Validity Proof

Validity proofs are the defining technology for ZK-Rollups, a leading Layer 2 scaling solution.

• Examples: zkSync Era, Starknet, Polygon zkEVM, and Scroll use validity proofs.
• Performance: They enable high throughput (2,000+ TPS) and low fees while maintaining Ethereum-level security.
• EVM Compatibility: Modern zkEVMs use advanced proving systems to support native execution of Ethereum smart contracts.

zk-SNARKs (Zero-Knowledge Succinct Non-Interactive Argument of Knowledge) are a foundational validity proof system. They are characterized by their small proof size and fast verification time, making them highly efficient for blockchain scaling.

• Key Properties: Succinct proofs (~288 bytes), non-interactive verification.
• Trade-off: Requires a trusted setup ceremony to generate public parameters, creating a potential security assumption.
• Primary Use: Privacy applications (e.g., Zcash) and scaling (e.g., early zkRollups).

zk-STARKs (Zero-Knowledge Scalable Transparent Argument of Knowledge) offer an alternative to SNARKs with different cryptographic assumptions.

• Key Properties: No trusted setup required (transparent), post-quantum secure, and highly scalable proof generation.
• Trade-off: Proofs are larger (~45-200 KB) than SNARKs, leading to higher on-chain data costs.
• Primary Use: Scaling solutions where trust minimization is paramount, such as Starknet and Polygon Miden.

PLONK (Permutations over Lagrange-bases for Oecumenical Noninteractive arguments of Knowledge) is a universal and updatable SNARK system. It significantly improved the flexibility of zk-proof construction.

• Key Innovation: A single, universal trusted setup can be used for any program, and this setup can be securely updated by many participants.
• Benefit: Reduces the overhead and risk of application-specific trusted setups.
• Ecosystem: Forms the basis for many modern zkRollups (e.g., Aztec, zkSync Era) and zkEVM implementations.

Bulletproofs are short, non-interactive zero-knowledge proofs that do not require a trusted setup. They are based on different cryptographic assumptions (discrete log) than SNARKs/STARKs.

• Key Properties: Trustless setup, relatively short proofs, but verification is more computationally intensive (linear time).
• Primary Use: Efficient range proofs in confidential transactions (e.g., Monero, Mimblewimble) and as a component in more complex proving systems.
• Contrast: Less succinct than SNARKs, making them less optimal for high-frequency blockchain state verification.

Halo 2 is a proving system developed by the Electric Coin Company that eliminates the need for a trusted setup entirely, using recursive proof composition.

• Core Mechanism: Uses inner product arguments and polynomial commitments to create proofs that can be verified by other proofs, building a chain of trust.
• Key Advantage: Achieves the succinctness of SNARKs without the trusted setup caveat.
• Application: The foundational technology for the zk-SNARKs used in the Zcash blockchain upgrade (NU5) and influences other modern proving systems.

This is not a standalone proof system but a critical optimization technique used with SNARKs and STARKs to enhance scalability.

• Aggregation: Combining multiple validity proofs into a single proof, reducing on-chain verification cost for batch transactions.
• Recursion: A proof can verify the correctness of another proof. This allows creating a single proof for an entire batch of proofs, or even for a long period of chain state (e.g., a rollup proof of proofs).
• Impact: Enables practical zkEVMs and high-throughput rollups by amortizing fixed verification costs over thousands of transactions.

A Validity Proof is a succinct cryptographic argument, often a zk-SNARK or zk-STARK, that mathematically proves the correct execution of a batch of transactions. The proof is generated off-chain and verified on-chain by a smart contract. This ensures computational integrity without requiring the verifier to re-execute the entire computation.

• Prover: Generates the proof after processing transactions.
• Verifier: A lightweight on-chain contract that checks the proof's validity.
• Succinctness: The proof is small and fast to verify, regardless of the computation size.

Validity proofs are implemented in production by several major Layer 2 networks and applications.

• zkSync Era: A general-purpose zkRollup using a custom zkEVM.
• Starknet: Uses STARK proofs via its Cairo VM.
• Polygon zkEVM: A zkRollup implementing the Ethereum Virtual Machine opcode-for-opcode.
• dYdX (v3): A decentralized exchange built as a zkRollup on StarkEx.
• Immutable X: A gaming/NFT scaling solution using Validium (validity proofs with off-chain data).

zk-Rollups are layer 2 scaling solutions that execute transactions off-chain and post compressed data plus a validity proof (a zk-SNARK or zk-STARK) to the mainnet. This proof cryptographically verifies the correctness of all transactions in the batch.

• Primary Benefit: Inherits the full security of the underlying L1 (e.g., Ethereum) while drastically reducing gas costs and increasing throughput.
• Examples: zkSync Era, Starknet, and Polygon zkEVM are prominent implementations.

A zkEVM (Zero-Knowledge Ethereum Virtual Machine) is a specialized type of zk-Rollup that maintains full compatibility with the Ethereum EVM. It allows developers to deploy existing smart contracts with minimal changes.

• Key Feature: Executes Ethereum bytecode and generates a validity proof for the entire computation, not just simple transfers.
• Ecosystem Impact: Enables seamless migration of dApps from Ethereum L1, preserving tooling and developer experience while gaining scaling benefits.

Generating validity proofs (especially zk-STARKs) is computationally intensive. Emerging decentralized prover networks allow multiple participants to contribute proving power, enhancing censorship resistance and liveness.

• Role: These networks act as a marketplace for proof generation, separating the roles of sequencer (ordering transactions) and prover (generating proofs).
• Ecosystem Project: Espresso Systems is building a shared sequencer and prover network for rollups.

The underlying cryptographic primitive that enables a validity proof. A ZKP allows one party (the prover) to prove to another (the verifier) that a statement is true without revealing any information beyond the validity of the statement itself. This is the foundation for privacy-preserving and highly efficient validity proofs.

• Types: zk-SNARKs, zk-STARKs, Bulletproofs.
• Key Property: Succinctness - the proof is small and fast to verify.

A Layer 2 scaling solution that uses validity proofs (specifically ZKPs) to batch thousands of transactions off-chain and post a single cryptographic proof to the underlying Layer 1 (e.g., Ethereum). This proof validates the correctness of all transactions in the batch.

• Core Benefit: Inherits the security of the L1.
• Example: zkSync, Starknet, Polygon zkEVM.
• Data Availability: Typically posts transaction data to L1 as calldata.

A synonym for zk-Rollup. This term emphasizes the core mechanism: the rollup's state transitions are only considered valid if accompanied by a cryptographic proof of correctness. It is contrasted with Optimistic Rollups, which assume transactions are valid and only run computation (generate a fraud proof) in case of a challenge.

A virtual machine that executes Ethereum smart contracts and generates a validity proof of that execution. It allows developers to deploy existing Ethereum smart contracts on zk-Rollups with minimal changes.

• Types: Vary in compatibility (e.g., bytecode-compatible vs. language-compatible).
• Challenge: Proving EVM execution in ZK is computationally intensive.
• Goal: Achieve EVM-equivalence for seamless developer experience.