Zero Knowledge Proofs For Dummies

in etc •  last year

Basic Definition

secrets

Zero knowledge proofs are proofs that do not reveal any information except the statement being proved.

Ben & Jerry

container

Ben wants to prove to Jerry that he knows the passcode associated with an automated teller machine (ATM) card. Therefore, he performs an ATM deposit and withdrawal without divulging the passcode entered. Ben has made a zero knowledge proof!

A zero knowledge proof must not leak information. Therefore, Ben must select an ATM in an enclosed area to prevent someone reading the passcode with a telescope. For the same reason, all security cameras must be covered or disabled. Temperature changes due to ATM key presses must be removed lest they create yet another way to determine the passcode. Ben also cannot only deposit or only withdraw money because that would reveal information about the balance. Preventing information leakage is not easy!

A zero knowledge proof method must not be able to prove false statements. This is referred to as the soundness property. If Ben does not know the passcode, he should not be able to fool Jerry by various tricks. He should not be able to fake a deposit by stashing money somewhere. He should also not be able to fake a withdrawal by using money hidden on his person or near the ATM. Therefore, the ATM and surrounding area must be searched before and after the deposit. For the same reason, Ben must disrobe and undergo a full body cavity search before and after the deposit!

Only with all the necessary steps preventing Ben from leaking information, and Jerry from being fooled, is the zero knowledge proof valid.

Current Methods

security

Many current zero knowledge proof methods are interactive. They require the exchange of nonces, or some equivalent, to protect against replay attacks (replaying transmitted text).

Many current zero knowledge proof methods only establish a high probability of a statement being true. Technically they are not providing proofs but rather only strong evidence. However, this evidence often provides absurdly high probabilities of truthfulness.

Some Applications

zcash

Zero knowledge proofs might improve authentication systems. Imagine how secure password based systems will be if they only require zero knowledge proofs of password possession. Adequate systems, for many applications, are already available with public key encryption!

Zero knowledge proofs might eliminate the need for many escrow services. Imagine people trying to get paid for performing lengthy computations. They do not want to disclose their results before being compensated, and, customers do not want to pay up before confirming the work done. Zero knowledge proofs might provide the necessary guarantees in a way that pleases everyone.

Zero knowledge proofs might lead to amazing blockchain applications that can also protect privacy. zk-SNARKs are zero knowledge proof methods that are currently being used on the Zcash blockchain!

Parting Thoughts

math

Zero knowledge proofs might improve authentication systems, eliminate escrow services, add privacy to blockchain applications, and, do much more. Who would have guessed research in an abstract field of mathematics would have so many consequences!

Feedback

Feel free to leave any comments or questions below. You can also contact me by clicking any of these icons:

twitter facebook linkedin

Acknowledgements

I would like to thank IOHK (Input Output Hong Kong) for funding this effort.

License

license

This work is licensed under the Creative Commons Attribution ShareAlike 4.0 International License.

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  Trending

Wow this is a really cool concept, I had never heard of it before so thank you for sharing, resteeming this so more can hear of it! 😜

It sounds like it might be useful for something I've been thinking about a lot, which is verification of identity without having to expose your identity and thus lose anonymity and privacy.

Have you any thoughts about an application like that?

·

Glad you liked it! And thanks for sharing! Regarding your identity application... It depends on the details. For example, public key cryptography might meet your requirements. In many cases, they can be an adequate zero knowledge proof method!

·
·

Do you have an idea for that? As far as I can tell, using PGP keys would only verify that a user has control of those PGP keys and nothing else.

·
·
·

You are right they only reveal PGP (public) keys. If that is what you want then ever used OpenSSH on Linux or Putty on Windows? They can be used as a PGP "zero knowledge proof authentication system" if you don't count having to reveal your public key. I'd look into those for your application.

·
·
·
·

Thanks for the tip! 🙏 👍