Hydra-S2

The is the second proving scheme in the Hydra family:

• Hydra = using Hydra Delegated Proof of Ownership via the

• S2 = single source, version 2: optional verifications and

The proving scheme expands on the and introduces the notion of a Vault Identifier while offering a modular way of creating ZK proofs.

Vault Identifiers

is a new notion introduced with the Hydra-S2 proving scheme. This VaultId is deterministically generated from a vaultSecret and an application identifier (appId) by taking the Poseidon hash of these two values.

This differs from the Proof Identifier used in the Hydra-S1 proving scheme, which functions as a nullifier—preventing the same proof from being used more than once. Meanwhile, a Vault Identifier functions as an anonymous app-specific identifier that can be utilized as an in-app user ID.

Hydra Proof Of Ownership

Hydra Proof of Ownership differs in the Hydra-S2 proving scheme as far as a new Commitment Mapper and new variable when creating commitments are being used. The secret used to generate the commitment for the trusted Commitment Mapper is now the hash of the Vault secret.

also changes in Hydra-S2 as far as a new and a new variable when creating commitments are being used. The secret used to generate the commitment for the trusted is now the hash of the Vault secret and the user secret instead of the user secret only.

To allow this, we created a new Commitment Mapper, and we ensured that a Data Source can only be added to a single Data Vault, as the commitment is now based on the Vault secret.

Optional Verifications

During the Hydra-S2 proving scheme, it is now optional to prove the following:

• Any account ownership via Hydra Proof Of Ownership and the new commitment generation

• Any Registry Tree or Account Tree Merkle Proof of inclusion

• Any value held by a source of data (Ethereum address, web2 account, etc.)