zkOTP Wallet

zkOTP Wallet: A seedless wallet secured by zk-proofs and Google Authenticator TOTP standard.

Live DemoSource Code

zkOTP Wallet

Created At

ETHGlobal Taipei

Project Description

How it's made

Tell us about how you built this project; the nitty-gritty details. What technologies did you use? How are they pieced together? If you used any partner technologies, how did it benefit your project? Did you do anything particuarly hacky that's notable and worth mentioning?

For proving TOTP Code on-chain, the prover (which is the zk-TOTP wallet) takes private inputs (secret_raw, secret_bits, otp_code) and public inputs (hashed_secret, time_step, action_hash, tx_nonce) into the circuit.

Within the circuit:

  1. It first confirms the circuit “Secret” matches the hashed_secret
  2. It then computes the TOTP Code with HMAC-SHA1
  3. Then compares to the user’s otp_code
  4. Then binds the proof to action_hash & tx_nonce

Finally, the smart contract verifies the proof by circuit is true, ensures nonce is not used to prevent replay attacks, and executes the requested action.

We use Self Protocol SDKs to implement the on-chain verification process on Celo, then use Hyperlane to securely transmit the zero-knowledge proof and verification data between Celo chain and HashKey chain. This expands the use of Self Protocol and Hyperlane to enable zero-knowledge proof KYC on Hashkey chain, taking a step closer to the framework of regulatory-compliant data storage and data privacy protection networks.

How it's Made

How’s it made

⚙️ Technologies Used

  • Noir (via nargo) for writing and compiling the zk circuit
  • NoirJS for browser-based proving (WebAssembly)
  • Solidity for the onchain zk-SNARK verifier on Celo
  • Poseidon Hash for efficient in-circuit commitments
  • Google Authenticator-compatible TOTP (RFC 6238, HMAC-SHA1)
  • Self Protocol for decentralized identity & recovery commitment
  • Celo Chain as the execution layer for onchain proof verification
  • HashKey Chain for tiered based KYC
  • The frontend is built by Next.js, and deployed on Vercel.

🧠 Notable Hacks & Engineering Wins

  • Implementing bit-accurate SHA1 and HMAC-SHA1 in-circuit was nontrivial. Handling 512-bit blocks, 32-bit rotations, and byte-alignment took several iterations.
  • Compatible with existing 2FA apps (like Google Authenticator) with zero modification, lowering onboarding friction.
background image mobile

Join the mailing list

Get the latest news and updates