Technical content

Sumcheck Protocol

Aligned

20 Oct 2024 — 2 min read

The Sumcheck protocol is an efficient tool to develop succinct arguments.

It is relied upon by many proof systems, such as Lasso/Jolt by a16z crypto, HyperPlonk, Binius, Spartan, and GKR.

Sumcheck was first proposed by Lund, Fortnow, Karloff, & Nisan in 1992.

The sumcheck protocol is an interactive protocol working over multivariate polynomials, that is, polynomials in many variables, such as p(x1,x2) = 1 + x2 + 5 x1x2 + x1^6.

The prover tries to convince the verifier that the sum of all the evaluations of the polynomial over some set is equal to some number.

For the previous polynomials, we could try to evaluate over (0,0), (1,0), (0,1), and (1,1) and sum the results (the answer is 13).

This reduces the amount of work that the verifier needs to do to check the statement.

Using the sumcheck protocol, the verifier can check the correctness of the result in O(n + cost to evaluate the polynomial at one point), where n is the number of variables, (whereas computing over all possible values takes O(2^n)).

This enables many interesting protocols, such as the zero check.

On a high-level overview, the verifier will ask the prover to sum over all variables except the first one, obtaining a univariate polynomial.

The verifier can then check the sum by evaluating the univariate polynomial over the set and summing.

To ensure that the prover didn’t give a false polynomial, the verifier will select a random point and will apply the sumcheck protocol to the n - 1 variable polynomial.

The Sumcheck protocol proceeds in n rounds, where the prover and verifier exchange messages:

The verifier can check (for the Boolean hypercube) that g1(0)+g1(1) = S0 and that g1(x1) has a degree bounded by the maximum allowable degree.

The sumcheck protocol is complete and has a soundness error equal to n d / |F|, where d is the maximum degree for each variable and |F| is the size of the field. The proof size consists of O(nd) field elements.

If you want to learn more about the Sumcheck protocol, you can read Proofs, Arguments, and Zero-Knowledge by Justin Thaler, and Ingonyama’s super sumcheck.

Stay tuned: 🐦 Twitter | 🗨️ Telegram | 👾 Discord | 🌐 Website | 📝 Manifesto

ZK-News - January 20th-26th, '25

✨ ZK-Newsflash! ✨ Here are the highlights of what happened in the ZK space from January 20th to 26th, 2025. New blog post series: Showcasing the awesome projects built during our hackathon. 💻 This series will showcase various use cases of ZK and demonstrate how Aligned can support these projects! The first featured

Aligned Hackathon Spotlight Vol. 1: A Framework for ZK Gaming

Welcome to the first post in a series showcasing the winners of the inaugural Aligned Builders Hackathon. Each article will highlight innovative use cases for ZK technology enabled by Aligned's Proof Verification Layer. The hackathon projects ranged from ZK-enabled games and private voting apps to light client bridging

ZK-News - January 13th-19th, '25

✨ ZK-Newsflash! ✨ Here are the highlights of what happened in the ZK space from January 13th to 19th, 2025. Showing how important decentralization is to us: Sharing data from our operators. 🚀 Our Proof Verification Layer is powered by 55 operators and currently secured by more than 2.4M restaked ETH (over

零知识证明年度回顾与总结

Aligned 20 Jan 2025 查看博客文章 2024 年是零知识（ZK）技术发展历程中具有里程碑意义的一年，我们取得了重大的突破，接下来让我们一起来回顾一些闪光时刻： ✅ 重要公告零知识技术进入以太坊共识层 Justin Drake 提出了“Beam 链”，旨在重新设计以太坊共识层。这一提议旨在通过“snark化”以太坊链，开启以太坊共识的新纪元。了解更多 Aligned 主网测试版正式上线令人激动的是，从零起步到主网的成功上线，仅间隔了一年时间。阅读全文引入 ZK-STARKs 到比特币网络 StarkWare 以扩展以太坊而闻名，现在正将其专业技术应用于比特币。这一举措有望帮助实现中本聪的愿景。了解更多 ✅ 研究成果证明系统 * Circle STARKs Polygon 与 StarkWare 联合完成的一项研究，推动了 STARK 技术的应用。了解更多

Read more

ZK-News - January 20th-26th, '25

Aligned Hackathon Spotlight Vol. 1: A Framework for ZK Gaming

ZK-News - January 13th-19th, '25

零知识证明年度回顾与总结