SoK: What don't we know? Understanding Security Vulnerabilities in SNARKs

TL;DR

This paper systematically analyzes 141 real-world vulnerabilities in SNARK implementations, offering a comprehensive taxonomy and security recommendations to improve the robustness of SNARK-based systems.

Contribution

It provides the first extensive security assessment of actual SNARK implementations, identifying vulnerabilities and proposing practical defense strategies.

Findings

Identified 141 vulnerabilities in SNARK systems

Developed a detailed taxonomy of security threats

Evaluated effectiveness of existing defenses

Abstract

Zero-knowledge proofs (ZKPs) have evolved from being a theoretical concept providing privacy and verifiability to having practical, real-world implementations, with SNARKs (Succinct Non-Interactive Argument of Knowledge) emerging as one of the most significant innovations. Prior work has mainly focused on designing more efficient SNARK systems and providing security proofs for them. Many think of SNARKs as "just math," implying that what is proven to be correct and secure is correct in practice. In contrast, this paper focuses on assessing end-to-end security properties of real-life SNARK implementations. We start by building foundations with a system model and by establishing threat models and defining adversarial roles for systems that use SNARKs. Our study encompasses an extensive analysis of 141 actual vulnerabilities in SNARK implementations, providing a detailed taxonomy to aid developers and security researchers in understanding the security threats in systems employing SNARKs. Finally, we evaluate existing defense mechanisms and offer recommendations for enhancing the security of SNARK-based systems, paving the way for more robust and reliable implementations in the future.