A Future That Preserves Privacy and Ensures eSafety

xString Tech Empowers End Users and Enables Confidential Client Systems

Offers an end-user application that allows users to take control of their own (email-less, biometric-less, name-less, DoB-less, address-less) digital credentials that can be used with a single strike for both sign-up and sign-in, while providing strong multi-factor authentication that confidential client systems can leverage — a secure and advanced Impersonation-Resistant Credential (iRC) authentication system powered by xString Tech.

Strengthens user privacy and data protection through data minimisation, allowing users to sign up or sign in without needing to provide personal phone numbers, email addresses, biometric data, personal device information, other personally identifiable information, or usage pattern data — a privacy-conscious and advanced authentication platform backed by xString Tech.

Provides a seamless proof-of-age verification solution using near zero-knowledge with Proof of Age Digital Certificates (PoADC), without compromising user privacy through legacy approaches such as biometric data analysis, non-consensual data collection by platforms to estimate user age, or uploading government-issued identity documents onto commercial digital platforms — instead, offering a minimum-age-assured, standards-compliant, and privacy-preserving advanced authentication solution driven by xString Tech.

Our goal is to empower end users and enable new and existing IT platforms, confidential client systems, and governments to better serve their citizens, communities, and system users in realistic and responsible ways.

Secure digital experiences built around privacy, trust, and protection XST AAS & MAAS Enpower and Enable Privacy Protect identity Privacy Matters: User consent, minimise data exposure and prevent data misuse. Build individual's digital sovereignty. eSafety Safer online spaces eSafety Matters: Prevent harmful contents, behaviour and abuse. Ensure age-based access. Build trusted digital communities. Privacy-first technology designed to empower users and helps protect communities Identity Protection • Trust • Safety • Transparency • Digital Wellbeing


Leadership in Requirements Elicitation

xString Tech Addresses Significant Challenges in User Authentication

xString Tech has developed a leading technology solution based on deep insights into the common challenges faced by end users, service providers, platform providers, trusted credential providers, and professional accreditation bodies.

Issue Topic: Privacy and Consent

Problem Definition 1: Collecting Identity Attributes for Sign-up and Login

The traditional process requiring users to provide identity attributes such as email addresses, phone numbers, and biometrics during sign-up and login presents significant challenges for both users and service providers. For minors and people with disabilities, the need for guardian consent complicates the process and may exclude those unable to meet the requirements. For privacy-conscious adults, the lack of alternative login methods or non-invasive data collection options can lead to reluctance or refusal to engage with the platform. Service providers face the challenge of maintaining legal compliance, ensuring security, and building trust with users while balancing privacy concerns. To accommodate diverse users, more flexible, inclusive, and privacy-respecting authentication solutions are necessary.

Issue Topic: Privacy Intrusion and Security

Problem Definition 2: Username, Password and Biometric Authentication

The traditional username and password model creates friction for both users and service providers. For users, it creates burdens around memorisation, security risks, and usability challenges. For service providers, it presents technical, security, and legal challenges. As cyber threats grow in complexity, reliance on this model is becoming increasingly insufficient, leading many to explore alternatives such as intrusive biometric solutions, including invasive data collection involving physical location, phone ID, device ID, and OS type, in the name of enhancing security.

Issue Topic: Privacy Concerns and Interconnectivity

Problem Definition 3: Proof of Age and Credential Verification

The traditional process of proving a user’s age and verifying credentials presents numerous challenges for both users and service providers, further exacerbated by the lack of interconnectivity between service providers and accredited identity or credentialing bodies. From the user’s perspective, this leads to privacy concerns, trust issues, and a fragmented verification experience. Service providers, on the other hand, must navigate complex regulatory environments and manage operational inefficiencies, while maintaining trust and security. To address these issues, there is a critical need for more integrated, secure, and user-friendly solutions that streamline the verification process, reduce friction, and support minimum age assurance compliance without compromising user trust or data privacy.

Issue Topic: Complexity and Friction

Problem Definition 4: Sign-up and Sign-in with Multiple Steps and Devices

Traditional sign-up and sign-in processes involving multiple steps and MFA create friction for both users and service providers. From the user’s perspective, the complexity of managing multiple steps, devices, and passwords leads to frustration, barriers to access, and a less convenient experience. From the service provider’s perspective, the challenge lies in balancing security with user experience, managing higher operational costs, and reducing user abandonment caused by complicated authentication flows. To improve both security and usability, there is a growing need for innovative, frictionless authentication solutions that streamline sign-ups and sign-ins without compromising security.



Availability and Security

Discover the Full Range of Our Offerings

Our offerings include an end-user application, with availability planned through the Apple App Store for iOS and the Google Play Store for Android. The application is designed to support seamless interaction with our verification systems through a streamlined user experience.

For web platform operators, our technology stack is designed to support secure user authentication and verification workflows across a range of deployment environments. The product suite includes user-facing applications, backend infrastructure components, middleware integration services, and distributed verification systems intended to support evolving business requirements

Explore how our technologies may support your backend infrastructure and operational workflows. Components including the Authenticator, Orchestrator, and WorkerNodes are designed to assist with integration efficiency, workflow coordination, and security-focused authentication processes.

Additional product information, technical resources, implementation guidance, pricing details, and selected case-study materials are progressively made available through the Member Access Portal.

Access to the Member Access Portal is available through a privacy-preserving passwordless sign-in process that does not require an email address or phone number.

Choose SaaS (managed) or Self-hosted (your infrastructure) SAAS Managed service Subscription Model SELF- HOSTED Customer-managed infrastructure Install Package


Buy Now

Please email us your request for more than 5 Key Cards.
Please email us your request for more than 5 Key Fobs
×

Support Our Growth

Your donation helps us sustain and grow this project. Every contribution, no matter the amount, makes a difference. You're welcome to adjust the default amount to any amount you prefer. Thank you for your generous support!

We truly appreciate your generosity and support.


Pricing Model

Flexible and Accessible Pricing for All Business Sizes

We offer flexible pricing options designed to support organisations ranging from smaller teams to large-scale enterprise environments.

Pricing models may vary depending on user volume, deployment requirements, and integration scope.

Additional information regarding pricing, product capabilities, and deployment options is available through the Member Access Portal.

Member Access Portal access requires sign-up. Please refer to the 'How to Sign-up' page.”

Accessible pricing Simple, transparent, scalable Business Size Subscription $ / month Trial / Production


Knowledge-based for End-user

Explore and Grow with Our Learning Resources

Our Learning Center is your gateway to tutorials, webinars, and hands-on workshops designed to help you master our platform. Whether you’re a beginner or an experienced developer, our resources are tailored to different skill levels and are regularly updated to cover the latest features and best practices.

Sign up effortlessly—without providing email or phone details—and use passwordless sign-in to access exclusive learning content. From beginner’s guides to expert-level technical deep dives, we provide you with the knowledge to harness the full power of our platform.



Interactive Self-Guided Demonstration

Hands-On Firsthand Experience

Direct interaction with the platform provides an opportunity to explore the privacy-preserving sign-up and passwordless sign-in experience firsthand.

Following sign-in, the Member Access Portal provides access to additional technical documentation and supporting materials relating to platform architecture, implementation considerations, and integration workflows.

The platform is designed around security-focused principles intended to support both end-user usability and practical deployment within modern business and technology environments.

Demo Overview: A High-Level Walkthrough of OAuth 2.0 and OpenID Connect for Authentication and Authorisation.

Interested in exploring how our technology may support your needs? This hands-on, firsthand experience showcases interactive, real-world examples of our solutions in action, highlighting usability, workflow design, and core capabilities.

Explore OAuth 2.0, OpenID, and IRC authentication-related content within the Member Access Portal.

The Member Access Portal is continuously evolving, with additional content and functionality being progressively introduced over time.

OAuth 2.0 & OpenID Connect Authentication and authorisation across trusted applications and services User OP OIDC Layer Verifies user credentials Issues ID token ID Token OAuth 2.0 Authorisation Layer Grants application access Issues access token Access Token App / API Login Request OpenID + Consent Access OpenID Connect authenticates the user while OAuth 2.0 authorises access ID Token • Access Token • Consent • Single Sign-On • Secure APIs • Delegated Access xString Tech Disclaimer OpenID Connect formally uses the term “OpenID Provider (OP)”, although many implementations and vendors loosely refer to it as an “Identity Provider (IdP)”. In practice, these providers usually manage digital credentials, sessions and claims for authentication, rather than establishing real-world identity, legal personhood, or government-backed proof. xString Tech solutions are grounded in system access credentials rather than proofing a person’s real-world identity. In this context, “OpenID Provider (OP)” refers to authentication and access management, not verification of a person's real-world identity. However, a relying party may leverage successful authentication to initiate its internal Know Your Customer (KYC) process or Know Your Client (KYC) journey.


Software

Get the Latest Versions of Our Software

Software, middleware components, patches, and related updates are progressively made available through the Member Access Portal. Releases are prepared with a focus on stability, compatibility, and practical integration into existing environments.

Access to downloads and related resources is available through our privacy-preserving passwordless sign-in process, without requiring an email address or phone number.

Core Software Components Get the latest versions from our software library Authentication Mode: Trial / Prod Host OS: Wins / Linux Server Orchestration Mode: Trial / Prod Host OS: Wins / Linux Server xCVN Node Mode: Trial / Prod Host OS: Wins / Linux WorkerNode Components are bundled into a single subscription Certificate options include single or dual certificates for HA configuration. Download Software Subscription-based access to latest software versions PRE-SIGNED URL Generated after subscription check SUBSCRIPTION-BASED UPDATES Enabled by valid license certificate Licensed vX.X.X SUBSCRIPTION ACTIVE


Architecture, Design and Development

Detailed Technical Dcumentation

Our documentation is intended to support the implementation and integration of our platform across a range of business workflows and technical environments. Resources include setup guidance, integration references, API documentation, and supporting materials relating to our tools, middleware, and verification infrastructure.

Documentation and related technical resources continue to evolve alongside the platform, supporting varying deployment requirements and levels of technical familiarity.

Technical Design Architecture overview API and HA Designs API Code Snippets Server Configurations


How to sign-up and sign-in?

Authenticator App

First, you will need to download either the myAge authenticator app, or the iRC Auth authenticator app and installed it on your mobile device. Note: The myAge app is now available for download on the Apple App Store (for iOS devices), and the iRC Auth app is being prepared. The Android versions of both app are also being prepared for release on the Google Play Store. Please check back soon for updates.

Setup

Once the app is installed, create a new Impersonation-Resistant Credential (iRC) independently. This action does not involve a second or third party. Important! Your keys are your secrets. Not to be shared or stored on someone else's computer "in the cloud", regardless of whether they are encrypted or not.

  • Use this guide when setting up the myAge authenticator app for the first time.

▶ Watch Setup Video

Sign-up / Sign-in

Simply follow the basic user guide in the app — if you use iRC Auth app to sign-up you will be prompted to enable TOTP MFA and store the key in your iRC Auth app during sign-up. One signed-in depending on your contry code you may be able to add Out-of-Band Code (OOBC) to your account for an additional MFA layer.

  • Use this guide when both the myAge authenticator app and the xString Tech website are running on the same mobile device.

▶ Watch Same-Device Demo

  • Use this guide when the myAge authenticator app is on your mobile device while the xString Tech website is accessed from a Mac, Windows PC, or Linux desktop computer.

▶ Watch Cross-Device Demo

Expected Result

If you see "Welcome!", your new account has been successfully created or you have successfully logged in to your existing account.



Hands-on Evaluation

Privacy-Preserving Age Assurance

Proof of Age Digital Certificate (PoADC), powered by xString Tech, transforms how age assurance is delivered online. Instead of platforms estimating a user’s age through intrusive data collection, PoADC provides highly accurate, cryptographically verified proof of age — without revealing personal identity information.

Key Benefits

• Age is assured with high accuracy — not guessed.

• No personal details are embedded within the PoADC.

• Verification occurs independently and cryptographically, without platforms needing to “call home”.

• Eliminates unnecessary collection of sensitive personal data for age estimation.

• No requirement to upload government-issued identity documents to commercial platforms or websites.

• No need for facial image capture or facial scanning simply to prove age.

• Helps reduce exposure to data leaks, identity theft, and unnecessary data retention.

A Privacy-First Approach

PoADC enables platforms to achieve age assurance objectives while helping protect user privacy, security, and digital trust.

Proof of age — not proof of identity.



You will need to download xString Tech myAge app from the Apple App Store or Google Play Store.

Note: This evaluation requires the myAge authenticator app to interact securely with the MAAS application server. The iOS version is currently available on the Apple App Store, and the Android version is being prepared for release on the Google Play Store. Please check back soon for updates.



Minimum Age Assurance System (MAAS)

1. Dedicated MAAS functions and features are available to government agencies, government departments, and social media platforms worldwide for hands-on evaluation and testing. Access requires a specific access key. If you do not yet have an access key, please request one by emailing: accesskey@xstring.tech

2. User-focused functions and interactive self-guided demonstration features are fully developed and operational. Public demonstration access will be progressively expanded based on demonstrated community interest and adoption levels, including growing download activity of the myAge app.

At present, iOS users can already use the myAge authenticator app to sign up and sign in to the xString Tech Member Access Portal without requiring an email address, phone number, or other personal information.

Fund Results, Not Promises

Delivering Measurable Outcomes at Scale.

Let's solve real problems, and leave things better than we found them.



Discussion


Architecture, Design and Development

info@xstring.tech


Fund Results, Not Promises

Delivering Measurable Outcomes at Scale.

Let's solve real problems, and leave things better than we found them.



Help us shape a future that preserves privacy and ensures eSafety for everyone. Support real-world outcomes Fund measurable results, trusted systems, and stronger digital communities. Contact us for info XST Privacy First Design Outcomes Not Promises eSafety Protection


How to sign-up and sign-in?

Authenticator App

First, you will need to download either the myAge authenticator app, or the iRC Auth authenticator app and installed it on your mobile device. Note: The myAge app is now available for download on the Apple App Store (for iOS devices), and the iRC Auth app is being prepared. The Android versions of both app are also being prepared for release on the Google Play Store. Please check back soon for updates.

Setup

Once the app is installed, create a new Impersonation-Resistant Credential (iRC) independently. This action does not involve a second or third party. Important! Your keys are your secrets. Not to be shared or stored on someone else's computer "in the cloud", regardless of whether they are encrypted or not.

  • Use this guide when setting up the myAge authenticator app for the first time.

▶ Watch Setup Video

Sign-up / Sign-in

Simply follow the basic user guide in the app — if you use iRC Auth app to sign-up you will be prompted to enable TOTP MFA and store the key in your iRC Auth app during sign-up. One signed-in depending on your contry code you may be able to add Out-of-Band Code (OOBC) to your account for an additional MFA layer.

  • Use this guide when both the myAge authenticator app and the xString Tech website are running on the same mobile device.

▶ Watch Same-Device Demo

  • Use this guide when the myAge authenticator app is on your mobile device while the xString Tech website is accessed from a Mac, Windows PC, or Linux desktop computer.

▶ Watch Cross-Device Demo

Expected Result

If you see "Welcome!", your new account has been successfully created or you have successfully logged in to your existing account.