Minimizing the computational cost of the prover is a central goal in the area of succinct arguments. In particular, it remains a challenging open problem to construct a succinct argument where the prover runs in linear time and the verifier runs in polylogarithmic time. We make progress towards this goal by presenting a new linear-time probabilistic proof. For any fixed $\epsilon > 0$, we construct an interactive oracle proof (IOP) that, when used for the satisfiability of an $N$-gate arithmetic circuit, has a prover that uses $O(N)$ field operations and a verifier that uses $O(N^{\epsilon})$ field operations. The sublinear verifier time is achieved in the holographic setting for every circuit (the verifier has oracle access to a linear-si...
Motivated by the growth in outsourced data analysis, we describe methods for verifying basic linear ...
368 pagesInteractive proof systems enable one party (the prover) to convince another (the verifier) ...
We construct a succinct non-interactive publicly-verifiable delegation scheme for any log-space unif...
Interactive oracle proofs (IOPs) are a generalization of probabilistically checkable proofs that can...
Interactive oracle proofs (IOPs) are a multi-round generalization of probabilistically checkable pro...
Succinct arguments allow a prover to convince a verifier that a given statement is true, using an ex...
We study interactive oracle proofs (IOPs) [BCS16,RRR16], which combine aspects of probabilistically ...
We give computationally efficient zero-knowledge proofs of knowledge for arithmetic circuit satisfia...
Several research teams have recently been working toward the development of practical general-purpos...
Plonk is a widely used succinct non-interactive proof system that uses univariate polynomial commitm...
Zero-knowledge proof is a powerful cryptographic primitive that has found various applications in th...
The intuitions behind succinct proof systems are often difficult to separate from some of the deep c...
Motivated by the growth in outsourced data analysis, we describe methods for verifying basic linear ...
Zero-knowledge protocols enable the truth of a mathematical statement to be certified by a verifier ...
This paper introduces Brakedown, the first built system that provides linear-time SNARKs for NP, mea...
Motivated by the growth in outsourced data analysis, we describe methods for verifying basic linear ...
368 pagesInteractive proof systems enable one party (the prover) to convince another (the verifier) ...
We construct a succinct non-interactive publicly-verifiable delegation scheme for any log-space unif...
Interactive oracle proofs (IOPs) are a generalization of probabilistically checkable proofs that can...
Interactive oracle proofs (IOPs) are a multi-round generalization of probabilistically checkable pro...
Succinct arguments allow a prover to convince a verifier that a given statement is true, using an ex...
We study interactive oracle proofs (IOPs) [BCS16,RRR16], which combine aspects of probabilistically ...
We give computationally efficient zero-knowledge proofs of knowledge for arithmetic circuit satisfia...
Several research teams have recently been working toward the development of practical general-purpos...
Plonk is a widely used succinct non-interactive proof system that uses univariate polynomial commitm...
Zero-knowledge proof is a powerful cryptographic primitive that has found various applications in th...
The intuitions behind succinct proof systems are often difficult to separate from some of the deep c...
Motivated by the growth in outsourced data analysis, we describe methods for verifying basic linear ...
Zero-knowledge protocols enable the truth of a mathematical statement to be certified by a verifier ...
This paper introduces Brakedown, the first built system that provides linear-time SNARKs for NP, mea...
Motivated by the growth in outsourced data analysis, we describe methods for verifying basic linear ...
368 pagesInteractive proof systems enable one party (the prover) to convince another (the verifier) ...
We construct a succinct non-interactive publicly-verifiable delegation scheme for any log-space unif...