ed255/pod2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
pod2/book/src/merkletree.md
arnaucube 5b455acbd6
add initial MerkleTree implementation (#13) 
Add initial MerkleTree implementation, which is a wrapper on top of
Plonky2's MerkleTree, with the idea that the future iteration will
replace it by the MerkleTree specified at
https://0xparc.github.io/pod2/merkletree.html .
2025-02-03 18:03:45 +01:00

2.5 KiB
Raw Blame History

MerkleTree

In the POD system, MerkleTrees are used to store the key-values of the POD.

  • Each leaf contains a touple of key and value
  • Leaf position is determined by the key content binary representation (little-endian)

So for example, suppose we have the following data in a POD:

{
	id: "11000...",
	kvs : {
		idNumber: "424242",
		dateOfBirth: 1169909384,
		userPk: 9876543210, // target user of this POD
		_signerPk: 1234567890, // signer of the POD
	}
}

The merkletree will contain the key values from the kvs field.

Suppose that the binary representation of the key userPk is 1011.... This uniquely defines the leaf position that contains the public key of the authenticated user.

Proofs of inclusion and non-inclusion

Merkle proofs contain the siblings along the path from the leaf to the root, where the leaf position is determined by the key binary representation.

Since leaf positions are deterministic based on the key, the same approach is used for non-inclusion proofs, where it can be proven that a key is not in the tree, and furthermore, that a value is not in the tree (although the key exists):

  • Proving that the key does not exist in the tree is achieved by generating the merkle-proof for the specific key, and showing that the (virtual) leaf is empty - this is, showing that going down the path of the non-existing key, there is a leaf with a different key, meaning that the non-existing key has not been inserted in the tree.
  • Proving that a value is not in the tree (although the key exists) is achieved by generating the merkle-proof for the specific key, and showing that the leaf exists but it has a different value than the one being proved.

Encoding

TODO: how key-values, nodes, merkle-proofs, ... are encoded.

Developement plan

  • short term: merkle tree as a 'precompile' in POD operations, which allows to directly verify proofs
    • initial version: just a wrapper on top of the existing Plonky2's MerkleTree
    • second iteration: implement the MerkleTree specified in this document
  • long term exploration:

Resources