MLabs - Grumplestiltskin 2: Pasta Curve組み込みとKimchi PLookup概念実証

Zero-knowledge proofs (ZKPs) let one party verify that another knows something — or has performed some computation — without revealing the underlying data. They're foundational to privacy-preserving applications across blockchains. CIP-381 already brought basic ZKP support to Cardano via the BLS12-381 elliptic curve builtins, but the proof systems built on it are limited by the curve's properties: proofs are large, verification is slow, and many of the most efficient modern proof systems aren't usable at all. Mina's Kimchi proof system shows what better looks like. It uses a different curve family — the Pasta curves (Pallas and Vesta) — designed for recursive composition, where one proof can verify another. Combined with a technique called PLookup, it produces dramatically more efficient proofs for many practical use cases, including table-based privacy applications. Cardano cannot use this on-chain today because the necessary curve operations aren't available as Plutus Core builtins. This proposal closes that gap: - A CIP describing UPLC builtins for the Pallas and Vesta curves, modeled on the existing CIP-381 BLS12-381 interface. - An implementation in cardano-base (using the well-established arkworks-rs library) and the corresponding builtins in Plutus Core. - A proof-of-concept verifier for Kimchi-variant PLookup proofs, built using the YTxP framework MLabs delivered under Catalyst Fund 12, demonstrating the new capabilities end-to-end. This continues from the original Grumplestiltskin project (a 2025 Cardano Treasury proposal that delivered a parameterized curve framework in Plutarch). Where Grumplestiltskin 1 established that Cardano-native implementations of cryptographic curves are effectively impossible, instead Grumplestiltskin 2 adds specific high-value curves at the protocol level — specific support for curves that matter. The two efforts are complementary.