Skip to main content

How It Works: High-Level Architecture

UAE Pass Integration

UAE Pass is the official national digital identity system of the United Arab Emirates. It provides:
  • Government-backed identity verification
  • Widely adopted across UAE services and institutions
  • Strong authentication mechanisms
  • Operates within UAE digital identity framework
When users authenticate with Naba, they verify their identity through UAE Pass. This verification happens off-chain and establishes that the user is a real, verified person.

Zero-Knowledge Proofs

Zero-knowledge proofs allow users to prove they possess verified identity without revealing any identity data on the blockchain. The system generates cryptographic proofs that demonstrate:
  • The user has completed UAE Pass verification
  • The user meets required identity criteria
  • The user is authorized for specific actions
What remains private:
  • No names or personal identifiers
  • No government ID numbers
  • No biometric data
  • No location information
What is proven:
  • Verified identity status
  • Eligibility for specific operations
  • Conformance with access policies

Ephemeral Keys

Naba uses ephemeral signing keys for daily wallet operations. These are short-lived keys that:
  • Reduce the attack surface if compromised
  • Limit the impact of key exposure
  • Improve security through key rotation
  • Maintain usability for regular transactions
The master identity verification remains separate from operational keys, creating a layered security model.