cryptography

Realizing ZK from MPC sounds like a mind-bender if more familiar with ZK but not MPC, but this lecture by Amit Sahai helps build the intuition that it is not only possible, but it can be a transformative tool for converting honest majority protocols into maliciously secure:

Realizing ZK from MPC sounds like a mind-bender if more familiar with ZK but not MPC, but this lecture by Amit Sahai helps build the intuition that it is not only possible, but it can be a transformative tool for converting honest majority protocols into maliciously secure: https://www.youtube.com/watch?v=-HbqdiCzqE4

BDFL of Quilibrium, Eng @ Farcaster, ex-Coinbase, always opinionated, never hydrated

/quilibrium

what a cool idea - run mpc locally across a bunch of "parties", reveal the trace of messages seen by a subset of these parties and that is your zkp - you get integrity of the result but no additional information.

Converting MPC to ZK is a complex problem.🥑