ZK Year in Review
2024 was a groundbreaking year for Zero-Knowledge (ZK) technology, with significant advancements.
It's been an exciting journey. Let’s dive into a recap of the key highlights!
Here we have:
✅ Notable Announcements
🔹 ZK in the Ethereum consensus layer
🔹 Aligned's Mainnet Beta Launch
🔹 Bringing ZK-STARKs to Bitcoin
🔹 Proving records
🔹 Milestones for zkVMs
✅ Research
🔹 Proving Systems
🔹 Polynomial Commitment Schemes
🔹 Folding Schemes
Enjoy!
✅ Notable Announcements
🔹 The Beam Chain
Justin Drake presented “The Beam Chain”, a proposed redesign of the Ethereum consensus layer.
The proposal aims to 'snarkify' the chain, entering a new era of the Ethereum Consensus.
Announcement of an announcement!
— Justin Ðrake 🦇🔊 (@drakefjustin) November 11, 2024
Tomorrow at 5pm on the Devcon main stage I will unveil my most ambitious initiative to date. For one year I have been thinking about what a from-scratch redesign of the Ethereum consensus layer could look like. The goal is to suggest a credible…
🔹 Aligned's ZK Verification Layer Mainnet Beta Launch
Read the full announcement for supported verifiers, estimated verification cost savings, and more.
We couldn't be more thrilled. It's incredible to think that all this has been built from scratch to mainnet in less than a year.
SEND PROOFS.
— Aligned (@alignedlayer) November 30, 2024
After 9 months of development we are happy to announce that Aligned's ZK verification layer – mainnet beta – is now live on Ethereum.
This means that developers can verify ZK proofs on Ethereum for less than 10% of the cost and that they can submit thousands of… pic.twitter.com/2zI829I1Tw
🔹 Introducing Rogue
Federico Carrone made a major announcement introducing Rogue, a decentralized and based ZK Layer 2.
Its main goal is bringing crypto back to its foundational roots.
- No VCs.
- No team allocation.
- And a launch that ensures equal access for everyone.
Some friends questioned me for doing this. But hey, life is about pursuing what you believe in and having fun in the process. This is the beginning of why and how I’m going rogue.
— Fede’s intern 🥊 (@fede_intern) October 15, 2024
I am going rogue
The original promise of cryptocurrency was simple: decentralization, ownership by… pic.twitter.com/UmKLB7n5mx
🔹 Bringing ZK-STARKs to Bitcoin
StarkWare has published plans to scale Bitcoin with ZK-STARKs!
Starkware, known for scaling Ethereum, is now bringing its expertise to Bitcoin. This move promises to expand Satoshi's vision globally.
Bitcoin's biggest challenge is scalability. StarkWare has a vision to change that.
— StarkWare 🐺🐱 (@StarkWareLtd) June 4, 2024
The concept of STARK scaling for blockchains was first introduced by @EliBenSasson at a Bitcoin conference in early 2013.
It's now time to scale Bitcoin with ZK-STARK, making it more accessible… pic.twitter.com/sdx7sQJzur
🔹 Proving records
They shattered the proving record with over 500,000 hashes proved per second on a commodity quad-core CPU.This implies that more efficient proving technology can be used to reduce proving costs.
Oops!... We did it again: Another breakthrough in scaling 💅
— StarkWare 🐺🐱 (@StarkWareLtd) July 4, 2024
This time, we set a new proving record with our brand-new prover, Stwo.
With Stwo, we measured a proving throughput of over:
💠 500,000 Poseidon hashes per second on an Intel i7 CPU with 4 cores 🤯
💠 600,000 per… pic.twitter.com/CVt5A2EHNA
Daniel Luvarov announced having proven 1.7 million Poseidon hashes per second on a laptop.
That's mind-blowing.
Plonky3 will get very fast on the server side thanks to @FabricCrypto, but we haven't forgotten about CPU performance.
— Daniel Lubarov (@dlubarov) October 14, 2024
In the past few weeks, things have gotten 2-4x faster, with my laptop (M3 Max) now proving ~1.7 million Poseidon2 hashes per second.
🔹 Accelerating ZK proofs
Ingonyama proposed ICICLE, a library for cryptographers, designed to accelerate ZK provers.
Here are the announcements for each version.
2/3
— Ingonyama (@Ingo_zk) January 23, 2024
Today we also celebrate the release of ICICLE v1.0.0, which offers devs easy onboarding, documentation, examples and full support
ICICLE allows developers with no #GPU experience to dramatically accelerate their ZK applications 🧊https://t.co/uPDnLkI5n7 pic.twitter.com/ohHuMcSI4H
🔹 Milestones for zkVMs
- RiscZero introduced zkVM 1.2
This release unlocks new capabilities in how precompiles work in zero-knowledge systems.
Read on to learn more.
RISC Zero's zkVM 1.2 introduces "application-defined" precompiles.
— RISC Zero 🟡 (@RiscZero) December 12, 2024
Build high-performance ZK apps with precompiles that ship with your application, not the zkVM.
No system updates. No coordination. Just go faster. pic.twitter.com/P2Nvg65NJP
- SP1's official production release, by Succinct Labs
By simply writing Rust, any developer can create real-world ZKP applications.
This is a huge step forward for the adoption of ZK technology.
SP1 is live and ready for production use.
— Succinct (@SuccinctLabs) August 6, 2024
Our blazing fast zkVM enables any developer to create real-world ZKP applications by simply writing Rust.
Let's make ZKPs MAINSTREAM. pic.twitter.com/c8QbwYmSNB
- Lita announced Valida v0.7.0!
Check out the key highlights and bug fixes in the tweet below.
Exciting updates. Don't miss out!
Valida 0.7.0
— Lita (@0xLita) December 17, 2024
Initial WASM Support + DevX Improvements for Valida
Key Highlights:
(1) Proof of Concept: WASM Examples
• We can compile WASM programs which compute functions from a single integer to a single integer.
• More comprehensive WASM support is in progress.
(2) ARM… pic.twitter.com/ilBQ4O2z6U
- Nexus launches its Network Testnet.
The Nexus Network is a world-scale supercomputer, a global instantiation of the Nexus zkVM.
It aggregates the collective CPU and GPU power of any device into a global compute supercluster.
On Monday, December 9, at 9:00 am Pacific, we’ll be launching a new Nexus network testnet.
— Nexus (@NexusLabs) December 6, 2024
The goal is to enable the Verifiable Internet.
Watch our latest video to learn more about what we are building. pic.twitter.com/gkTCWMjTbj
- Scroll announced OpenVM, a modular zkVM framework built for customization and extensibility.
This work was designed in collaboration with Axiom and individual contributors.
We're excited to announce OpenVM, a performant and modular zkVM framework built for customization and extensibility.
— Scroll (@Scroll_ZKP) December 16, 2024
Designed in collaboration with @axiom_xyz and individual contributors including @maxgillett, OpenVM introduces a novel modular design allowing developers to… pic.twitter.com/fYHMyQLhdo
- a16z crypto released Jolt.
It represented a new approach to zkVM design.
Read the linked thread from Justin Thaler, Research Partner at a16zcrypto, to learn more about the details, including how the sum-check protocol is used in this work.
1/ We're excited to share the initial release of Jolt, a new approach to zkVM design. Early benchmarks indicate it outperforms RISC Zero by ~6x and SP1 by up to 2x. Major optimizations are still in the pipeline.
— Justin Thaler (@SuccinctJT) April 9, 2024
- Bonus Track
Plonky3
Polygon announced that Plonky3, the Next Generation of ZK Proving Systems, is Production Ready!
Plonky3 is a flexible ZK proving system for building use-case specific virtual machines.
the next-gen zk proving system has landed—Polygon Plonky3 is production ready and open-source.
— Polygon (※,※) (@0xPolygon) July 16, 2024
already powering @SuccinctLabs’ SP1 zkVM, Polygon Plonky3 provides super-performant zk-proving, while SP1 abstracts away the complexity for devs.
continue the thread for more. pic.twitter.com/RubcRkB34M
✅ Research achievements
🔹 Proving systems
- Circle STARKs
Circle STARKs represent one of the most exciting breakthroughs of the entire year.
The research was a collaboration between Ulrich Haböck from Polygon and StarkWare’s David Levit and Shahar Papini.
Math-heads, you’re in for a treat.
— StarkWare 🐺🐱 (@StarkWareLtd) February 21, 2024
Introducing Circle STARK 🔵
Over the past three months, we’ve worked in collaboration with the Polygon Labs team on a new blazingly fast STARK protocol.
Today, we are proud to announce a ground-breaking mathematical advancement:
✨
A… pic.twitter.com/sjEeBQZ2hA
- Polymath
Helger Lipmaa explores shortening the argument of the Groth16 zkSNARK for R1CS, proposing Polymath: Groth16 is not the Limit.
This opens up exciting possibilities for future applications.
Well, this happened (accepted to Crypto 2024)https://t.co/OyMUJ0pD0O pic.twitter.com/d3z5klM2Ak
— Helger Lipmaa 🇺🇦 @helger.bsky.social (@HLipmaa) June 12, 2024
- Pari and Garuda
A paper on two new SNARKs, Pari and Garuda, was published by Pratyush Mishra, Alireza Shirzad, and Michel Dellepere.
The authors claim that Pari is the smallest known SNARK, and Garuda reduces proof generation time by supporting arbitrary “custom” gates and free linear gates.
Excited to share our work on two new SNARKs: Pari and Garuda.
— Pratyush Mishra (@zkproofs) August 8, 2024
Pari is the smallest known SNARK (just 1280 bits), while Garuda achieves a very fast prover by supporting "free" addition gates *and* custom gates together.
Joint work with my great coauthors @alrshirzad and Michel pic.twitter.com/GEcPxdKx7t
🔹 Polynomial Commitment Schemes (PCS)
- WHIR
WHIR is a new IOP of proximity that offers small query complexity and exceptionally fast verification time.
The paper is co-authored by Giacomo Fenzi, Gal Arnon, Alessandro Chiesa, and Eylon Yogev.
WHIR 🌪️: a IOP of proximity and multilinear polynomial commitment scheme with exceptionally fast verification time.
— Giacomo Fenzi (@GiacomoFenzi) October 8, 2024
Joint work with @GalArnon42, Alessandro Chiesa and Eylon Yogev.
📚: https://t.co/fABAMldmOY
📄: https://t.co/PPUAwmqqBi
🧑🏻💻: https://t.co/9qwHbPWRgd pic.twitter.com/YKK93tICAc
- Blaze
Blaze is a new and highly efficient multilinear polynomial commitment scheme over binary fields.
It has an extremely efficient prover, both asymptotically and concretely.
The work was presented jointly by Ron Rothblum, Binyi Chen, Ben Fisch, Hadas Zeilberger, Martijn Brehm, and Nicolas Resch.
Excited by a new work , called Blaze, with Martijn Brehm, @Charles_Chen533, @benafisch, Nic Resch and @idocryptography.
— Ron Rothblum (@ronrothblum) October 11, 2024
Blaze is a multi linear PCS for binary fields, with an extremely fast prover both asymptotically and concretely.https://t.co/JAQYbnVaQx
- Greyhound
Ngoc Khanh Nguyen and Gregor Seiler proposed Greyhound, a polynomial commitment scheme from standard lattice assumptions.
It requires no trusted setup and relies on the Module-SIS assumption.
Spotlighting Greyhound 🐾, the new amazing work from @KhanhCrypto and @gregor_seiler!
— Giacomo Fenzi (@GiacomoFenzi) August 20, 2024
A new super fast and compact polynomial commitments from standard lattice assumptions!
📚: https://t.co/hmaoBY0bNp
👨💻: https://t.co/jIEeYTcqWM pic.twitter.com/6u4tbLgGZr
🔹 Folding Schemes
- LatticeFold
It's a work introduced by Binyi Chen and Dan Boneh.
This is the first lattice-based folding scheme whose security depends on the Module Short Integer Solution (MSIS) problem.
Post-quantum & efficient? With @danboneh we introduce LatticeFold–the first lattice-based folding scheme that leads to post-quantum secure IVC/PCD/SNARKs. Surprisingly, we estimate the performance to be competitive with top pre-quantum folding schemes (e.g. Hypernova, Protostar) pic.twitter.com/mTtTNotSAD
— Binyi Chen (@Charles_Chen533) February 19, 2024
- ARC: Accumulation for Reed–Solomon Codes
The work is presented by Benedikt Bünz, Pratyush Mishra, Wilson Nguyen, and William Wang.
The co-authors constructed two hash-based accumulation/folding schemes.
It's impressive to see this kind of progress and development.
I'm excited to share our new paper: https://t.co/I5XwkOAYuz
— William (@kleptographic) October 25, 2024
We construct two hash-based accumulation/folding schemes. These achieve smaller recursion overheads than any previous hash-based approach, and support unbounded steps.
With @benediktbuenz, @zkproofs, @mercysjest pic.twitter.com/l0z0Dm5zbn
- Lova
Lova is a Lattice-Based Folding Scheme from Unstructured Lattices.
This work was presented by Duc Tu Pham, Giacomo Fenzi, Ngoc Khanh Nguyen, and Christian Knabenhans.
One important point to note is that most folding schemes known rely on the hardness of the discrete logarithm problem, which is not quantum-resistant. Unlike that approach, this alternative relies on the (unstructured) SIS assumption.
Our new work Lova 💕 is out! A lattice folding scheme from unstructured lattice assumptions!
— Giacomo Fenzi (@GiacomoFenzi) December 9, 2024
See @cknabs's thread and blog post for more details, and look forward to @HyperD3rp talk at ASIACRYPT this week (thanks to @KhanhCrypto's aura)! https://t.co/Hjo0v1lMP4
🔹 Bonus Track
- Research on Sum-check protocol
A great paper from Ingonyama in collaboration with Justin Thaler was posted!
Building upon Justin Thaler's work on optimizing the sum-check prover for small fields, they have created a new algorithm that offers substantial improvements in both computational efficiency and memory usage.
🥁New paper🥁
— Ingonyama (@Ingo_zk) July 2, 2024
The Sum-Check Protocol over Fields of Small Characteristic, Joint with @SuccinctJT, links below.
Paper: https://t.co/lW7gUnvCLR
Blog: Sumcheck and Open-Binius: https://t.co/efTL5a4qOh
Code: Smallfield-super-sumcheck: https://t.co/IzSXWsNlv9 pic.twitter.com/WMd5M8AGQK
- A Zero-Knowledge PCP Theorem
The work was presented by Tom Gur, Jack O'Connor, and Nicholas Spooner.
In the linked tweet you will find a short description by Tom Gur, and an article posted by Quanta Magazine explaining the process.
This is an amazing result. Congratulations to the authors.
Excited to share this new paper with Jack O'Connor and @_nickspoon! We improve our ZK-PCP construction to cover all of NEXP (with exponential proofs), scale it to NP with polynomial proofs, and obtain O(1)-locality via composition--yielding a ZK analogue of the PCP theorem. 1/3 pic.twitter.com/xb1wfgJZGz
— Tom Gur (@TomGur) November 13, 2024
Stay tuned: 🐦 Twitter | 🗨️ Telegram | 👾 Discord | 🌐 Website | 📝 Manifesto
