midnight-halo2

Halo2 with KZG, Midnight's proof system

midnight L1 proof-system final protocol spec KZG

Native status
Federated mainnet
Enables
Halo2 PLONKish proofs with KZG polynomial commitments for Midnight's shielded smart contracts
Specification
https://docs.rs/midnight-proofs

Midnight is a privacy-focused chain whose proving system, midnight-proofs, is a fork of the Privacy and Scaling Explorations Halo2 (itself descended from Zcash's Sapling prover). It uses the PLONKish (UltraPLONK) arithmetization with KZG polynomial commitments over BN254, giving the contracts written in Midnight's Compact language succinct proofs of private state transitions. The cross-ecosystem hook is the KZG polynomial-commitment scheme that Ethereum exposes for blob commitments (EIP-4844); the two are the same scheme bound to different setups --- Midnight over BN254, EIP-4844 over BLS12-381 --- so they are conceptually equivalent yet, like every trusted-setup-bound construction, not something the parity harness can run over shared bytes.

Implementations

Relationships

Equivalent to
EIP-4844

Sources