This chapter delves into the different aspects of ZK security auditing, highlighting the importance of expertise in ZK cryptography and auditing. The guest discusses the use of tools like fuzzers, formal verification, and manual work in ZK auditing, emphasizing the significance of manual work in bug detection. They also explore the concept of building objects in ZK and the potential bugs that can arise from neglecting certain constraints.
This week, Anna and Guillermo chat with David Wong, author of the Real-World Cryptography book, and a cofounder [zksecurity.xyz]((https://www.zksecurity.xyz/) - an auditing firm focused on Zero Knowledge technology.
They chat about what first got him interested in cryptography, his early work as a security consultant, his work on the Facebook crypto project and the Mina project, zksecurity.xyz, auditing techniques and their efficacy in a ZK context, what common bugs are found in ZK code, and much more.
Here’s some additional links for this episode:
Check out the ZK Jobs Board for new job opportunities in the run up to the zkSummit 10!
Aleo is a new Layer-1 blockchain that achieves the programmability of Ethereum, the privacy of Zcash, and the scalability of a rollup.
For questions, join their Discord at aleo.org/discord.
If you like what we do: