A T 1 CAgents Tokenised 1 Commons

The DIN Protocol
DIN Architecture: The Four-Layer Sovereign Stack

One Human, One Identity, Infinite Agents.DIN Architecture: The Four-Layer Sovereign StackThis version integrates the Sphotonix "Archival Anchor" as a future-forward Layer 4, Positioning DIN not just as a digital identity system, but as a Civilization-Grade Sovereignty Standard.Document 1: The DIN Protocol Specification (v1.0)Public Domain Release — "The Sovereign Identity Standard" 1. Executive SummaryThe Decentralised Identity Name (DIN) protocol establishes a new standard for digital existence: One Human, One Identity, Infinite Agents.In an era of autonomous AI, the critical failure of current systems is the "Accountability Gap"—agents act without verifiable permission, and identities die with the user. DIN solves this by unifying three distinct personas—Public (Official), Anonymous (Pseudonymous), and Life-Cycle (Inheritance)—into a single, sovereign object.Built on the Nervos CKB blockchain and secured by Post-Quantum Cryptography, DIN introduces a revolutionary Four-Layer Architecture. This architecture ensures that identity is not only secure against quantum threats but is capable of surviving beyond the lifespan of the digital infrastructure itself—bridging the gap between digital speed and civilizational permanence.The Architecture: The Four-Layer Sovereign StackTo ensure permanent sovereignty, quantum resistance, and physical longevity, DIN utilizes a modular architecture that separates Logic, Secrets, Assets, and Archival Storage.Layer 1: The Logic Anchor (Nervos CKB) Role: The immutable root of trust. Mechanism: The DIN exists as a "Spore Cell"—a first-class digital asset owned directly by the user.Why Nervos?Unlike Ethereum, where identity is state inside a smart contract, the Cell Model allows the identity to be a native asset (like a Bitcoin UTXO). The user holds the keys to the Cell; no third party can seize it. On-Chain Data: Only the essential root hashes, public keys (Hybrid Classical + PQ), and lifecycle state are stored here, ensuring low, deterministic fees.Layer 2: The Secret Vault (Nillion)Role: Secure storage for the "Life-Cycle" profile (Wills, Seeds, Secrets).
The Innovation: We replace standard encryption with Blind Computation.
How it Works: Sensitive inheritance data is sharded across a decentralized network using Multi-Party Computation (MPC). The data never exists in a decrypted state on any single server.
Security: Information Theoretic Security. Even if a quantum computer attacks the network, the data remains inaccessible without the specific reconstruction trigger.Layer 3: The Public Asset Layer (Walrus)Role: High-availability storage for the "Public" and "Anonymous" profiles (Portraits, Attestations, Logs).
Why Walrus? Utilizing advanced erasure coding, Walrus ensures that identity assets remain available and censorship-resistant even if a majority of storage nodes fail, at a fraction of the cost of Arweave.Layer 4: The Archival Anchor (Sphotonix — Future Integration)Role: Civilization-grade cold storage for the "Life-Cycle" profile.
The Vision: For users requiring absolute permanence, DIN is designed to interface with 5D Optical Data Storage (via partners like Sphotonix).
The Technology: Data is etched into glass using femtosecond lasers.
Durability: Survives heat, radiation, and water; lasts millions of years.
Security: WORM (Write Once, Read Many). It cannot be hacked or deleted remotely.
Steganography: Data can be hidden in plain sight (e.g., etched into a watch face or household glass).Implementation: When costs allow, DIN will offer a "Glass Vault" service where the root hash of the user's Inheritance Vault is etched onto physical glass, ensuring the digital will survives even if the internet does not.The Three-Profiles SpecificationDIN unifies the fragmented self into three composable profiles stored within the Spore Cell: Profile, Function, TechnologyPublic (Front Portrait) Official Business, KYC, Legal Identity. Watermarked portrait stored on Walrus. Attestations from family/pros signed via ZK-Proofs. Anonymous (Rear GAN Portrait) Pseudonymous Forums, Gaming, Agent Ops. GAN-generated face (no real biometrics). ZK-Proofs allow login without revealing identity. Life-Cycle (The Vault) Death, Inheritance, Emergency Recovery. Stored on Nillion (Active) or Sphotonix (Archival). Accessible only via the Hybrid Life-Lock trigger.The Inheritance Mechanism: The Hybrid Life-LockTo prevent the "Schrödinger’s User" problem (where a living user is mistakenly declared dead), DIN implements a Two-Factor Death Trigger.The Logic Gate: The Vault opens ONLY if:Condition A: Proof of Silence (Time-Lock). The user has failed to sign a "Heartbeat" transaction for a set duration (e.g., 6 months).
Condition B: Proof of Death (Attestation). A threshold of Guardians (Social Recovery) OR Oracle-verified Death Certificates is submitted.Why this is safer: Coma Protection: If you are offline (Condition A met), your family knows you are alive and will not sign the attestation (Condition B failed). Your assets are safe. Hostage Protection: If you are coerced, the Time-Lock is not yet expired (Condition A failed), protecting your assets from forced transfer.Archival Option: For "Glass Vault" users, the physical glass disc acts as a "Physical Key." If the digital network fails, the heirs can physically present the glass to an executor to reconstruct the estate, bypassing the need for digital oracles. 5. Cryptography StandardDIN mandates Hybrid Signatures for all critical actions to ensure Post-Quantum readiness: SIG = SIGClassical (Ed25519) || SIGPostQuantum (CRYSTALS-Dilithium) This ensures that your identity remains secure even if elliptical curve cryptography is broken in the future. 6. The Future Roadmap: The "Glass Standard"As the cost of femtosecond laser writing decreases, DIN will transition from purely digital identity to Phygital Identity (Physical + Digital).Phase 1 (Current): Digital sovereignty via Nervos + Nillion.
Phase 2 (Enterprise): High-value corporate identity keys etched to glass for disaster recovery.
Phase 3 (Mass Adoption): "Sovereign Glass" consumer products—everyday items (watches, eyewear) containing the user's encrypted identity will, ensuring that your digital self survives as long as the glass does.DIN is not just a login. It is a public good civilization revolution..IDocument 2:
The DIN SDK
Developer Implementation Guide"Ship Accountable Agents with Cryptographic Evidence" 1. The Problem for BuildersYou are building AI agents (GPT-6 wrappers, autonomous hedge funds, personal assistants). The Risk: Regulations like the EU AI Act require Human Oversight. If your agent makes a mistake, can you prove the user authorized that specific action? Without a verifiable audit trail, you are exposed to "He said/She said" disputes and regulatory scrutiny. 2. The Solution: The DIN SDKThe DIN SDK wraps your AI agent in a layer of cryptographic accountability.For the User: They get a unified identity they own, with transparent control over what they sign.
For You (The Developer): You get a "Compliance Engine." Every action is logged with a verifiable receipt, proving exactly what the user authorized and when.Quick Start (Python/JS)Integrate DIN into your existing LangChain or AutoGPT workflow instantly. pythonimport dinsdk
1. Initialize the Agent with the User's DIN
This connects the agent to the user's on-chain identity Spore.agent = dinsdk.Agent(dinid="DIN:nervos:0x1a2b...")
2. Define the Policy (The "Scope")
CRITICAL: Define precise limits, not just broad permissions.policy = dinsdk.Policy( actions=["transfer"], limits={"maxvalue": 1000, "currency": "USD"}, # Spending caps duration="24h" )
3. Request Authorization
This triggers a secure prompt to the user's wallet (Mobile/Browser).
The user signs the specific policy details.
The SDK handles the complex Hybrid (PQ) signature generation in the background.authrequest = agent.requestscope(policy)
4. Executeif authrequest.issigned: # SUCCESS: The action is now "receipted." # You have cryptographic proof that the user authorized THIS transaction # with THESE limits at THIS time. agent.execute(transfertx) else: # FAIL: User denied or transaction violates policy. # The agent is blocked from acting, preventing unauthorized errors. print("Authorization denied or policy violation.")Key Features for Adoption A. The "Passport Wrapper" Strategy (Client-Side Security)Proprietary models (OpenAI, Google) won't integrate DIN natively? It doesn't matter.How it works: The DIN SDK runs client-side (in the user's app or browser extension). It acts as a Local Proxy.
Security: The user's API keys for OpenAI never leave their device. The SDK intercepts requests, checks authorization against the DIN identity, and then routes the request.
The Benefit: You turn proprietary AI into a "utility pipe" while keeping the identity layer open. The DIN network never sees the user's secrets, only the authorization receipts.B. The "Accountability Standard" (Evidence over Immunity)Building on DIN doesn't grant legal immunity, but it provides the strongest possible defense: Evidence.The Reality: Disputes arise when users claim, "I didn't authorize that."
The DIN Solution: DIN replaces vague consent with Parameter-Locked Signatures.
For Regulators: You can demonstrate that the user explicitly signed: "Transfer maximum $500 to Address X within 24 hours."
Result: You transform a potential "negligence" lawsuit into a clear-cut case of user responsibility.C. Granular Authorization ControlsAddressing the "vague scope" risk, the SDK enforces Parameter Locking.User Experience: Users don't just sign "Transfer." They sign specific parameters (Amount, Recipient, Time Limit).
Enforcement: If the Agent tries to transfer $501 when the limit was $500, the DIN SDK blocks the transaction locally before it ever reaches the network. The signature is mathematically invalid for that amount.D. Zero-Friction Onboarding (Account Abstraction)Stop asking users to save 24-word seed phrases.Implementation: DIN supports native Account Abstraction on Nervos CKB.
UX: Users log in with Passkeys (FaceID / TouchID) or Email.
Recovery: If the user loses their device, the Hybrid Life-Lock (Guardians) allows identity recovery without a seed phrase.Why Build on DIN?Interoperability: One identity works across all your apps. Cost: Uses Nervos CKB's deterministic fees—no more $50 gas spikes. Future-Proof: Your user's data is safe from Quantum decryption via Nillion integration. Sovereignty: You don't lock users in. If your app shuts down, their identity lives on. Users trust you more because they know they can leave.The DIN Protocol is live. The standard is set. Build the future of accountable AI.