{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,7]],"date-time":"2026-03-07T14:25:02Z","timestamp":1772893502043,"version":"3.50.1"},"reference-count":42,"publisher":"Association for Computing Machinery (ACM)","issue":"1","funder":[{"name":"National Key Research and Development Program of China","award":["2023YFB2704800"],"award-info":[{"award-number":["2023YFB2704800"]}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"crossref","award":["62202011, 62172010"],"award-info":[{"award-number":["62202011, 62172010"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Web"],"published-print":{"date-parts":[[2026,2,28]]},"abstract":"<jats:p>With the development of Web3.0, decentralized identity and other blockchain-based identity empower users with control, forming the foundational infrastructure for Web3.0 ecosystems. However, existing identity frameworks remain inadequate in addressing critical challenges such as on-chain privacy during identity management and utilization. While prior works like CanDID, Hades, and CertChain explore blockchain-based identity solutions, they fail to meet the specific reqirements of DApps. Moreover, users on blockchain always store their identity data and digital assets across multiple accounts and DApps, but current identity schemes cannot support the cross-account and DApp identity privacy-preserving utilization. To bridge this gap, we propose Web3ID, the first fully DApp-oriented identity framework. By analyzing Ethereum identity proposals and user behavior patterns, we design the Web3ID featuring: on-chain privacy-preserving identity aggregation protocol, provably secure attribute-based access control model, and zk-rollup enhanced off-chain identity management. Experiments demonstrate that Web3ID enables privacy-preserving identity management and authentication on-chain, and guaranteeing access control completeness. The prototype system achieves a 100\u00d7 improvement in proof\/verification efficiency and reduces storage overhead by 85\u00d7 compared to pure on-chain implementation through off-chain optimization techniques. Moreover, in comparison with other identity privacy solutions, Web3ID exhibits the lowest gas consumption during on-chain utilization and shows strong scalability. As a fully decentralized identity framework supporting end-to-end DApp integration, Web3ID advances Web3.0\u2019s vision of user sovereignty, decentralization, and interoperability. This work establishes both theoretical and practical foundations for on-chain identity systems in Web3.0 ecosystems.<\/jats:p>","DOI":"10.1145\/3771556","type":"journal-article","created":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T11:31:52Z","timestamp":1760095912000},"page":"1-29","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Web3ID: A Privacy-Preserving and DApp-Oriented Decentralized Identity Framework for Web3.0"],"prefix":"10.1145","volume":"20","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6514-9410","authenticated-orcid":false,"given":"Jiakun","family":"Hao","sequence":"first","affiliation":[{"name":"School of Computer Science, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6760-5552","authenticated-orcid":false,"given":"Jianbo","family":"Gao","sequence":"additional","affiliation":[{"name":"Beijing Key Laboratory of Security and Privacy in Intelligent Transportation, Beijing Jiaotong University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-5659-6571","authenticated-orcid":false,"given":"Peng","family":"Xiang","sequence":"additional","affiliation":[{"name":"School of Computer Science, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-1212-9668","authenticated-orcid":false,"given":"Yifei","family":"He","sequence":"additional","affiliation":[{"name":"School of Computer Science, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-1374-2519","authenticated-orcid":false,"given":"Libin","family":"Xia","sequence":"additional","affiliation":[{"name":"School of Computer Science, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6144-4815","authenticated-orcid":false,"given":"Zhi","family":"Guan","sequence":"additional","affiliation":[{"name":"National Engineering Research Center for Software Engineering, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5785-2912","authenticated-orcid":false,"given":"Zhong","family":"Chen","sequence":"additional","affiliation":[{"name":"School of Computer Science, Peking University","place":["Beijing, China"]},{"name":"Chongqing Research Institute of Big Data, Peking University","place":["Beijing, China"]}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2026,2,19]]},"reference":[{"key":"e_1_3_1_2_2","doi-asserted-by":"publisher","DOI":"10.1145\/3630258"},{"key":"e_1_3_1_3_2","doi-asserted-by":"publisher","unstructured":"Johnnatan Messias Vabuk Pahari Balakrishnan Chandrasekaran Krishna P. Gummadi and Patrick Loiseau. 2024. Understanding Blockchain Governance: Analyzing Decentralized Voting to Amend DeFi Smart Contracts. (April2024). DOI:10.48550\/arXiv.2305.17655arXiv:2305.17655 [cs].","DOI":"10.48550\/arXiv.2305.17655"},{"key":"e_1_3_1_4_2","doi-asserted-by":"crossref","unstructured":"W. Cai Z. Wang J. B. Ernst et\u00a0al. 2018. Decentralized applications: The blockchain-empowered software system. IEEE Access 6 (2018) 53019\u201353033.","DOI":"10.1109\/ACCESS.2018.2870644"},{"key":"e_1_3_1_5_2","doi-asserted-by":"crossref","unstructured":"T. Xie K. Gai L. Zhu et\u00a0al. 2024. Rac-chain: An asynchronous consensus-based cross-chain approach to scalable blockchain for metaverse. ACM Transactions on Multimedia Computing Communications and Applications 20 7 (2024) 1\u201324.","DOI":"10.1145\/3586011"},{"key":"e_1_3_1_6_2","doi-asserted-by":"publisher","DOI":"10.1145\/3474085.3479238"},{"key":"e_1_3_1_7_2","unstructured":"Jonathan Kim. 2018. MyEtherWallet Hola VPN Compromised User Accounts Exposed. Retrieved July 2018 from https:\/\/cryptoslate.com\/myetherwallet-hola-vpn-compromised-user-accounts-exposed\/"},{"key":"e_1_3_1_8_2","unstructured":"Steve Walters. 2018. MEW Hack: Time to look at Decentralized Solutions to DNS Servers. Retrieved April 2018 from https:\/\/coinbureau.com\/analysis\/mew-hack-decentralized-dns-servers\/"},{"key":"e_1_3_1_9_2","unstructured":"Chainalysis Team. 2025. Collaboration in the Wake of Record-Breaking Bybit Theft. Retrieved April 2025 from https:\/\/www.chainalysis.com\/blog\/bybit-exchange-hack-february-2025-crypto-security-dprk\/"},{"key":"e_1_3_1_10_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101604"},{"key":"e_1_3_1_11_2","doi-asserted-by":"publisher","unstructured":"Jiashuo Zhang Yiming Shen Jiachi Chen Jianzhong Su Yanlin Wang Ting Chen Jianbo Gao and Zhong Chen. 2024. Demystifying and Detecting Cryptographic Defects in Ethereum Smart Contracts. (Aug.2024). DOI:10.48550\/arXiv.2408.04939arXiv:2408.04939 [cs].","DOI":"10.48550\/arXiv.2408.04939"},{"key":"e_1_3_1_12_2","doi-asserted-by":"publisher","DOI":"10.1145\/3551349.3559520"},{"key":"e_1_3_1_13_2","unstructured":"2024. Poloniex Hacker Sends $3.3M Worth of Ether to Tornado Cash. Retrieved May 2024 from https:\/\/finance.yahoo.com\/news\/poloniex-hacker-sends-3-3m-055134406.html"},{"key":"e_1_3_1_14_2","unstructured":"2024. Investigating the WazirX Hack and Flow of Funds. Retrieved July 2024 from https:\/\/www.merklescience.com\/blog\/investigating-the-wazirx-hack-and-flow-of-funds"},{"key":"e_1_3_1_15_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00038"},{"key":"e_1_3_1_16_2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23272"},{"key":"e_1_3_1_17_2","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2018.8486344"},{"key":"e_1_3_1_18_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS54860.2022.00121"},{"key":"e_1_3_1_19_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.05.013"},{"key":"e_1_3_1_20_2","doi-asserted-by":"crossref","unstructured":"Y. Liu B. Zhao Z. Zhao et\u00a0al. 2024. SS-DID: A secure and scalable Web3 decentralized identity utilizing multilayer sharding blockchain. IEEE Internet of Things Journal 11 15 (2024) 25694\u201325705.","DOI":"10.1109\/JIOT.2024.3380068"},{"key":"e_1_3_1_21_2","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2023.3250279"},{"key":"e_1_3_1_22_2","doi-asserted-by":"publisher","unstructured":"Juan Benet. 2014. IPFS - Content Addressed Versioned P2P File System. (July2014). DOI:10.48550\/arXiv.1407.3561arXiv:1407.3561 [cs].","DOI":"10.48550\/arXiv.1407.3561"},{"key":"e_1_3_1_23_2","doi-asserted-by":"crossref","unstructured":"K. Miyachi and T K. Mackey. 2021. hOCBS: A privacy-preserving blockchain framework for healthcare data leveraging an on-chain and off-chain system design. Information processing & management 58 3 (2021) 102535.","DOI":"10.1016\/j.ipm.2021.102535"},{"key":"e_1_3_1_24_2","doi-asserted-by":"crossref","unstructured":"D. Kumari A. S. Parmar H. S. Goyal et\u00a0al. 2024. Healthrec-chain: patient-centric blockchain enabled ipfs for privacy preserving scalable health data. Computer Networks 241 (2024) 110223.","DOI":"10.1016\/j.comnet.2024.110223"},{"key":"e_1_3_1_25_2","doi-asserted-by":"publisher","DOI":"10.1145\/3627106.3627110"},{"key":"e_1_3_1_26_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP46215.2023.10179430"},{"key":"e_1_3_1_27_2","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2022.3206798"},{"key":"e_1_3_1_28_2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2023.3303922"},{"key":"e_1_3_1_29_2","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-44987-6_7"},{"key":"e_1_3_1_30_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-29485-8_7"},{"key":"e_1_3_1_31_2","doi-asserted-by":"crossref","unstructured":"M. H. Au W. Susilo and Y. Mu. 2006. Constant-size dynamic k-TAA. International Conference on Security and Cryptography for Networks. Berlin Heidelberg: Springer Berlin Heidelberg 111\u2013125.","DOI":"10.1007\/11832072_8"},{"key":"e_1_3_1_32_2","doi-asserted-by":"crossref","unstructured":"J. Groth. 2016. On the size of pairing-based non-interactive arguments. Annual International Conference on the Theory and Applications of Cryptographic Techniques. Berlin Heidelberg: Springer Berlin Heidelberg 305\u2013326.","DOI":"10.1007\/978-3-662-49896-5_11"},{"key":"e_1_3_1_33_2","unstructured":"Ariel Gabizon Zachary J. Williamson and Oana Ciobotaru. 2019. PLONK: Permutations over Lagrange-bases for Oecumenical Noninteractive arguments of Knowledge. Cryptology ePrint Archive. Retrieved from https:\/\/eprint.iacr.org\/2019\/953"},{"key":"e_1_3_1_34_2","unstructured":"ENS. (2025). Retrieved January 2025 from https:\/\/ens.domains"},{"key":"e_1_3_1_35_2","unstructured":"2018. ERC-1056: Ethereum Lightweight Identity. Retrieved May 2018 from https:\/\/eips.ethereum.org\/EIPS\/eip-1056"},{"key":"e_1_3_1_36_2","unstructured":"2024. Ethereum Improvement Proposals. ERC-7734: Decentralized Identity Verification (DID). Retrieved June 2024 from https:\/\/eips.ethereum.org\/EIPS\/eip-7734"},{"key":"e_1_3_1_37_2","unstructured":"2024. ERC-7812: ZK Identity Registry. Retrieved November 2024 from https:\/\/eips.ethereum.org\/EIPS\/eip-7812"},{"key":"e_1_3_1_38_2","unstructured":"2022. Ethereum Improvement Proposals. ERC-5192: Minimal Soulbound NFTs. Retrieved July 2022 from https:\/\/eips.ethereum.org\/EIPS\/eip-5192"},{"key":"e_1_3_1_39_2","unstructured":"2023. ERC-6551: Non-fungible Token Bound Accounts. Retrieved February 2023 from https:\/\/eips.ethereum.org\/EIPS\/eip-6551"},{"key":"e_1_3_1_40_2","unstructured":"2023. ERC-7231: Identity-aggregated NFT. Retrieved June 2023 from https:\/\/eips.ethereum.org\/EIPS\/eip-7231"},{"key":"e_1_3_1_41_2","unstructured":"2025. Access Control - OpenZeppelin Docs. Retrieved January 2025 from https:\/\/docs.openzeppelin.com\/contracts\/5.x\/api\/access"},{"key":"e_1_3_1_42_2","unstructured":"2022. ERC-5982: Role-based Access Control. Retrieved November 2022 from https:\/\/eips.ethereum.org\/EIPS\/eip-5982"},{"key":"e_1_3_1_43_2","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2022.3232813"}],"container-title":["ACM Transactions on the Web"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3771556","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,3,6]],"date-time":"2026-03-06T17:56:16Z","timestamp":1772819776000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3771556"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,2,19]]},"references-count":42,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2026,2,28]]}},"alternative-id":["10.1145\/3771556"],"URL":"https:\/\/doi.org\/10.1145\/3771556","relation":{},"ISSN":["1559-1131","1559-114X"],"issn-type":[{"value":"1559-1131","type":"print"},{"value":"1559-114X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,2,19]]},"assertion":[{"value":"2025-03-31","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2025-08-15","order":2,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2026-02-19","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}