The trust assumption on zkTLS:

1. The SSL certificate chain confirms the identity of the accessed host, ensuring it's the right one.
2. Within the certificate, the public key verifies the signature of the server's public key during the TLS handshake, ensuring the authenticity of the TLS handshake server public key.

Private Data Protocol Using Memory-efficiency and Affordable Zero-knowledge.

zkpass.org

3. The server's public key then ensures the accuracy of the subsequent TLS handshake derived keys.
4. This entire process is further validated through ZKP, ensuring the security of the entire TLS session.