Further Reading: Zero-Knowledge Proofs

Foundational Papers

Goldwasser, S., Micali, S., & Rackoff, C. (1985). "The Knowledge Complexity of Interactive Proof Systems." Proceedings of the 17th Annual ACM Symposium on Theory of Computing, 291-304. The paper that started it all. Introduced the formal definition of zero-knowledge proofs and proved that certain problems have zero-knowledge interactive proofs. Technically demanding but historically essential.
Fiat, A. & Shamir, A. (1986). "How to Prove Yourself: Practical Solutions to Identification and Signature Problems." Advances in Cryptology — CRYPTO '86, 186-194. Introduced the Fiat-Shamir heuristic for converting interactive proofs to non-interactive ones — the technique that made ZK proofs practical for blockchains.
Quisquater, J.-J., et al. (1989). "How to Explain Zero-Knowledge Protocols to Your Children." Advances in Cryptology — CRYPTO '89, 628-631. The Ali Baba cave analogy in its original form. One of the most cited papers in ZK literature, and only four pages long.

Groth, J. (2016). "On the Size of Pairing-Based Non-interactive Arguments." Advances in Cryptology — EUROCRYPT 2016, 305-326. The Groth16 paper defining the most efficient pairing-based SNARK. Used by Zcash and many other projects.
Gabizon, A., Williamson, Z. J., & Ciobotaru, O. (2019). "PLONK: Permutations over Lagrange-bases for Oecumenical Noninteractive arguments of Knowledge." Introduced the PLONK proof system with its universal and updateable trusted setup. The foundation of many ZK-rollup implementations.
Ben-Sasson, E., Bentov, I., Horesh, Y., & Riabzev, M. (2018). "Scalable, transparent, and post-quantum secure computational integrity." IACR ePrint Archive, 2018/046. The original STARK paper. Introduces FRI commitment and the transparent, quantum-resistant proof architecture.
Bowe, S., Grigg, J., & Hopwood, D. (2019). "Recursive Proof Composition without a Trusted Setup." (Halo paper.) Demonstrated recursive SNARKs without a trusted setup, leading to the Halo 2 system used by Zcash Orchard and Scroll.

Thaler, J. (2022). Proofs, Arguments, and Zero-Knowledge. Available at https://people.cs.georgetown.edu/jthaler/ProofsArgsAndZK.html. A comprehensive, mathematically rigorous textbook covering the full landscape of interactive proofs and zero-knowledge systems. The definitive academic reference as of 2025.
Boneh, D. & Shoup, V. (2020). A Graduate Course in Applied Cryptography. Chapters 19-21 cover ZK proofs, SNARKs, and their applications. Available free online. More accessible than Thaler for readers with a general cryptography background.
Buterin, V. (2021). "An Incomplete Guide to Rollups." vitalik.eth.limo. Vitalik's explainer on rollup architecture, comparing ZK-rollups and optimistic rollups. Essential context for understanding ZK-rollup design.
Buterin, V. (2022). "The different types of ZK-EVMs." vitalik.eth.limo. The definitive taxonomy (Types 1-4) for classifying ZK-EVMs by their level of EVM compatibility. Referenced extensively in this chapter and Case Study 1.

Reitwiessner, C. (2016). "zkSNARKs in a Nutshell." Ethereum Blog. A concise, accessible explanation of the SNARK pipeline (arithmetic circuits, R1CS, QAP, elliptic curve pairings) aimed at developers rather than cryptographers.
Electric Coin Company. (2019). "What are zk-SNARKs?" z.cash. Zcash's official explanation of the SNARK technology underlying shielded transactions. Clear diagrams and non-technical language.
StarkWare. (2023). "STARK Math" series. A multi-part blog series explaining STARK mathematics from first principles. Starts gentle and builds to full technical depth.
ZK Podcast. Episodes covering ZK proof systems, applications, and ecosystem developments. Interviews with researchers and builders. Accessible to technically curious listeners without a cryptography background.

Matter Labs. (2024). zkSync Era Documentation. Comprehensive technical documentation for zkSync Era, including architecture overview, compiler design, and prover specifications.
StarkWare. (2024). StarkNet Documentation. Technical documentation for StarkNet, including Cairo language reference, SHARP prover architecture, and STARK proof format.
Polygon Labs. (2024). Polygon zkEVM Documentation. Architecture and implementation details for Polygon zkEVM, including the EVM opcode circuit design.
Scroll. (2024). Scroll Documentation. Technical specifications for Scroll's ZK-EVM, including the Halo 2-based proving system.

Semaphore Protocol. (2023). Semaphore Documentation. https://semaphore.pse.dev/. Documentation for the open-source ZK identity protocol used by Worldcoin and other identity projects. Includes circuit specifications and integration guides.
Worldcoin. (2023). Worldcoin Whitepaper. https://whitepaper.worldcoin.org/. The official technical whitepaper describing the World ID system, iris hash generation, Merkle tree management, and ZK proof architecture.
Hopwood, D., Bowe, S., Hornby, T., & Wilcox, N. (2022). Zcash Protocol Specification. The complete specification of Zcash's privacy technology, including the Sapling and Orchard shielded transaction protocols.

Kothapalli, A., Setty, S., & Tzialla, I. (2022). "Nova: Recursive Zero-Knowledge Arguments from Folding Schemes." Introduced the Nova framework for efficient incrementally verifiable computation (IVC), a key building block for recursive proving.
Ethereum Foundation PSE Team. "Privacy & Scaling Explorations." https://pse.dev/. Research group developing open-source ZK tooling, including Semaphore, MACI (Minimum Anti-Collusion Infrastructure), and other ZK identity and governance primitives.
L2BEAT. https://l2beat.com/. Real-time data on ZK-rollup and optimistic rollup performance, including TVL, transaction counts, proving costs, and risk assessments. Essential for comparing ZK-rollup implementations.