Federico Sendra, CEO and cofounder of SpaceDev, a consultancy and development services company with a focus on blockchain and web3.
You sign in to your favorite streaming platform with the very same account you used last night, but you’re suddenly asked to verify it’s you via a code sent to your inbox. You need to use a government service, so you upload your ID and confirm all of your personal info, but when you want to use another service from the same government, you’re asked to submit everything again.
Are we just doomed to clone ourselves into different databases?
This frustration is useful to understand decentralized identity (DID). DID allows a person, company, device or digital wallet to hold verifiable claims from trusted issuers and present them when needed. A bank could confirm that it already verified a customer, and a university could issue a credential that proves a degree. The verifier doesn’t need to call the issuer every time or store more data than necessary.
It may sound simple, but when it comes to institutional blockchain adoption, it fills a crucial gap.
Identity Layers In A Nutshell
Public blockchains are good at recording transactions and moving digital assets, while smart contracts excel at executing rules once the conditions are clear. However, when the rule depends on who the participant is, what they’re allowed to do or whether they meet a compliance requirement, issues arise.
A wallet address can prove control over a private key, but it doesn’t prove that the person behind it is a licensed broker, a verified business or an employee authorized to approve a transaction.
DID gives decentralized systems a way to work with verified claims without turning the chain into a database of private personal information. In many cases, it only needs to know that a trusted credential says the user or entity satisfies a specific condition.
Current Situation
For years, self-sovereign identity (SSI) sounded promising, but it felt distant from day-to-day institutional work. There were too many formats, too many protocols and too much philosophical language around “owning your identity.” Institutions only adopt a technology when it reduces risk, creates interoperability, supports compliance and gives their teams a clear implementation path.
The W3C Verifiable Credentials Data Model 2.0 became a recommendation in May 2025, and the OpenID Foundation announced that implementers would be able to start self-certifying in February 2026. This means standards for institutional buyers to reference, vendors to compare and conformance programs that reduce integration risk.
In the EU, the European Digital Identity framework mandates that member states provide digital wallets to citizens by the end of 2026. The ecosystem includes large-scale pilots that integrate more than 550 companies and public authorities.
For decentralized builders, this is big. The institutional future of blockchain identity verification may not start with a crypto-native wallet but with government ID, business credentials, banking eligibility, education records and professional licenses that connect into blockchain workflows.
Access Control
Smart contracts are praised for their automation, but what’s allowed to be automated becomes crucially important in institutional settings. If a smart contract releases funds, transfers a tokenized asset or executes a corporate action, it needs to know whether the participant is allowed to trigger that action.
This is why smart contracts and DID are talked about in pairs. The wrong approach is to put personal identity data directly on-chain, which creates privacy, security and regulatory problems. Instead, smart contracts should use credentials, attestations, allowlists or cryptographic proofs to check eligibility without exposing unnecessary information.
Native Compliance
Tokenized assets sound simple when described as digital representations of stocks, invoices or other real-world assets, but many carry legal restrictions. A tokenized security is still a security (as the SEC has said explicitly). A tokenized fund interest still has investor eligibility rules.
If the token can move instantly but the compliance model depends on manual review outside of the system, the architecture isn’t optimal. That’s why asset tokenization needs an identity and credential layer.
In my experience, this is where many early blockchain product designs break. The token logic looks convincing, but the operational layer around onboarding, eligibility, reporting and exceptions is vague.
Practical Adoption
DID will only become relevant when it makes services easier to use. Mobile driver’s licenses are a good example. AAMVA’s Digital Trust Service lets relying parties obtain issuing authorities’ public keys to verify mobile driver’s licenses, and TSA says digital IDs can now be used at more than 250 airports.
This doesn’t mean every digital ID flow is decentralized in the Web3 sense, but it does show that credential-based verification is becoming familiar in high-trust environments. Institutions looking to adopt blockchain are more likely to accept identity patterns they’ve already seen in banking, travel, government or enterprise software.
Advice For Builders
To those entering the realm of DIDs, I’d recommend starting with the business rule rather than the technology label. Ask what the verifier actually needs to know, who is trusted to issue that claim, how the credential expires, what happens when the user loses a device and so on.
It sounds basic, but getting excited about the credential layer before defining the trust model can become an expensive mistake. A beautiful wallet flow won’t compensate weak governance.
The same applies to privacy. DID can reduce repeated document uploads and unnecessary data sharing, but it can still create tracking or correlation risks if implemented carelessly.
Trust Portability
DID isn’t a magic replacement for compliance, KYC, enterprise IAM or government ID. It’s a way to make verified trust more portable, and it’s also what blockchain has been missing at the institutional level: the bridge between decentralized infrastructure and real-world obligations.
DID gives institutions a way to use blockchain without pretending that anonymous wallets are enough for every use case. Most importantly, though, it fixes a very familiar problem: the same person, company or wallet having to prove the same facts again and again because our systems were never designed to let trust travel.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
