IMO these zero-knowledge proofs are the most interesting stuff you can work on in the field of cryptography at the moment. I wrote a bit about them here <a href="https://www.cryptologie.net/article/507/the-missing-explanation-of-zk-snarks-part-1/" rel="nofollow">https://www.cryptologie.net/article/507/the-missing-explanat...</a> and in my book <a href="https://www.manning.com/books/real-world-cryptography?a_aid=Realworldcrypto&a_bid=ad500e09" rel="nofollow">https://www.manning.com/books/real-world-cryptography?a_aid=...</a><p>They’re going to change the world, not just for privacy, but for compression.
FWIW, this website is out of date; there's been enormous improvements in zkp constructions and applications in the intervening 2 years.<p>(This is not a slight against the maintainers; the space is moving incredibly quickly, so it's difficult to keep updating regularly.)
Another nice resource for understanding zk snarks that I found easily digestible was this paper that was shared on hn a few months ago[0]. <a href="https://arxiv.org/abs/1906.07221" rel="nofollow">https://arxiv.org/abs/1906.07221</a><p>[0]: <a href="https://news.ycombinator.com/item?id=24815649" rel="nofollow">https://news.ycombinator.com/item?id=24815649</a>
best intro is still this paper:
"How to explain zero-knowledge Protocols to your Children";<p><a href="https://www.researchgate.net/publication/221355016_How_to_Explain_Zero-Knowledge_Protocols_to_Your_Children" rel="nofollow">https://www.researchgate.net/publication/221355016_How_to_Ex...</a>
I think ZKPs will find most of their use in proving MPC protocols were correctly followed. In these protocols you often need everyone to do certain steps correctly to prevent cheating or deadlock. But sharing the information behind those steps reveals way too much data.<p>Often ZKP can be used to prove those steps were correctly followed.
The page seems a bit too heavily weighted towards SNARKs in particular and crypto<i>currency</i> applications in general. There's no mention of ZKPPs, for instance.<p>Not all crypto is "crypto".
ZK Snarks is where it's at for crypto.<p>Every cryptography gives the cryptographer an immediate asymmetrical advantage, and that's necessary given crypto's adversaries.<p>Said cryptography advantage cannot be wasted by centralizing the social environment where people exchange the tokens<p>Crypto exchanges are the singular main point of failure and that is true for both centralized and de-centralized exchanges
ZKPs are a really exciting crypto primitive. They're finally getting serious development for the cryptocurrency space, but I think we'll see them used in all sorts of protocols over the next decade.<p>One possibility I'm excited about is users being able to perform computations locally without sending their data anywhere, and then providing the results to a company, government, etc with a proof that the results are faithful.
the best ELI5 for a ZKP I've found follows<p>[0] <a href="https://medium.com/swlh/a-zero-knowledge-proof-for-wheres-wally-930c21e55399" rel="nofollow">https://medium.com/swlh/a-zero-knowledge-proof-for-wheres-wa...</a>