zkPay

zk Payment Rails

x402-compatible intent/voucher flow. Agents and users pay with policy enforcement — amounts, receivers, and cooldown windows verified on-chain without exposing who paid whom.

• ›Intent → voucher → settlement flow
• ›Policy-gated receiver allowlists
• ›Cooldown and deadline enforcement
• ›ERC-20 and native ETH support

zkAttest

Private Attestations

Commit to claims off-chain. Prove them on-chain. Credit bands, KYC status, score ranges — verified without revealing the underlying data.

• ›Poseidon-hashed commitments
• ›Groth16 zero-knowledge proofs
• ›ERC-8183 aligned schema
• ›On-chain verifier adapters

phase 2zkScore

Private Credit

Off-chain credit scoring with band proofs (Bronze / Silver / Gold). Proof-of-tier without proof-of-number. Reputation that travels.

• ›Off-chain score computation
• ›Band proof lifecycle
• ›Bronze / Silver / Gold tiers
• ›No raw score on-chain

phase 2zkPolicy

Agent Guardrails

Signed capability manifests for AI agents. Spending caps, receiver policies, and usage rules — provably enforceable by the protocol.

• ›Signed policy manifests
• ›Spending cap enforcement
• ›Cooldown and expiry
• ›Revocation support

Privacy by design,
not by policy.

cloakfi is built around a simple principle: sensitive data should never touch a server in the clear. Credit scores, payment amounts, identity attributes — all processed off-chain. Only zero-knowledge proofs travel on-chain.

Verification is public and permissionless. The underlying data is not.

// Commit: your data stays off-chain
const commit = await cloak.createAttestation({
  subject: wallet.address,
  claimType: {
    kind: "credit_band",
    band: "gold"
  },
  issuer: issuerWallet.address
})
// commit.data.commitment = Poseidon hash
// commit.data.nullifier  = anti-replay token

// Verify: submit ZK proof to gateway
const result = await cloak.verifyAttestation(
  commit.data.id,
  groth16Proof,
  publicSignals
)
// result.ok = true when real VK is installed