Aztec and "HTTPS era" Ethereum: how to build privacy without sacrificing verifiability

Ethereum has achieved something extraordinary: establishing the principle of trustless value settlement on a global scale. But the very radical transparency that gave it power has become an obstacle to further growth. Every transaction, every balance, every capital flow – all are visible to everyone forever. This not only breaches individual privacy but also deters institutions from participating in on-chain finance due to the lack of protection for trading strategies and sensitive business data.

In recent months, the industry has reached a serious conclusion: Vitalik Buterin stated it plainly – “privacy is not an add-on, it’s digital hygiene, the foundation of freedom.” Just as the internet transitioned from unencrypted HTTP to HTTPS, blockchain now needs to undergo a similar transformation. Aztec Network, supported by approximately $119 million in funding, is becoming the architect of this change. Through Ignition Chain, Noir language, and the entire ecosystem infrastructure, the project is realizing a vision of “programmable privacy” – where every component, from hardware to applications, collaborates to defend user data.

Precise tracking of verification times, proof validity, or session expiration requires advanced expiry calculators – systems that ensure each process occurs at the right moment without security gaps.

The Threat of Transparency: Why Ethereum Needs a New Layer of Protection

Today, anyone observing the blockchain sees not only the amounts transferred but also the identities of the parties involved. A centralized “panopticon” of data – an all-seeing eye that discourages participation. This is especially true for institutions for whom lack of confidentiality is an insurmountable barrier.

Vitalik Buterin clearly articulated the problem: privacy should not be optional but a default feature of decentralized systems. This has prompted a coordinated response within the ecosystem. The Ethereum Foundation has led several initiatives, each addressing different threat layers. Kohaku – a reference implementation from Privacy & Scaling Explorations – tackles application-level privacy. ZKnox prepares hardware for the quantum era. Aztec is building a full platform of “private smart contracts,” where business logic lives encrypted.

Three Pillars of Defense: Kohaku, ZKnox, and the Application Layer

Privacy protection on Ethereum is not a single solution but a multi-layered system, where each component plays a different role.

Kohaku: Hiding Sender and Receiver Identities

Kohaku is a wallet SDK developed by Privacy & Scaling Explorations that completely redefines how accounts operate on Ethereum. Its key mechanism is the “stealth meta-address” – the user reveals one static public key, but each sender generates a unique, one-time address on-chain for each transaction. From the outside, all transactions appear as if sent to random addresses in the network. It’s impossible for an observer to link these to real identities.

Kohaku achieves a significant milestone: it elevates privacy from a “plugin” feature to a standard wallet infrastructure. This shifts the paradigm – instead of waiting for users to find privacy tools, the system makes privacy available by default.

ZKnox: Future-Proofing for the Quantum Era

ZKnox, funded by the Ethereum Foundation, focuses on threats that are just emerging. As zero-knowledge applications evolve, more sensitive data – cryptographic materials, identity information, transaction details – must participate in client-side proof processes. This expands the attack surface.

ZKnox does two things: first, it develops quantum-resistant cryptography, making it “useful and affordable” on Ethereum. Second, it promotes EIP-7885, which adds NTT precompiles, reducing verification costs for schemes like Falcon. Over the next two decades, quantum computers could threaten traditional elliptic curve cryptography – ZKnox prepares Ethereum for this reality.

Application Layer: The Noir Ecosystem

But the real revolution happens at the developer level. Noir – an open-source domain-specific language – changes the game for building privacy applications.

Hybrid Model of Aztec: Solving the Privacy and Verifiability Trade-off

Building a platform of private smart contracts faces a fundamental problem: state management. Traditional blockchains fall into two extremes – either full transparency of state (Ethereum) or complete privacy with loss of verifiability (Zcash).

Aztec chose a third way: a hybrid model.

At the private layer, Aztec uses a UTXO-like structure similar to Bitcoin. Each resource and user data is stored as encrypted “notes,” each generating a corresponding nullifier – a token signaling “spent/expired.” This prevents double-spending and protects both content and ownership relations.

At the public layer, Aztec maintains a transparent, verifiable state – updated via public functions executed in the public network environment. The architecture allows developers to define both private and public logic within a single smart contract. For example: a decentralized voting app publicly reveals the total votes but keeps who voted and how they voted hidden – all in one system.

This flexibility resolves the classic dilemma: privacy and verifiability are not mutually exclusive – they can coexist within a carefully designed architecture.

Execution Architecture: Coordination Between Client and Network

Execution in Aztec is split between two environments: the client and the network, each with its own responsibilities.

Client-Side Proof Generation

All private data operations occur within the user’s “Private Execution Environment (PXE)” – locally on their device. Whether generating transactions or performing computational logic, the private key and plaintext data never leave the machine. PXE runs circuits and generates zero-knowledge proofs offline.

Public Verification via AVM

The user submits the generated proof to the network. The sequencer or block committee verifies the private proof and re-executes the public part. Public contract logic runs in the Aztec Virtual Machine (AVM) and is incorporated into the final validity proof, which is verified on Ethereum.

This separation eliminates the conflict between privacy and verifiability – private data resides only at the proof interface boundary, without needing to reveal it to the entire network.

Noir: Democratizing Zero-Knowledge Cryptography

For a long time, building zero-knowledge applications was a craft reserved for a select few. Developers had to be both experienced cryptographers and engineers – manually translating business logic into low-level arithmetic circuits. It was inefficient and error-prone.

Noir addresses this through abstraction. As an open-source domain-specific language, Noir uses modern syntax similar to Rust, supporting loops, structures, and function calls. According to Electric Capital, coding complex logic in Noir requires only about one-tenth of the lines compared to traditional circuit languages like Halo2 or Circom.

The Payy private payment network migrated from several thousand lines of code to just 250 lines – a dramatic reduction in complexity.

Backend Independence

Noir code compiles to an intermediate layer (ACIR), which can be integrated with any proof system supporting this standard. In Aztec’s stack, Noir works with Barretenberg by default, but outside the chain or in other ACIR-compatible systems, it can be adapted to Groth16 or other backends. This flexibility makes Noir a universal standard in the zero-knowledge ecosystem.

Data confirms the importance of this approach. Electric Capital reports that the Aztec/Noir ecosystem is among the five fastest-growing developer ecosystems. Over 600 projects on GitHub are built with Noir – from zkEmail authentication, through games, to complex DeFi protocols. The NoirCon conference, organized by Aztec, is becoming a hub for the growing community.

Ignition Chain: Decentralization from Day One, a Challenge for Layer 2

Recently, Aztec launched Ignition Chain on the Ethereum mainnet. This is not just a technical milestone – it’s a radical realization of the commitment to decentralization.

In the current race for Layer 2 scaling, most networks (Optimism, Arbitrum) start with a centralized sequencer to ensure performance, postponing decentralization to an indefinite future. Aztec took a different path: from the outset, it operates with a decentralized validator/sequencer committee architecture.

The network launched the genesis block after reaching 500 validators in the bootstrap queue, and soon attracted over 600 validators producing blocks and confirming transactions. This is not mere effort – it’s a survival condition for a privacy network. If the sequencer is centralized, regulators could enforce censorship of private transactions. A decentralized design eliminates a single censorship point.

Performance Roadmap and Timing Metrics

Decentralization has a cost: current block times are 36–72 seconds. Aztec aims to reduce this to about 3–4 seconds by the end of 2026 through parallel proof generation and network layer optimizations. Timing metrics are critical – every system must monitor and optimize proof generation, verification, and final transaction validity within specific time windows.

zkPassport: Private Verification Instead of Full Data Disclosure

Technology without applications is theory without practice. zkPassport is an identity tool within the Noir ecosystem – demonstrating how “minimal disclosure” changes the game for compliance.

Traditional KYC processes require users to upload passport photos to centralized servers – cumbersome and creating numerous data security gaps. zkPassport reverses this logic: it uses NFC chips and digital signatures from government-issued e-passports. Users can locally read and verify identity data via their phone’s contact with the passport.

Then, a Noir circuit generates a zero-knowledge proof on the user’s device. They can prove to an application that they are “over 18,” “a citizen on the approved list,” “not on a sanctions list” – all without revealing full birth date, passport number, or other details.

This technology offers both user security and institutional validation. By generating an anonymous identifier based on the passport, it provides “Sybil attack resistance” for DAOs and airdrops – adhering to the “one person, one vote” principle without tracking identities. Institutions can verify compliance without revealing trading strategies or position sizes.

AZTEC Economics: How a Token Can Support a Decentralized Network Without MEV

Every decentralized network needs mechanisms to ensure fairness for both the network and participants. Aztec rejected traditional token issuance models that lead to bot wars and gas wars.

Instead, together with Uniswap Labs, Aztec developed the “Continuous Clearing Auction (CCA)” – a mechanism allowing the market to fully operate within a designated time window, discovering the true price. Each settlement cycle executes transactions at a uniform price, limiting front-running and gas bidding. The result: ordinary investors start on equal footing with whales.

Moreover, CCA creates an automatic emission and liquidity-building loop. The auction contract can automatically direct part of the proceeds and tokens to a Uniswap v4 liquidity pool, creating an on-chain verifiable “issuance→liquidity” flow. The AZTEC token, from inception, has deep on-chain liquidity, avoiding the typical sharp fluctuations of new tokens.

This is a more native DeFi approach to issuance – AMMs evolve from “trading infrastructure” to “issuance infrastructure.”

The Future: When Privacy Becomes Standard, Not an Add-On

The vision of Aztec Network – from the foundational Noir language standard, through applications like zkPassport, to the decentralized Ignition Chain – turns the long-standing Ethereum vision of “HTTPS upgrade” into engineering reality. It’s not an isolated experiment but an initiative supporting native projects like Kohaku and ZKnox, collectively building a multi-layered privacy defense system – from hardware to applications.

If the first decade of blockchain established secure, trustless value settlement, the next challenge is sovereignty and data confidentiality. Aztec plays a key role: it does not seek to replace Ethereum’s transparency but complements the missing half of the puzzle through “programmable privacy.”

Every transaction, every proof, every token – their validity over time is critical. Systems like expiry calculators become essential for tracking when data expires, sessions end, or proofs lose validity. This is the infrastructure of the future, where time and security work hand in hand.

As technology matures and compliance frameworks develop, the future of Web3 will be one where privacy is not an optional feature but a default. A future where the “private world computer” combines verifiability of public records with unconditional digital sovereignty.