fix: hashchain verification circuit missing previous signing_key validation

deltadevsde / prism

prism is the first trust-minimized key-transparency solution, allowing for automatic verification of service providers via light clients. Powered by Celestia.

https://prism.deltadevs.xyz

21 stars 5 forks source link

fix: hashchain verification circuit missing previous signing_key validation #106

Open distractedm1nd opened 1 month ago

distractedm1nd commented 1 month ago

An update to the hashchain requires the update to contain a signature using a key already existing in the hashchain, and this must be verified in the circuit

distractedm1nd commented 1 month ago

Updating this for further clarification:

Verdict does not make any SNARKs about the validity of hashchains because it relies on users to validate the signatures they contain. This is not possible for us in a based rollup construction because submitting updates is permissionless - meaning we need to be able to SNARK over the validity of all incoming operations, as they could be posted by alternative sequencers.

distractedm1nd commented 1 month ago

Also: adr-003 will target this. We won't actually do signature verification in a SNARK because its unnecessary and dumb. We can use an auth system of hashing private keys, and users making a local SNARK that they know the plaintext of the hash. Then updates must be authenticated by a valid SNARK