Paper 2026/326

Special Soundness and Binding Properties: A Framework for Tightly Secure zk-SNARKs

Erki Külaots, University of Tartu
Helger Lipmaa, University of Tartu
Roberto Parisella, University of Tartu, Simula UiB
Janno Siim, University of Tartu
Abstract

Interactive arguments often combine polynomial IOPs with polynomials commitment schemes (PCSs). Frequently, the interactive argument is proven to be knowledge sound, but this incurs a high security loss when applying the Fiat-Shamir transformation to obtain a non-interactive argument in the random oracle model (ROM). We introduce the notion of special soundness for polynomial IOPs, which surprisingly has not been considered before. We study relations between various binding properties of univariate PCSs. In the case of the KZG PCS, these properties can be based on falsifiable assumptions. We prove that a special-sound polynomial IOP plus a PCS under suitable binding notions gives a computationally special-sound interactive argument. By Attema, Fehr, and Klooss (TCC 2022), applying Fiat-Shamir to this argument yields a tightly knowledge-sound argument (or zk-SNARK) in the ROM under the same assumptions. In the case of the KZG PCS, we add various batching optimizations to our compiler and prove that they preserve computational special soundness. This yields a generic approach for achieving efficient zk-SNARKs with constant proof size and tight knowledge soundness in the ROM under falsifiable assumptions.

Metadata
Available format(s)
PDF
Publication info
A minor revision of an IACR publication in EUROCRYPT 2026
Keywords
Polynomial commitment schemepolynomial IOPspecial-soundnesszk-SNARK
Contact author(s)
erki kulaots @ ut ee
helger lipmaa @ gmail com
robertoparisella @ hotmail it
jannosiim @ gmail com
History
2026-02-21: approved
2026-02-19: received
See all versions
Short URL
https://ia.cr/2026/326
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2026/326,
      author = {Erki Külaots and Helger Lipmaa and Roberto Parisella and Janno Siim},
      title = {Special Soundness and Binding Properties: A Framework for Tightly Secure zk-{SNARKs}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2026/326},
      year = {2026},
      url = {https://eprint.iacr.org/2026/326}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.