# zkIdentity System

#### **Overview**

zkIdentity is zkShine’s **privacy-preserving identity layer**, allowing users to verify attributes not identities.

Instead of exposing KYC data, zkIdentity creates **cryptographic attestations** that can be verified on-chain without revealing the underlying data.

#### **Core Principles**

| Concept                        | Description                                                                           |
| ------------------------------ | ------------------------------------------------------------------------------------- |
| **Selective Disclosure**       | Users reveal only the facts they choose (e.g., “I’m over 18”) — not full credentials. |
| **Self-Custody**               | Identity proofs are owned, generated, and stored by users inside zkVault.             |
| **Interoperable Attestations** | zkIdentity credentials can be recognized by any dApp supporting zkShine SDK.          |
| **ZK-Based Validation**        | Smart contracts verify authenticity without accessing raw identity data.              |