LogoLogo
LogoLogo
  • Introduction
    • About Us
    • Notations & Definitions
      • MPC
      • ZK
    • Contribute to this Site!
  • Primitives
    • Multiplication
      • Karatsuba Multiplication
      • Toom-Cook Multiplication
    • NAF (Non-adjacent form)
    • Chinese Remainder Theorem (CRT)
    • Euclidean Algorithm
      • Extended Euclidean Algorithm
      • Binary Euclidean Algorithm
      • Extended Binary Euclidean Algorithm
    • Coding Theory
      • Linear Code
    • Number Theoretic Transform
    • Abstract Algebra
      • Group
        • -Morphisms
        • Batch Inverse
      • Elliptic Curve
        • Weierstrass Curve
          • Coordinate Forms
          • Fast Elliptic Curve Arithmetic and Improved WEIL Pairing Evaluation
        • Edwards Curve
          • Coordinate Forms
          • Twisted Edwards ↔ Short Weierstrass Transformation
        • Batch Inverse for Batch Point Additions
        • Scalar Multiplication
          • Double-and-add
          • GLV Decomposition
        • MSM
          • Pippenger's Algorithm
          • Signed Bucket Index
          • CycloneMSM
          • EdMSM
          • cuZK
        • 2-Chain and 2-Cycle of Elliptic Curves
    • Encryption Scheme
      • ElGamal Encryption
    • Modular Arithmetic
      • Modular Reduction
        • Barrett Reduction
        • Montgomery Reduction
      • Modular Inverse
        • Bernstein-Yang's Inverse
    • Multiset Check
    • Sumcheck
    • Commitment Scheme
      • Fflonk
      • SHPlonk
      • Zeromorph
  • MPC
    • Yao's Garbled Circuits
    • GMW
    • BMR
  • ZK
    • Arithmetization
      • R1CS
      • PLONK
      • AIR
    • Folding
      • LatticeFold
      • Nova
        • Nova over Cycles of Curves
    • Lookup
      • Lasso
      • LogUp-GKR
    • SNARK
      • Groth16
      • HyperPlonk
      • Spartan
        • SPARK
    • STARK
      • Additive NTT
      • Basefold
      • Binius
      • Brakedown
      • CircleSTARK
      • FRI
        • FRI Security Features and Optimizations
      • DEEP FRI
      • STIR
      • WHIR
    • Distributed ZK
      • Ryan's Trick for Distributed Groth16
  • Application
    • zkLogin
    • zkHoldem
    • zkTLS
      • DECO
      • Proxying is enough
  • zkVM
Powered by GitBook
On this page
Export as PDF

zkVM

PreviousProxying is enough

Last updated 2 months ago

Based on the research done by Porter Adams, core contributor to Matter Labs/ZKsync. ()

zkVM Name
Succinct SP1 Turbo
RISCZero
Brevis Pico
Lita’s Valida
a16z’s Jolt
Nexus zkVM3.0
ZKSync’s Boojum2.0

ZK tech name(s)

Plonky3

Plonky3 + more

Plonky3

Arkworks + Binius

Stwo

Arithmetization

AIR

AIR

AIR

AIR

R1CS

AIR

AIR

Proofs

STARK

STARK

STARK / CircleStark

STARK

Sumcheck

CircleSTARK

STARK

Commitments

FRI

FRI

FRI

FRI

Zeromorph

FRI

Prime Field

Baby-Bear

Baby-Bear

BabyBear / Mersenne31

Mersenne31

Mersenne31

Mersenne31

Memory Argument

Instruction Set

RISC-V

RISC-V

RISC-V

Lita ISA

Risc-V

Risc-V

RISCV-32 I+M

Other thoughts

Extremely popular

  • Easy to get started

  • Good docs & examples

  • product focused

  • developer friendly

One of the first general-purpose zkVMs

  • robust codebase

  • zirgen language

  • organized/ well-documented

  • devs with long-term vision

Focused on modularity

  • supports multiple proving backends

  • enshrined app level co-processors

  • focused on dev ex

The truly fastest

  • custom instruction set architecture (ISA)

  • modified from RISC-V to be more zk-friendly

  • custom compiler (30x faster)

Unique cryptography choices

  • Sumcheck 👀

  • Just One Lookup Table (JOLT)

  • smallest + simplest codebase

  • most likely to get fully formally verified (sumcheck easier to verifier than, say, FRI)

Goal of processing 1 trillion Hz/s

  • Switched from folding schemes and elliptic curve groups (Nova/Hypernova/Jolt & Ristretto 255 for Nexus zkVM2.0) to Stwo

Make devs happy

  • separated proof system from the execution layer

  • Full EVM equivalent

  • should come out summer 2025

  • fast and cheap tx for users

  • 4th full re-write of zk proof sytem

Other projects not covered here include:

  • Linea’s zkEVM

  • Polygon’s Miden

  • Starknet’s Cairo

  • Scroll’s Ceno

  • Aztec (needs client-side proving for privacy)

  • Projects that modularize type of VM to use:

    • powdr

    • OpenVM

Based on

uses

See video here
ETH proofs! - a site to determine who is proving ETH blocks for the cheapest cost and the fastest
Multi-set Hashing
Twist and Shout
Two Shuffled Make a RAM
"Harvard architecture in which the program being executed resides in a read-only memory space separate from the data."