The Electric Coin Company (ECC) says it discovered a new way to scale blockchains with recursive proof composition,a proof to verify the entirety of a blockchain in one function. For the ECC and zcash, the new project,Halo, may hold the key to privacy at scale.
A privacy coin based on zero-knowledge proofs, referred to as zk-SNARKs, zcashs current underlying protocol relies on trusted setups. These mathematical parameters were used twice in zcashs short history: upon its launch in 2016 and first large protocol change, Sapling, in 2018.
Zcash masks transations through zk-SNARKs but the creation of initial parameters remains an issue. By not destroying a transactions mathematical foundation the trusted setup the holder can produce forged zcash.
Moreover, the elaborate ceremonies the zcash community undergoes to create the trusted setups are expensive and a weak point for the entire system. The reliance on trusted setups with zk-SNARKs was well known even before zcashs debut in 2016. While other research failed to close the gap, recursive proofs make trusted setups a thing of the past, the ECC claims.
Speaking with CoinDesk, ECC engineer and Halo inventor Sean Bowe said recursive proof composition is the result of years of labor by him and others and months of personal frustration. In fact, he almost gave up three separate times.
Bowe began working for the ECC after his interest in zk-SNARKs was noticed by ECC CEO and zcash co-founder Zooko Wilcox in 2015. After helping launch zcash and its first significant protocol change with Sapling, Bowe moved to full-time research with the company.
Before Halo, Bowe worked on a different zk-SNARK variant, Sonic, requiring only one trusted setup.
For most cypherpunks, thats one too many.
People we are also starting to think as far back as 2008, we should be able to have proofs that can verify other proofs, what we call recursive proof composition. This happened in 2014, Bowe told CoinDesk.
In essence, Bowe and Co. discovered a new method of proving the validity of transactions, while masked, by compressing computational data to the bare minimum. As the ECC paper puts it, proofs that are capable of verifying other instances of themselves.
Blockchain transaction such as bitcoin and zcash are based on elliptic curves with points on the curve serving as the basis for the public and private keys. The public address can be thought of the curve: we know what the elliptic curve looks like in general. What we do not know is where the private addresses are which reside on the curve.
It is the function of zk-SNARKs to communicate about private addresses and transactionsif an address exists and where it exists on the curveanonymously.
Bowes work is similar to bulletproofs, another zk-SNARK that requires no trusted setup. What you should think of when you think of Halo is like recursive bulletproofs, Bowe said.
From a technical standpoint, bulletproofs rely on the inner product argument, which relays certain information about the curves to one another. Unfortunately, the argument is both very expensive and time consuming compared to your typical zk-SNARK verification.
By proving multiple zk-SNARKs with onea task thought impossible until Bowes researchcomputational energy is pruned to a fraction of the cost.
People have been thinking of bulletproofs on top of bulletproofs. The problem the bulletproof verifier is extremely expensive because of the inner product argument, Bowe said. I dont use bulletproofs exactly, I use a previous idea bulletproofs are built on.
In fact, Bowe said recursive proofs mean you can prove the entirety of the bitcoin blockchain in less space than a bitcoin blockhead takes 80-bytes of data.
Writing on Twitter, Wilcox said his company is currently studying the Halo implementation as a Layer 1 solution on zcash.
Layer 1 solutions are implementations into the codebase constituting a blockchain. Most scaling solutions, like bitcoins Lightning Network, are Layer 2 solutions built on top of a blockchains state. The ECCs interest in turning Halo into a Layer 1 solution speaks to the originality of the discovery as it will reside next to code copied from bitcoins creator himself, Satoshi Nakamoto.
ECC is exploring the use of Halo for Zcash to both eliminate trusted setup and to scale Zcash at Layer 1 using nested proof composition.
zooko (@zooko) September 10, 2019
Since the early days of privacy coins, scaling has been a contentious issue: with so much data needed to mask transactions, how do you grow a global network?
Bowe and the ECC claim recursive proofs solve this dilemma: with only one proof needed to verify an entire blockchain, data concerns could be a thing of the past:
Privacy and scalability are two different concepts, but they come together nicely here. About 5 years ago, academics were working on recursive snarks, a proof that could verify itself or another proof [and even] verify multiple proofs. So, what [recursive proof composition] means is you only need one proof to verify an entire blockchain.
To be sure, this isnt sophomore-level algebra: Bowe told CoinDesk the proof alone took close to nine months of glueing various pieces together.
A further implication of recursive proofs is the amount of data stored on the blockchain. Since the entire ledger can be verified in one function, onboarding new nodes will be easier than ever, Bowe said.
Youre going to see blockchains that have much higher capacity because you dont have to communicate the entire history in one. The state of the chain still needs to be seen. But if you want to download the entire network you dont need to download the entire blockchain.
While state chains still need to be monitored for basic transaction verification, syncing the entire history of a blockchainover 400 GB and 200 GB for ethereum and bitcoin respectivelybecomes a redundancy.
For zcash, Halo means easier hard forks. Without trusted setups, ECC research claims, proofs of state changes need only reference the latest proof, allowing old history to be discarded forever.
When asked where his discovery ranks with other advancements, Bowe spoke on its practicality:
Where does this stand in the grand scheme of things in cryptocurrency? Its a cryptographic tool to compress computation and scale protocols.
Rubix cube image via Shutterstock
Read the original post:
You Can Now Prove a Whole Blockchain With One Math Problem Really - CoinDesk
- Satoshi Nakamoto Definition | Investopedia - February 6th, 2018 [February 6th, 2018]
- Who is Satoshi Nakamoto, Cryptocurrency's Elusive Creator ... - March 2nd, 2018 [March 2nd, 2018]
- Self-proclaimed Satoshi Nakamoto sued for swindling $5 ... - March 2nd, 2018 [March 2nd, 2018]
- Bitcoin's Creator Satoshi Nakamoto Is Probably This ... - March 28th, 2018 [March 28th, 2018]
- Satoshi Nakamoto - Wikipedia - May 7th, 2018 [May 7th, 2018]
- Satoshi Nakamoto Known to CIA? FBI? Created by NSA? Search ... - August 21st, 2018 [August 21st, 2018]
- Satoshi Nakamoto, bitcoins enigmatic creator - Brain scan - September 6th, 2018 [September 6th, 2018]
- Bootstrapped Gavin: Satoshi Nakamotos identity revealed ... - September 6th, 2018 [September 6th, 2018]
- Satoshi Nakamoto was interested in joining Trons Atlas ... - September 14th, 2018 [September 14th, 2018]
- Satoshi Nakamoto Revealed Says UK Nonprofit Stylometry ... - October 9th, 2018 [October 9th, 2018]
- 2018 Who is Satoshi Nakamoto? Psychic Insights Michelle ... - October 28th, 2018 [October 28th, 2018]
- How bitcoin has failed to achieve Satoshi Nakamotos ... - November 6th, 2018 [November 6th, 2018]
- Satoshi Nakamoto Introduced Bitcoin 10 Years Ago ... - November 6th, 2018 [November 6th, 2018]
- Who Is Satoshi Nakamoto? - bitcoinplay.net - December 14th, 2018 [December 14th, 2018]
- Satoshi Nakamoto Finally Revealed! A Back-Of-The-Envelope ... - December 14th, 2018 [December 14th, 2018]
- The Incomplete List of People Speculated to Be Satoshi ... - January 6th, 2019 [January 6th, 2019]
- Satoshi Nakamoto's profile updated 2018! | Crypto Insider - January 6th, 2019 [January 6th, 2019]
- Bitcoin (BTC) Creator Satoshi Nakamoto More Powerful Than ... - January 6th, 2019 [January 6th, 2019]
- Who is Satoshi Nakamoto? - What is Bitcoin? - January 6th, 2019 [January 6th, 2019]
- Who is Satoshi Nakamoto? - Invest in Blockchain - January 6th, 2019 [January 6th, 2019]
- Fake Satoshi Nakamoto Craig Wright Rats Out Ethereum Trying ... - February 19th, 2019 [February 19th, 2019]
- Will The Real Satoshi Nakamoto Please Stand Up No, Sit Down ... - February 19th, 2019 [February 19th, 2019]
- Who Is Satoshi Nakamoto? The Top 4 Candidates Revealed ... - February 19th, 2019 [February 19th, 2019]
- Satoshi Nakamoto Person Of The Year - Business Insider - February 19th, 2019 [February 19th, 2019]
- Will The Real Satoshi Nakamoto Please Stand Up - bitcoinist.com - February 19th, 2019 [February 19th, 2019]
- From Dorian Nakamoto to Elon Musk: The Incomplete List of ... - February 19th, 2019 [February 19th, 2019]
- Satoshi Nakamoto May Have Considered a Bitcoin Kill Switch ... - March 22nd, 2019 [March 22nd, 2019]
- How Rich is Satoshi Nakamoto Today? - coincentral.com - March 22nd, 2019 [March 22nd, 2019]
- Who is Satoshi Nakamoto? - CCN - March 22nd, 2019 [March 22nd, 2019]
- Bitcoin's Creator Satoshi Nakamoto Is Probably This Unknown ... - March 22nd, 2019 [March 22nd, 2019]
- Satoshi Nakamoto: Who is Bitcoin's Mysterious Creator ... - March 22nd, 2019 [March 22nd, 2019]
- Satoshi Nakamoto May Have Considered a Bitcoin Kill Switch - March 22nd, 2019 [March 22nd, 2019]
- Who is Satoshi Nakamoto? We Look at The Possible Candidates ... - March 22nd, 2019 [March 22nd, 2019]
- New Information Heightens Satoshi Nakamoto Mystery - Bitcoin News - March 22nd, 2019 [March 22nd, 2019]
- Satoshi Nakamoto Mines Over 40% of Bitcoin Cash, Sparks ... - May 5th, 2019 [May 5th, 2019]
- Who is Satoshi Nakamoto? John McCafee Claims to Know And ... - May 5th, 2019 [May 5th, 2019]
- Back to the Satoshi Nakamoto Bitcoin affair - BBC News - May 5th, 2019 [May 5th, 2019]
- Bitcoin block size limit debate: An overview - Cryptopolitan - September 18th, 2019 [September 18th, 2019]
- Is it Legal to Invest in Bitcoins in India? Here's a Guide to Cryptocurrencies - News18 - September 18th, 2019 [September 18th, 2019]
- Someone just moved $1.4 billion in Bitcoin - ACS - September 18th, 2019 [September 18th, 2019]
- Bitek CEO talks spreading Bitcoin SV news in Latin America - CoinGeek - September 18th, 2019 [September 18th, 2019]
- Are 18 months enough for SpaceChain's extraterrestrial blockchain network? - Cryptopolitan - September 19th, 2019 [September 19th, 2019]
- Bitcoin Will Surge to $20,000, States BitMEX Chief Executive After Fed Prints $53 Bln of QE - U.Today - September 19th, 2019 [September 19th, 2019]
- The Top 5 Cryptocurrency Exchanges - Asia Crypto Today - September 19th, 2019 [September 19th, 2019]
- Snowden Triumphs Bitcoin While US Govt Tries Book Earnings Seizure - CCN.com - September 19th, 2019 [September 19th, 2019]
- What Is Blockchain Technology? - The Crypto Coin Discovery - September 19th, 2019 [September 19th, 2019]
- US Arrests One of the First Ethereum Devs - ihodl.com - September 19th, 2019 [September 19th, 2019]
- Craig Wright Claims He Almost Settled the Case with the Kleiman's - ihodl.com - September 19th, 2019 [September 19th, 2019]
- Craig Wright to Negotiate for Settlement Over 1.1 Million Bitcoin Ownership Trial - CryptoNewsZ - September 19th, 2019 [September 19th, 2019]
- Social media site Tsu set to return - ZDNet - September 19th, 2019 [September 19th, 2019]
- OPINION: Institutional Trading Could Kill Crypto Exchanges - Markets Media - September 19th, 2019 [September 19th, 2019]
- Craig Wrights Hidden Treasures: Court Order to Unlock the Tulip Trust - Cointelegraph - September 19th, 2019 [September 19th, 2019]
- Five Reasons Satoshi Nakamoto Is Smarter than Mark Zuckerberg - CCN.com - September 19th, 2019 [September 19th, 2019]
- And Satoshis True Identity is - CCN.com - September 19th, 2019 [September 19th, 2019]
- Donald Trump or Prince William? New Bitcoin Father Theory - Coin Idol - October 2nd, 2019 [October 2nd, 2019]
- EPFL Researchers Invent Low-Cost Alternative to Bitcoin | Fintech Schweiz Digital Finance News - Fintechnews Switzerland - October 2nd, 2019 [October 2nd, 2019]
- How to think about the future of digital currency - The Next Web - October 2nd, 2019 [October 2nd, 2019]
- Regulators Must Have Died and Made Crypto Exchanges King - CCN.com - October 2nd, 2019 [October 2nd, 2019]
- Bitcoin Price to Hit $90,000 After May 2020 Halving, Predicts Germany's Top... - Coinspeaker - October 2nd, 2019 [October 2nd, 2019]
- Block.ones SEC settlement over EOS ICO is shockingly weak say critics - Decrypt - October 2nd, 2019 [October 2nd, 2019]
- Bitcoin has a massive carbon footprint. This clever new cryptocurrency doesnt - Digital Trends - October 2nd, 2019 [October 2nd, 2019]
- John McAfee on Libra, Satoshi Nakamoto, and the Binance Ban [BeInCrypto Interview] - BeInCrypto - October 2nd, 2019 [October 2nd, 2019]
- AI, The Great Depression And Satoshi Nakamoto: Robert Shillers Narrative Economics Is A Cautionary Tale For Our Times - Forbes - October 2nd, 2019 [October 2nd, 2019]
- Analyzing the Bitcoin Phenomenon - ChartAttack - October 12th, 2019 [October 12th, 2019]
- Latest cryptocurrency news and prices, 09 October 2019 - The South African - October 12th, 2019 [October 12th, 2019]
- Alipay Claps Back at Binance, Reaffirms Ban on Bitcoin & Other Cryptocurrencies - BlockPublisher - October 12th, 2019 [October 12th, 2019]
- Bitcoin Association and Cambridge Partner Over Bitcoin SV - Live Bitcoin News - October 12th, 2019 [October 12th, 2019]
- How Bitcoin Miners Fueled the Bear Market Trend of 2018 - BTCNN - October 12th, 2019 [October 12th, 2019]
- Bitfinex and Tether Face Class Action Filed by Lawyers Who Sued Craig Wright - CryptoGlobe - October 12th, 2019 [October 12th, 2019]
- Cryptocurrency: What to know about digital money - Fox Business - October 12th, 2019 [October 12th, 2019]
- Bitcoin History Part 18: The First Bitcoin Wallet - Bitcoin News - October 12th, 2019 [October 12th, 2019]
- 2 Bitcoin Developers Explain How The Cryptocurrency Could Still Fail - Forbes - October 12th, 2019 [October 12th, 2019]
- With 18 Million Bitcoins Mined, How Hard Is That 21 Million Limit? - CoinDesk - October 25th, 2019 [October 25th, 2019]
- Wonders Of The Blockchain-Enabled Supply Chain - Coinrevolution.com - October 25th, 2019 [October 25th, 2019]
- Oxford English Dictionary Recognizes Growing Adoption of Crypto by Adding 'Satoshi' - CryptoGlobe - October 25th, 2019 [October 25th, 2019]
- Bitcoin moves towards the foresight of inventor Satoshi Nakamoto - OBN - October 25th, 2019 [October 25th, 2019]
- Jack Dorsey: Bitcoin is becoming the Internets national currency - Decrypt - October 25th, 2019 [October 25th, 2019]
- Exclusive Interview with John McAfee: Epstein Didnt Kill Himself, Bitcoin to Hit $1 million, & Rus - U.Today - November 25th, 2019 [November 25th, 2019]
- More than just crypto: blockchain usage grows amidst greater regulation - Bobsguide - November 25th, 2019 [November 25th, 2019]
- Default Bitcoin Addresses Are Now Longer But Simpler & Cheaper to Use - Cryptonews - November 25th, 2019 [November 25th, 2019]