0
Normally, in zk-SNARK, we need to generate two public keys: one for prover and one for verifier. However, the input parameter of this generator algorithm must be secret, meaning that it must be hidden for both prover and verifier.
And because of this, the process of those public generation is done by a trusted third party.
Since using a trusted third party is not desirable for decentralized blockchain, I am looking for a decentralized approach of those public key generation. Is there ? or it's impossible to have a decentralized zk-SNARK ?
P.S. More information about zk-SNARK is found here: https://media.consensys.net/introduction-to-zksnarks-with-examples-3283b554fc3b
Thank you, Do you mean Bulletproofs is an alternative to zk-SNARK ? And is there any usage of Bulletproofs in Blockchain ? Thanks – Questioner – 2018-08-28T14:34:06.073
1Yes, it's an alternative. It can be used everywhere snarks can be used. It's currently only on Monero testnet. – MCCCS – 2018-08-28T14:37:32.563
1Bulletproofs can be used for any purpose where zkSNARKs are used, though it has very different size/performance tradeoffs. Bulletproofs are larger than zkSNARKs, and for anything but the simplest statements, also slower to verify. However, they aggregate well (verifying multiple at once can be faster), and most importantly, they have no trusted setup at all. – Pieter Wuille – 2018-08-28T15:17:56.290