Verify Linkable Spontaneous Anonymous Group (LSAG) signatures using RISC Zero zkVM as an EVM coprocessor.
This repository implements an LSAG signature verification system on EVM utilizing RISC Zero as a coprocessor to the smart contract application. It provides a solution for verifying ring signatures in a gas-efficient manner by offloading the computationally intensive verification process to RISC Zero's zkVM.
Here is a simplified overview of how the LSAG verification works with RISC Zero and Bonsai proving:
- The LSAG signature and ring member public keys are processed in the RISC Zero zkVM. The publisher app sends an off-chain proof request to the Bonsai proving service.
- Bonsai generates the verification result, written to the journal, and a SNARK proof of its correctness.
- The publisher app submits this proof and journal on-chain to your app contract for validation.
- Your app contract calls the RISC Zero Verifier to validate the proof. If the verification is successful, the LSAG signature is deemed valid and can be safely used.
First, install Rust and Foundry, and then restart your terminal.
# Install Rust
curl https://sh.rustup.rs -sSf | sh
# Install Foundry
curl -L https://foundry.paradigm.xyz | bashNext, install the RISC Zero toolchain:
# Install rzup
curl -L https://risczero.com/install | bash
# Install RISC Zero toolchain
rzup
# Verify installation
cargo risczero --versionAfter installing the dependencies, you can clone and set up the project:
# Clone the repository
git clone https://github.com/Cypher-Laboratory/risc_zero_lsag_verifier.git
cd risc_zero_lsag_verifier
# Build the Solidity contracts
forge build
# Build the Rust components
cargo buildThe LSAG verifier consists of three main components:
Located in methods/guest, this code implements the LSAG signature verification algorithm. It:
- Validates the ring signature structure
- Performs the cryptographic verification steps
- Outputs the verification result to the journal
Located in contracts, the smart contracts:
- Receive LSAG signatures, ring member public keys and the Groth16 proof
- Verify RISC Zero proof of signature verification
- Verifies on-chain data integrity by comparing the receipt's stored hash against the hash of provided signature data
Located in apps, the publisher:
-
Accepts LSAG signatures for verification
-
Submits proof requests to Bonsai
-
Posts verification results and proofs to the smart contract
This project provides a boilerplate for LSAG signature verification that can be adapted to various use cases (CLI, backend services, APIs, etc.).
- Signature Creation
- Using TypeScript LSAG implementation in your frontend/application
- Generate a ring signature
- Encode the resulting signature in base64 format
- Verification Request
- Pass the base64-encoded signature to the verification service
- Provider either via CLI interface or any other integration point
- Include the ring members' public keys along with the signature
- Result Processing
- The system verifies the signature via RISC Zero
- Returns proof of valid/invalid signature
- Results can be verified on-chain and then used for further application logic
While this example uses a CLI approach, the verification process is designed to be flexible and can be integrated into:
- Web backends
- REST APIs
- Blockchain indexers
- Smart contract systems
- Custom applications
The core verification logic remains consistent regardless of the integration method, allowing for versatile implementation approaches.
| Network | Contract | Address |
|---|---|---|
| Polygon Mainnet | RiscZeroVerifier | 0xB7A7963d3621435E411518e13E89A10e670D24bA |
| Polygon Mainnet | LSAGVerifier | 0xD1b512E8d5e80FC52E7609FA70D6068608DA02EF |
| Network | Contract | Address |
|---|---|---|
| Polygon Amoy | RiscZeroVerifier | 0xD1b512E8d5e80FC52E7609FA70D6068608DA02EF |
| Polygon Amoy | LSAGVerifier | 0x43992dC1dec1D4B7936f3c84D8E48e4C09a08513 |
We would like to thank the Polygon Foundation for making this version of Alice’s Ring possible through the grant awarded as part of the Polygon Community Grants Program Season 01.