add more docs (#488)

Co-authored-by: Mauro Toscano <[email protected]>

Author: diegokingston

docs/SUMMARY.md

@@ -3,9 +3,9 @@
 
 * [What is Aligned?](introduction/0_what_is_aligned.md)
 * [Getting started](introduction/1_getting_started.md)
-* [FAQ](introduction/2_faq.md)
-* Core concepts
-* Use cases
+* [FAQ](introduction/2_fq.md)
+* [Core concepts](introduction/3_core_concepts.md)
+* [Use cases](introduction/4_use_cases.md)
 
 ## Guides
 
@@ -15,8 +15,8 @@
 
 ## Architecture
 
-* Fast mode
-* Aggregation mode
+* [Fast mode](architecture/fast_mode.md)
+* [Aggregation mode](architecture/aggregation_mode.md)
 
 ## Useful links 
 

docs/architecture/0_fast_mode.md

@@ -0,0 +1,18 @@
+## Fast mode in an nutshell
+
+### Flow for sending a proof and publishing the result on Ethereum (Fast Mode)
+The flow for sending a proof and having the results on Ethereum is as follows:
+1. Using our CLI or SDK, the user sends one proof (or many) to the batcher.
+2. The batcher answers with a ProofVerificationData for each proof.
+3. The user invokes an IsVerified function with this data in Solidity to check that the proof is valid.
+4. ( Optional ) The user checks that the commitment to the proven program matches the one it expects.
+
+### Full flow with internals of the proof (Fast Mode)
+
+1. The user uses a provided CLI or SDK to send one proof or many to the batcher, and waits (Alternatively, the user can run a batcher or interact directly with Ethereum)
+2. The batcher accumulates proofs of many users for a small number of blocks (typically 1-3).
+3. The batcher creates a Merkle Tree with commitments to all the data submitted by users, uploads the proofs to the Data Service, and creates the verification task in the ServiceManager.
+4. The operators, using the data in Ethereum, download the proofs from the DataService. They then verify that the Merkle root is equal to the one in Ethereum, and verifies all the proofs.
+5. If the proofs are valid, they sign the root and send this to the BLS signature aggregator.
+6. The signature aggregator accumulates the signed responses until reaching the quorum, then sends the aggregated signature to Ethereum.
+7. Ethereum verifies the aggregated signatures and changes the state of the batch to verified.

docs/architecture/1_aggregation_mode.md

@@ -0,0 +1,9 @@
+## Aggregation mode in a nutshell
+
+General Prover/Verifier: Every several days, takes the proofs from the DA layer and generates a proof of the verification of all the proofs. The general prover can be based on the SP1, Risc0 or Nexus virtual machine, which is a virtual machine able to prove general Rust code. The proof of the verification of the proofs is done using the corresponding verifier codes in Rust. The verification can be done using a tree structure.
+
+To aggregate all the proofs, in the first step, all proofs are transformed into proofs of execution of the virtual machine, achieving proof uniformity (see Figure 2). We can then shrink proof size by recursively proving the verification of proofs, as shown in the tree diagram (see Figure 3).
+
+![Figure 4: Prover](../images/prover.png)
+
+![Figure 5: Recursion tree](../images/recursion.png)

docs/guides/0_proving_systems.md

@@ -1,20 +1,28 @@
-# Supported Proving Systems
+# Supported verifiers
 
-Currently, Aligned supports:
+The following is the list of the verifiers currently supported by Aligned:
 
-:white_check_mark: Gnark - Groth16 (with BN254)
-:white_check_mark: Gnark - Plonk (with BN254 and BLS12-381)
+:white_check_mark: gnark - Groth16 (with BN254 and BLS12-381)
+:white_check_mark: gnark - Plonk (with BN254 and BLS12-381)
 :white_check_mark: SP1
-:white_check_mark: Halo2 - Plonk/KZG
-:white_check_mark: Halo2 - Plonk/IPA
 
-The following proving systems are going to be added soon:
+The following proof systems are going to be added soon:
 :black_square_button: Risc0
 :black_square_button: Kimchi
+:black_square_button: Halo2 - Plonk/KZG
+:black_square_button: Halo2 - Plonk/IPA
 
 ## SP1 proof
 
-The SP1 proving system needs the proof file and the vm program file,
+These are [STARK proofs](https://eprint.iacr.org/2018/046) that attest to the validity of the execution of a given program over the SP1 virtual machine. 
+
+The SP1 proving system needs the proof file and the vm program file.
+The arguments for SP1 are
+```
+--proving_system SP1 
+--proof <proof_file> \
+--vm_program <elf_file> \
+```
 
 ```bash
 rm -rf ./aligned_verification_data/ &&

docs/introduction/0_what_is_aligned.md

@@ -0,0 +1,24 @@
+## What is Aligned?
+
+Aligned is a decentralized network that verifies zero-knowledge/validity proofs and posts the results to Ethereum. It is designed to provide high throughput, cheap proof verification with low latency.
+
+## Mission
+
+Our mission is to accelerate Ethereum's roadmap and the adoption of verifiable computation by enabling fast and economical verification of ZK and validity proofs. 
+
+## Why are we building Aligned?
+
+In recent months, we have witnessed the development and enhancement of general proving virtual machines such as Risc0, Valida, Jolt, and SP1. These innovations allow users to write ordinary code in languages like Rust or C and generate proofs demonstrating the integrity of computations. This evolution is poised to transform application development, provided we have verification networks with high throughput and low cost. This is the core vision of Aligned and the reason we are building it: the future belongs to provable applications.
+
+Currently, proof verification in Ethereum is expensive and throughput is limited to around 10 proofs per second. The cost depends on the proof system used, and the availability of precompiles. Groth16 costs around 250,000 gas, STARKs, over 1,000,00, and other proof systems are too expensive to be used in Ethereum. 
+
+Proof technology has been evolving over the last decade, with new arguments, fields, commitments and other tools appearing every day. It is hard to try new ideas if verification costs are high and there is a considerable go-to-market time, as a consequence of development time of new, gas-optimized smart contracts, or the inclusion of new precompiles to make them affordable.
+
+Aligned provides an alternative to reduce costs and increase throughput significantly. This is achieved by two different modes: the fast mode and the aggregation/slow mode. The fast mode works with a subset of Ethereum’s validators via restaking. Validators (also called Operators) receive proofs, verify them using the verification code written in Rust or another higher-level language, and sign messages with BLS signatures. If a two-thirds majority agrees, the results are posted in Ethereum. Since Aligned’s operators only need to run the verification code on bare metal, we have several advantages compared to running it on top of the EVM:
+
+- The code can be optimized for speed, not gas consumption.
+- We can leverage parallelization to increase throughput.
+- Since the gas limit does not constrain us, we can verify proof systems that are too expensive for Ethereum, such as Kimchi or Binius.
+- Adding new proof systems is straightforward.
+
+Preliminary numbers show that Aligned can verify more than 1000 proofs per second, over two orders of magnitude than the EVM at nominal capacity. Using effective batching techniques, we can split the task creation and verification cost between thousands of proofs.

docs/introduction/3_core_concepts.md

@@ -0,0 +1,14 @@
+## Core Concepts
+
+- Proof: cryptographic data that attests to the validity of a given computation. The concrete data and size depend on the proof system and program used.
+- Verification: an algorithm that takes the proof, and associated public data and verification key/program and outputs whether the proof is valid or not.
+- Proof batch: a collection of verification tasks to be carried out by the operators.
+- User CLI: used to interact with the verifier task batcher. Sends proof and public input data and receives the verification data in Aligned.
+- Verifier Task Batcher: Receives tasks from users, creates batches of tasks, publishes the proof and public data in the Data service, and sends the batches’ data to Ethereum. This service is permissionless, meaning users have the option to run their own batcher.
+- Service Manager (Ethereum smart contract): Receives the batches’ data and signatures from the BLS signature aggregator. This contract provides information to validators and light clients on the batches/tasks.
+- Data service: temporarily stores the data for the proof and public input.
+- Operators: responsible for performing the verification of the proofs in each batch and signing messages with the results.
+- BLS signature aggregator: receives the signatures from the operators, checks that there is quorum, and performs the aggregation of the signatures.
+- Light client: samples random tasks from the Service Manager, checks the proofs, and compares against the results posted to Ethereum by Aligned. If there are differences, it can trigger an L1 verification via the proof service. In case of malicious behavior by Aligned’s operators this would lead to slashing.
+- Proof service: receives results from the light clients; in case there are differences with the results posted by Aligned, it triggers a re-verification on Ethereum. Note that this re-verification can also be triggered by any user.
+- Proof aggregator: Once tasks have been verified by Aligned’s operators, this component performs recursive proof verification to create one proof that will attest to the validity of all proofs contained in the batch. This proof is verified on-chain.

docs/about_aligned/use_cases.md docs/introduction/4_use_cases.mddocs/about_aligned/use_cases.md renamed to docs/introduction/4_use_cases.md

@@ -1,29 +1,15 @@
-# Use cases:
-
-Among the possible use cases of Aligned we have:
+# Use cases
 
 - Soft finality for Rollups and Appchains.
-  
 - Fast bridging.
-  
 - New settlement layers (use Aligned + EigenDA) for Rollups and Intent based systems.
-  
 - P2P protocols based on SNARKs such as payment systems and social networks.
-  
 - Alternative L1s interoperable with Ethereum.
-  
 - Verifiable Machine Learning.
-  
-- Cheap verification and interoperability for Identity Protocols.
-  
+- Cheap verification and interoperability for Identity Protocols. 
 - ZK Oracles.
-  
-- New credential protocols such as zkTLS based systems.
-  
-- ZK Coprocessor.
-  
+- New credential protocols such as zkTLS based systems. 
+- ZK Coprocessor.  
 - Encrypted Mempools using SNARKs to show the correctness of the encryption.
-  
-- Protocols against misinformation and fake news.
-  
+- Protocols against misinformation and fake news.  
 - On-chain gaming.