Beyond the circuit: How to Minimize Foreign Arithmetic in ZKP Circuits

Michele Orrù; George Kadianakis; Mary Maller; Greg Zaverucha

Paper 2024/265

Beyond the circuit: How to Minimize Foreign Arithmetic in ZKP Circuits

Michele Orrù

, French National Centre for Scientific Research

George Kadianakis, Ethereum Foundation

Mary Maller, Ethereum Foundation, PQShield

Greg Zaverucha, Microsoft Research

Abstract

Zero-knowledge circuits are frequently required to prove gadgets that are not optimised for the constraint system in question. A particularly daunting task is to embed foreign arithmetic such as Boolean operations, field arithmetic, or public-key cryptography. We construct techniques for offloading foreign arithmetic from a zero-knowledge circuit including: (i) equality of discrete logarithms across different groups; (ii) scalar multiplication without requiring elliptic curve operations; (iii) proving knowledge of an AES encryption. To achieve our goal, we employ techniques inherited from rejection sampling and lookup protocols. We implement and provide concrete benchmarks for our protocols.

Metadata

Available format(s): PDF
Category: Cryptographic protocols
Publication info: Preprint.
Keywords: zero-knowledge argument of knowledge discrete logarithm equality aes
Contact author(s): m @ orru net
george kadianakis @ ethereum org
mary maller @ ethereum org
gregz @ microsoft com
History: 2024-02-19: approved; 2024-02-16: received; See all versions
Short URL: https://ia.cr/2024/265
License: CC0

BibTeX

@misc{cryptoeprint:2024/265,
      author = {Michele Orrù and George Kadianakis and Mary Maller and Greg Zaverucha},
      title = {Beyond the circuit: How to Minimize Foreign Arithmetic in ZKP Circuits},
      howpublished = {Cryptology ePrint Archive, Paper 2024/265},
      year = {2024},
      note = {\url{https://eprint.iacr.org/2024/265}},
      url = {https://eprint.iacr.org/2024/265}
}