arnaucube
/
shockwave-plus
mirror of https://github.com/arnaucube/shockwave-plus.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
70 KiB
 
Tree: 69c6b26205
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '69c6b26205'
${ noResults }
Daniel Tehrani 69c6b26205 Init commit! 2 years ago
shockwave_plus Init commit! 2 years ago
tensor_pcs Init commit! 2 years ago
.gitignore Init commit! 2 years ago
Cargo.toml Init commit! 2 years ago
README.md Init commit! 2 years ago

README.md

Shockwave+

Overview

Shockwave is a variant of Brakedown that uses Reed-Solomon code instead of a linear-time encodable code. Shockwave+ is an extension of Shockwave that works over all finite fields by using ECFFT instead of FFT for low-degree extension of polynomial evaluations.

Brakedown has a linear-time prover and is field-agnostic (i.e. works over all finite fields), but its proofs are concretely larger than Shockwave’s.

Shockwave provides shorter proofs and lower verification time but requires an FFT-friendly field to achieve $O (n\log{n})$ proving time.

Shockwave+ inherits the smaller proofs of Shockwave and is also field-agnostic. It uses the EXTEND operation from ECFFT to run Reed-Solomon encoding in $n\log{n}$ time.

Crates shockwave_plus contains the prover/verifier for a zero-knowledge proof of R1CS satisfiability. It’s based on the PIOP from Spartan, and uses the multilinear polynomial commitment scheme implemented in tensor_pcs.

Zero-Knowledge

We use the zero-knowledge sum-check protocol from Libra to transform the Spartan PIOP into a zero-knowledge PIOP. And use a technique from BCG+17 to make the polynomial commitment scheme zero-knowledge.

The EXTEND operation is implemented in a separate crate ecfft and is used in tensor_pcs.

Benchmarks

TBD

Future work

Run tests

cargo test