Verifiable Encryption Doc & Diagrams (#19)

Author: nuke-web3

README.md

@@ -1,9 +1,9 @@
 # Private Data Availability Proxy
 
-A [Celestia Data Availability (DA)](https://celestia.org) proxy, enabling use of the [canonical JSON RPC](https://node-rpc-docs.celestia.org/) but intercepting and [***verifiably*** encrypting](./doc/verifiable_encryption.md) sensitive data before submission on the public DA network, and enable decryption on retrieval.
+A [Celestia Data Availability (DA)](https://celestia.org) proxy, enabling use of the [canonical JSON RPC](https://node-rpc-docs.celestia.org/) but intercepting and [**_verifiably_** encrypting](./doc/verifiable_encryption.md) sensitive data before submission on the public DA network, and enable decryption on retrieval.
 Non-sensitive calls are unmodified.
 
-Verifiable encryption is presently enabled via an [SP1 Zero Knowledge Proof (ZKP)](https://docs.succinct.xyz/docs/sp1/what-is-a-zkvm), with [additional proof systems planned](./doc/verifiable_encryption.md)
+Verifiable encryption is presently enabled via an [SP1 Zero Knowledge Proof (ZKP)](https://docs.succinct.xyz/docs/sp1/what-is-a-zkvm), with [additional proof systems planned](./doc/verifiable_encryption.md#future-work-and-research-directions)
 
 **Jump to a section:**
 
@@ -30,22 +30,17 @@ It's possible to change these, but requires upstream involvement:
 
 > Please [open an issue](https://github.com/celestiaorg/pda-proxy/issues) if you have any requests!
 
-## Architecture
+## Interact
 
-![Verifiable Encryption Diagram](./doc/assets/verifiable-encryption.drawio.svg)
+First you need to [configure](#configure) your environment and nodes.
 
 The PDA proxy depends on a connection to:
 
 1. Celestia Data Availability (DA) Node to:
    - Submit and retrieve (verifiable encrypted) blob data.
 1. (Optional) [Succinct prover network](https://docs.succinct.xyz/docs/sp1/generating-proofs/prover-network) as a provider to generate Zero-Knowledge Proofs (ZKPs) of data existing on Celestia.
    _See the [ZKP program](./zkVM/sp1/program-chacha) for details on what is proven._
-
-## Interact
-
-First you need to [configure](#configure) your environment and nodes.
-
-Then any HTTP1 client works to send [Celestial JSON RPC](https://docs.celestia.org/how-to-guides/submit-data#submitting-data-blobs-to-celestia) calls to the proxy:
+   Then any HTTP1 client works to send [Celestia JSON RPC](https://docs.celestia.org/how-to-guides/submit-data#submitting-data-blobs-to-celestia) calls to the proxy:
 
 ```sh
 # Proxy running on 127.0.0.1:26657
@@ -75,6 +70,56 @@ cd scripts
 
 Celestia has many [API client libraries](https://docs.celestia.org/how-to-guides/submit-data#api) to build around a PDA proxy.
 
+### Request Flow
+
+#### Encrypt `blob.Submit`
+
+```mermaid
+sequenceDiagram
+    participant JSON RPC Client
+    participant PDA Proxy
+    participant Celestia Node
+    JSON RPC Client->>+PDA Proxy: blob.Submit(blobs, options)<br>{AUTH_TOKEN in header}
+    PDA Proxy->>PDA Proxy: Job Processing...<br>{If no DB entry, start new zkVM Job}
+    PDA Proxy->>-JSON RPC Client: Response{"Call back"}
+    PDA Proxy->>PDA Proxy: ...Job runs to completion...
+    JSON RPC Client->>+PDA Proxy:  blob.Submit(blobs, options)<br>{AUTH_TOKEN in header}
+    PDA Proxy->>PDA Proxy: Query Job DB<br>Done!<br>{Job Result cached}
+    PDA Proxy->>Celestia Node: blob.Submit(V. Encrypt. blobs, options)
+    Celestia Node->>PDA Proxy: Response{Inclusion Block Height}
+    PDA Proxy->>-JSON RPC Client: Response{Inclusion Block Height}
+```
+
+#### (Try Decrypt) `blob.[Get|GetAll]`
+
+```mermaid
+sequenceDiagram
+    participant JSON RPC Client
+    participant PDA Proxy
+    participant Celestia Node
+
+    JSON RPC Client->>+PDA Proxy: blob.Get(height, namespace, commitment)
+    PDA Proxy->>Celestia Node: <Passthrough>
+    Celestia Node->>PDA Proxy: Response{namespace,data,<br>share_version,commitment,index}
+    PDA Proxy->>PDA Proxy: *Try* deserialize & decrypt
+    PDA Proxy->>-JSON RPC Client: *Success* -> Response{...,decrypted bytes,...}
+    PDA Proxy->>JSON RPC Client: *Failure* -> <Passthrough>
+```
+
+#### Transparent Proxy (all other calls)
+
+```mermaid
+sequenceDiagram
+    participant JSON RPC Client
+    participant PDA Proxy
+    participant Celestia Node
+
+    JSON RPC Client->>+PDA Proxy: Request{<Anything else>}<br>{AUTH_TOKEN in header}
+    PDA Proxy->>Celestia Node: <Passthrough>
+    Celestia Node->>PDA Proxy: <Passthrough>
+    PDA Proxy->>-JSON RPC Client: Response{<Normal API response}
+```
+
 ## Operate
 
 **_TODO: notice on single job at a time_**
@@ -88,12 +133,12 @@ To build and run, see [developing instructions](#develop)
 
 ### Requirements
 
-TODO
-
 1. A machine to run with a _minimum_ of:
 
-   - L4 NVIDIA GPU
-   - GB RAM
+   - NVIDIA GPU with 20GB+ of VRAM (Tested on [L4](https://www.nvidia.com/en-us/data-center/l4/))
+     - Must support CUDA 12+
+   - 4+ CPU cores
+   - 16GB+ RAM
    - Ports accessible (by default):
      - service listening at `TODO`
      - Light client (local or remote) over `26658`
@@ -136,6 +181,8 @@ As we don't want to embed huge files, secrets, and dev only example static files
 
 1. Setup a DNS to point to your instance with email and domain.
 1. Create and update an `.env` (see [config](#configure).
+1. Select a base OS image to run on the host that includes [CUDA Container Toolkit](https://docs.nvidia.com/datacenter/cloud-native/container-toolkit/latest/index.html) or install it manually.
+   - See: [CUDA Container Toolkit install instructions](https://docs.nvidia.com/datacenter/cloud-native/container-toolkit/latest/install-guide.html) and [AWS NVIDIA docs](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/install-nvidia-driver.html) (or your cloud host's docs for GPU base OS images).
 1. Run [./scripts/setup_remote_host.sh](./scripts/setup_remote_host.sh) or otherwise see the scripts to manually configure similarly.
    1. **ONLY for development & testing!** copy the unsafe example TLS files from [./service/static](./service/static) to `app/static` on the host
       - You should use:
@@ -249,7 +296,4 @@ The images are built and published for [releases](https://github.com/celestiaorg
 
 ## Acknowledgments
 
-Based heavily on:
-
-- <https://github.com/eigerco/lumina/tree/main/rpc>
-- <https://github.com/celestiaorg/eq-service>
+Based heavily on <https://github.com/celestiaorg/eq-service>.

doc/verifiable_encryption.md

@@ -1,4 +1,118 @@
 # Verifiable Encryption
 
-TODO describe and expand on [research here](https://docs.google.com/document/d/1XZyuOxdMm5INcHwQZOZ8ALRk_YkvicNwQHSfOVs8hoM/) 
-./verifiable_encryption.md
+### _A New Primitive Empowering Private Data Availability_
+
+> “Don’t trust. Verify.”
+
+This document introduces **Verifiable Encryption (VE)** and explores how it enables **Private Data Availability (PDA)** - a transformative new primitive for secure, decentralized systems.
+
+## Verifiable Encryption
+
+Traditional encryption ensures that ciphertext reveals **nothing** about the underlying plaintext.
+This guarantees privacy, but at a cost: **you can’t verify anything about the data without decrypting it**.
+
+This creates a trust bottleneck - **you must fully trust those who hold decryption keys** to act honestly.
+But what if we could shift some of that trust to verification?
+
+**Verifiable Encryption (VE)** makes this possible.
+By introducing constraints on:
+
+- the plaintext,
+- the encryption algorithm,
+- and the keys used,
+
+VE allows **public verifiability** of claims about the data **without decrypting it**.
+That means anyone can check that encrypted data meets specific criteria - without learning what that data is.
+
+## Data Availability
+
+Many protocols rely on **Data Availability (DA)** for safety and liveness guarantees.
+In adversarial conditions - such as censorship or outages - it is critical that data be **publicly available**.
+
+However, not all data should be exposed to the world.
+
+Some datasets are **too sensitive** for full transparency.
+The challenge: **How can we ensure critical data is available, yet only selectively disclosed under prearranged conditions**?
+
+## The Power of VE + PDA
+
+By combining **Verifiable Encryption** with **Private Data Availability**, we unlock a powerful new primitive: **auditable yet private data**.
+
+With integration into **existing or novel Key Management Systems (KMS)**, VE allows one to define:
+
+- **who can access** decryption keys,
+- **under what conditions**,
+- and **what can be verified** without access.
+
+This means:
+
+- Anyone (users, smart contracts, off-chain agents) can verify that encrypted data is available and satisfies certain properties.
+- Only authorized parties can decrypt and access the sensitive contents.
+
+## Use Cases
+
+We’ve outlined a few use cases below - but would love to hear your ideas too!
+💡 [Open an issue](https://github.com/celestiaorg/pda-proxy/issues) to share feature requests or novel applications of VE and PDA.
+
+### _Programmable Privacy for Web3 dApps_
+
+VE and PDA align closely with the principles of [local-first access control](https://www.inkandswitch.com/keyhive/notebook/), enabling **secure collaboration** across decentralized applications.
+
+In a world where chain data is globally replicated and indexed, **encryption at rest** becomes essential for access control and selective disclosure.
+
+#### Example Applications
+
+- **PDA as a database** for collaborative dApps with fine-grained access control.
+- **Private rollups** with programmable cryptography, enabling [obfuscated state](https://0xparc.org/blog/programmable-cryptography-1).
+- **Private bridging and escrow** sending verifibly correctm but private messages around web2 and/or web3 apps.
+- **Drop-in support** for existing DA users via a [proxy service](../README.md), simplifying migration to PDA.
+
+### _Trustless Data Markets_
+
+With VE, PDA, and escrow contracts you can construct protocols to build trustless exchange of data access
+See the [Stock0](https://dorahacks.io/buidl/14098) media market hackathon project for some great inspiration!
+
+Here is a [diagram inspired by them](https://docs.google.com/presentation/d/1qq1QXSBcThOjaQ2OcEyS8cwNyAHs3SnC76YrBMAYENk) of an example setup of inputs for a market:
+
+```mermaid
+flowchart LR
+    Data["Data to be Sold"] --> zkVM_Algo["zkVM(tranform media)"]
+    zkVM_Algo -- "proven data transform w/ VE anchor" --> Contract["Marketplace on <dApp chain>"]
+    Data -- "VE data" --> Celestia["Celestia"]
+    Celestia -- "header" --> Blobstream["Blobstream on <dApp chain>"]
+    Blobstream <-- "verify VE anchor and DA" --> Contract
+```
+
+### _Verifiable Private Backups_
+
+> NOTE: Celestia does _not_ guarantee that data will be avalible forever!
+> See [the docs on retrievability](https://docs.celestia.org/learn/retrievability#data-retrievability-and-pruning-in-celestia-node) for the latest safe assumptions to use.
+
+With PDA, sensitive data can be publicly published in encrypted form, with **predefined methods for recovery** - without revealing its contents.
+
+This unlocks a new class of **verifiable, resilient backups**.
+
+#### Example Applications
+
+- **Auditable storage**: Confidential datasets can be verified to exist and be recoverable, while remaining hidden from the public.
+
+- **Disaster recovery**: Critical encrypted data is guaranteed to be retrievable using known decryption methods, ensuring survivability without sacrificing privacy.
+
+## Example Architecture
+
+The **anchor** acts as a bridge, connecting **any protocol** to a **proof** that some _private_ data was made available.
+
+![Verifiable Encryption Diagram](./assets/verifiable-encryption.drawio.svg)
+
+## Future Work and Research Directions
+
+While VE for PDA is still evolving, the potential is enormous.
+Current implementations have limitations, but these are rapidly being addressed by:
+
+- Enabling performance improvements, **confidential compute**, and **scalable parallelization** of PDA workflows.
+- **Hybrid systems** combining:
+  - Trusted Execution Environments (TEEs),
+  - Multi-Party Computation (MPC),
+  - and Zero-Knowledge Proofs (ZKPs),
+
+For deeper insights, see our ongoing [research discussion here](https://docs.google.com/document/d/1XZyuOxdMm5INcHwQZOZ8ALRk_YkvicNwQHSfOVs8hoM/).