ZK dompet

Now the current multi-party wallets cannot guarantee users privacy. ZK Dompet is, private multi-sig wallet that shields end users by account abstraction (EIP-4337) and zero-knowledge proofs.

Comment 1

ZK Dompet

About the project

Inspiration

This project is inspired by Gnosis Safe where multiple participants or entities can have joint ownership of a single Ethereum wallet. However, the current implementation of Gnosis Safe is not anonymous. The wallet address is linked to the Ethereum address of the participants. Hence, the privacy of the participants is compromised.

What it does

ZKDompet basically allows creation of a multi-signature wallet with the following features:

  • The wallet address is not linked to owners of the wallet
  • The wallet enforces each participant provide a Zero Knowledge Proof (ZKP) of their identity before they can submit a transaction which will be relayed to the multi-signature wallet.

How we built it

Overall flow goes: [Inputs] -> [Circuit] -> [Relay] -> [Contract] -> [Outputs]

  1. Circom Circuits
  2. Main.circom
    • This circuit contains the ECDSA verification within the circuit. It takes in the following public and private inputs.
    • Public Inputs
      • Hash of the public key
      • Transaction call data
    • Private Inputs
      • Signature (r,s)
      • Public Key
    • The circuit compares both the public and private inputs and returns true if they are equal.
    • The circuit also verifies the ECDSA signature using the public key and the transaction call data.
  3. Hash.circom
    • This circuit hashes the public key and returns the result of the hashed public key.

Challenges we ran into

**[Circuit] We initially wanted to use spartan-ecdsa library to create a circuit for ECDSA verification. However, we found that the library is not compatible with circom. Hence, we used a Poseidon hash circuit instead.

Computation of the circuit is very compute intensive on top of requiring a trusted setup. We faced issued generating the wasm, zkey and vkey files due to some javascript overflow errors. We finally resorted to to use a linux laptop to generate the trusted setup for the circuit. Due to lack of documentation, we could not improve the efficiency of the circuit generation process. This is definitely an area of improvement for future iterations of the project.

**[Frontend] To connect circuit with frontend, we have to generate the right input format in client side. So we used this test.ts file and refer it to make a right input.json in frontend side without any documentation. While doing this re ran into many problems, got helped from Iden3 telegram group chat by asking questions.

**[Relay] Openzeppelin Defender Relayer is used to relay meta-transactions to build a gasless experience. This also helps to anonymize the user’s address from being shown in the onchain transaction history. Openzeppelin Autotask is used to run meta-transaction code snippets with downstream integration with the Relayer. This lessens the burden of having bloated client libraries on the client side.

Accomplishments that we're proud of

We are proud that we managed to go from ideation to a fully functional MVP in a short period of time. We are also proud that we managed to build a fully functional Zero Knowledge Proof circuit which can be used in a meaningful manner to provide privacy to the users especially in the context of multi-signature wallets.

What we learned

Circom is a very powerful tool to build Zero Knowledge Proof circuits. However, it is still very new and there is a lack of documentation.

What's next for ZK Dompet

We aspire to make this project a fully functional product and apply grants (e.g. Ethereum Foundation). We also plan to make this circuit and codebase fully open source to benefit the community.

Future Improvements

Some of the improvements we plan to make are:

  • Aggregating multiple proofs for multiple parties
  • A more secure way of storing user metadata without compromising much on the user experience

Built With

Share this project:

Updates