Sign Protocol is currently building the national digital identity infrastructure for both Kyrgyzstan and Sierra Leone. Its core innovation is simple yet powerful: once an attestation is recorded on the blockchain, it becomes permanent and tamper proof. It does not rely on any government server that could be shut down, hacked, or altered.
In an era where more countries are actively experimenting with digital identity systems and CBDCs, this approach is no longer just theory it is turning into real, live infrastructure.
I’ve read the whitepaper. The technical design is sound, and the motivation is genuinely compelling. Yet one critical question remains unanswered in the documentation: the real vulnerability of this system isn’t in the code. It lies with the humans or institutions who sign and issue the attestations.
History offers a clear warning. In 2011, the Dutch certificate authority DigiNotar was breached. Hackers issued over 500 fraudulent SSL certificates. Technically, everything was “correct” the certificates carried valid signatures from a legitimate authority. The failure wasn’t in the certificates themselves. It was in the authority that issued them.
Sign Protocol aims to solve this exact problem at a national scale. And in my view, it is one of the rare crypto projects addressing an issue that truly matters to billions of people worldwide.
But here’s where things feel incomplete.
Sign does not remove the need for authority. It simply makes the output of that authority immutable. Before anything appears on chain, a trusted issuer in this case, the government must first decide to issue the attestation.
This isn’t a flaw in the design. It is a fundamental structural weakness inherent to every identity system. Sign simply moves this weakness onto the blockchain, where its effects become far more difficult to correct or undo.
Call it plainly: this is the risk of trusted issuer capture.
I’m not accusing the governments of Kyrgyzstan or Sierra Leone of bad faith. The deeper point is this: a truly robust system must continue to function correctly even when those in power act improperly or unjustly. In its current form, Sign Protocol does not provide a clear, public answer to how it handles such scenarios.
Consider Sierra Leone, a country of roughly eight million people. If Sign becomes the backbone of its national identity system, what happens if a political decision leads to certain citizens being denied attestations or worse, being issued false ones? No smart contract can automatically detect or prevent this. The blockchain only records what the issuer tells it to record.
This is not a technical vulnerability. It is a question of who gets to define reality.
Traditional centralized identity systems have failed repeatedly through hacks, leaks, and abuse of authority. Purely trustless systems, on the other hand, struggle because no one in the real world accepts credentials without some form of institutional backing. Sign attempts a middle path: keep authority in place, but render its decisions permanent and unchangeable.
Immutability, however, is not the same as correctness. It only means the record cannot be erased or edited.
This model works beautifully as long as the issuing authority remains honest, neutral, and aligned with the interests of its citizens. It breaks down exactly when national identity systems matter most during political crises, regime changes, or conflicts over citizenship and rights.
Sign is building sovereign infrastructure. At this scale, the real question shifts from whether the system works to who holds the power to intervene when it goes wrong.
Who can revoke an attestation that should never have been issued?
Who can pause or correct a flawed money distribution process tied to these identities?
Who ultimately decides when an attestation is no longer valid?
This is precisely why I continue to watch closely how Sign develops its dispute resolution and revocation mechanisms for national-level deployments. Because in the end, this system does not eliminate the problem of authority it only makes the consequences of authority much harder to reverse.