Sui has introduced zkLogin, a groundbreaking native feature that simplifies onboarding for Web3 applications. By allowing users to sign in with existing Web2 credentials from platforms like Google, Facebook, and Twitch, zkLogin removes the need to manage private keys or memorize seed phrases. This innovation marks a significant step toward mass adoption of blockchain technology.
Challenges in User Onboarding
Acquiring new users has long been a challenge in the blockchain space due to complex login processes. Many potential users abandon applications when faced with the requirement to install a wallet, create an account, and safely store recovery phrases. This friction results in significant user drop-off at the onboarding stage.
Developers seeking to streamline user access have traditionally faced limited options:
- Building and maintaining hosted wallets, which increases engineering and regulatory burdens.
- Relying on third-party authentication services, introducing external dependencies and potential trust issues.
Until now, no blockchain offered a native, protocol-level method for integrating Web2 authentication into applications.
How zkLogin Works
zkLogin uses zero-knowledge cryptography to link Web2 authentication responses to unique Sui addresses. When a user logs in via a supported provider, a temporary key pair is generated. Only a zero-knowledge proof and an ephemeral signature are submitted to the blockchain—no personal user data is stored on-chain.
This approach maintains privacy since the authentication provider isn’t aware the user is interacting with a blockchain. Additionally, users are not required to see or manage their Sui address; the entire process is seamlessly integrated into the familiar Web2 login flow.
Existing Web3 users can still use their preferred wallets with zkLogin-enabled applications. At launch, zkLogin supports Google, Facebook, and Twitch, with more providers planned for future updates.
👉 Explore more strategies for seamless authentication
Benefits of zkLogin
- Mass Adoption Potential: Users can sign in with familiar Web2 accounts and begin using applications within seconds.
- Web2-Like Experience: The simplicity of Web2 authentication opens new opportunities for integrating blockchain features into everyday applications.
- Multi-Device Support: zkLogin leverages Sui’s cryptographic flexibility, making it ideal for applications using biometrics or spanning multiple devices.
- Enhanced Privacy: No personal information is stored on the blockchain—only zero-knowledge proofs and short-lived signatures are used.
Getting Started with zkLogin
Sui is a Layer 1 blockchain designed to make digital asset ownership fast, secure, and accessible. zkLogin is one of its native features aimed at onboarding the next billion users to Web3.
Developers can start implementing zkLogin on the Sui devnet today, with mainnet integration expected in the coming weeks. The zkLogin documentation provides guidance on SDK installation, setting up OAuth flows, and managing user sessions.
The Trusted Setup Ceremony
To ensure efficiency and security in zero-knowledge proof generation, the Sui Foundation is organizing a trusted setup ceremony. This process will produce a Common Reference String (CRS) that any Sui application can use.
The ceremony involves multiple participants, including validators and cryptography experts, who contribute randomness to generate the CRS. This distributed approach enhances security—even if only one participant acts honestly, the integrity of the setup is maintained.
How to Contribute
Eligible contributors include:
- Experts in blockchain, cryptography, or related technical fields (up to 50 participants).
- Sui validators currently securing the network (up to 100 participants).
The contribution process involves:
- Joining the queue with an invitation code.
- Choosing between a browser-based or Docker-based method to contribute entropy.
- Downloading, verifying, and submitting a contribution file within the allotted time.
- Signing the contribution to ensure authenticity.
Once all contributions are collected, the final CRS and verification scripts will be publicly available for review.
Frequently Asked Questions
How can I verify that my contribution was included correctly?
Contributors receive hash values before and after their participation. After the ceremony, these can be compared to public records to confirm inclusion.
What’s the difference between the browser and Docker contribution methods?
The browser method is user-friendly and runs entirely in the browser. The Docker method offers greater transparency, with open-source code and verifiable processes.
Why isn’t the ceremony open to everyone?
While broader participation is ideal, time constraints require a more focused approach. Involving validators and experts ensures a security level consistent with the Sui network.
Can existing ZK parameters be used?
The ceremony builds on Perpetual Powers of Tau for circuit-agnostic setup. The second phase is specific to zkLogin’s circuit requirements.
Will contributor identities be published?
Participants can choose to remain anonymous or disclose their affiliation. The Sui Foundation will respect privacy preferences.
Is zkLogin only for large organizations?
No, zkLogin is a Sui primitive intended for broad adoption across applications of all sizes.
zkLogin represents a leap forward in usability and security for blockchain applications. By blending Web2 convenience with Web3 capabilities, it paves the way for inclusive and scalable user onboarding.