

Enterprise-grade security standards and regulatory compliance

KYC Integration

Third-party identity verification integrated directly into your Chain-Fi account

How KYC Works

When you finalize your Chain-Fi account, KYC verification is included in your one-time setup fee. Chain-Fi integrates with leading KYC providers (Sumsub, Onfido, Jumio) to verify your identity through document verification and compliance checks. This verification is permanently linked to your Chain-Fi account and remains valid for one year, creating a verified identity foundation for all your Web3 interactions.

Third-party verification (Sumsub, Onfido, Jumio)

Document verification & compliance checks

Included in setup fee - No additional cost (KYC cost: $1.50 - $5.00 per user, average $2.50)

Valid for one year - KYC verification remains active for 12 months from account setup

Linked to Chain-Fi account identity

Compliance-ready for enterprise use

Why KYC Matters

KYC verification provides the foundation for enterprise-grade security and compliance. By linking verified identity to your Chain-Fi account, you create a trusted identity that works across all Chain-Fi products and can be used for compliant transactions, regulatory reporting, and enterprise integrations.

Proven Identity

Verified identity linked to your Chain-Fi account

Enterprise Compliance

Meets regulatory requirements for institutional use

Unified Identity

One verified identity works across all Chain-Fi products

Vault Creation & Deployment

On-chain vault deployment using factory/clone pattern for cost-efficient, secure vault creation

Factory/Clone Pattern (EIP-1167)

Chain-Fi uses the EIP-1167 minimal proxy pattern to deploy vaults efficiently. A factory contract is deployed once per blockchain network, and each user's vault is created as a minimal proxy clone pointing to the implementation contract. This dramatically reduces deployment costs while maintaining full security and functionality.

On-Chain Deployment

Vault deployed via VaultFactory smart contract

Multi-Signature Smart Contract

Three-address security protocol built into every vault

Three-Address Protocol

Primary, 2FA, and Secondary addresses for maximum security

Cost-Efficient Deployment

Minimal proxy pattern reduces deployment costs by 70-90% compared to full contract deployments

How Vault Creation Works

1
Factory Contract Deployment
VaultFactory contract deployed once per blockchain network (amortized cost included in infrastructure)
2
Minimal Proxy Creation
Each user's vault is created as an EIP-1167 minimal proxy clone, pointing to the implementation contract
3
Three-Address Configuration
Vault is initialized with your Primary Address, 2FA Address (Chain-Fi app), and Secondary Address
4
Identity Linkage
Vault address is linked to your KYC-verified Chain-Fi account identity in your user profile

Wallet Binding & Ownership Verification

Prove you own both your Chain-Fi app and your wallet device through dual signature verification

How Wallet Binding Works

Wallet binding creates a cryptographically verifiable link between your wallet address and your Chain-Fi account. This process requires signatures from both your wallet (MetaMask, etc.) and your Chain-Fi mobile app, proving that you own both devices. This dual verification is then validated on-chain, creating an immutable record of the binding.

1. QR Code Generation

System creates a binding session with a unique nonce. A QR code is generated containing the binding request data, including the wallet address to be bound and session metadata.

2. Wallet Signature

You sign a binding message with your wallet (MetaMask, WalletConnect, etc.). This signature proves you control the wallet address being bound to your Chain-Fi account.

3. Chain-Fi App Signature

You scan the QR code with your physical Chain-Fi mobile app. The app signs the binding message using your Chain-Fi account's private key, proving you own the Chain-Fi app device.

4. Dual Verification

Both signatures are verified on-chain using ECDSA recovery. The system confirms that both signatures recover to the correct addresses (your wallet address and your Chain-Fi account address).

5. Binding Complete

Wallet is linked to your Chain-Fi identity in your user profile. The binding is stored as either a primary or fallback address, and all vault operations now require validation of this binding.

Why Wallet Binding Matters

Wallet binding is the critical link that connects your verified Chain-Fi identity to your wallet addresses. This creates a three-way binding: your KYC-verified account, your Chain-Fi app (2FA device), and your wallet. This binding is essential for vault operations and provides enterprise-grade security.

Proven Ownership

Dual signatures prove you own both the Chain-Fi app and wallet device

On-Chain Security

All validations recorded on blockchain - immutable proof of identity linkage

Unified Identity

One KYC-verified identity works across all Chain-Fi products and dApps

Vault Security

Vault operations require validated wallet binding, preventing unauthorized access

On-Chain Validation Process

Every identity linkage is verified and recorded on the blockchain for immutable security

Validation Process

On-chain validation ensures that all identity linkages are cryptographically verified and permanently recorded on the blockchain. This creates an immutable audit trail and ensures that no identity binding can be forged or tampered with.

Message Construction

A JSON structure is created containing the action type (wallet binding), sessionId, timestamp, nonce, and wallet address. This message is what gets signed by both your wallet and Chain-Fi app.

Signature Recovery

Both signatures are verified using ECDSA recovery. The system recovers the public keys from the signatures and confirms they match the expected addresses (your wallet address and Chain-Fi account address).

Session Validation

The system verifies that an active, authenticated session exists for the binding operation. This ensures the binding is happening within a valid Chain-Fi account context.

Profile Update

The wallet binding is stored in your user profile as either a primary or fallback address. This binding is linked to your KYC-verified Chain-Fi account identity.

Vault Linkage

Vault operations now require validated wallet binding. The vault contract verifies that any transaction initiation comes from a bound wallet address, and the Chain-Fi app signature is required for approval.

Why On-Chain Validation Matters

On-chain validation provides the cryptographic foundation for Chain-Fi Identity. By recording all identity linkages on the blockchain, we create an immutable, verifiable record that cannot be tampered with or forged. This is essential for enterprise security, regulatory compliance, and trust in the Web3 ecosystem.

Immutable Record

All identity linkages permanently recorded on blockchain

Cryptographic Proof

ECDSA signature verification ensures authenticity

Full Auditability

Complete transaction history for compliance and auditing

Tamper-Proof

Blockchain immutability prevents identity fraud

Chain-Fi vs. Traditional Solutions

See why Chain-Fi Identity is the superior choice for Web3 identity management

Feature	Traditional Solutions	Chain-Fi Identity
Identity Verification	Separate services	Unified system
On-Chain Validation	Limited or none	Full on-chain
Three-Way Binding	Not available	KYC + App + Wallet
Vault Integration	Separate setup	Included in setup
Cross-Platform	Platform-specific	Works everywhere
Cost Efficiency	Multiple fees	One-time setup

Three-Way Binding Process

Visual representation of how your identity components are cryptographically linked

KYC Account

Verified Identity

Chain-Fi App

2FA Device

Wallet Address

On-Chain Binding

All three components are cryptographically linked through on-chain validation, creating an immutable proof of identity that requires verification from both your wallet and Chain-Fi app for all vault operations.

Simple Setup Process

Get your Chain-Fi Identity set up in just a few steps

Real-World Use Cases

See how Chain-Fi Identity powers secure Web3 interactions across industries

Enterprise Compliance

Meet regulatory requirements for institutional trading, DeFi operations, and cross-border transactions. Full audit trail and KYC verification for enterprise clients.

DeFi Platform Access

Access high-value DeFi protocols with verified identity. Platforms can trust your KYC status while you maintain full control over your data sharing.

NFT Marketplace

Trade high-value NFTs with verified identity. Marketplaces can verify your KYC status while you control what information is shared.

Why Chain-Fi Identity Matters

The technical foundation for enterprise-grade Web3 security and compliance

The Future of Web3 Connectivity: Negotiating Permission, Not Granting Access

The current paradigm in crypto and tech views access as a one-way street where "The user asks, the platform grants." This model is becoming obsolete. Evolving regulations such as MiCA (Markets in Crypto-Assets), the Travel Rule, and wallet-binding requirements are fundamentally changing how platforms and users interact. Future platforms cannot legally connect to users without verified identity data and explicit permission negotiation.

Under these new regulatory frameworks, platforms need verified user data for legal operation, and users, in return, must know what data is being accessed, by whom, and for what purpose. The future involves negotiating permission in both directions, a mutual handshake of trust, transparency, and accountability. Systems enabling two-way, permission-based access with auditable transparency will not just comply with regulations, they will define the next standard for digital trust.

Chain-Fi Identity offers this critical step all in one unified solution: We negotiate the terms with the platform, you approve and connect. One identity, one user interface, one unified approach. "No external wallet approvals needed" - simply connect to your Chain-Fi account and approve to share only the data needed to interact. This permission-based model ensures you maintain control while platforms meet regulatory requirements, creating the foundation for the next generation of Web3 connectivity.

Enterprise-Grade Security

The Identity system creates a cryptographically verifiable link between your KYC-verified Chain-Fi account, your physical mobile app (airgapped 2FA device), and your wallet addresses. This three-way binding ensures that vault operations require proof of ownership from both your wallet and your Chain-Fi app, providing enterprise-grade security for Web3 asset management.

Regulatory Compliance

KYC verification linked to on-chain identity creates a compliance-ready system for enterprise use. All transactions are transparently logged on-chain, providing complete auditability while maintaining the highest levels of security. This meets regulatory requirements for institutional use and provides the foundation for compliant Web3 operations.

Unified Web3 Identity

One verified identity works across all Chain-Fi products and dApps. Your KYC-verified account, vault, wallet bindings, and mobile app are all linked through on-chain validation, creating a seamless, secure experience across the entire Web3 ecosystem. No more managing multiple identities or disconnected services.

Immutable Audit Trail

Every identity linkage is recorded on the blockchain, creating an immutable audit trail that cannot be tampered with. This provides complete transparency for compliance, auditing, and trust verification. All actions are verifiable and traceable, meeting the highest standards for enterprise security and regulatory compliance.

What Users Say

Trusted by Web3 users and enterprises worldwide

Technical Deep Dive

Expand the cards below to learn more about our technical implementation

ECDSA Signature Verification

How we cryptographically verify wallet and app ownership

Factory/Clone Pattern (EIP-1167)

How we deploy vaults efficiently using minimal proxy clones

Zero-Knowledge Architecture

How we protect your privacy while maintaining verification

Ready to Secure Your Web3 Identity?

Join thousands of users who trust Chain-Fi Identity for enterprise-grade security, compliance, and seamless Web3 connectivity.

One-time setup fee includes KYC + First Year Free

Base: $8.75 • Extended: $22.50 • 75% off for first 10,000 users

Start Your Setup

Want to Learn More?

Explore our comprehensive documentation to dive deeper into Chain-Fi Identity's technical implementation, security architecture, and integration guides.

Visit Documentation

Chain-Fi Identity

KYC Verification, Vault Creation & Wallet Binding with On-Chain Validation

Security & Compliance

KYC Integration

How KYC Works

Why KYC Matters

Proven Identity

Enterprise Compliance

Unified Identity

Vault Creation & Deployment

Factory/Clone Pattern (EIP-1167)

On-Chain Deployment

Multi-Signature Smart Contract

Three-Address Protocol

Cost-Efficient Deployment

How Vault Creation Works

Factory Contract Deployment

Minimal Proxy Creation

Three-Address Configuration

Identity Linkage

Wallet Binding & Ownership Verification

How Wallet Binding Works

1. QR Code Generation

2. Wallet Signature

3. Chain-Fi App Signature

4. Dual Verification

5. Binding Complete

Why Wallet Binding Matters

Proven Ownership

On-Chain Security

Unified Identity

Vault Security

On-Chain Validation Process

Validation Process

Message Construction

Signature Recovery

Session Validation

Profile Update

Vault Linkage

Why On-Chain Validation Matters

Immutable Record

Cryptographic Proof

Full Auditability

Tamper-Proof

Chain-Fi vs. Traditional Solutions

Three-Way Binding Process

KYC Account

Chain-Fi App

Wallet Address

Simple Setup Process

Download App & Create Account

Wallet Binding & Profile

Choose Your Path

Complete Setup

Real-World Use Cases

Enterprise Compliance

DeFi Platform Access

NFT Marketplace

Why Chain-Fi Identity Matters

The Future of Web3 Connectivity: Negotiating Permission, Not Granting Access

Enterprise-Grade Security

Regulatory Compliance

Unified Web3 Identity

Immutable Audit Trail

What Users Say

Technical Deep Dive

ECDSA Signature Verification

Factory/Clone Pattern (EIP-1167)

Zero-Knowledge Architecture

Ready to Secure Your Web3 Identity?

Want to Learn More?