- zk-rollups write transactions to ethereum as calldata, using compression techniques to reduce transaction data.
- while calldata is not stored as part of the evm's state, it persists on-chain as part of the chain's history logs.
- the zk-rollup’s state, which includes l2 accounts and balances, is represented as a merkle tree.
- users in the zk-rollup sign transactions and submit them to l2 operators for processing and inclusion in the next batch.
- in some cases, the operator is a centralized entity (the sequencer), that executes transactions, aggregates them into batches, and submits to L1.
- the rollup contract won't automatically accept the proposed state commitment until the operator proves the new merkle root resulted from correct updates to the rollup’s state (this comes from validity proofs).
- zero-knowledge proofs represent programs as circuits, where a prover generates a proof from public and private inputs, and a verifier computes the output if the statement is correct (without any information regarding the private input).
- completeness (if a statement is true, then an honest verifier can be convinced by an honest prover that they possess knowledge about the correct input).
- soundness (if a statement is false, then no dishonest prover can unilaterally convince an honest verifier that they have knowledge about the correct input).
- zero-knowledge (if the state is true, then the verifier learns nothing more from the prover other than that).
- private transactions: blockchains such as zcash, with privacy-preserving txs.
- verifiable computations: decentralized oracle networks, providing smart contracts with access to off-chain data.
- highly-scalable and secure l2s: verifiable computations through methods such as zk-rollups, validiums, and volition by they use l1s as a settlement layer.
- decentralized identity and authentication: zkps can underpin identity management systems to enable users to validate their identity.
- zk-EVMs
- number theory
- proof systems
- cryptographic primitives
- machine learning
- privacy-enhancing technologies
- incomplete catalog of zkp projects
- zkiap
- zkrepl
- zk-learnng
- pse's mirror
- 0xparc on circom
- 0xparc on halo2
- zero knowledge postcast youtube
- rollups are not real, by jon charbonneau
- what are zk proofs, ethereum foundation
- the zk-ECDSA landscape, by pse (ethereum foundation)
- the state of zk applications in ethereum, by andyguzman.eth: 1 and 2
- zero knowledge dapp from 0 to production, by vivian plasencia
- an evolution of models for zkps, with sarah meiklejohn
- an incomplete guide to folding
- a new era: safe deploys on zksync era
- binius: highly efficient proofs over binary fields