Zero Knowledge Proofs

Tutors
* [Ingonyama - The Magic of Zero-Knowledge Proofs - YouTube](https://youtu.be/FfeXX6OLq8w?si=BJiuViLp6SPQ4Le5)
* Anthropic's AI Claude

In zero-knowledge proofs (ZKPs), this logical framework plays a crucial role in how the entire system functions. Let me explain the connection:

At their core, ZKPs are about proving knowledge of a statement without revealing the underlying information. The diagram you shared represents the fundamental structure behind how these proofs work:

1. **Axioms as the Starting Point**: In ZKPs, we start with certain axioms or assumptions that both the prover and verifier agree upon. These form the common ground or "rules of the game."

2. **Logical Operations (∀, +, -, ×, ÷, ∃)**: These represent the mathematical operations and logical transformations that can be applied to the axioms. In ZKPs, these operations are used to construct the proof itself.

3. **True/False Outcomes**: The endpoint of any logical proof system is to determine whether a statement is true or false. In ZKPs, the prover is trying to convince the verifier that a certain statement is true without revealing why it's true.

For example, in a typical ZKP:
- The prover claims to know a solution to a problem (like a password or the solution to a complex equation)
- Through a series of challenges and responses using logical and mathematical operations
- The verifier becomes convinced the prover knows the solution (True)
- Without learning anything about the solution itself

This is particularly relevant in modern ZKP implementations like zk-SNARKs (Zero-Knowledge Succinct Non-Interactive Arguments of Knowledge) and zk-STARKs (Zero-Knowledge Scalable Transparent Arguments of Knowledge), which use sophisticated mathematical frameworks based on these logical principles.

The diagram depicts the relationship between axioms and logical outcomes. The diagram and glossary would be helpful as a fundamental reference point for understanding how ZKPs transform mathematical statements into verifiable proofs without revealing the underlying secrets.


```
Axioms → ∀ + - × ÷ ∃ → True
                       → False
```

Here's a glossary of the symbols shown:

| Symbol | Name | Meaning in Logic/Mathematics |
|--------|------|------------------------------|
| → | Arrow/Implication | "Implies" or "leads to" |
| ∀ | Universal Quantifier | "For all" or "for every" |
| + | Plus | Addition operator |
| - | Minus | Subtraction operator |
| × | Multiplication | Multiplication operator |
| ÷ | Division | Division operator |
| ∃ | Existential Quantifier | "There exists" or "for some" |

The diagram illustrates how from a set of axioms (fundamental assumptions), using logical operations and quantifiers, we can derive statements that are either true or false.

This concept is fundamental in formal logic and mathematical proof systems, which are relevant to zero-knowledge proofs as they work within formal systems to demonstrate the validity of statements without revealing underlying information.

## Sudoku: A Logic-Based Number Placement Puzzle

Sudoku is a popular logic-based number placement puzzle that originated in Japan. The classic version consists of a grid of 81 squares (9×9), divided into nine 3×3 blocks or "boxes."

### Basic Rules:
1. The object of the game is to correctly fill in all the empty spaces with the correct numbers
2. Each of the nine blocks must contain all the numbers 1-9 without any duplicates or omissions
3. Each vertical nine-square column must contain all numbers 1-9 without duplicates or omissions
4. Each horizontal nine-square row must contain all numbers 1-9 without duplicates or omissions
5. You may only put one number in each square (unless they are notes, which are written smaller)

### Starting Position:
- A puzzle begins partially filled with some numbers (called "givens")
- Every Sudoku has exactly one correct solution
- The difficulty depends on the quantity and placement of the givens

### Solving Process:
The puzzle is solved through logical reasoning and deduction, not guesswork. Common techniques include:
- **Scanning**: Looking for rows, columns, or blocks where a specific number can only fit in one position
- **Marking up**: Noting possible candidates for each empty cell as small "notes"
- **Cross-hatching**: Checking across rows and columns to eliminate possibilities
- **Advanced techniques**: More complex logical patterns like X-Wing, Swordfish, and forcing chains

### Mathematical Properties:
- The minimum number of givens required for a unique solution is 17
- The total number of valid 9×9 Sudoku grids is approximately 6.67 × 10²¹
- Sudoku solving is classified as an NP-complete problem in computational complexity theory

The goal is to figure out every empty square in the grid so that all rows, columns, and blocks follow the rules without conflicting with each other. When you have filled in all squares with the correct numbers, you win the game.

Sudoku puzzles are excellent exercises for developing logical thinking skills and have become popular worldwide for their simple rules but challenging solutions.

What the Script Does

Sudoku Generator: Creates a random, valid Sudoku puzzle by:

Starting with an empty grid
Using backtracking to fill it with a valid solution
Removing some numbers to create the puzzle


Zero-Knowledge Proof Concept: Implements a simplified version of a ZKP system:

Uses RSA for cryptographic commitments
Allows challenges on rows, columns, or blocks
Verifies that the solution follows Sudoku rules without revealing the entire solution


Demonstration: Shows the entire process from puzzle generation to verification

Important Note About This Implementation
This is a conceptual demonstration rather than a cryptographically secure implementation of a ZKP. In a true zero-knowledge proof:

The verifier would never see the actual solution
The proof would use advanced cryptographic primitives like those described in the video
The verification would be mathematically rigorous with extremely small probability of error

To implement a true cryptographic ZKP for Sudoku, you would need to use SNARKs or similar systems which require specialized libraries and complex mathematics.

In [1]:
import numpy as np
import random
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.backends import default_backend

# ----- PART 1: SUDOKU PUZZLE GENERATOR -----

def is_valid(grid, row, col, num):
    """Check if a number can be placed in a specific position."""
    # Check row
    for x in range(9):
        if grid[row][x] == num:
            return False

    # Check column
    for x in range(9):
        if grid[x][col] == num:
            return False

    # Check 3x3 box
    start_row, start_col = 3 * (row // 3), 3 * (col // 3)
    for i in range(3):
        for j in range(3):
            if grid[start_row + i][start_col + j] == num:
                return False

    return True

def solve_sudoku(grid, row=0, col=0):
    """Solve the Sudoku grid using backtracking."""
    if row == 9:
        return True

    if col == 9:
        return solve_sudoku(grid, row + 1, 0)

    if grid[row][col] != 0:
        return solve_sudoku(grid, row, col + 1)

    # Try different numbers
    nums = list(range(1, 10))
    random.shuffle(nums)  # Randomize for different solutions

    for num in nums:
        if is_valid(grid, row, col, num):
            grid[row][col] = num

            if solve_sudoku(grid, row, col + 1):
                return True

            # Backtrack if not successful
            grid[row][col] = 0

    return False

def generate_sudoku(difficulty=0.5):
    """Generate a Sudoku puzzle with varying difficulty."""
    # Create an empty 9x9 grid
    grid = [[0 for _ in range(9)] for _ in range(9)]

    # Fill the grid with a valid solution
    solve_sudoku(grid)

    # Make a copy of the solved grid
    solution = [row[:] for row in grid]

    # Remove numbers based on difficulty (0.0 = easy, 1.0 = hard)
    cells_to_remove = int(81 * difficulty)

    cells = [(i, j) for i in range(9) for j in range(9)]
    random.shuffle(cells)

    for i, j in cells[:cells_to_remove]:
        grid[i][j] = 0

    return grid, solution

# ----- PART 2: ZERO-KNOWLEDGE PROOF CONCEPT -----

class SudokuZKP:
    def __init__(self):
        """Initialize cryptographic keys for the zero-knowledge proof."""
        # Generate RSA key pair
        self.private_key = rsa.generate_private_key(
            public_exponent=65537,
            key_size=2048,
            backend=default_backend()
        )
        self.public_key = self.private_key.public_key()

    def commit_to_solution(self, solution):
        """
        Create a commitment to the Sudoku solution.
        This is a simplified version of a commitment scheme.
        """
        # Flatten the solution grid into a string
        solution_str = ''.join([str(num) for row in solution for num in row])

        # Create a hash of the solution
        digest = hashes.Hash(hashes.SHA256(), backend=default_backend())
        digest.update(solution_str.encode())
        hash_value = digest.finalize()

        # Sign the hash with the private key
        signature = self.private_key.sign(
            hash_value,
            padding.PSS(
                mgf=padding.MGF1(hashes.SHA256()),
                salt_length=padding.PSS.MAX_LENGTH
            ),
            hashes.SHA256()
        )

        return signature

    def verify_rules(self, solution, commitment, challenge_type, challenge_index):
        """
        Verify a specific row, column, or block without revealing the entire solution.

        Args:
            solution: The Sudoku solution
            commitment: The commitment to the solution
            challenge_type: 'row', 'column', or 'block'
            challenge_index: The index of the row, column, or block to verify (0-8)
        """
        # Extract the challenged segment based on type and index
        if challenge_type == 'row':
            segment = solution[challenge_index]
        elif challenge_type == 'column':
            segment = [solution[i][challenge_index] for i in range(9)]
        elif challenge_type == 'block':
            row_start, col_start = 3 * (challenge_index // 3), 3 * (challenge_index % 3)
            segment = [solution[row_start + i][col_start + j] for i in range(3) for j in range(3)]
        else:
            raise ValueError("Challenge type must be 'row', 'column', or 'block'")

        # Check if the segment contains all numbers from 1 to 9
        segment_valid = sorted(segment) == list(range(1, 10))

        # For a ZKP, we would not return the actual segment, just whether it's valid
        return segment_valid

    def verify_starting_values(self, puzzle, solution, position):
        """Verify that a solution respects the starting values in the puzzle."""
        row, col = position
        return puzzle[row][col] == 0 or puzzle[row][col] == solution[row][col]

    def generate_proof(self, puzzle, solution):
        """Generate a zero-knowledge proof for the Sudoku solution."""
        # Commit to the solution
        commitment = self.commit_to_solution(solution)

        # For a true ZKP, we would perform multiple rounds of challenges and responses
        # Here, we'll just prepare data for verification
        proof_data = {
            'commitment': commitment,
            'solution_hash': self.hash_solution(solution),
            # In a real ZKP, we would not include the solution itself!
            # This is just for demonstration purposes
            'solution': solution
        }

        return proof_data

    def hash_solution(self, solution):
        """Create a hash of the solution."""
        solution_str = ''.join([str(num) for row in solution for num in row])
        digest = hashes.Hash(hashes.SHA256(), backend=default_backend())
        digest.update(solution_str.encode())
        return digest.finalize()

    def verify_proof(self, puzzle, proof_data, challenges=None):
        """
        Verify the zero-knowledge proof.

        In a real ZKP, the verifier would choose random challenges,
        and the prover would respond to each one without revealing the solution.
        """
        # In a real implementation, we would verify the commitment here
        solution = proof_data['solution']  # In a real ZKP, we wouldn't have this!

        # If no specific challenges are provided, generate random ones
        if challenges is None:
            challenges = [
                ('row', random.randint(0, 8)),
                ('column', random.randint(0, 8)),
                ('block', random.randint(0, 8))
            ]

        # Verify each challenge
        for challenge_type, challenge_index in challenges:
            if not self.verify_rules(solution, proof_data['commitment'], challenge_type, challenge_index):
                return False

        # Verify that the solution respects the starting values
        for i in range(9):
            for j in range(9):
                if puzzle[i][j] != 0 and puzzle[i][j] != solution[i][j]:
                    return False

        return True

# ----- PART 3: DEMONSTRATION -----

def print_sudoku(grid):
    """Pretty print a Sudoku grid."""
    print("┌───────┬───────┬───────┐")
    for i, row in enumerate(grid):
        print("│", end=" ")
        for j, num in enumerate(row):
            if num == 0:
                print(".", end=" ")
            else:
                print(num, end=" ")
            if j % 3 == 2 and j < 8:
                print("│", end=" ")
        print("│")
        if i % 3 == 2 and i < 8:
            print("├───────┼───────┼───────┤")
    print("└───────┴───────┴───────┘")

def demonstrate_zkp():
    """Demonstrate the Sudoku generation and ZKP concept."""
    print("Generating a random Sudoku puzzle...")
    puzzle, solution = generate_sudoku(difficulty=0.6)

    print("\nPuzzle:")
    print_sudoku(puzzle)

    # Initialize the ZKP system
    zkp = SudokuZKP()

    print("\nGenerating a zero-knowledge proof...")
    proof = zkp.generate_proof(puzzle, solution)

    # Simulate a verification process with random challenges
    challenges = [
        ('row', random.randint(0, 8)),
        ('column', random.randint(0, 8)),
        ('block', random.randint(0, 8))
    ]

    print("\nVerifier issues challenges:")
    for challenge_type, challenge_index in challenges:
        print(f"- Verify {challenge_type} {challenge_index+1}")

    # Verify the proof
    verification_result = zkp.verify_proof(puzzle, proof, challenges)

    print(f"\nVerification result: {'PASSED' if verification_result else 'FAILED'}")

    print("\nNote: This is a simplified conceptual demonstration of a ZKP for Sudoku.")
    print("A real cryptographic ZKP would use more sophisticated protocols like SNARKs")
    print("and would never reveal the actual solution to the verifier.")

    # Show the solution
    print("\nSolution (not revealed in a real ZKP):")
    print_sudoku(solution)

if __name__ == "__main__":
    demonstrate_zkp()

Generating a random Sudoku puzzle...

Puzzle:
┌───────┬───────┬───────┐
│ 2 7 . │ 8 . 3 │ . . 6 │
│ . . 9 │ . . . │ . 2 3 │
│ 8 . . │ . 9 . │ . . 4 │
├───────┼───────┼───────┤
│ . . . │ 9 . . │ . 6 . │
│ 7 1 . │ . 5 . │ . . 2 │
│ . 9 . │ . . . │ 3 . . │
├───────┼───────┼───────┤
│ 9 . . │ . 3 . │ 2 . 5 │
│ . . 3 │ 4 . . │ . . 9 │
│ 4 . 2 │ 7 6 9 │ 1 3 . │
└───────┴───────┴───────┘

Generating a zero-knowledge proof...

Verifier issues challenges:
- Verify row 5
- Verify column 8
- Verify block 1

Verification result: PASSED

Note: This is a simplified conceptual demonstration of a ZKP for Sudoku.
A real cryptographic ZKP would use more sophisticated protocols like SNARKs
and would never reveal the actual solution to the verifier.

Solution (not revealed in a real ZKP):
┌───────┬───────┬───────┐
│ 2 7 1 │ 8 4 3 │ 9 5 6 │
│ 6 4 9 │ 5 7 1 │ 8 2 3 │
│ 8 3 5 │ 6 9 2 │ 7 1 4 │
├───────┼───────┼───────┤
│ 3 2 4 │ 9 8 7 │ 5 6 1 │
│ 7 1 8 │ 3 5 6 │ 4 9 2 │
│ 5 9 6 │ 2 1 4 │ 3 8 7 │
├───────┼───