KYC Vault Africa - Sovereign Identity Infrastructure
A decentralized, hardware-secured identity ecosystem designed to eliminate data breaches and restore data sovereignty to 1.4 billion people.
RustNext.jsZKPAWS FargateWeb Crypto API
Architectural Overview
KYC Vault Africa is a Top 0.1% architectural response to the vulnerabilities of centralized identity databases. Built for the African digital economy, it shifts the 'Root of Trust' from a central server to the user's physical device hardware.
I engineered this system using Rust for the backend to ensure memory safety and high-performance encryption at scale. The core innovation is a 'Zero-Copy' handshake protocol that allows banks to verify citizen data via hardware-attested signatures. By utilizing the browser's Web Crypto API (SubtleCrypto), I ensured that private keys are generated in the device's Secure Enclave and never transmitted to the cloud, making the vault mathematically unhackable from a central point.
Key Implementations
Self-Sovereign Identity (SSI) with hardware-bound P-256 ECDSA keys
Privacy-Preserving Zero-Knowledge Proof (ZKP) attestations
Asynchronous 'WhatsApp Web' style B2B handshake relay
Application-Layer Encryption using AES-256-GCM for all vaulted PII
Immutable, cryptographically linked Audit Trail for regulatory compliance
Offline-first PWA dashboard with cross-tab state synchronization
System Architecture Gallery
Tech Stack
Backend
RustAxumTokio (Async)SQLxPostgreSQL (Neon)
Frontend
Next.js 15TypeScriptZustand PersistenceShadcn UITailwind
Security
Web Crypto APIECDSA P-256AES-256-GCMArgon2idZKP
DevOps
AWS App RunnerFargateGitHub ActionsECRDocker