Bounded Verification for Finite-Field-Blasting-Reference-Cited by-同舟云学术

Bounded Verification for Finite-Field-Blasting

Published:2023 Issue: Volume: Page:154-175
ISSN:0302-9743
Container-title:Computer Aided Verification
language:
Short-container-title:

Author:

Ozdemir Alex,Wahby Riad S.,Brown Fraser,Barrett Clark

Abstract

AbstractZero Knowledge Proofs (ZKPs) are cryptographic protocols by which a prover convinces a verifier of the truth of a statement without revealing any other information. Typically, statements are expressed in a high-level language and then compiled to a low-level representation on which the ZKP operates. Thus,a bug in a ZKP compiler can compromise the statement that the ZK proof is supposed to establish.This paper takes a step towards ZKP compiler correctness by partially verifying afield-blastingcompiler pass, a pass that translates Boolean and bit-vector logic into equivalent operations in a finite field. First, we define correctness for field-blasters and ZKP compilers more generally. Next, we describe the specific field-blaster using a set of encoding rules and define verification conditions for individual rules. Finally, we connect the rules and the correctness definition by showing that if our verification conditions hold, the field-blaster is correct. We have implemented our approach in the CirC ZKP compiler and have proved bounded versions of the corresponding verification conditions. We show that our partially verified field-blaster does not hurt the performance of the compiler or its output; we also report on four bugs uncovered during verification.

Publisher

Springer Nature Switzerland

Link

https://link.springer.com/content/pdf/10.1007/978-3-031-37709-9_8

Reference68 articles.

1. LLVM language reference manual. https://llvm.org/docs/LangRef.html

2. Monero technical specs. https://monerodocs.org/technical-specs/ (2022)

3. Airscript. https://github.com/0xPolygonMiden/air-script

4. Angel, S., Blumberg, A.J., Ioannidis, E., Woods, J.: Efficient representation of numerical optimization problems for SNARKs. In: USENIX Security (2022)

5. Bellés-Muñoz, M., Isabel, M., Muñoz-Tapia, J.L., Rubio, A., Baylina, J.: Circom: a circuit description language for building zero-knowledge applications. IEEE Transactions on Dependable and Secure Computing (2022)

Cited by 5 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Scalable Verification of Zero-Knowledge Protocols;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

2. Split Gröbner Bases for Satisfiability Modulo Finite Fields;Lecture Notes in Computer Science;2024

3. MCSat-Based Finite Field Reasoning in the Yices2 SMT Solver (Short Paper);Lecture Notes in Computer Science;2024

4. Formal Verification of Zero-Knowledge Circuits;Electronic Proceedings in Theoretical Computer Science;2023-11-14

5. Bounded Verification for Finite-Field-Blasting;Computer Aided Verification;2023