Casting out Primes: Bignum Arithmetic for Zero-Knowledge Proofs

Daniel Lubarov; Jordi Baylina Melé

Paper 2022/1470

Casting out Primes: Bignum Arithmetic for Zero-Knowledge Proofs

Daniel Lubarov, Polygon Zero

Jordi Baylina Melé, Polygon Hermez

Abstract

We describe a nondeterministic method for bignum arithmetic. It is inspired by the "casting out nines" technique, where some identity is checked modulo 9, providing a probabilistic result. More generally, we might check that some identity holds under a set of moduli, i.e. $f (\vec{x}) = 0 \mod m_{i}$ for each $m_{i} \in M$ . Then $f (\vec{x}) = 0 \mod lcm (M)$ , and if we know $| f (\vec{x}) | < lcm (M)$ , it follows that $f (\vec{x}) = 0$ . We show how to perform such small-modulus checks efficiently, for certain such as bignum multiplication. We focus on the cost model of zero-knowledge proof systems, which support field arithmetic and range checks as native operations.

Metadata

Available format(s): PDF
Category: Cryptographic protocols
Publication info: Preprint.
Keywords: zero-knowledge SNARK bignum
Contact author(s): daniel @ lubarov com
jordi @ baylina cat
History: 2022-10-27: approved; 2022-10-27: received; See all versions
Short URL: https://ia.cr/2022/1470
License: CC BY

BibTeX

@misc{cryptoeprint:2022/1470,
      author = {Daniel Lubarov and Jordi Baylina Melé},
      title = {Casting out Primes: Bignum Arithmetic for Zero-Knowledge Proofs},
      howpublished = {Cryptology {ePrint} Archive, Paper 2022/1470},
      year = {2022},
      url = {https://eprint.iacr.org/2022/1470}
}