Articles

Zero-Knowledge Proofs: The Math Behind Secret Proofs

March 15, 2026 6 min read

A zero-knowledge proof allows one party (the prover) to convince another party (the verifier) that a statement is true, without revealing any information beyond the truth of the statement itself.

Let’s imagine you want to prove to your friend Alice that you know the password to a secret club, but you don’t want to tell her the password itself. We can use a zero-knowledge proof system to achieve this.

Here’s a classic example: the "Cave of Secrets." Imagine a circular cave with an entrance and a magical door deep inside that requires a secret word to open. You want to prove to Alice that you know the secret word without telling her.

  1. Setup: Alice waits at the entrance of the cave. You enter the cave and walk down the path, choosing to go left or right.
  2. The Challenge: Once you’re out of Alice’s sight, she walks to the entrance and shouts, "Come out of the left passage!"
  3. The Proof:
    • If you initially went down the left passage, you simply walk out.
    • If you initially went down the right passage, you must use the secret word to open the magical door, pass through, and then come out of the left passage.
  4. Verification: Alice sees you emerge from the left passage. She’s convinced you could have come from the right passage if you knew the secret word.

If you didn’t know the secret word, you’d only have a 50% chance of guessing correctly which passage Alice would ask you to exit from. If Alice repeats this process many times (say, 20 times), your chance of successfully fooling her by randomly picking paths becomes astronomically small (1 in 2^20, or about one in a million). After enough successful repetitions, Alice becomes highly confident that you know the secret word, even though she never learned it.

This simple cave analogy demonstrates the core properties of zero-knowledge proofs:

  • Completeness: If the statement is true (you know the password), the honest prover can always convince the honest verifier.
  • Soundness: If the statement is false (you don’t know the password), a dishonest prover cannot convince the honest verifier, except with a negligible probability.
  • Zero-Knowledge: If the statement is true, the verifier learns nothing beyond the fact that the statement is true. They don’t learn the secret word.

In practice, zero-knowledge proofs are implemented using complex mathematical concepts, often involving cryptography and number theory. One popular type is a zk-SNARK (Zero-Knowledge Succinct Non-Interactive Argument of Knowledge).

Here’s a simplified look at how a zk-SNARK might work in a real-world scenario, like proving you are over 18 without revealing your birthdate.

Imagine you have a private piece of data (your birthdate) and you want to prove a public statement about it (you are older than 18) to a service.

  1. Data Preparation: Your birthdate is represented as a number. Let’s say today is 2023-10-27. If you were born on 1990-05-15, your age is 33 years, 5 months, and 12 days. The statement "age > 18" is true.
  2. Generating a Proof: Using your private birthdate and a pre-established "trusted setup" (a set of cryptographic parameters that are crucial and must be generated securely), a zk-SNARK prover algorithm takes your birthdate and the statement "age > 18" as input. It then generates a small cryptographic proof. This proof is a string of data, not human-readable.
  3. Verification: The service you’re interacting with has a zk-SNARK verifier algorithm. It takes the public statement ("age > 18") and the proof generated by you. It performs a series of mathematical computations. If the computations check out, the verifier outputs "true." If they don’t, it outputs "false."

Crucially, the verifier does not have access to your birthdate. It only sees the proof and the public statement. The mathematical structure of the proof ensures that it could only have been generated by someone who knows a birthdate that satisfies the statement.

The power of zk-SNARKs lies in their "succinctness" and "non-interactivity."

  • Succinct: The proofs are very small, making them efficient to transmit and verify.
  • Non-Interactive: The prover generates a single proof that the verifier can check later, without needing a back-and-forth "challenge-response" like the cave example.

The "trusted setup" is a critical and often misunderstood part of many zk-SNARK systems. For a given cryptographic "curve" (a mathematical object used in the proof), a set of parameters must be generated. If the secret randomness used to generate these parameters is ever revealed, an attacker could forge proofs for any statement. This is why the initial generation of these parameters is a sensitive process, often involving multiple parties to ensure no single entity can compromise the system.

The next frontier in understanding zero-knowledge proofs involves exploring different types of proofs, such as zk-STARKs, and their applications in areas like blockchain scalability and privacy-preserving computation.

Want structured learning?

Take the full Cryptography course →