Skip to content

w3f/apk-proofs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

587 Commits
bw6
bw6
 
 
mipp
mipp
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
Light Client.pdf
Light Client.pdf
 
 
README.md
README.md
 
 

Repository files navigation

Fully Succinct BLS Signature Aggregation

Individual BLS signatures on the same message can be aggregated into a single signature that can be verified in constant time, given the verifier knows the aggregate public key of the set of the actual signers [1]. However, computing the aggregate public key is linear in the number of the actual signers and requires the verifier to know the individual public keys.

We avoid such heavy computation for verifiers that are constrained resource-wise and computation-wise (e.g., mobile phones, smart contracts on blockchains) by desining custom non-interactive succinct arguments of knowledge (SNARKs) that compute and ensure the correctness of an apk, i.e., an aggregated public key of actual signers. This repo contains PoC implementations as well as formalisations for our custom SNARKs for apk, given the verifier knows only a commitment to the list of public keys of all the eligible signers and a bitmask identifying the actuall sigers of a message.

See a code example for a sketch of a blockchain light client design exploiting such proofs.

Formal Write-up

The formal description and security model for our custom succinct arguments as well as their application to accountable light clients for PoS blockchains can be found here/stable version and here/on-going updates. A high-level summary of this work as well as its connection with related reseach effort from the Web3 Foundation can be found here.

Video Presentations

A video presentation of this work at sub0 2022 is available here (slides), and at ZK Summit 7 is available here.

How to Reproduce Results in the Formal Write-up

  1. Install Rust toolchain.
  2. Run one of the commands bellow.

Basic Accountable Scheme

cargo test --release --features "parallel print-trace" --test basic 10

cargo test --release --features "parallel print-trace" --test basic 16

cargo test --release --features "parallel print-trace" --test basic 20


Packed Accountable Scheme

cargo test --release --features "parallel print-trace" --test packed 10

cargo test --release --features "parallel print-trace" --test packed 16

cargo test --release --features "parallel print-trace" --test packed 20


Counting Scheme

cargo test --release --features "parallel print-trace" --test counting 10

cargo test --release --features "parallel print-trace" --test counting 16

cargo test --release --features "parallel print-trace" --test counting 20


The output should look, for example, like

Running test for the 'basic' scheme for N = 2^10
Start:   Prover
End:     Prover ....................................................................520.741ms
Start:   Verifier
End:     Verifier ..................................................................25.871ms

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

56 stars

Watchers

10 watching

Forks

19 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages