Hyperplonk: Plonk with linear-time prover and high-degree custom gates
Plonk is a widely used succinct non-interactive proof system that uses univariate polynomial
commitments. Plonk is quite flexible: it supports circuits with low-degree “custom” gates as …
commitments. Plonk is quite flexible: it supports circuits with low-degree “custom” gates as …
Orion: Zero knowledge proof with linear prover time
Zero-knowledge proof is a powerful cryptographic primitive that has found various
applications in the real world. However, existing schemes with succinct proof size suffer from …
applications in the real world. However, existing schemes with succinct proof size suffer from …
Ligero: Lightweight sublinear arguments without a trusted setup
We design and implement a simple zero-knowledge argument protocol for NP whose
communication complexity is proportional to the square-root of the verification circuit size …
communication complexity is proportional to the square-root of the verification circuit size …
Zero-knowledge proofs of training for deep neural networks
A zero-knowledge proof of training (zkPoT) enables a party to prove that they have correctly
trained a committed model based on a committed dataset without revealing any additional …
trained a committed model based on a committed dataset without revealing any additional …
Lattice-based SNARKs: publicly verifiable, preprocessing, and recursively composable
A succinct non-interactive argument of knowledge (SNARK) allows a prover to produce a
short proof that certifies the veracity of a certain NP-statement. In the last decade, a large …
short proof that certifies the veracity of a certain NP-statement. In the last decade, a large …
Unlocking the lookup singularity with Lasso
This paper introduces Lasso, a new family of lookup arguments, which allow an untrusted
prover to commit to a vector a∈ F m and prove that all entries of a reside in some …
prover to commit to a vector a∈ F m and prove that all entries of a reside in some …
BaseFold: efficient field-agnostic polynomial commitment schemes from foldable codes
H Zeilberger, B Chen, B Fisch - Annual International Cryptology …, 2024 - Springer
This works introduces BaseFold, a new field-agnostic Polynomial Commitment Scheme
(PCS) for multilinear polynomials that has O (log 2 (n)) verifier costs and O (n log n) prover …
(PCS) for multilinear polynomials that has O (log 2 (n)) verifier costs and O (n log n) prover …
LaBRADOR: compact proofs for R1CS from module-SIS
W Beullens, G Seiler - Annual International Cryptology Conference, 2023 - Springer
The most compact quantum-safe proof systems for large circuits are PCP-type systems such
as Ligero, Aurora, and Shockwave, that only use weak cryptographic assumptions, namely …
as Ligero, Aurora, and Shockwave, that only use weak cryptographic assumptions, namely …
Proofs, arguments, and zero-knowledge
J Thaler - Foundations and Trends® in Privacy and Security, 2022 - nowpublishers.com
Interactive proofs (IPs) and arguments are cryptographic protocols that enable an untrusted
prover to provide a guarantee that it performed a requested computation correctly …
prover to provide a guarantee that it performed a requested computation correctly …
Weak fiat-shamir attacks on modern proof systems
Q Dao, J Miller, O Wright… - 2023 IEEE Symposium on …, 2023 - ieeexplore.ieee.org
A flurry of excitement amongst researchers and practitioners has produced modern proof
systems built using novel technical ideas and seeing rapid deployment, especially in …
systems built using novel technical ideas and seeing rapid deployment, especially in …