@nicomnbl.bsky.social
Researching and cryptographing. Recurring co-host on the ZKPodcast.๐ชฑing at HMLTD. โ 1. b3. nmohnblatt.github.io
Time has changed
01.08.2025 08:15 โ ๐ 13531 ๐ 4931 ๐ฌ 72 ๐ 57
The ZK Podcast released an episode on local-first software this week!
@arro.bsky.social and @nicomnbl.bsky.social chat w @grjte.sh & @goblinoats.com about the foundations of local-first architecture, CRDTs and how ZK can be incorporated into these models.
zeroknowledge.fm/podcast/367/
Is this available on iOS too?
23.06.2025 19:50 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0Don't think this was the case for everyone but for me it was about keeping my phone number private (before Signal introduced usernames)
23.06.2025 19:45 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0I'm kind of conflicted over this.
Up to now my Signal has been almost exclusively for personal use and Telegram exclusively for connecting at conferences. And I've come to value this clean separation
To the point where I have said no to connecting over Signal
2/ As such, I wrote a research note to help cryptography engineers fully understand both techniques: baincapitalcrypto.com/a-deep-dive-...
11.06.2025 00:40 โ ๐ 3 ๐ 1 ๐ฌ 1 ๐ 0
I'm happy to finally open-source lattirust, a library for lattice-based zero-knowledge/succinct arguments! Lattirust is somewhat like arkworks, but for lattices; and like lattigo, but for arguments.
โ github.com/lattirust
I wrote a thing on my colleagues Andrija and Guille's latest work
09.05.2025 16:09 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0Video or it didn't happen ๐
07.05.2025 12:28 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0Story of the ZK whiteboard series S2! The grant that supported it, how we came up with the topics, participation of our esteemed speakers, some crazy editing and how the bonus modules came to be
03.03.2025 18:49 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0But this might not work in your case depending on how strict you want to be on the caveat you mentioned
28.02.2025 14:30 โ ๐ 3 ๐ 0 ๐ฌ 0 ๐ 0The usual pattern is:
1. arrange the keys into a Merkle tree and give each signer their authentication path in that tree
2. signer produces a signature on the data
3. signer produces a ZKP that signature verifies against some public key, and that this public key is included in the Merkle tree
Part 2 starts with important terminology (pre-quantum vs post-quantum vs quantum). Or then explains how to make Bitcoin and Ethereum post-quantum secure via signature lifting and then talks about using quantum computers to make digital money
zeroknowledge.fm/podcast/297/
2/2
from the archive: Or Sattath came on the ZKPodcast to discuss quantum computing and its impact on cryptography. These two are some of my ๐๐๐ฏ๐จ๐ฎ๐ซ๐ข๐ญ๐ episodes of the show.
Part 1 covers the computation model, why it breaks some cryptography and effects on mining
zeroknowledge.fm/podcast/288/
1/2
A step towards fixing the recent attack on a Fiat-Shamir'd variant of GKR.
Tl;dr: do proof-of-work before deriving the FS challenge, this will make the hash prohibitively expensive to compute in-circuit.
Caveat: they only prove the security of their transform for 1-round protocols
sigh
23.02.2025 01:20 โ ๐ 5 ๐ 2 ๐ฌ 0 ๐ 0Correct!
22.02.2025 10:13 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0Terrible news
21.02.2025 16:31 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0Sublinear prover?!?! Incredible result!
17.02.2025 06:52 โ ๐ 7 ๐ 1 ๐ฌ 0 ๐ 0Bit of a tradeoff. We have O(1) proofs and verifiers using univariate polynomials, whereas sumcheck gives at best O(log(circuit))
07.02.2025 23:42 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0It replaces the "quotient polynomial". This was the method used to succinctly check that all the Plonk contraints or AIR rows are satisfied.
The advantage is that with sumcheck the prover no longer needs to perform polynomial division and therefore can run in linear time
The original description has it as an IP (no oracles). And the messages are actually super short: for a MV polynomial with degree at most d in each variable, the prover only needs to send d field elements in each round
06.02.2025 01:22 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0Look folks. I want BlueSky to succeed, because we need an alternative to X. I also know this is an insane time. But if we want to create a usable alternative, people are going to have to start posting occasionally about something else.
30.01.2025 23:27 โ ๐ 180 ๐ 14 ๐ฌ 20 ๐ 11๐ณ๐ณ
29.01.2025 15:49 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0These two lectures by @danboneh.bsky.social for @zkhack.bsky.social are the best explanation of IOPPs, FRI and its variants by a country mile. Cannot recommend them enough
zkhack.dev/whiteboard/s...
zkhack.dev/whiteboard/s...
loool these are gold
29.01.2025 12:38 โ ๐ 2 ๐ 0 ๐ฌ 2 ๐ 0programmable* cryptography
* programming difficulty may vary, developer discretion is advised.
Want to send crypto to Bluesky users? It's possible!
Their keypairs are for the secp256k1 curve, which Ethereum also uses. That means you can derive an ETH address from their publicly accessible signing keys.
spicy choice of meme template my friend
24.01.2025 00:05 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0oh hello @zkhack.bsky.social ๐๐
23.01.2025 00:58 โ ๐ 3 ๐ 1 ๐ฌ 2 ๐ 0
