Daily Digest 每日摘要 View All 查看全部

Khovratovich et al. revealed security vulnerabilities of the Fiat-Shamir transformation in practical applications in their paper on , specifically targeting interactive succinct arguments based on the GKR protocol, demonstrating how to generate accepting proofs for false statements. Khovratovich等人在论文中揭示了Fiat-Shamir变换在实际应用中的安全漏洞，特别是针对基于GKR协议的交互式简洁论证，展示了如何为错误陈述生成接受证明。

Succinct Labs has released a security advisory for the SP1 STARK verifier, noting that missing verifier checks and Fiat-Shamir observation issues existed in versions prior to v4.0.0, which have been fixed in v4.0.0. Succinct Labs发布了关于SP1 STARK验证器的安全公告，指出在v4.0.0之前版本中存在验证器检查缺失和Fiat-Shamir观察问题，已通过v4.0.0修复。

Horizen Labs introduced Horizen 2.0, an EVM chain designed for zero-knowledge applications in the paper. By supporting various ZK proof mechanisms through precompiled extensions, it significantly improves verification efficiency and reduces costs, offering developers more flexible ZK tools. @HorizenLabs 在论文中提出了一种专为零知识应用设计的EVM链Horizen 2.0，通过预编译扩展支持多种ZK证明机制，显著提升了验证效率并降低了成本，为开发者提供了更灵活的ZK工具。

@jtguibas shared the performance of SP1 Turbo in proving rollup workloads, which is 6-7 times faster than R0's latest 1.2.1 version across various Ethereum blocks. @jtguibas 分享了SP1 Turbo在证明rollup工作负载方面的性能，与R0的最新1.2.1版本相比，SP1 Turbo在各种以太坊区块上的速度提高了6-7倍。

Austgen et al. proposed Liquefaction in their paper on , a wallet platform that constrains private keys using TEE technology, demonstrating the fragility of cryptocurrency asset ownership models and its wide-ranging implications. Austgen等人在论文中提出了Liquefaction，一种利用TEE技术对私钥进行约束的钱包平台，展示了加密货币资产所有权模型的脆弱性及其广泛影响。

Justin Thaler and Srinath Setty introduced key concepts from their new paper, Twist and Shout, in the blog . These are two new memory checking parameters designed to ensure that the prover correctly handles every read and write operation of VM memory, and they are expected to significantly improve the proving speed of Jolt zkVM. Justin Thaler和Srinath Setty在博客中介绍了新发表论文中的重要概念：Twist和Shout，两种新的内存检查参数，旨在确保证明者正确处理VM内存的每次读写，预计将显著提升Jolt zkVM的证明速度。

@powdr_labs introduced the latest experimental feature of powdrVM in their blog: automatically generating acceleration circuits to optimize Rust program performance, demonstrating how to select acceleration blocks through static and runtime analysis and automatically generate optimized circuits. @powdr_labs 在博客中介绍了powdrVM的最新实验性功能：自动生成加速电路以优化Rust程序的性能，展示了如何通过静态和运行时分析选择加速块，并自动生成优化电路。

Professor Dan Boneh provided a detailed explanation of the FRI protocol and its analysis during the @__zkhack__ Whiteboard Sessions, covering the two-stage protocol (commitment and query), various verification methods, as well as variants of FRI and potential future alternatives for SNARK development. @danboneh 教授在 @__zkhack__ Whiteboard Sessions 中详细讲解了FRI协议及其分析，包括两阶段协议（提交和查询）和多种验证方法，以及FRI的变体和未来SNARK发展的潜在替代方案。

The bagel-org team has released the ZKLoRA open-source project, which focuses on providing efficient zero-knowledge proofs for LoRA verification. This allows verifying compatibility with a base model while preserving the privacy of the LoRA weights. bagel-org团队发布了ZKLoRA开源项目，专注于为LoRA验证提供高效的零知识证明，支持在保护LoRA权重隐私的同时验证其与基础模型的兼容性。

@ProvableHQ shared the technical specifications of the Aleo network, including the Varuna proof system (based on Marlin), the AleoVM virtual machine, and the AleoBFT consensus algorithm. @ProvableHQ 分享了Aleo网络的技术规格，包括Varuna证明系统（基于Marlin）、AleoVM虚拟机和AleoBFT共识算法。

@Koukyosyumei released MyZKP, an open-source project that implements zero-knowledge protocols from scratch in Rust, intended as an educational resource for understanding and applying zero-knowledge proofs. @Koukyosyumei 发布了MyZKP开源项目，这是一个用Rust从头开始构建的零知识协议实现，旨在作为理解和应用零知识证明的教育资源。

At the DevCon 2024 side event, 'New Games. New Worlds.,' @sylvechv proposed the view that decentralized games should stop running on-chain and discussed the reasons for this. 在DevCon 2024的边会New Games. New Worlds.上，@sylvechv 提出需要停止在链上运行去中心化游戏的观点，并探讨了其原因。

Wang et al. systematically analyzed trusted setups in their paper on , distinguishing between setup protocols and ceremonies, and evaluating the characteristics, advantages, and weaknesses of different methods. Wang等人在论文中系统化地分析了可信设置，区分了设置协议和仪式，并评估了不同方法的特点、优势和弱点。

Tan et al. proposed a novel zkPoT method in their paper on , which significantly improves performance by directly proving the correctness of the trained model, rather than the entire training process, through the introduction of an optimum vicinity concept. Tan等人在论文中提出了一种新的zkPoT方法，通过引入optimum vicinity概念，直接证明训练模型的正确性，而非整个训练过程，显著提高了性能。

Star Li shared the source code structure of RISC0 zkVM, including the Bonsai proving service, Groth16 proof implementation, and circuit interfaces, demonstrating how the zkVM implements complex business logic using Rust. Star Li 分享了RISC0 zkVM的源代码结构，包括Bonsai证明服务、Groth16证明实现、电路接口等，展示了zkVM如何通过Rust语言实现复杂的业务逻辑。

Zhu et al. introduced CompGroth16 in their paper on , a variant of Groth16 designed to support disjunctive statements that include both algebraic and arithmetic components, which improves expressiveness and proof efficiency but increases verification cost. Zhu等人在论文中提出了CompGroth16，一个Groth16的变体，旨在支持包含代数和算术组件的析取语句证明，提高了表达能力和证明效率，但验证成本变高了。

The Slow Mist team deeply investigated the extensibility issues of the Poseidon hash function in the Iden3 cryptographic library, specifically addressing hash collisions and their security implications caused by implementation flaws. 慢雾团队深入揭示了Iden3密码学库中Poseidon哈希函数的延展性问题，即由于代码实现问题导致哈希碰撞及其安全性影响。

Soukhanov et al. proposed a novel SNARK proof system, Morgana, in their paper on . Its main feature is that the circuit key size is proportional to the circuit description rather than the number of constraints, offering a direct acceleration advantage over existing technologies like Spartan. Soukhanov等人在论文中提出了一种新型SNARK证明系统Morgana，其主要特点是电路key大小与电路描述成正比，而非约束数量，相比现有技术Spartan有直接加速效果。

The @IrreducibleHW team announced the Binius library and its first application—an Ethereum state proof service. This service utilizes Reth Ethereum nodes to generate compressed proofs of the Ethereum MPT state tree, supporting stateless client solutions. @IrreducibleHW 团队宣布了Binius库及其首个应用——以太坊状态证明服务。该服务利用Reth以太坊节点，生成以太坊MPT状态树的压缩证明，支持无状态客户端解决方案。

The NovaNet team shared Non-Uniform Incremental Verifiable Computation (NIVC) technology, discussed its application in zkVM design, and how the Nebula solution can enhance performance. They also explored the potential of using NIVC to replace GROTH16 for on-chain verification. NovaNet团队分享了NIVC（非均匀增量可验证计算）技术，探讨了其在zkVM设计中的应用及如何通过Nebula方案提升性能，同时展望了使用NIVC替代现在GROTH16做链上验证的潜力。

Researcher Enrico Bottazzi discussed why it is currently impossible to build fully secure multi-party applications, analyzing the trade-offs between security and liveness in technologies such as MPC (Multi-Party Computation) and FHE (Fully Homomorphic Encryption). PSE研究员Enrico Bottazzi探讨了为何目前无法构建完全安全的多方应用程序，分析了多方计算和全同态加密等技术在安全性和活性之间的权衡。

Dan Boneh shared FRI and its foundations in cryptography during ZK Whiteboard Sessions, covering linear codes, IOP background, and how to compile Polynomial-IOP into a SNARK. Dan Boneh在ZK Whiteboard Sessions中分享了FRI及其在密码学中的基础，包括线性代码、IOPs背景，以及如何将Polynomial-IOP编译为SNARK。

stwo-web-stark is an open-source project that provides a web demonstration for proving Cairo programs using the stwo prover, allowing proof generation and verification to be performed in a browser. 开源项目stwo-web-stark，提供使用stwo证明器证明Cairo程序的Web演示，可以在网页中完成证明、验证等操作。

Angold Wang reviews verifiable computation in , covering topics from foundational complexity theory to modern zkSNARKs, discussing interactive proof systems, knowledge complexity, and the application of low-degree polynomials in error detection and verification protocols, ultimately focusing on the GKR protocol. Angold Wang在综述中审视了可验证计算，从基础复杂性理论到现代ZK-SNARKs，探讨了交互式证明系统、知识复杂性及低次多项式在错误检测和验证协议中的应用，最终落脚在GKR协议。

Madhavan Malolan discussed the concept of zkTLS in his blog post , clarifying that zkTLS is not primarily for privacy protection, but rather for user security and data integrity. Madhavan Malolan在博客中讨论了zkTLS的概念，澄清了zkTLS并非主要用于隐私保护，而是为了用户安全和数据完整性。

@luhelminger discussed the dominance of zkVMs in 2024 and their applications in scalability use cases, while also exploring the challenges and future prospects of zkVMs regarding privacy preservation. @luhelminger 讨论了zkVMs在2024年的主导地位及其在可扩展性用例中的应用，同时探讨了zkVMs在隐私保护方面面临的挑战和未来展望。

@SuccinctLabs discussed the era of verifiable software in their blog post , emphasizing that advancements in ZK cryptography enable the verification of arbitrary program executions via universal zkVMs, which will drive new applications in blockchain and computation. @SuccinctLabs 在博客中讨论了可证明软件时代，强调了ZK密码学的进步使得通过通用zkVM验证任意程序执行成为可能，这将推动区块链和计算领域的新应用。

@cryptobuilder_ recommends trying the @nodeguardians' @NoirLang tasks. By learning ZK concepts through games, users can learn how to write proving programs and verify proofs without needing to understand the underlying mechanics of ZK. @cryptobuilder_ 推荐尝试 @nodeguardians 的 @NoirLang 任务，通过游戏学习ZK的概念，无需了解ZK工作原理，即可学习如何证明程序并验证证据。

@vdWijden discovered a hash collision vulnerability in the Poseidon hash function implementation used by ident3, which is utilized by many well-known projects. @vdWijden 发现iden3的Poseidon哈希函数实现存在哈希碰撞漏洞，该实现被许多知名项目使用。

Laufer et al. introduced zkPi in their paper on , the first zkSNARK for Lean proofs, which allows a prover to verify the correctness of Lean theorems in zero knowledge. Laufer等人在论文中提出了zkPi，首个用于Lean证明的zkSNARK，允许证明者在零知识下验证Lean定理的正确性。

The @o1_labs team shared the latest updates on their zkApps platform for Mina and o1js, including the release of o1js v2.0, the introduction of dynamic arrays and runtime tables, permission prerequisites setup, improvements to zkPrograms, and EdDSA support. @o1_labs 团队分享了关于Mina和o1js的zkApps平台的最新进展，包括o1js v2.0的发布、动态数组和运行时表的引入、权限前提条件的设置、zkProgram的改进以及EdDSA的支持等内容。

@Ingo_zk announced a 2025 research grant program, offering $100,000 to support research utilizing the ICICLE library, aiming to surpass existing research baselines by re-implementing algorithms from prior literature. @Ingo_zk 宣布2025年研究资助计划，提供10万美元支持使用ICICLE库进行的研究，旨在通过重新实现现有文献中的算法来超越现有研究基准。

@zkv_xyz shared a survey on the application of ZK technology in Celestia for 2024, covering topics such as ZK IDs, privacy protection, emerging ZK use cases, and ZK security vulnerabilities. @zkv_xyz 分享了关于2024年Celestia中ZK技术的应用调查，包括ZK IDs、隐私保护、新兴ZK用例以及ZK安全漏洞等方面的内容。

@aztecnetwork discussed privacy-preserving CBDCs (Central Bank Digital Currencies), emphasizing the balance of innovation, privacy, compliance, and user trust through the use of ZKPs and Ethereum technology. @aztecnetwork 讨论了隐私优先的CBDCs（央行数字货币），强调利用ZKPs和以太坊技术平衡创新、隐私、合规和用户信任。

@thefrozenfire shared the core idea of learning ZKPs using quadratic residues. @thefrozenfire 分享了利用二次剩余问题学习ZKP的核心思想的方法。

Zhao et al. proposed MicroNova in their paper on , a folding-based recursive argument for generating proofs of incremental computations, which consumes approximately 2.2M gas on Ethereum (compared to about 220k gas for Groth16). Zhao等人在论文中提出了一种基于折叠的递归论证MicroNova，用于生成增量计算的证明，在以太坊上的验证约消耗2.2M gas（Groth16约220k gas）。

@Slokh released the anonymous social network @anondotworld, which uses ZKPs to generate anonymous credentials. When a user posts, they can attach multiple credentials, and the community is formed by users who share these credentials. Members can then perform anonymous operations on behalf of the community. @Slokh 发布了匿名社交网络 @anondotworld，使用ZKP生成匿名凭证，用户发帖时可附加多个凭证，社区由共享凭证的用户组成，成员可代表社区进行匿名操作。

@Jeyffre shared his study methods for the RareSkills ZK Book, emphasizing that learning ZK in sequence can improve learning efficiency. @Jeyffre 分享了RareSkills ZK Book的学习方法，强调通过按顺序学习ZK，提高学习效率。

The Cybersecurity-LINKS team has released the ZKryptium open-source library, which implements BBS+, Blind BBS, and CL2003 signature schemes to support zero-knowledge proof creation. Cybersecurity-LINKS团队发布了ZKryptium开源库，实现了BBS+、Blind BBS和CL2003签名方案，支持创建零知识证明。

@nebrazkp incubated a token issuance project based on public projects or papers, with the key feature that the original creator can prove their identity via zk and receive a 10% token reward. @nebrazkp 孵化了一个发币项目，基于公共项目或论文等，重要特点是原主可通过zk证明验证身份并获得10%代币奖励。