World Releases Major Upgrade to World ID Protocol, Advancing 'Real Person Verification' to Cross-Platform Passports
World has released a major upgrade to the World ID protocol, covering approximately 18 million users verified by Orb globally, expanding to over 160 countries, and launching a standalone beta version of the World ID app along with an open-source SDK. This upgrade advances World ID from single-point identity verification to a cross-application 'real person passport', emphasizing the continuous confirmation of the same real individual across multiple interactions, rather than just verifying a device or account.
The new version focuses on practical consumer scenarios, including a collaboration with Tinder to provide real person verification badges, a partnership with Zoom to launch anti-deepfake verification features, and a Concert Kit for ticketing to prevent scalping. In the ecosystem, Reddit is exploring the use of it for identifying automated accounts, while Razer and Mythical Games have integrated it into gaming scenarios; the business model has shifted to charge partners based on active users, while users continue to use it for free.
Technically, this upgrade includes multi-key management, key rotation, account recovery, and session management mechanisms, aiming to embed World ID into the authentication processes of different applications like a foundational internet protocol. The official summary of this approach is termed 'Human Continuity', which means continuously proving 'this is the same person', rather than one-time proof of 'this is a real account'.
Source: Public Information
ABAB AI Insight
World's upgrade focuses not on creating another identity product, but on transforming 'real people' into a foundational resource layer of the internet. Previously, platforms verified accounts, devices, and phone numbers; now, World aims to verify 'stable biological entities', targeting not just the login phase, but the underlying logic of platform governance: who is human, who is a robot, and who is allowed to interact.
From an industry structure perspective, the most valuable aspect of such protocols is that they unify three previously disparate pain points: 'anti-bot', 'anti-deepfake', and 'anti-scalping' into a single certification standard. Tinder needs to prevent fake accounts, Zoom needs to prevent forgery, and ticketing needs to prevent bulk ticket grabbing. As long as the same 'real person verification' can be reused across scenarios, platforms won't need to build separate risk control systems, making the protocol layer more likely to form network effects than individual app layers.
However, the real challenge of such systems lies not in technology, but in trust boundaries. World must simultaneously prove 'you are a real person', 'you are the same real person', and 'you can use it anonymously', which creates inherent tension among these three goals. The stronger the verification, the closer it gets to a foundational identity system; the stronger the privacy, the harder it is to persuade platforms to assume compliance and risk control responsibilities. It is essentially attempting to unify identity, authentication, and payment/billing into a single protocol stack, which will directly touch the boundaries of traditional internet identity providers, social platforms, and risk control service providers.
In the long term, if World ID can stabilize in consumer social, ticketing, and gaming, it will not be competing for a single market, but for control over the 'human entry layer'. In the future, platforms may not need to know who you are, but they will increasingly care about whether you are human, whether you are the same person, and whether you are worthy of being allowed access. This will shift internet governance from 'account management' to 'personality continuity management', which is precisely the protocol position World is trying to occupy.