undefined | Better HN

0 pointsAr-Curunir5y ago0 comments

Eg:

(1) This is my credit score, certified by XYZ agency, so please don't ask for my SSN so that you can lose it in a public database leak tmrw

(2) Here's a bug in your program, please give me the bug bounty and I will tell you the bug (can help stop sketchy bug bounty programs.)

(3) Your Certificate Transparency Provider can prove that, for the latest root, there was no change in your certificate. (This has less to do with privacy and more to do with the succinct verification properties of the latest zkps)

(4) Construct postquantum-secure signatures (eg: the Picnic signature scheme)

Generally, ZKPs provide selective disclosure: I can prove to you that some fact about me or my accounts is true, without revealing to you any other information. The SSN example is one, you could generalize that to taxes, bank statements, Keybase attestations, etc.

0 pointsAr-Curunir5y ago0 comments

Eg:

(1) This is my credit score, certified by XYZ agency, so please don't ask for my SSN so that you can lose it in a public database leak tmrw

(2) Here's a bug in your program, please give me the bug bounty and I will tell you the bug (can help stop sketchy bug bounty programs.)

(4) Construct postquantum-secure signatures (eg: the Picnic signature scheme)

0 comments

5 comments · 3 top-level

tylersmith5y ago· 1 in thread

Great examples, and great point. The real magic is in computational integrity proofs and selective knowledge reveals is just a (realy great) feature.

0FreedomInUSA5y ago

these definitely are "magic internet applications"

SheinhardtWigCo5y ago· 1 in thread

I’m not seeing how 1 and 2 are directly enabled by ZKPs. In the credit score example, “this is my credit score certified by XYZ” is solved without ZKPs, no? And in the bug bounty example, how does one use a ZKP to prove knowledge of a software bug without leaking any information about it? That sounds fascinating.

3 seems cool but not particularly impactful in terms of the guarantees offered by CT.

4 can be achieved in many ways without ZKPs.

jude-5y ago

(1) with zkps, you can run the credit check (or any sensitive computation) locally, and export a proof that demonstrates that your credit score is X as calculated by credit algorithm A without revealing your sensitive financial data.

(2) As the bug bounty claimant, I compile the program into the zkp proof, run the program with the bad input that leads to the exploited state, and submit the witness to the code author that proves that I know of an input that causes the code to reach an undesirable state (without revealing it).

noman-land5y ago

God, I love ZKPs. So much neat stuff you could do.

You could prove you're of legal drinking age without having to show a stranger your ID full of sensitive info.

You could prove you "liked" a band before a certain date and therefore get discounts on merch or show tickets or something.

New ideas come to me every day.

j / k navigate · click thread line to collapse