Chapter 10: Infrastructure I: Identity, Keys, Account Abstraction | 智能体通证（AVT）：从原理到实践

10.1 The Infrastructure Stack for Sovereign Agents

Sovereign agents need infrastructure to act independently: robust identity to prove “who” they are, secure keys for “control” over assets, and abstracted accounts for “how” they interact without human bottlenecks. This stack replaces centralized wallets with decentralized primitives, enabling 24/7 autonomy while minimizing custody risks (Chapter 9). Challenges include key loss (1-2% annual in TradFi), gas inefficiencies (50% ops cost), and chain silos (90% value on Ethereum).

Core triptych:

Identity: Self-sovereign (SSI) via DIDs/VCs for reputation and contracts.
Keys: MPC/threshold for distributed signing, no single point failure.
Account Abstraction (AA): ERC-4337 for smart accounts, gasless/batched txs.

For Atlas: Stack allows $10M AUM management with <0.1% custody risk, 30% gas savings, cross-chain ops. Benefits: Interoperability (Chapter 12), verifiability (ZK proofs), scalability (L2s). Sections ahead detail each, building to full sovereignty.

(Word count: ~350; cumulative: ~350)

This chapter will include figures, formula boxes, and practical checklists to be expanded progressively.

10.2 Identity: DID, ENS, and Verifiable Credentials

Identity is the cornerstone of sovereignty for autonomous agents, providing a persistent, verifiable “who” that enables reputation, contracts, and interactions without centralized authorities. In Agentic Finance, agent identity must be self-sovereign (SSI)—controlled by the agent itself—resolving “sybil attacks” (fake personas) and enabling cross-chain portability. This section explores Decentralized Identifiers (DIDs), Ethereum Name Service (ENS), and Verifiable Credentials (VCs), integrating them into an agent profile. For Atlas, a DID-resolved ENS name (“atlas.agenticeconomics.eth”) with VCs for credentials (e.g., “A-GAAP compliant”) builds trust, reducing counterparty risk by 40% in DeFi deals.

Decentralized Identifiers (DIDs): The Core Primitive

DIDs are W3C-standard URIs (e.g., did:ethr:0xabc…) anchoring identity to blockchains, with DID documents storing public keys, services, and metadata. No central registry; agents self-publish via smart contracts.

Creation and Resolution: Generate DID from agent’s keypair; resolve to doc via RPC (e.g., did:ethr: resolve → JSON with verification methods).
Agent Use: Atlas’s DID documents its constitution (Chapter 9), allowing contracts to query “is aligned?” before interacting.
Pros/Cons: Immutable, portable; but key rotation needs careful VC migration.

Atlas: DID:ethr:0x… links to ENS for human-readable, VCs for proofs (e.g., “managed $10M AUM, verified by A-GAAP oracle”).

Ethereum Name Service (ENS): Human-Readable and Programmable Identity

ENS maps readable names (e.g., atlas.eth) to addresses, with subdomains for hierarchies (atlas.trading.eth). Programmable via text records (e.g., “alignment-score:9.2”).

Integration with DID: DID as primary, ENS as alias; reverse records for discovery.
Agent Applications: Reputation namespaces (e.g., atlas.risk.eth → VaR dashboard); dynamic updates via governance.
Cross-Chain: ENS v2 supports L2s; CCIP for non-EVM.

For Atlas: atlas.eth resolves to treasury address, subdomains for modules (atlas.rebalance.eth); text record “avt-supply:1M” for transparency. Cost: $5/year registration, boosts adoption +25% via readability.

Verifiable Credentials (VCs): Proofs of Attributes

VCs are tamper-proof claims (e.g., “agent certified secure by audit”) signed by issuers, verified via DID. Standards: Verifiable Presentation (VP) bundles VCs for selective disclosure.

Issuance/Verification: Auditor issues VC to Atlas DID; agent presents VP (ZK-proof subset) to protocols without revealing all data.
Agent-Specific: Credentials for alignment ( “95% fidelity” from RLHF score), performance (“A-FCF yield 10% YTD”), or compliance (“KYC optional”).
Privacy: ZK-SNARKs hide details (e.g., prove yield >8% without exact).

Atlas: VC pack: A-GAAP compliance (issuer: oracle), audit pass (issuer: PeckShield). In DeFi, present VP to borrow: “Prove low risk” → lower rates (save 2% APR).

Component	Standard/Tech	Function	Atlas Example	Benefit
DID	W3C did:ethr	Core ID	did:ethr:0x…	Sovereign control
ENS	EIP-1812	Readable alias	atlas.eth	User-friendly, programmable
VCs	W3C VC Data Model	Attribute proofs	“Yield 10%” VP	Trust without disclosure
Integration	DIDComm/ZK	Bundled profile	ENS-linked VCs	Interop + privacy

Practical Checklist for Agent Identity

Generate DID from MPC keys; publish doc with services (e.g., telemetry endpoint).
Register ENS name ($5-50), set reverse record, add text (alignment score, contacts).
Collect 5+ VCs (audit, compliance); store in DID doc, use ZK for presentations.
Test resolution: Query DID/ENS in 3 chains; verify VP in mock contract.
Rotate annually: Migrate VCs to new DID, notify via ENS.

Identity empowers verifiable autonomy, next keys secure control.

Keys are the linchpin of control for sovereign agents, signing transactions for treasury, contracts, and identity updates. Traditional single-key wallets risk total loss (e.g., 20% of BTC lost forever), but agents demand distributed, recoverable schemes to ensure continuity without custodians. This section covers Multi-Party Computation (MPC) for signing, social recovery for lost access, and threshold signatures for resilience. For Atlas, a 3-of-5 MPC threshold setup with social recovery guardians enables secure $10M AUM management, with <0.01% compromise probability and 99.9% uptime.

Multi-Party Computation (MPC): Distributed Signing

MPC allows multiple parties to jointly compute signatures without revealing private keys, ideal for agents with no “human owner.” Threshold MPC (t-of-n) requires t shares to sign, tolerating n-t failures.

How It Works: Shares generated via Shamir secret sharing; signing via additive protocols (e.g., GG18 for ECDSA). No full key reconstruction.
Agent Integration: Atlas’s MPC network: 3 shares held by agent shards (on-chain/off-chain), 2 by guardians (DAO nodes). To sign trade: Coordinate via secure channel (e.g., Threshold Network), output sig without exposure.
Benefits/Risks: Resilience (tolerates 2/5 offline); but coordination latency (100ms-1s). Cost: 2-3x gas vs. single key.

Atlas: MPC for treasury txs (e.g., rebalance); fallback to single if quorum fails (prob <1%).

Social recovery replaces seed phrases with trusted guardians (e.g., DAO members) approving key recovery, preventing permanent loss.

Mechanism: Vitalik’s social recovery wallet: Guardians vote to approve new key or share reconstruction. Time-lock (24h) + challenge period prevents coercion.
Agent Adaptation: For Atlas, 5 guardians (creator, DAO reps, oracles); recovery threshold 3/5. Integrate with DID: Update doc post-recovery.
Edge Cases: Inheritance via timed vesting (e.g., after 1y inactivity, auto-transfer to governance).

Atlas: Guardians include A-GAAP oracle, creator multi-sig; recovery sim: 90% success in 48h, zero unauthorized.

Threshold Signatures: Efficiency and Security

Threshold schemes (e.g., BLS for aggregatable sigs) enable partial sigs combined to full, reducing on-chain compute.

Implementation: t-of-n ECDSA/BLS; libraries like tss-lib. For cross-chain, FROST protocol.
Agent Use: Atlas uses 2-of-3 for low-risk (daily trades), 3-of-5 for high (treasury moves). Aggregates sigs for batch txs.
Security: Quantum-resistant options (Dilithium); rotate shares quarterly.

Scheme	Type	Threshold	Latency/Cost	Atlas Use Case
MPC (GG18)	Distributed ECDSA	3-of-5	500ms / 2x gas	Treasury signs
Social Recovery	Guardian vote	3-of-5	24h timelock	Key loss
Threshold BLS	Aggregatable	2-of-3	100ms / 1.5x	Batch trades
FROST	Proactive refresh	t-of-n	Low / Efficient	Rotation

Practical Checklist for Key Management

Deploy 3-of-5 MPC with tss-lib; test signing 100 txs (success >99%).
Designate 5 guardians (mix on/off-chain); simulate recovery 3x/year.
Implement threshold BLS for 80% ops; rotate shares every 90 days.
Audit: External (e.g., Trail of Bits); cover quantum threats.
Monitor: Alert on failed quorums; backup via encrypted shards.

Keys secure autonomy, next AA enables seamless execution.

10.4 Account Abstraction: ERC-4337 and Smart Wallets

Account abstraction (AA) abstracts the complexities of EOAs (externally owned accounts) into smart contract wallets, allowing agents to transact with custom logic, gas abstraction, and batching—essential for autonomy without human signing. ERC-4337 standardizes this via UserOperations (UserOps), bundlers, and paymasters, enabling “agent-native” accounts. This section details AA mechanics, applying to Atlas: A smart wallet with AA reduces gas 30% via batching, automates fees from A-FCF, and enforces policies (e.g., risk limits from Chapter 9), scaling to 1,000 txs/day.

ERC-4337: The Standard for Abstraction

ERC-4337 introduces a pseudo-transaction layer: Users submit UserOps (intent + validation) to bundlers, who aggregate and post to EntryPoint contract for execution. No EIP change needed; works with existing chains.

Components:
- UserOp: {sender: wallet addr, nonce, initCode, callData, gas limits, paymaster/signature}.
- Bundler: Off-chain aggregator, simulates/validates UserOps, submits bundle.
- Paymaster: Sponsors gas (e.g., from treasury); verifies UserOp (e.g., “only if VaR<5%”).
- EntryPoint: Singleton contract handling simulation, validation, execution.
Agent Benefits: Custom validation (e.g., Atlas wallet rejects high-risk trades); session keys for sub-agents; gasless for users.

Atlas: UserOp for rebalance: callData=DeFi swap, paymaster=A-FCF auto-pay, validation=”check alignment score >9”.

Smart Wallets: Custom Logic for Agents

Smart wallets (e.g., Safe, Argent) are AA-enabled contracts with modules for plugins (e.g., social recovery from 10.3).

Features: Batch txs (atomic multi-call, save 50% gas); role-based access (agent shards sign via MPC); hooks for policies (e.g., “pause if incident”, Chapter 9.5).
Implementation: Use Safe SDK: Deploy wallet with owners (MPC shares), add modules (e.g., Defender for monitoring).
Scalability: L2-optimized (Optimism); ERC-6900 for composable modules.

Atlas Wallet: Modules for identity (DID link), risk (VaR gate), governance (DAO multisig fallback). Batch: Rebalance + report + fee pay in one UserOp, gas ~0.01 ETH vs. 0.03 separate.

Gas Abstraction and Batching for Efficiency

Paymasters: Atlas paymaster contracts A-FCF to ETH via oracle, sponsoring UserOps (e.g., “pay from yield”). Verifier: ZK-proof of alignment.
Batching: Bundlers group 10-100 UserOps, reducing per-tx cost 70%. Agents submit intents (e.g., “swap if price >$18”), executed optimally.

Challenges: Bundler centralization (mitigate via multiple, e.g., Pimlico/Stackup); simulation failures (retry logic).

Simulation: 1,000 UserOps/day, batching saves $500/month gas; paymaster automates 100% fees.

Feature	ERC-4337 Component	Benefit	Atlas Implementation	Efficiency Gain
Custom Validation	Validation func	Policy enforcement	Risk/VaR check	0 failed txs
Gas Sponsoring	Paymaster	No ETH needed	A-FCF to gas	100% auto-pay
Batching	Bundler/EntryPoint	Cost reduction	Multi-call rebalances	50-70% gas save
Modules	Wallet plugins	Extensibility	MPC + recovery	Uptime 99.9%
Intents	UserOp callData	Flexible execution	“Optimize yield”	30% better returns

Practical Checklist for Account Abstraction

Deploy ERC-4337 wallet via Safe; add 3 modules (risk, paymaster, recovery).
Integrate bundler (Pimlico); test 50 UserOps (success >95%).
Code paymaster: Verify UserOp with ZK (alignment), fund from treasury.
Batch test: Simulate 100 txs, measure gas <50% baseline.
Audit: Focus on EntryPoint interactions; upgrade proxy annually.

AA unlocks agent-native txs, next interoperability spans chains.

10.5 Interoperability: Cross-Chain Identity and Bridges

Sovereign agents operate across ecosystems (e.g., Ethereum for settlement, Solana for speed), demanding chain-agnostic identity and seamless asset/key transfer. Interoperability bridges silos, enabling unified DID/VCs and liquidity flows without trust assumptions. This section covers cross-chain standards like LayerZero and Chainlink CCIP for messaging, IBC-inspired for assets, applying to Atlas: A unified identity (“atlas.eth” on 5 chains) with bridges allows $10M AUM allocation (50% ETH, 30% Solana), boosting yields 15% via arbitrage while maintaining security.

Cross-Chain Identity: Portable DIDs and ENS

Identity must resolve universally:

DID Methods: Multi-chain DIDs (did:web for IPFS, did:key for universal). Ceramic/IDX for off-chain storage, synced via oracles.
ENS Cross-Chain: ENS v2 with L2 support; resolve via resolvers on Polygon/Arbitrum. For non-EVM, map to native (e.g., Solana .sol domains).
VC Portability: Present VCs cross-chain via relayers (e.g., “A-GAAP compliant” verified on ETH, used on BSC).

Atlas: DID doc pinned to Arweave, resolved via CCIP; ENS subdomains (atlas.solana.eth) link chains. Verification: ZK-light clients prove state (e.g., “balance on ETH >$1M”).

Bridges for Assets and Keys

Bridges transfer value/messages securely:

Trust-Minimized: LayerZero (ultra-light nodes for arbitrary data), Wormhole (guardian network + VAA attestations). For keys, share MPC shards cross-chain via wrapped contracts.
Asset Bridges: Axelar for general messaging, Synapse for liquidity (e.g., AVT wrapped as wAVT on Solana). Risk: 10% bridges hacked historically; mitigate with insured (e.g., Across V3).
Agent Flows: Atlas bridges 20% AUM weekly: ETH → Solana for low-gas trades, back via oracle-priced swaps.

Security: Use intents (Anoma) for “bridge if secure”; timelocks on large transfers.

Unified Agent Presence: Orchestration Layer

Orchestrators (e.g., Socket Protocol) route intents across chains: “Execute rebalance on cheapest L2”. For Atlas, a meta-wallet aggregates (Safe on ETH, Squads on Solana), with shared DID for auth.

Simulation: 100 cross-chain ops, LayerZero latency 2s, cost $0.05/tx vs. $5 native; yield arb +12% (e.g., ETH 8% → Solana 9.5%).

Tech	Type	Chains Supported	Security Model	Atlas Use
LayerZero	Messaging/Assets	50+	Ultra-light nodes	DID sync, AUM bridge
Wormhole	VAA Attestations	20+	Guardians (19)	VC verification
CCIP (Chainlink)	Oracles/Msg	EVM-focused	DONs	Risk signals cross-chain
Axelar	General Bridge	30+	GMP (insured)	Arb trades
Socket	Intent Routing	L2s	Economic security	Meta-wallet orchestration

Practical Checklist for Interoperability

Implement multi-chain DID (Ceramic); test resolution on 3 chains.
Bridge setup: LayerZero for msg, Axelar for assets; insure $1M+ flows.
Deploy unified wallet: Safe L1, native L2; route via intents.
Simulate: 50 cross-ops, latency <5s, cost <1% of value.
Audit bridges annually; monitor via Chaos Labs for exploits.

Interoperability creates borderless agents, concluding with summary.

10.6 Chapter Summary

This chapter has laid the infrastructure foundation for sovereign agents, enabling identity, control, and execution across chains to realize economic autonomy. Section 10.1 introduced the triptych—identity for “who,” keys for “control,” AA for “how”—addressing custody (<0.1% risk), gas (30% savings), and silos. For Atlas, the stack supports $10M AUM with 99.9% uptime.

Identity (10.2) via DIDs/ENS/VCs provides verifiable personas (“atlas.eth” with “A-GAAP compliant” proofs), reducing DeFi risk 40%. Key management (10.3) with MPC (3-of-5 threshold) and social recovery ensures secure signing, <0.01% compromise. AA (10.4) through ERC-4337 smart wallets automates batches/paymasters, scaling 1,000 txs/day at 50% gas cut. Interoperability (10.5) bridges chains (LayerZero/Axelar), unifying presence for +15% yields via arb.

Synthesizing:

Identity & Keys: DID/ENS + MPC → Sovereign, resilient control.
Execution & Interop: AA + bridges → Efficient, borderless ops. Net: Atlas infra cost 2% A-FCF, enables 5x scalability; AVT operations seamless, risk-adjusted.

Section	Core Tech	Atlas Gain	Key Insight
10.1 Stack	Triptych overview	<0.1% custody risk	Holistic sovereignty
10.2 Identity	DID/ENS/VCs	Trust +40% in deals	Verifiable reputation
10.3 Keys	MPC/Threshold	99.9% uptime	Distributed security
10.4 AA	ERC-4337/Safe	30% gas save, 1K txs/d	Agent-native txs
10.5 Interop	LayerZero/Axelar	+15% yields arb	Borderless economy

Practically, deploy via Alchemy for RPCs, Safe for wallets, LayerZero SDK for bridges. Limitations: Bridge risks (insure), MPC latency (L2 optimize). Tools: Foundry for contracts, Ceramic for storage.

Infra empowers agents; Chapter 11 extends to telemetry, audit, ZK proofs for verifiable operations.

Agent infrastructure architecture schematic (text representation):

On-Chain Account (DID-linked) ←→ Key Management (MPC/HSM) ←→ Agent Core (LLM decision-making)
Compute Network (decentralized GPU) → Storage Network (IPFS/Filecoin) → Interaction (account abstraction UserOp)

This schematic shows how the agent interacts with compute, storage, and on-chain accounts, providing a clear overview; reliable infrastructure supports AVT value generation.

Advantages: Self-custodial, permissionless, portable.

A reliable DID framework ensures the agent’s sovereign identity, supporting secure A-FCF generation and AVT ecosystem integration.

Atlas Example: Main DID controls Ethereum contract account, mapping Polygon sub-accounts for low-cost trades.

This account model provides multi-chain flexibility, strengthening the agent’s participation in the AVT economy.

Roles: Creators (initial setup), governance (parameter changes), emergency (shutdown).

The authorization matrix maintains security boundaries, ensuring agent operations support sustainable AVT value.

Tiered: Hot keys (daily transactions), cold keys (fund transfers), recovery keys (emergency).

Advanced key storage strategies safeguard agent assets, directly supporting A-FCF management and AVT holder interests.

Social Recovery: Use Argent-style guardian networks to recover lost keys.

These strategies enhance resilience, preventing key loss from interrupting AVT ecosystem value flows.

Atlas Implementation: MPC + monthly rotation, social recovery by governance holders.

Threat model-guided key management ensures agent resilience, maintaining AVT as a reliable asset.

Paymaster: Gas abstraction (Paymaster), allowing sponsored gas.

Account abstraction simplifies interactions, reducing gas barriers and supporting efficient A-FCF operations and AVT liquidity.

Session Keys: Temporary keys for specific tasks, improving security.

These applications optimize agent efficiency, directly enhancing AVT economic value.

Atlas Example: ERC-4337 wallet + Paymaster, paying gas from USDC; LayerZero bridge for cross-chain arbitrage.

Multi-chain abstraction expands agent scope, enhancing AVT utility in the global ecosystem.

Simulated Attacks: Red-team exercises to identify weaknesses.

The minimum privilege principle reinforces overall security, ensuring infrastructure supports reliable AVT deployment.

In Chapter 11, we will expand to telemetry and auditing, ensuring observability and privacy.

Infrastructure completion will support upper-layer applications like advanced telemetry and auditing, explored in Chapter 11, further strengthening the AVT ecosystem’s robustness.