tl;dr: (Almost?) all of the cryptography deployed on Aptos. For users, for developers and for general security.| Alin Tomescu
This blog post describes a flawed, non-ZK range range proof based on univariate polynomials.(For an actually-ZK scheme, see this post.)| alinush.github.io
tl;dr: This is how it all started: folks wanted to “encrypt.” What does that mean?| Alin Tomescu
$ \def\msg{m} \def\ctxt{C} \def\pk{\mathsf{pk}} \def\sk{\mathsf{sk}} \def\kgen{\mathsf{KGen}} \def\enc{\mathsf{Enc}} \def\dec{\mathsf{Dec}} % IBE \def\ibe{\mathsf{IBE}} \def\id{\mathsf{id}} \def\mpk{\mathsf{mpk}} \def\msk{\mathsf{msk}} \def\dk{\mathsf{dk}} \def\derive{\mathsf{Derive}} $ tl;dr: Encrypt to a phone number or an email address, rather than under the recipient’s public key.| Alin Tomescu
tl;dr: For now, this page gathers some resources on FRI[^BBHR18FRI].| alinush.github.io
tl;dr: Digital signatures are one of the most important cryptographic primitives today. They are used to establish HTTPS connections with your favorite website, to securely download software updates, to provably send emails to others, to sign legal electronic documents, or to transact on a cryptocurrency like Bitcoin.| Alin Tomescu
I suspect that many of you see no real connection between social, political, and ethical values and what you work on. You don’t build bombs, experiment on p...| alinush.github.io
tl;dr: Confidential assets are in town! But first, a moment of silence for veiled coins.| alinush.github.io
tl;dr: An NP relation $R(\mathbf{x}; \mathbf{w})$ is a formalization of an algorithm $R$ that verifies a solution $\mathbf{w}$ to a problem $\mathbf{x}$ (in ...| alinush.github.io
tl;dr: Groth16 is one of the most popular general-purpose zkSNARK schemes.Although Groth16 is slower to prove than more recent zkSNARKs, it has the smallest ...| alinush.github.io
tl;dr: For now, just including my tweet, which I keep having to look up to show to people.| Alin Tomescu
tl;dr: Dan, Kamilla, Alin, Rex and Trisha came up with a blazing-fast batched ZK range proof for KZG-like committed vectors of values.| alinush.github.io
tl;dr: Hyrax is polynomial commitment scheme (PCS) with (1) sublinear commitment-and-proof sizes and (2) sublinear opening-and-verification times.Hyrax is co...| alinush.github.io
tl;dr: Forget univariate. Forget FFTs. Multilinear polynomials are the bomb!$\def\bin{\{0,1\}}\def\eq{\mathsf{eq}}\def\SC{\mathsf{SumCheck}}\def\MLE#1{\maths...| alinush.github.io
tl;dr: KZG + Hyrax = KZH[^KZHB25e]. This name makes me happy: not only it stands on its own but it also coincides with the first three authors’ initials!| alinush.github.io
tl;dr: What a beautiful construction!| alinush.github.io
tl;dr: A zero-knowledge proof (ZKP) system for an NP relation $R$ allows a prover, who has a statement $\mathbf{x}$ and a witness $\mathbf{w}$ to convince a ...| alinush.github.io
tl;dr: My current sense: circom is still in its early days.First, it lacks an ability to write correctness tests natively in its own language (as opposed to ...| alinush.github.io