令牌化為身份數據的存儲，共享和保護提供了基本轉變

我們當前的身份驗證系統被打破了。過去一年中的幾起事件證明了使用過時的系統的危險

Our current identity verification system is broken. Several incidents in the past year prove the danger of using outdated systems in which consumers are forced to repeatedly share the same core identifiers — like SSNs, birth dates and biometrics — across countless digital platforms.

我們當前的身份驗證系統被打破了。在過去的一年中，幾起事件證明了使用過時的系統的危險，在這些系統中，消費者被迫反复共享相同的核心標識符（例如SSN，出生日期和生物識別技術）在無數的數字平台上使用。

In October 2023, a breach at 23andMe exposed genetic and ancestry data from nearly seven million users, including names, birth years and locations. Months later, hackers infiltrated Snowflake’s customer environments, compromising sensitive records from companies like AT&T and Ticketmaster. Then, in August 2024, National Public Data reported that 2.9 billion records had been stolen — nearly every American’s personal information, including Social Security numbers, now potentially in the hands of bad actors.

2023年10月，違反了23AndMe的違規行為，揭示了近700萬用戶的遺傳和祖先數據，包括姓名，出生年份和位置。幾個月後，黑客滲透了雪花的客戶環境，損害了AT＆T和Ticketmaster等公司的敏感記錄。然後，在2024年8月，國家公共數據報告說，有29億個記錄被盜了 - 幾乎每個美國人的個人信息，包括社會保險號，現在可能掌握在不良行為者手中。

These incidents are symptoms of a more significant problem where the more our personal data circulates in its raw, reusable form, the more we risk, not just in financial loss but in privacy, trust and individual autonomy. Traditional cybersecurity approaches can’t keep up. We need a foundational shift in how identity data is stored, shared and secured.

這些事件是一個更重要的問題的症狀，即我們的個人數據以原始，可重複使用的形式循環越大，我們的風險越多，不僅在財務損失，而且在隱私，信任和個人自治方面。傳統的網絡安全方法無法跟上。我們需要對身份數據的存儲，共享和保護的方式進行基本轉變。

Tokenization offers that shift.

令牌化提供了這種轉變。

Tokenizing PII as the Foundation of Digital Identity

將PII作為數字身份的基礎

Tokenization replaces sensitive information with secure, non-sensitive equivalents. Here’s how it works: Imagine you’re making an online purchase with your credit card. The retailer’s payment system, instead of storing your actual 16-digit card number, replaces it with a randomly generated token, such as “XJ84-KL92-PQ76”. This token has no intrinsic value and cannot be traced back to your actual card number if intercepted by hackers. When you complete the purchase, the token is securely mapped back to your real payment information by a trusted tokenization system, ensuring both security and seamless transaction processing.

令牌化用安全的，非敏感的當量代替敏感信息。它的工作方式如下：想像您正在使用信用卡進行在線購買。零售商的支付系統，而不是存儲您的實際16位卡號，而是用隨機生成的令牌替代了它，例如“ XJ84-KL92-PQ76”。該令牌沒有內在的值，如果黑客攔截，則不能將其追溯到您的實際卡號。完成購買後，令牌將通過受信任的令牌化系統牢固地映射到您的真實付款信息，以確保安全性和無縫交易處理。

The financial sector has already proved this works — Visa has issued over 10 billion tokens, reducing fraud by 60% and preventing hundreds of millions in losses. It’s time to apply the same model to personal identity.

金融部門已經證明了這項工作 - 簽證已發行了超過100億個令牌，將欺詐量減少了60％，並防止了數億美元的損失。現在該將相同模型應用於個人身份的時候了。

Understanding Verified Trust Credentials

了解已驗證的信任證書

Verified trust credentials (VCs) are tamper-proof digital versions of physical ID attributes, such as biographic and biometric information, including foundational documents like driver’s licenses and passports. Cryptographically signed and secured, VCs can be validated instantly without lengthy manual checks or repeated exchanges of personal information between individuals and relying parties.

經過驗證的信任憑證（VC）是物理ID屬性的防篡改數字版本，例如傳記和生物特徵信息，包括駕駛執照和護照等基本文件。通過密碼簽名和確保，可以立即對VC進行驗證，而無需長期的手動檢查或個人之間的個人信息和依賴方之間的重複交流。

A reusable verifiable trust credential typically comprises three key components:

可重複使用的可驗證信任憑據通常包括三個關鍵組成部分：

By tokenizing VCs, individuals can verify who they are without exposing unnecessary details and organizations can validate both the credentials and the trustworthiness of their source.

通過使VCS進行象徵化，個人可以驗證自己是誰而不揭示不必要的細節，組織可以驗證其來源的憑據和可信賴性。

These credentials live in digital wallets, enabling users to control what they share and with whom, drastically reducing exposure while maintaining security.

這些憑據生活在數字錢包中，使用戶能夠控制他們共享的內容以及與誰共享的內容，從而在維持安全性的同時大大降低了曝光率。

A Privacy-First Digital Ecosystem

隱私優先的數字生態系統

The tokenization of VCs marks a major evolution in how digital identity is managed. Imagine a future where educational degrees, licenses, background checks and IDs are stored in one secure wallet and shared only as needed.

VCS的令牌化標誌著如何管理數字身份。想像一個未來，將教育學位，許可，背景調查和ID存儲在一個安全的錢包中，只根據需要共享。

This is already happening. Some universities issue degrees as verifiable credentials, allowing students to share their academic achievements instantly with employers or other institutions. Professional licenses, certifications and government IDs could follow.

這已經在發生。一些大學將學位視為可驗證的證書，使學生可以立即與雇主或其他機構分享學業成就。可以遵循專業許可，認證和政府ID。

In healthcare, tokenized credentials could revolutionize patient data sharing. Patients could grant secure, temporary access to records, keeping control while improving care coordination.

在醫療保健中，令牌資格可以徹底改變患者數據共享。患者可以授予安全的臨時訪問記錄，在改善護理協調的同時保持控制。

In the gig economy, workers could share tokenized background checks or verified skills, increasing trust between platforms, clients and workers.

在零工經濟中，工人可以共享標記的背景調查或經過驗證的技能，從而增加平台，客戶和工人之間的信任。

Financial institutions could also benefit. Tokenized credentials streamline KYC and AML processes by allowing users to share just the required verified data points — like proof of address or income — without oversharing personal details.

金融機構也可以受益。令牌化的憑證通過允許用戶僅共享所需的驗證數據點（例如地址證明或收入證明）而簡化KYC和AML流程，而不會超越個人詳細信息。

The applications extend to age verification, borderless credential checks, and even secure online voting systems.

這些應用程序擴展到年齡驗證，無邊界憑據檢查，甚至是安全的在線投票系統。

The Future of Digital Identity Verification and Screening

數字身份驗證和篩選的未來

The internet was designed for open communication, not for secure identity. It lacks a built-in identity layer, so there’s no universal, standardized way to verify users across platforms. This gap has made PII vulnerable to breaches, fraud and misuse.

互聯網是為開放通信而設計的，而不是為了安全的身份。它缺少內置的身份層，因此沒有通用的標準化方法可以跨平台驗證用戶。這個差距使PII容易受到違規，欺詐和濫用的攻擊。

Traditional defenses can’t keep up. Tokenization fills that missing layer, giving individuals the power to verify identity and build trust online, without surrendering control of their private data.

傳統的防禦能力無法跟上。令牌化填充了缺少層的層，使個人有能力驗證身份並在線建立信任，而無需交出對其私人數據的控制。

This isn’t just a best practice — it’s a fundamental necessity in a world of rising cyberthreats, evolving regulations and AI-powered decision-making. If we want privacy, trust and resilience in our digital infrastructure, tokenization is no longer optional. It’s essential.

這不僅是最佳實踐，而且是在不斷上升的網絡威脅，不斷發展的法規和AI驅動決策的世界中的基本必要性。如果我們想要對數字基礎架構的隱私，信任和彈性，那麼令牌化將不再是可選的。這是必不可少的。