TL;DR I argue that digital-first banks are positioned to become the next generation of reputation banks—inverting identity economics from transaction processing to trust custody. The prescription is self-sovereign identity infrastructure that keeps reputation data owned by individuals, not rented from corporate intermediaries.

When Banks Become Reputation Banks

by Markus Maiwald
#identity#KYC#SSI#reputation#sovereignty#libertaria#banking#MTN
When Banks Become Reputation Banks

When Banks Become Reputation Banks

The Coming Inversion of Identity Economics

Markus Maiwald · April 2026 · libertaria.dev/blog

The Pitch I Sent to Attila

Budapest, April 2026. Over coffee with my friend Attila Vidákovics from Dlabs Kft.—the leading blockchain company in Hungary—something clicked that makes bank executives go pale: Your AI chatbot is wrong. Your credit score is worthless. And your KYC process is a dumpster fire that treats every new customer like a suspect.

He laughed. Then he asked me to send him the write-up. This is it.

Here’s the idea in one sentence: Digital-first banks are perfectly positioned to become the next generation of reputation banks—not because of blockchain, but because they already have what KYC providers only dream of.

Why Banks, Not KYC Providers

I’ve been writing about KYC providers becoming reputation banks since 2017. The thesis was always: SumSub or Onfido verify you once, issue a credential, and that credential travels with you across the entire financial ecosystem. Accumulated trust becomes portable. Revenue shifts from per-verification to subscription. Network effects kick in.

That thesis is still correct. But I was looking at the wrong actor.

KYC providers have one fatal weakness: they know nothing about you beyond the document in front of them. They can confirm you’re human, not sanctioned, probably not a money launderer. They cannot tell if you’re a good credit risk, whether you settle your debts, whether your business generates real revenue, whether your counterparties trust you. They have zero behavioral data.

Banks have everything.

Your bank knows your salary flow. It knows your rent or mortgage payments. It knows whether you default, whether you receive international wires, whether your business is seasonal or growing. It knows your transaction patterns, your cash flow velocity, your debt service history. It has six years of behavioral trust data that no KYC provider will ever touch.

The KYC provider checks if you’re a real human. The bank knows if you’re a good customer.

That’s the asymmetry that makes banks the natural winners of the reputation bank era.

The Current Model is a Dumpster Fire

KYC today operates on what I call the Verify-and-Forget model.

You submit your passport to Exchange A. Exchange A pays SumSub $2-5 to verify you. SumSub confirms you’re human, not sanctioned, probably not a terrorist. Exchange A stores your data in a database that will inevitably be breached. You repeat this process for Exchange B, Broker C, Social Platform D, and that weird DeFi thing your friend recommended.

Every verification is a point-in-time snapshot with zero memory. SumSub doesn’t know that you’ve been a perfect customer at Kraken for six years. Binance doesn’t know you’ve never filed a chargeback anywhere. Each platform starts from zero because the identity layer has no state.

This is insane. It’s like a banking system where your credit score resets every time you walk into a new branch.

The regulators love it because fragmentation means control. The KYC providers tolerate it because they get paid per-verification. The users hate it because they’re treated like suspects at every digital doorstep. And the data breach statistics speak for themselves; identity data is the most leaked category of personal information on the planet because it’s stored in fifty different honeypots instead of zero.

Meanwhile, the bank already has the data to solve this. They’re just not using it correctly.

SSI Flips the Polarity

Self-Sovereign Identity changes the physics.

Instead of submitting your passport to every platform, you hold a Verifiable Credential in your own wallet. The credential says: “This person was verified as human, EU citizen, not sanctioned, on 2026-01-15.” It’s cryptographically signed. It can be verified without contacting the issuer. It can use zero-knowledge proofs to reveal only the claims needed; “over 18” without revealing your birthdate, “EU resident” without revealing your address.

The passport never leaves your device. The platform never stores your data. The breach surface collapses to zero.

But here’s what nobody is talking about: who issues the credential matters more than the technology.

The Reputation Bank Thesis

In the Verify-and-Forget model, a bank is a ledger of transactions. You deposit, you withdraw, you transfer. Revenue comes from the spread, from fees, from interchange. Margins compress as fintechs eat away at each segment.

In the SSI model, the bank becomes something far more powerful: a reputation bank.

Think about what happens when Verifiable Credentials become portable—and the bank is the issuer.

The bank verifies you once at account opening. That credential travels with you. Every platform, every service, every counterparty that accepts bank-issued credentials now trusts you because your bank vouched for you. The bank’s signature becomes a trust anchor; not for a single transaction, but for your entire financial identity across the ecosystem.

Now extend this logic. If the bank can issue “this person is verified human,” it can also issue:

  • “This person has maintained a positive balance and zero overdraft fees for 6 consecutive years”
  • “This person has received regular salary deposits exceeding 4x the national median for 3 years”
  • “This person has zero defaults, zero chargebacks, zero fraud flags across 47 platform integrations”
  • “This person’s cash flow stability score is in the top 15% of all verified account holders”
  • “This person’s business has shown positive revenue growth for 8 consecutive quarters”

This is a credit rating for identity—not financial credit, but trust credit. Portable, verifiable, accumulated over behavioral history, not issued by a bureau.

The bank stops processing transactions. It starts custodying reputation.

The business model inverts. Instead of earning 0.5% on your deposit, the bank earns reputation fees from every counterparty that verifies your trust credential. Instead of competing onćˆ©çŽ‡, banks compete on quality of their reputation attestations. A bank with 6 years of clean behavioral data is worth more to an ecosystem than a bank with 6 months.

Revenue shifts from linear (per-transaction) to compound (per-credential-acceptance across ecosystem). The more platforms accept a bank’s reputation credentials, the more valuable each credential becomes. Network effects. Winner-take-most dynamics. This is banking logic applied to trust—and banks already have the data infrastructure to win it.

Why Banks Beat KYC Providers at This Game

A KYC provider can issue: “This is a real human with a valid passport.”

A bank can issue: “This is a real human with a valid passport and a 6-year record of financial behavior that signals trustworthiness.”

The KYC provider’s credential tells the world what you are. The bank’s credential tells the world how you behave.

Behavioral trust is the moat that KYC providers cannot cross without becoming banks themselves. And becoming a bank means acquiring a license, holding deposits, accepting regulation, building the compliance infrastructure. That’s a multi-year journey.

For a digital-first bank, the journey is already half over. Bunq, N26, Revolut—these are banks with full licenses, direct customer relationships, and years of behavioral data. They just need to open the API.

The Dark Side; Because There’s Always a Dark Side

Every powerful institution has dark corners. Reputation banks are no exception.

A bank that issues your reputation credential gains the power to de-bank your identity. If the bank revokes your credential, you don’t just lose access to one service. You lose your accumulated trust across every platform that accepted the bank’s credentials. Your six years of perfect financial behavior—poof, gone. Transferred into the hands of whoever controls the ledger.

This is the same power structure we’re trying to escape, wearing a new mask.

If you think regulators won’t notice this chokepoint, you haven’t been paying attention. The EU’s coming digital identity regulations make SSI quasi-mandatory. But which SSI? The one where the state issues the credential, or the one where a private bank does? The regulator’s wet dream is a reputation bank that can burn your financial identity across fifty platforms simultaneously because an algorithm flagged you.

More control over a reputation bank that burns you on many exchanges at once is the wet dream of any regulator.

The answer isn’t to ban reputation banks. The answer is non-custodial reputation—reputation computed from your actions, not issued by an authority. More on that in a moment.

The Mosaic Trust Network Answer

Here’s where our infrastructure enters the frame.

The Mosaic Trust Network (MTN) implements self-sovereign identity on a substrate designed for this exact problem. DIDs and Verifiable Credentials are the primitives. But the key innovation is what we call the Janus Identity: two faces, one wallet.

Face 1: The Legacy Face. Satisfies the bank, the regulator, the state. Issued by traditional KYC, accepted by legacy systems. This is the face SumSub knows.

Face 2: The Sovereign Face. Satisfies the protocol, the counterparties, the ecosystem. Computed from behavioral graph data, not issued by any authority. Nobody can revoke it because it doesn’t belong to anyone—it’s a mathematical property of your position in the trust lattice.

The zero-knowledge bridge connects them without revealing the linkage. The bank serves the legacy-facing side. The protocol serves the sovereign side. The user holds both.

Two worlds. Two faces. One identity.

If a bank revokes your legacy credential, your sovereign reputation remains intact. Your trust edges don’t evaporate because a compliance officer changed their mind. The bank controls the legacy face. You control the sovereign face.

The Competitive Landscape

Tier 1: Reputation Banks (Digital-first banks that move first)

  • Issue portable VCs that accumulate behavioral trust
  • Charge subscription models for ongoing reputation maintenance
  • Build ecosystem acceptance through network effects
  • Become the “Visa of financial identity”—trusted everywhere, verified once
  • Examples that could win: Bunq, N26, Revolut, any neobank with 3+ years of behavioral data

Tier 2: Bridge Oracles (privacy-preserving intermediaries)

  • Verify legacy documents, issue sovereign credentials
  • Charge per-bridge transaction
  • Don’t custody reputation; just translate between worlds
  • Lower margin, lower risk, lower power
  • This is where traditional KYC providers end up if they’re smart

Tier 3: Protocol-Native Trust (MTN, Web-of-Trust systems)

  • No issuer, no custodian, no chokepoint
  • Reputation emerges from behavior, not attestation
  • Slower to bootstrap; impossible to capture
  • The end-state for anyone who takes sovereignty seriously

The smart play for digital banks? Move to Tier 1 now—issue the first reputation credentials, lock in the network effects before the traditional banks wake up. The data advantage you already have is your unfair head start.

The smart play for the freedom-loving? Use Tier 1 as the legacy-facing interface while building Tier 3 reputation in parallel. When the Tier 1 bank inevitably gets captured by regulators or private equity—and they will—your sovereign reputation is already established.

The Pitch for the Digital Banking Conference

Attila VidĂĄkovics asked me for the core idea. Here it is, sharpened for a room full of bankers:

Digital banks already have everything they need to become reputation institutions. Years of behavioral data. Regulatory licenses. Customer trust. The KYC process. The infrastructure.

What they don’t have is the credentialing layer—the SSI stack that makes behavioral data portable as a verifiable credential.

MTN provides that layer. Banks provide the trust anchor.

The pitch to a banker: Stop competing on interest rates. Start competing on reputation quality. The bank that issues the most trusted financial identity credentials wins the next decade of financial infrastructure—not because of blockchain, but because behavioral trust is the new deposit.

The Prediction

Within five years, the major digital banks will offer “financial identity passports”—portable credentials that carry accumulated behavioral trust across platforms. They’ll market it as convenience. They’ll sell it as innovation. And it will be both.

But underneath the marketing, the economics will have shifted permanently. The bank stops being a ledger of transactions. It becomes a custodyer of trust. The verified financial identity becomes an asset with compounding value. And the question that matters—the only question that has ever mattered in the history of banking—is:

Who controls the ledger?

If the bank controls it, you have a new kind of financial institution with a new kind of power over your economic life. If you control it, you have sovereignty.

The technology enables both outcomes. The architecture decides which one you get.

Choose your architecture carefully.

Markus Maiwald builds sovereign infrastructure at libertaria.dev. Attila VidĂĄkovics builds the Mosaic Trust Network at dlabs.io. The code is the argument.