Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

if-ZKP: Intel FPGA-Based Acceleration of Zero Knowledge Proofs

Shahzad Ahmad Butt, Benjamin Reynolds, Veeraraghavan Ramamurthy, Xiao Xiao, Pohrong Chu, Setareh Sharifian, Sergey Gribok, Bogdan Pasca

TL;DR

This work targets the computational bottleneck of zk-SNARK provers by accelerating Multi-Scalar Multiplication (MSM) on FPGAs. It introduces a scalable SAB architecture and a high-performance Point Processor that supports both PA and PD operations, including a Unified Double-Add (UDA) design and a non-Montgomery form for large curves like BLS12-381. The approach achieves 110x–150x speedups over software and competitive performance versus GPU, while offering favorable power efficiency, enabling practical zk-SNARK proof generation in blockchain contexts. The results demonstrate first FPGA acceleration of BLS12-381 on Intel Agilex and establish a path toward broader hardware acceleration of zk-SNARKs, including NTT/IN TT and G2 MSM in future work.

Abstract

Zero-Knowledge Proofs (ZKPs) have emerged as an important cryptographic technique allowing one party (prover) to prove the correctness of a statement to some other party (verifier) and nothing else. ZKPs give rise to user's privacy in many applications such as blockchains, digital voting, and machine learning. Traditionally, ZKPs suffered from poor scalability but recently, a sub-class of ZKPs known as Zero-knowledge Succinct Non-interactive ARgument of Knowledges (zk-SNARKs) have addressed this challenge. They are getting significant attention and are being implemented by many public libraries. In this paper, we present a novel scalable architecture that is suitable for accelerating the zk-SNARK prover compute on FPGAs. We focus on the multi-scalar multiplication (MSM) that accounts for the majority of computation time spent in zk-SNARK systems. The MSM calculations extensive rely on modular arithmetic so highly optimized Intel IP Libraries for modular arithmetic are used. The proposed architecture exploits the parallelism inherent to MSM and is implemented using the Intel OneAPI framework for FPGAs. Our implementation runs 110x-150x faster compared to reference software library, uses a generic curve form in Jacobian coordinates and is the first to report FPGA hardware acceleration results for BLS12-381 and BN128 family of elliptic curves.

if-ZKP: Intel FPGA-Based Acceleration of Zero Knowledge Proofs

TL;DR

This work targets the computational bottleneck of zk-SNARK provers by accelerating Multi-Scalar Multiplication (MSM) on FPGAs. It introduces a scalable SAB architecture and a high-performance Point Processor that supports both PA and PD operations, including a Unified Double-Add (UDA) design and a non-Montgomery form for large curves like BLS12-381. The approach achieves 110x–150x speedups over software and competitive performance versus GPU, while offering favorable power efficiency, enabling practical zk-SNARK proof generation in blockchain contexts. The results demonstrate first FPGA acceleration of BLS12-381 on Intel Agilex and establish a path toward broader hardware acceleration of zk-SNARKs, including NTT/IN TT and G2 MSM in future work.

Abstract

Zero-Knowledge Proofs (ZKPs) have emerged as an important cryptographic technique allowing one party (prover) to prove the correctness of a statement to some other party (verifier) and nothing else. ZKPs give rise to user's privacy in many applications such as blockchains, digital voting, and machine learning. Traditionally, ZKPs suffered from poor scalability but recently, a sub-class of ZKPs known as Zero-knowledge Succinct Non-interactive ARgument of Knowledges (zk-SNARKs) have addressed this challenge. They are getting significant attention and are being implemented by many public libraries. In this paper, we present a novel scalable architecture that is suitable for accelerating the zk-SNARK prover compute on FPGAs. We focus on the multi-scalar multiplication (MSM) that accounts for the majority of computation time spent in zk-SNARK systems. The MSM calculations extensive rely on modular arithmetic so highly optimized Intel IP Libraries for modular arithmetic are used. The proposed architecture exploits the parallelism inherent to MSM and is implemented using the Intel OneAPI framework for FPGAs. Our implementation runs 110x-150x faster compared to reference software library, uses a generic curve form in Jacobian coordinates and is the first to report FPGA hardware acceleration results for BLS12-381 and BN128 family of elliptic curves.

Paper Structure

This paper contains 25 sections, 6 equations, 8 figures, 10 tables, 2 algorithms.

Table of Contents

  1. Introduction
  2. Preliminaries
  3. Proof Systems in Cryptography
  4. zk-SNARKs
  5. Elliptic Curves Groups and their Basic Operations
  6. The Computational Challenge: Complex Operations
  7. Multi-Scalar Multiplication (MSM)
  8. Bucket Algorithm
  9. Related Works
  10. Hardware Architecture
  11. Scalable Architecture for Bucket Algorithm (SAB)
  12. Design of a High-Performance Point Processor
  13. Field Arithmetic
  14. PA+PD Architecture
  15. UDA Architecture
  16. ...and 10 more sections

Figures (8)

  • Figure 1: Sharing of Elliptic Curve Add/Double unit for Compute
  • Figure 2: SAB: Scalable Architecture for Bucket Algorithm
  • Figure 3: Unified Double and Add Pipeline (UDA)
  • Figure 4: MSM Throughput running on CPU
  • Figure 5: FPGA Power Normalized Performance for BN128 Curve
  • ...and 3 more figures