Audit of cLabs’ Plumo Protocol: Arithmetic Optimizations

cLabs has requested that Least Authority perform a security audit of Plumo, a SNARK-based protocol for achieving an ultra fast light client for the Celo blockchain. Plumo is based on the Groth16 SNARK. Specifically, Celo uses the BW6-761 curve and the Groth16 proving system, as implemented in ZEXE, a Rust library for decentralized private computation. A key feature of Celo is the use of advanced speed optimizations for computations on BW6-761.

This audit is the first of three consecutive reviews, as follows:
1. Plumo Protocol Arithmetic Optimizations (this report)
2. Plumo Protocol Underlying ZEXE Gadgets
3. Plumo Protocol High-Level Gadgets

Our final audit report was completed on June 30th, 2021.

To read the full report including our findings, click here: