ZEX-Swap

Description

Project Description

ZexERC is a privacy-preserving decentralized exchange protocol that enables confidential token swaps using zero-knowledge proofs and homomorphic encryption. Built as an extension of the Encrypted ERC-20 (eERC) standard, ZexERC allows users to trade tokens peer-to-peer while keeping transaction amounts completely hidden from blockchain observers.

The Problem

In current DeFi ecosystems, all transaction data is publicly visible on-chain. This creates several critical issues:

Front-running attacks: MEV bots can see pending large trades and exploit them
Privacy leaks: Anyone can track wallet balances and trading patterns
Institutional hesitation: Large traders avoid DeFi due to information exposure
Targeted attacks: Visible whale wallets become targets for hackers

Our Solution

ZexERC introduces a novel Confidential Allowance Model for peer-to-peer trading that keeps all amounts encrypted while still allowing trustless, on-chain verification through ZK proofs.

Key Features:

Feature	Description
🔒 Hidden Balances	All token balances are encrypted using ElGamal encryption on the BabyJubJub curve
🔐 Confidential Approvals	Approve spending without revealing the amount to anyone except the spender
🔄 Private Swaps	Execute token swaps where only the participants know the traded amounts
✅ ZK Verification	All operations are validated by Groth16 zk-SNARK proofs
📋 Compliance Ready	Optional auditor integration for regulatory requirements
⛓️ Fully On-Chain	No relayers, mixers, or off-chain components needed

How It Works

│ ZexERC Swap Protocol │

├──────────────────────────────────────────────────────────────┤

│ 1. INITIATE: Alice creates offer (rate public, amounts hidden)│

│ 2. ACCEPT: Bob generates ZK proof that his amount is valid │

│ 3. FINALIZE: Atomic swap executes with encrypted balances │

└──────────────────────────────────────────────────────────────┘

Technical Stack

Blockchain: EVM-compatible (Mantle L2)
Smart Contracts: Solidity 0.8.27
ZK Circuits: Circom 2.1.9 with Groth16 proving system
Cryptography: BabyJubJub curve, ElGamal encryption, Poseidon hash
Testing: Hardhat, Chai, 97% test coverage

Key Innovations

1. Dual Approval System

We implemented two approval mechanisms:

Confidential Approve (EOA→EOA): Amount encrypted for spender only
Public Confidential Approve (EOA→Contract): Amount disclosed to enable contract logic

2. PCT (Private Ciphertext Token) System

A novel approach to encrypted balance management:

Enables receivers to decrypt their incoming amounts
Maintains full privacy from blockchain observers
Includes auditor PCT for compliance without revealing to public

3. Three-Phase Swap Protocol

↓ ↓ ↓

Offer ZK Proof Atomic

Created Verified Swap

Metrics & Achievements

Metric	Value
Lines of Solidity	~1,500 new lines
ZK Circuits	5 new circuits
Test Coverage	97%
Gas (Private Transfer)	~947k
Gas (Swap Finalization)	~800k

Future Roadmap

Order book with hidden limit prices
Multi-asset atomic swaps
Privacy pools for liquidity aggregation
Cross-chain confidential bridges
Browser SDK with WebGPU proving

Why Mantle?

Low Gas Costs: ZK proof verification is expensive; Mantle L2 makes it affordable
EVM Native: Zero modifications needed for deployment
Growing Ecosystem: Privacy is the missing piece in Mantle DeFi
Institutional Alignment: Mantle's treasury focus aligns with our compliance features

Progress During Hackathon

# Work Completed During Hackathon## 1. ZexERC Smart Contract ExtensionFile: <code data-inline="true" spellcheck="false">contracts/ZexERC.sol</code> (~900 lines)Extended the base <code data-inline="true" spellcheck="false">EncryptedERC</code> contract with the following functionality:- confidentialApprove() Approve tokens to EOAs with hidden (encrypted) amounts.- publicConfidentialApprove() Approve tokens to contracts with disclosed amounts.- confidentialTransferFrom() Spend from encrypted allowances.- initiateOffer() Create peer-to-peer (P2P) swap offers.- acceptOffer() Accept offers with zero-knowledge proof validation.- finalizeSwap() Execute atomic swaps with finalization proofs.- cancelConfidentialAllowance() Revoke approvals using a zero-knowledge proof.---## 2. Zero-Knowledge CircuitsDirectory: <code data-inline="true" spellcheck="false">circom/</code>Designed and implemented five new ZK circuits:| Circuit File | Constraints | Purpose ||-------------------------------------|-------------|----------------------------------------------|| <code data-inline="true" spellcheck="false">confidential_approve.circom</code> | ~15k | Prove approval amount ≤ balance || <code data-inline="true" spellcheck="false">confidential_transfer_from.circom</code>| ~18k | Prove spend amount ≤ allowance || <code data-inline="true" spellcheck="false">cancel_allowance.circom</code> | ~8k | Prove ownership for allowance cancellation || <code data-inline="true" spellcheck="false">offer_acceptance.circom</code> | ~12k | Prove amount ≤ maximum offer amount || <code data-inline="true" spellcheck="false">offer_finalization.circom</code> | ~14k | Prove correct exchange rate computation |Each circuit verifies:- Public key ownership (proof of knowledge of private key)- Balance or allowance sufficiency via range proofs- Correct encryption of amounts for recipients- Auditor PCT generation for compliance---## 3. Verifier ContractsDirectory: <code data-inline="true" spellcheck="false">contracts/verifiers/</code>Auto-generated Solidity verifier contracts from the ZK circuits:- <code data-inline="true" spellcheck="false">ConfidentialApproveCircuitGroth16Verifier.sol</code>- <code data-inline="true" spellcheck="false">ConfidentialTransferFromCircuitGroth16Verifier.sol</code>- <code data-inline="true" spellcheck="false">CancelAllowanceCircuitGroth16Verifier.sol</code>- <code data-inline="true" spellcheck="false">OfferAcceptanceCircuitGroth16Verifier.sol</code>- <code data-inline="true" spellcheck="false">OfferFinalizationCircuitGroth16Verifier.sol</code>---## 4. Interface DefinitionsDirectory: <code data-inline="true" spellcheck="false">contracts/interfaces/</code>Created clean and modular interface contracts:- <code data-inline="true" spellcheck="false">IZexERC.sol</code> — Main ZexERC interface- <code data-inline="true" spellcheck="false">IConfidentialApproveVerifier.sol</code>- <code data-inline="true" spellcheck="false">IConfidentialTransferFromVerifier.sol</code>- <code data-inline="true" spellcheck="false">IOfferAcceptanceVerifier.sol</code>- <code data-inline="true" spellcheck="false">IOfferFinalizationVerifier.sol</code>---## 5. Test SuitesDirectory: <code data-inline="true" spellcheck="false">test/</code>Implemented comprehensive test coverage:- *<code data-inline="true" spellcheck="false">ZexERC.ts</code>** Unit tests for all <code data-inline="true" spellcheck="false">ZexERC</code> functions (~34 KB)- *<code data-inline="true" spellcheck="false">ZexERC-E2E.ts</code>** End-to-end swap lifecycle tests with real ZK proofs (~19 KB)- *<code data-inline="true" spellcheck="false">zex-helpers.ts</code>** Utilities for zero-knowledge proof generation and testing (~10 KB)---## 6. Deployment ScriptsFile: <code data-inline="true" spellcheck="false">scripts/deploy-zex.ts</code>Production-ready deployment script that:- Deploys all base and ZEX-specific verifier contracts- Deploys the BabyJubJub cryptographic library- Deploys the Registrar for user key management- Deploys <code data-inline="true" spellcheck="false">ZexERC</code> with all dependencies correctly linked