home.social

#zkp — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #zkp, aggregated by home.social.

fetched live
  1. We absolutely are going to need "proof of personhood" credentials. The challenge will be to ensure they are multi-modal, inclusive, adaptable, and ultimately respectful of human dignity. This is no small task, and we can't afford to be reductive in our architecture.

    Well worth a read.

    #Identity #Reputation #Social #Privacy #ZKP #Vouching

    noemamag.com/we-need-a-way-to-

  2. We absolutely are going to need "proof of personhood" credentials. The challenge will be to ensure they are multi-modal, inclusive, adaptable, and ultimately respectful of human dignity. This is no small task, and we can't afford to be reductive in our architecture.

    Well worth a read.

    #Identity #Reputation #Social #Privacy #ZKP #Vouching

    noemamag.com/we-need-a-way-to-

  3. Google: we are open sourcing our library to help with age attestation, it's been going through several security audits

    One of the security audits literally says they only provided formal verification and never checked the actual implementation. Wouldn't be surprised if Google's implementation had bugs or vulnerabilities that will def. be abused by them for data collection... 🤔

  4. News at the intersection of tech and policy shows that Child Safety Online has joined National Security as the cudgel used to weaken #privacy protections. From #RealNames and overuse of #IdentityProofing, to pushing for encryption backdoors, we have a fight on our hands. We need more fighters like @Mer__edith and Elizabeth Garber that focus on the rights and protections of the individual.
    #NoBackdoors #ZKP #Identity
    bloomberg.com/features/2026-me

  5. News at the intersection of tech and policy shows that Child Safety Online has joined National Security as the cudgel used to weaken #privacy protections. From #RealNames and overuse of #IdentityProofing, to pushing for encryption backdoors, we have a fight on our hands. We need more fighters like @Mer__edith and Elizabeth Garber that focus on the rights and protections of the individual.
    #NoBackdoors #ZKP #Identity
    bloomberg.com/features/2026-me

  6. We're very proud about our last addition to our project on Zero-Knowledge Proofs #ZKP with @clemhumb from SICPA, @cdengler and myself from Center for Digital Trust (C4DT) EPFL: We now have a full ZKP with age verification, holder binding, and issuer verification using a standard non-modified (*) Swiyu credential from the current test network! And it runs in reasonable time on a mobile phone!

    eid-privacy.github.io/wp2/2026

  7. We're very proud about our last addition to our project on Zero-Knowledge Proofs #ZKP with @clemhumb from SICPA, @cdengler and myself from Center for Digital Trust (C4DT) EPFL: We now have a full ZKP with age verification, holder binding, and issuer verification using a standard non-modified (*) Swiyu credential from the current test network! And it runs in reasonable time on a mobile phone!

    eid-privacy.github.io/wp2/2026

  8. FAQ: Hello! You have posted or shared material proposing that “privacy-preserving age verification” (often: “ZKP”) exists, will work & help keep people safe

    The truth is not as clear cut as you have seen, is probably wrong (especially in real-world practise) and for explanation I’d recommend you read the following paper by noted security expert & cryptographer, Professor Steve Bellovin:

    https://www.cs.columbia.edu/~smb/papers/age-verify.pdf

    Thank you for reading this FAQ.

    #ageVerification #ZKP
  9. Nowy, kosmiczny odcinek mojego podcastu "What the Fox says" jest już dostępny!

    Dzisiejsze wydanie zdominowały tematy pozaziemskie, ale nie zabrakło też twardych, ziemskich realiów technologicznych. Sprawdźcie, o czym opowiadam w tym odcinku:

    * Rewolucja w astrofizyce: Przyglądam się nowym odkryciom Kosmicznego Teleskopu Jamesa Webba. Układ WL20 rzuca wyzwanie dotychczasowym modelom fizycznym, a nowe dane mogą w końcu wyjaśnić zagadkę powstawania supermasywnych czarnych dziur we wczesnym wszechświecie.
    * Nowa era napędów i misji: Omawiam sukcesy testów zaawansowanego napędu plazmowego NASA (AEPS) oraz technologie kriogeniczne Blue Origin – to technologie, które skrócą podróż na Marsa i pomogą nam przetrwać księżycową noc.
    * Bitwa o suwerenność cyfrową: Analizuję projekt rosyjskiej konstelacji satelitarnej Razvet, która ma być odpowiedzią na Starlinka, oraz przytaczam dramatyczny apel twórcy Mistral AI o przyszłość europejskiej sztucznej inteligencji.
    * Technologiczny "deskilling": Zastanawiam się, czy bezkrytyczne poleganie na automatyzacji i AI nie prowadzi nas prostą drogą do erozji poznawczej i utraty zdolności krytycznej oceny sytuacji.
    * Innowacje bliżej nas: Rozkładam na czynniki pierwsze Europejski Portfel Tożsamości Cyfrowej i kryptograficzne dowody wiedzy zerowej (Zero-Knowledge Proof), największy na kontynencie wanadowy magazyn energii w okolicach Manchesteru oraz medyczny przełom w badaniach nad niehormonalną antykoncepcją dla mężczyzn (białko ARRDC4).

    Gdzie leży granica między automatyzacją a intelektualną kapitulacją? Zapraszam do słuchania i dyskusji!

    wtfs.stream/@what_the_fox_says

    #WhatTheFoxSays #Astrofizyka #NASA #BlueOrigin #Starlink #Razvet #MistralAI #AI #Deskilling #Kryptografia #ZKP #Vanadium #ARRDC4 #Nauka #Technologia

  10. Nowy, kosmiczny odcinek mojego podcastu "What the Fox says" jest już dostępny!

    Dzisiejsze wydanie zdominowały tematy pozaziemskie, ale nie zabrakło też twardych, ziemskich realiów technologicznych. Sprawdźcie, o czym opowiadam w tym odcinku:

    * Rewolucja w astrofizyce: Przyglądam się nowym odkryciom Kosmicznego Teleskopu Jamesa Webba. Układ WL20 rzuca wyzwanie dotychczasowym modelom fizycznym, a nowe dane mogą w końcu wyjaśnić zagadkę powstawania supermasywnych czarnych dziur we wczesnym wszechświecie.
    * Nowa era napędów i misji: Omawiam sukcesy testów zaawansowanego napędu plazmowego NASA (AEPS) oraz technologie kriogeniczne Blue Origin – to technologie, które skrócą podróż na Marsa i pomogą nam przetrwać księżycową noc.
    * Bitwa o suwerenność cyfrową: Analizuję projekt rosyjskiej konstelacji satelitarnej Razvet, która ma być odpowiedzią na Starlinka, oraz przytaczam dramatyczny apel twórcy Mistral AI o przyszłość europejskiej sztucznej inteligencji.
    * Technologiczny "deskilling": Zastanawiam się, czy bezkrytyczne poleganie na automatyzacji i AI nie prowadzi nas prostą drogą do erozji poznawczej i utraty zdolności krytycznej oceny sytuacji.
    * Innowacje bliżej nas: Rozkładam na czynniki pierwsze Europejski Portfel Tożsamości Cyfrowej i kryptograficzne dowody wiedzy zerowej (Zero-Knowledge Proof), największy na kontynencie wanadowy magazyn energii w okolicach Manchesteru oraz medyczny przełom w badaniach nad niehormonalną antykoncepcją dla mężczyzn (białko ARRDC4).

    Gdzie leży granica między automatyzacją a intelektualną kapitulacją? Zapraszam do słuchania i dyskusji!

    wtfs.stream/@what_the_fox_says

    #WhatTheFoxSays #Astrofizyka #NASA #BlueOrigin #Starlink #Razvet #MistralAI #AI #Deskilling #Kryptografia #ZKP #Vanadium #ARRDC4 #Nauka #Technologia

  11. Cроки факторизации приватных ключей RSA и Bitcoin немного приблизились

    В марте 2026 году криптографы из Google Quantum AI опубликовали доказательство , что сверхпроводящий квантовый компьютер с 500 000 физических кубитов (это 1200 кубитов с коррекцией ошибок) способен взломать приватные ключи Bitcoin максимум за 9 минут (быстрее, чем 10-минутное время генерации новых блоков). Хотя опасность квантовых вычислений для традиционных шифров известна давно, ранее для этого предполагалась более серьёзная конфигурация, чем 500 тыс. кубитов. Новое доказательство поднимает перед финансовой индустрией несколько вопросов. Самый главный — когда будут разработаны и поступят в продажу квантовые компьютеры на 500 тыс. кубитов, если сейчас у самого мощного около 150 кубитов? Исследователи Google Quantum AI в техническом отчёте дают рекомендации по минимизации ущерба.

    habr.com/ru/articles/1028168/

    #квантовый_компьютер #алгоритм_Шора #Ethereum #Bitcoin #ECDLP #ZKP #secp256k1 #приватные_мемпулы #постквантовая_криптография

  12. New breakthrough results for quantum attack resource estimates against 256-bit elliptic curves: most ECC-based applications including ECDSA and Bitcoin could be at risk way sooner than expected:

    research.google/blog/safeguard

    We estimate that these circuits can be executed on a superconducting qubit CRQC with fewer than 500,000 physical qubits in a few minutes [...] This is an approximately 20-fold reduction in the number of physical qubits required to solve ECDLP-256"

    Interestingly, Google and friends did not release the blueprint for the attack circuit. In the name of "responsible disclosure", they only provided a zero-knowledge proof (ZKP) proving that the circuit works. This is, I think , a first in the realm of cryptanalysis disclosure.

    The statement that our ZK proof demonstrates is the following: we possess a classical reversible circuit of a specified size which on most inputs correctly computes point addition on the elliptic curve secp256k. This is the primary bottleneck in Shor’s quantum algorithm

    I have been saying this since the 2010s: quantum cryptanalysis is one of those non-linear technology progresses that will take everyone by surprise when it arrives. Qubits quality and numbers go up, error-correction and attacks improve, investments scale up accordingly. It's a perfect storm of compound factors. Folks didn't listen, now time is ticking.

    More context at: gagliardoni.net/#20260331_new_

    #quantum #quantumcomputing #cryptography #security #cybersecurity #infosec #google #bitcoin #blockchain #ethereum #zkp #zeroknowledge

  13. New breakthrough results for quantum attack resource estimates against 256-bit elliptic curves: most ECC-based applications including ECDSA and Bitcoin could be at risk way sooner than expected:

    research.google/blog/safeguard

    We estimate that these circuits can be executed on a superconducting qubit CRQC with fewer than 500,000 physical qubits in a few minutes [...] This is an approximately 20-fold reduction in the number of physical qubits required to solve ECDLP-256"

    Interestingly, Google and friends did not release the blueprint for the attack circuit. In the name of "responsible disclosure", they only provided a zero-knowledge proof (ZKP) proving that the circuit works. This is, I think , a first in the realm of cryptanalysis disclosure.

    The statement that our ZK proof demonstrates is the following: we possess a classical reversible circuit of a specified size which on most inputs correctly computes point addition on the elliptic curve secp256k. This is the primary bottleneck in Shor’s quantum algorithm

    I have been saying this since the 2010s: quantum cryptanalysis is one of those non-linear technology progresses that will take everyone by surprise when it arrives. Qubits quality and numbers go up, error-correction and attacks improve, investments scale up accordingly. It's a perfect storm of compound factors. Folks didn't listen, now time is ticking.

    More context at: gagliardoni.net/#20260331_new_

    #quantum #quantumcomputing #cryptography #security #cybersecurity #infosec #google #bitcoin #blockchain #ethereum #zkp #zeroknowledge

  14. #ZKP Achievement unlocked! We're using 100% of the crates providing Tom-256 curves (crates.io/search?q=t256, ignoring `uint256`):

    Our

    crates.io/crates/ark-tom256

    based on arkworks, to make noir produce circuits based on the T-256 curve, and

    crates.io/crates/halo2curves

    in the MS Crescent implementation to use Spartan as a prover backend...

    And Clément proved that `1 == 1`, and he cannot prove that `2 == 1`, because the circuit constraints are not met!

  15. #ZKP Achievement unlocked! We're using 100% of the crates providing Tom-256 curves (crates.io/search?q=t256, ignoring `uint256`):

    Our

    crates.io/crates/ark-tom256

    based on arkworks, to make noir produce circuits based on the T-256 curve, and

    crates.io/crates/halo2curves

    in the MS Crescent implementation to use Spartan as a prover backend...

    And Clément proved that `1 == 1`, and he cannot prove that `2 == 1`, because the circuit constraints are not met!

  16. I’ve been analyzing the current state of "secure" messaging, and my recent tests with Signal have highlighted some persistent vulnerabilities inherent to any stack relying on standard TCP/IP. Even with strong encryption, metadata leakage at the ISP/CDN level and the reliance on kernel-level interfaces like TUN/TAP remain significant privacy bottlenecks.

    I’m curious to discuss the feasibility of a user-space only stack built in Rust that completely decouples identity, addressing, and transport to mitigate these leaks. My current architectural hypothesis involves an identity layer using hardware-backed Zero-Knowledge Proofs—via TEE or zkVM—to handle authentication without persistent identifiers or central registries. For addressing and routing, I'm thinking of a minimal RINA overlay where Distributed IPC Facilities (DIF) allow us to route between processes rather than nodes, effectively moving away from traditional IP-based addressing. This would all be wrapped in a "blind" transport, such as Ockam or shadowsocks-rust, to make the traffic indistinguishable from generic noise to any external observer.

    I’m still weighing the practical hurdles, especially how to best bridge RINA's recursive logic with a user-space transport like Ockam without requiring root privileges. I'm open to suggestions on alternative technologies or implementations that might achieve this same level of isolation. If anyone has thoughts on the practical hurdles or existing foundations that could be leveraged here, I’d really value your perspective. Definitely feels like there's a lot to dig into.

    #Rust #Rustlang #Infosec #Cryptography #Networking #Privacy #DistributedSystems #RINA #ZKP

  17. I’ve been analyzing the current state of "secure" messaging, and my recent tests with Signal have highlighted some persistent vulnerabilities inherent to any stack relying on standard TCP/IP. Even with strong encryption, metadata leakage at the ISP/CDN level and the reliance on kernel-level interfaces like TUN/TAP remain significant privacy bottlenecks.

    I’m curious to discuss the feasibility of a user-space only stack built in Rust that completely decouples identity, addressing, and transport to mitigate these leaks. My current architectural hypothesis involves an identity layer using hardware-backed Zero-Knowledge Proofs—via TEE or zkVM—to handle authentication without persistent identifiers or central registries. For addressing and routing, I'm thinking of a minimal RINA overlay where Distributed IPC Facilities (DIF) allow us to route between processes rather than nodes, effectively moving away from traditional IP-based addressing. This would all be wrapped in a "blind" transport, such as Ockam or shadowsocks-rust, to make the traffic indistinguishable from generic noise to any external observer.

    I’m still weighing the practical hurdles, especially how to best bridge RINA's recursive logic with a user-space transport like Ockam without requiring root privileges. I'm open to suggestions on alternative technologies or implementations that might achieve this same level of isolation. If anyone has thoughts on the practical hurdles or existing foundations that could be leveraged here, I’d really value your perspective. Definitely feels like there's a lot to dig into.

    #Rust #Rustlang #Infosec #Cryptography #Networking #Privacy #DistributedSystems #RINA #ZKP

  18. I'm interested in learning about formal methods and zero-knowledge proofs, particularly for their use in verifying software. I know very, very little about this, but it would be very useful if I knew more.

    What are some good basic introductions?

    I'm going to poke around a bit with Lean and Dafny. What else might I look at to get, at least, what you might call a "dinner party level" of understanding -- enough so that I can follow and basically participate in a conversation about those in a not-so-formal situation?

    #cs #formalmethods #zkp

  19. I'm interested in learning about formal methods and zero-knowledge proofs, particularly for their use in verifying software. I know very, very little about this, but it would be very useful if I knew more.

    What are some good basic introductions?

    I'm going to poke around a bit with Lean and Dafny. What else might I look at to get, at least, what you might call a "dinner party level" of understanding -- enough so that I can follow and basically participate in a conversation about those in a not-so-formal situation?

    #cs #formalmethods #zkp

  20. A very clear and simple explanation of the selective disclosure and zero knowledge proof (#ZKP) in the digital-wallet world from @leifj siros.org/blog/zero-knowledge-

    Many people know a lot, but the skill of explaining things to mass is different skill set. I wish to write this clearly.

  21. A very clear and simple explanation of the selective disclosure and zero knowledge proof (#ZKP) in the digital-wallet world from @leifj siros.org/blog/zero-knowledge-

    Many people know a lot, but the skill of explaining things to mass is different skill set. I wish to write this clearly.

  22. #e_id #ZKP

    This just blew my head: we're looking at the latest and greatest ZKP frameworks before digging more into noir, and I saw this:

    doc.rust-lang.org/rustc/platfo

    A freakin' RUST TARGET FOR ZERO KNOWLEDGE PROOF VIRTUAL MACHINES!

    So: take your rust program (not all of std is supported), compile it to a zkvm, and run it there!

    I found this on OpenVMs page:

    github.com/openvm-org/openvm

  23. #e_id #ZKP

    This just blew my head: we're looking at the latest and greatest ZKP frameworks before digging more into noir, and I saw this:

    doc.rust-lang.org/rustc/platfo

    A freakin' RUST TARGET FOR ZERO KNOWLEDGE PROOF VIRTUAL MACHINES!

    So: take your rust program (not all of std is supported), compile it to a zkvm, and run it there!

    I found this on OpenVMs page:

    github.com/openvm-org/openvm

  24. 📉 El mercado cripto se agita: #ZKP Crypto distribuye 190M de monedas en subasta diaria, mientras $AVAX ronda los $12 y #Ethereum lucha contra la presión vendedora. Movimientos clave más allá del precio. #Cripto.

  25. Second layer do Bitcoin sem token — VTVM e saída unilateral

    E se existisse uma second layer do Bitcoin onde você entra e sai só com BTC — sem token? 🤯

    • O conceito:
    - Second layer que permite entrar e sair com Bitcoin diretamente, sem criar ou usar tokens.

    • Diferencial técnico:
    - Saída unilateral: você pode sair da camada sem precisar coordenar com o parceiro de canal — menos dependências e mais segurança.

    • Quem está...

    #Bitcoin #VTVM #Layer2 #Lightning #zkp #crypto #MorningCrypto

  26. #ZKP #eID #swiyu

    I'm very happy to say that Ubique, working on heidi-universe.ch/en/index.htm, told me to use `--release` with `cargo-test` :)

    Now our benchmark looks quite different from the last one:

    eid-privacy.github.io/2026/01/

    Before: Noir is as fast or faster than Docknetwork
    Now: Docknetwork is as fast or much faster than Noir

    The next thing I need to find out is how to run benchmarks directly on a mobile phone. Is there some kind of server I can tap into with a github workflow?

  27. #ZKP #eID #swiyu

    I'm very happy to say that Ubique, working on heidi-universe.ch/en/index.htm, told me to use `--release` with `cargo-test` :)

    Now our benchmark looks quite different from the last one:

    eid-privacy.github.io/2026/01/

    Before: Noir is as fast or faster than Docknetwork
    Now: Docknetwork is as fast or much faster than Noir

    The next thing I need to find out is how to run benchmarks directly on a mobile phone. Is there some kind of server I can tap into with a github workflow?

  28. Vitalik e a solução do Trilema na Layer 1

    Quer entender como o Vitalik tenta resolver o Trilema no Ethereum? 🤔

    - O foco: resolver o Trilema diretamente na Layer 1 do Ethereum ⚖️
    - Estratégia: tornar a armazenagem de dados mais barata e segura 💾🔒
    - Impacto: permitir que smart contracts operem de forma eficaz e atacar a questão da escalabilidade ⚙️📈
    - Técnica mencionada: uso de zero-knowledge proofs como...

    #ethereum #blockchain #vitalik #zkp #smartcontracts #escalabilidade #MorningCrypto

  29. If you're working in the e-ID space you might have heard of the "Longfellow" and "Crescent" papers, which implement zero-knowledge proofs on existing credentials. We wrote a deep-dive with @elgharee @clemhumb into these papers and compare them here:

    eid-privacy.github.io/wp0/2025

    TLDR: very impressive work, but very difficult to reproduce as a normal software dev.

    #EID #Swiyu #ZKP

  30. If you're working in the e-ID space you might have heard of the "Longfellow" and "Crescent" papers, which implement zero-knowledge proofs on existing credentials. We wrote a deep-dive with @elgharee @clemhumb into these papers and compare them here:

    eid-privacy.github.io/wp0/2025

    TLDR: very impressive work, but very difficult to reproduce as a normal software dev.

    #EID #Swiyu #ZKP

  31. #E_ID #ZKP Having some fun with Noir and ZKPs to prove the knowledge of ECDSA:

    github.com/eid-privacy/noir-pl

    We're doing this in order to understand how good nowadays ZKP libraries are in bringing understandable and fast proving systems to developers!

  32. #E_ID #ZKP Having some fun with Noir and ZKPs to prove the knowledge of ECDSA:

    github.com/eid-privacy/noir-pl

    We're doing this in order to understand how good nowadays ZKP libraries are in bringing understandable and fast proving systems to developers!

  33. CW: work, crypto

    Okay, I finally figured out how this proof algorithm works on a mathematical layer.

    Now the pending question is whether we can describe a ECDSA signature as a mathematical function fulfilling the requirements of this algorithm in order to proof we *have* a signature of arbitrary data using a particular private key without *revealing* the signature itself.

    Damn. This is brainfuck. But this is *amazing* brainfuck. And damn, this algorithm is crazy.

    #matrix #X509 #crypto #ZKP

  34. CW: work, crypto

    Okay, I finally figured out how this proof algorithm works on a mathematical layer.

    Now the pending question is whether we can describe a ECDSA signature as a mathematical function fulfilling the requirements of this algorithm in order to proof we *have* a signature of arbitrary data using a particular private key without *revealing* the signature itself.

    Damn. This is brainfuck. But this is *amazing* brainfuck. And damn, this algorithm is crazy.

    #matrix #X509 #crypto #ZKP

  35. A Redditor asks: “Can’t zero knowledge proof solve the privacy concerns about the UK online safety law?” – my response…

    Hi. I love your question. For disclosure I have been working on digital civil liberties around encryption since 1991 and I have been working on age verification since 2016.

    The really short version of my answer is: it would only address the problematic issues from a technological perspective, but what we really have here is a political problem.

    There is this thing called Ranum’s Law, named after Marcus Ranum, an early Innovator in the space of firewalls, and he wrote that “you can’t fix social problems with software”.

    Age verification is one of those technological / software fixes which say that they are doing one thing (protecting kids) whilst actually they are achieving something else (enumerating everyone who uses the web) – if you immediately fix on attempting to reduce risks of “enumeration” you end up ignoring: disenfranchisment of people who cannot age verify, political pressure to permit privacy-invading systems as well “in the name of market competition” and a race to the bottom for people’s personal data.

    So ZKP is a wonderful technology when deployed in a controlled infrastructure and under centralised patch management to protect discrete and well described taxonomies of data… but it’s never going to happen in the real world because that’s not what people in power actually want. (Edit: plus: the data is a mess and there is also no taxonomy)

    What they actually want is: for their friends who have been lobbying them since 2016 or earlier to get a wad of money, and for the public to be placated enough about child safety that they get reelected.

    This is not a technical problem and it does not have a technical solution. What we are seeing here is the long tail of a moral panic.

    https://www.reddit.com/r/cryptography/comments/1mc2m08/comment/n5qqtyy/

    #ageVerification #moralPanic #onlineSafety #onlineSafetyAct #reddit #zeroKnowledgeProof #ZKP

  36. Vitalik Buterin suggests that Ethereum
    will be ready for the on slot of quantum computing suggesting a quantum machine could break blockchain cryptography between 2030 and 2035. The Ethereum Foundation is working to integrate zkEVM ( Zero-Knowledge Ethereum Virtual Machine) within layer 1, within twelve months.

    cointribune.com/en/vitalik-but

  37. @rebeccawatson There actually *are* ways of performing age verification in a privacy-preserving way, thanks to zero-knowledge proof cryptography:

    github.com/zkpassport

    StRanGeLY tHoUgH, governments don't seem interested in merely knowing that a user truly is >=$some_age, and not knowing anything else about them. They really, *really* wanna know who the perverts^W adults are.

    #zkp #zkproof #cryptography #cryptology