diff --git a/2024/10/31/binius-01/index.html b/2024/10/31/binius-01/index.html
new file mode 100644
index 0000000..7957b71
--- /dev/null
+++ b/2024/10/31/binius-01/index.html
@@ -0,0 +1,993 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  Notes on FRI-Binius (Part I): Binary Towers - SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/2024/10/31/binius-01/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="Yu Guo  and Jade Xie " />
+<meta name="description" content="二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。" />
+
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/2024/10/31/binius-01/" />
+
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/2024/10/31/binius-01/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta property="og:description" content="二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="article">
+    <meta property="article:section" content="post">
+    <meta property="article:published_time" content="2024-10-31T11:00:00+08:00">
+    <meta property="article:modified_time" content="2024-11-01T20:31:26+08:00">
+    <meta property="article:tag" content="Cryptography">
+    <meta property="article:tag" content="Finite Fields">
+    <meta property="article:tag" content="SNARK">
+    <meta property="article:tag" content="Binius">
+
+  <meta itemprop="name" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta itemprop="description" content="二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。">
+  <meta itemprop="datePublished" content="2024-10-31T11:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta itemprop="wordCount" content="7640">
+  <meta itemprop="keywords" content="Cryptography,Finite Fields,SNARK,Binius">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta name="twitter:description" content="二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    <div class="content-wrapper">
+  <aside class="sidebar">
+  </aside>
+  <div id="content" class="content">
+    <article class="post">
+      
+      <header class="post-header">
+        <h1 class="post-title">Notes on FRI-Binius (Part I): Binary Towers</h1>
+        
+
+
+<div class="post-title-i18n">
+  
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+  
+  <div>
+    <a href="https://sec-bit.github.io/blog/en/2024/10/31/binius-01/">en</a>
+  </div>
+  
+</div>
+
+
+        <div class="post-meta-list">
+  <div class="post-meta-item post-meta-author">
+    
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+    Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
+    
+  </div>
+
+  <div class="post-meta-item post-meta-time">
+    
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+    <time datetime=" 2024-10-31">
+      2024-10-31
+    </time>
+
+
+    
+    <span class="post-meta-item post-meta-lastmod">
+      (上次更新:
+      2024-11-01)
+    </span>
+    
+
+  </div>
+
+
+  <div class="post-meta__right">
+    
+
+    <div class="post-meta-item post-meta-category">
+      <a href="https://sec-bit.github.io/blog/categories/mle-pcs/"> mle-pcs </a>
+      
+    </div>
+
+
+    
+    
+
+
+    
+    
+  </div>
+</div>
+
+      </header>
+
+      
+      <div class="post-content">
+        <ul>
+<li>Yu Guo <a href="mailto:yu.guo@secbit.io">yu.guo@secbit.io</a></li>
+<li>Jade Xie <a href="mailto:jade@secbit.io">jade@secbit.io</a></li>
+</ul>
+<p>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</p>
+<h2 id="extension-fields">Extension Fields</h2>
+<p>我们尝试用简单的语言来描述下 Extension Field 的概念，为后续我们研究 Binary Tower 做铺垫，深入学习请参考有限域教科书中的严格定义和证明。</p>
+<p>素数域 $\mathbb{F}_{p}$ 是有 $p$ 个元素的有限域，其中 $p$ 必定是一个素数。它同构于 $\mathbb{Z}/p\mathbb{Z}$ ，也就是说我们可以用整数集合 $\{0, 1, \ldots, p-1\}$ 来表示 $\mathbb{F}_p$ 的全体元素。</p>
+<p>我们可以把素数域的任意两个元素组成一个 Tuple，即 $(a, b)\in\mathbb{F}_{p}^2$，那么这个 Tuple 也构成了一个域，其元素数量为 $p^2$。我们可以检验一下， $a+b\in\mathbb{F}_p$，那么我们定义 Tuple 的加法如下：</p>
+$$
+(a_1, b_1) + (a_2, b_2) = (a_1 + a_2, b_1 + b_2)
+$$<p>可以验证， $\mathbb{F}_{p}^2$ 构成了一个向量空间， 因此它是一个加法群，其中零元素为 $(0, 0)$ 。接下来是怎么定义乘法的问题，我们希望乘法可以封闭，即：</p>
+$$
+(a_1, b_1)\cdot (a_2, b_2) = (c, d)
+$$<p>一种最简单的做法是采用 Entry-wise Mulplication 来定义乘法，即 $(a_1, b_1)\cdot (a_2, b_2) = (a_1a_2, b_1b_2)$，并且乘法单位元为 $(1, 1)$，貌似这样我们构造可以让乘法封闭。但是这并不能保证每一个元素都有逆元素。例如 $(1, 0)$，它乘上任何 Tuple 都不能得到 $(1, 1)$，因为 Tuple 的第二个部分怎么计算都是 $0$。因此，这样的乘法无法构成一个「域」。</p>
+<p>在有限域理论中，Tuple 的乘法运算是通过多项式模乘来实现的。也就是我们把 $(a_1, b_1)$ 看成是一个 Degree 为 1 的多项式的系数，同样 $(a_2, b_2)$ 也可以看成是一个 Degree 为 1 的多项式的系数，通过两者相乘，我们得到一个 Degree 为 2 的多项式：</p>
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = a_1a_2 + (a_1b_2 + a_2b_1)X + b_1b_2X^2
+$$<p>然后我们再把结果多项式模掉一个 Degree 为 2 的不可约的多项式 $f(X)$，得到一个余数多项式，这个余数多项式的系数即是 $(c, d)$。那么我们定义新的 Tuple 乘法如下：</p>
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = c + d\cdot X \mod f(X)
+$$<p>并且定义 $(1, 0)$ 为乘法单位元。这里我们强调 $f(X)$ 必须是一个不可约多项式。那么假如 $f(X)$ 是一个可约多项式，会有什么后果？比如 $f(X)=(u_1+u_2X)(v_1+v_2X)$，那么 $(u_1, u_2)$ 和 $(v_1, v_2)$ 这两个非零元素的乘积等于 $(0, 0)$，跳出了乘法群。严格的说，Zero Divisor 的出现破坏了乘法群的结构，从而无法构成一个「域」。</p>
+<p>接下来的问题是，是否存在一个不可约的 Degree 为 2 的多项式 $f(X)$。如果不存在 $f(X)$ ，那么构造一个 $\mathbb{F}_{p^2}$ 的域也就无从谈起。对于素数域 $\mathbb{F}_p$，任取 $w\in\mathbb{F}_p$，它不是任何元素的平方，数论中它属于非二次剩余类，即 $w\in QNR(p)$ 。如果 $w$ 存在，那么 $f(X)=X^2-w$ 就是一个不可约多项式。进一步，$w$ 的存在性如何保证？如果 $p$ 是一个奇数，那么 $w$ 必然存在。如果 $p=2$，虽然 $w$ 不存在，但我们可以指定 $f(X)=X^2+X+1\in\mathbb{F}_2[X]$ 作为一个不可约多项式。</p>
+<p>我们现在把 $\mathbb{F}_{p}^2$ 这个 Tuple 构成的集合，连同定义的加法和乘法运算，构成的域记为 $\mathbb{F}_{p^2}$ ，元素个数为 $p^2$。根据有限域理论，我们可以把二元 Tuple 扩大到 $n$ 元 Tuple，从而可以构成更大的有限域 $\mathbb{F}_{p^n}$。</p>
+<p>对于某个 $\mathbb{F}_p$ 上的不可约多项式 $f(X) = c_0 + c_1X + X^2$ ，它在 $\mathbb{F}_{p^2}$ 中一定可以被分解。$f(X) = (X-\alpha)(X-\alpha')$ ，其中 $\alpha$ 和 $\alpha'$ 互为共轭（Conjugate），并且它们都属于  $\mathbb{F}_{p^2}$，但不属于 $\mathbb{F}_p$ 。按照扩张域的定义，$\mathbb{F}_p(\alpha)$ 是一个 Degree 为 2 的代数扩张，它与前面我们通过不可约多项式的模乘构造的有限域同构。因此，我们也可以用 $a_1 + a_2\cdot\alpha$ 来表示 $\mathbb{F}_{p^2}$ 中的任意一个元素。或者进一步，我们可以把 $(1, \alpha)$ 看成是 $\mathbb{F}_{p^2}$ 向量空间的一组 Basis，任意一个 $a\in \mathbb{F}_{p^2}$ ，都可以表示为 Basis 的线性组合：</p>
+$$
+a = a_0 \cdot 1 + a_1 \cdot \alpha, \quad a_0, a_1\in\mathbb{F}_p
+$$<p>这样一来，我们就可以用符号 $a_0 + a_1\cdot \alpha$ 来表示 $\mathbb{F}_{p^2}$ 中的元素，而非 $a_0 + a_1\cdot X$ 这样的多项式表示。元素的「多项式表示」并没有指定我们到底采用了哪个不可约多项式来构造的扩张域，而采用 $\alpha$ 这个不不可约多项式的根作为构建扩张域的方式，则不存在二义性。</p>
+<p>把这个概念推广到 $\mathbb{F}_{p^n}$，对于任意一个元素 $a\in\mathbb{F}_{p^n}$，都可以表示为：</p>
+$$
+a = a_0 + a_1\cdot\alpha + a_2\cdot\alpha^2 + \cdots + a_{n-1}\cdot\alpha^{n-1}
+$$<p>这里 $\alpha$ 是 $n$ 次不可约多项式 $f(X)$ 的根。因此 $(1, \alpha, \alpha^2, \cdots, \alpha^{n-1})$ 可以看成是 $\mathbb{F}_{p^n}$ 的一组 Basis，这个 Basis 被称为有限域的 Polynomial Basis。注意 $\mathbb{F}_{p^n}$ 作为一个 $n$ 维的向量空间，它有很多很多个不同的 Basis。后续我们将看到 Basis 选择是一个非常重要的步骤，恰当的 Basis 可以大大优化或简化一些表示或运算。</p>
+<blockquote>
+<p>TODO: Fp* 乘法循环群</p>
+</blockquote>
+<h2 id="binary-field">Binary Field</h2>
+<p>对于 $\mathbb{F}_{2^n}$ ，我们称之为二进制域，因为它的元素都可以表达为由 $0$ 和 $1$ 组成的长度为 $n$ 的向量。构造 $\mathbb{F}_{2^n}$ 可以通过两类方法构造，一种是通过 $n$ 次的不可约多项式；另一种是反复使用二次扩张的方法，被称为 Extension Tower。域扩张的路径非常多，对于 $2^n$ ，它有多个 2 因子，因此存在多种介于两种方法之间的构造方式，比如对于 $\mathbb{F}_{2^8}$，可以先构造 $\mathbb{F}_{2^4}$，再通过二次扩张得到 $\mathbb{F}_{2^8}$，也可以先构造 $\mathbb{F}_{2^2}$，再通过四次不可约多项式进行扩张，构造 $\mathbb{F}_{2^8}$。</p>
+<p>我们先热身下，利用二次扩张的方法构造 $\mathbb{F}_{2^2}$。前面我们讨论过 $f(X)=X^2+X+1$ 是一个 $\mathbb{F}_2[X]$ 的不可约多项式，假设 $\eta$ 是 $f(X)$ 的一个根，那么 $\mathbb{F}_{2^2}$ 可以表示为 $a_0 + b_0\cdot\eta$。考虑到 $\mathbb{F}_{2^2}$ 只有四个元素，可以列在下面</p>
+$$
+\mathbb{F}_{2^2} = \{0, 1, \eta, \eta+1\}
+$$<p>并且 $\eta$ 作为生成元可以产生乘法群 $\mathbb{F}_{2^2}^*=\langle \eta \rangle$，它的 Order 为 3:</p>
+$$
+\begin{split}
+\eta^0 &= 1 \\
+\eta^1 &= \eta \\
+\eta^2 &= \eta+1 \\
+\end{split}
+$$<p>我们演示下 $\mathbb{F}_{2^4}$ 的两种构造方式。第一种是直接采用一个 4 次 $\mathbb{F}_2$ 上的不可约多项式。其实总共有 3 个不同的 4 次不可约多项式，因此总共有 3 种不同的构造方式。</p>
+$$
+\begin{split}
+f_1(X) &= X^4 + X + 1 \\
+f_2(X) &= X^4 + X^3 + 1 \\
+f_3(X) &= X^4 + X^3 + X^2 + X + 1 \\
+\end{split}
+$$<p>因为只需要选择一个不可约多项式即可，那我们就选择 $f_1(X)$ 来定义 $\mathbb{F}_{2^4}$ ：</p>
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_2[X]/\langle f_1(X)\rangle 
+$$<p>我们把 $f_1(X)$ 在 $\mathbb{F}_{2^4}$ 上的根记为 $\theta$，那么 $a\in\mathbb{F}_{2^4}$ 元素可以唯一地表示为：</p>
+$$
+a = a_0 + a_1\cdot\theta + a_2\cdot\theta^2 + \cdots + a_{n-1}\cdot\theta^{n-1}
+$$<p>这里补充一下，$f_1(X)$ 同时还是一个 Primitive 多项式，它的根 $\theta$ 同时也是 $\mathbb{F}_{2^4}$ 的一个 Primitive Element。注意并不是所有的不可约多项式都是 Primitive 多项式，例如上面列出的 $f_3(X)$ 就不是一个 Primitive 多项式。</p>
+<p>下面我们可以列出 $\mathbb{F}_{2^4}$ 中的所有元素，每一个元素对应一个 4bit 的二进制向量：</p>
+$$
+\begin{array}{ccccccc}
+0000 & 0001 & 0010 & 0011 & 0100 & 0101 & 0110 & 0111 \\
+0 & 1 & \theta & \theta+1 & \theta^2 & \theta^2+1 & \theta^2+\theta & \theta^2+\theta+1 \\
+\hline
+1000 & 1001 & 1010 & 1011 & 1100 & 1101 & 1110 & 1111 \\
+\theta^3 & \theta^3+1 & \theta^3+\theta & \theta^3+\theta+1 & \theta^3+\theta^2 & \theta^3+\theta^2+1 & \theta^3+\theta^2+\theta & \theta^3+\theta^2+\theta+1 \\
+\end{array}
+$$<p>对于 $\mathbb{F}_{2^4}$ 中两个元素的加法，我们只需要把它们的二进制表示按位相加即可，例如：</p>
+$$
+(0101) + (1111) = (1010)
+$$<p>这个运算实际上就是 XOR 按位异或运算。而对于乘法，比如 $a\cdot\theta$，则对应于二进制上的移位运算：</p>
+$$
+\begin{split}
+(0101) << 1 &= (1010)\\
+(\theta^2 + 1)\cdot\theta &= \theta^3 + \theta \\
+\end{split}
+$$<p>如果继续乘以 $\theta$，就会出现移位溢出的情况，</p>
+$$
+\begin{split}
+(\theta^3 + \theta)\cdot\theta &= {\color{blue}\theta^4} + \theta^2 = \theta^2 + \theta + 1 \\
+(1010) << 1  &= (0100) + (0011) = (0111)\\
+\end{split}
+$$<p>对于溢出位，则需要补加上 $0011$，这是由不可约多项式 $f_1(X)$ 的定义决定的， $\theta^4=\theta+1$。所以一旦高位的 bit 移位溢出，就需要做一个与 $0011$ 的 XOR 运算。由此，我们看到 $\mathbb{F}_{2^4}$ 的乘法运算规则实际上取决于不可约多项式的选择。所以说，如何选择合适的不可约多项式也是二进制域乘法优化的关键步骤。</p>
+<h2 id="field-embedding">Field Embedding</h2>
+<p>如果我们要基于二进制域的构造 SNARK 证明系统，我们会将较小的数字用小位数来表示，但是不管怎么样，在协议的挑战轮，Verifier 都要给出一个在较大的扩张域中的随机数，以期望达到足够的密码学安全强度。这就需要我们在小域中用多项式编码 witness 信息，但在一个较大的域中对这些多项式进行取值运算。那么，我们需要找到一种办法把小域 $K$ 「嵌入」到大域 $L$ 中。</p>
+<p>所谓的嵌入（Embedding），指的是把一个域 $K$ 中的元素映射到另一个域 $L$ 中，记为 $\phi: K\to L$。这个映射是 Injective 的，并且这个同态映射保持了加法和乘法运算的结构：</p>
+$$
+\begin{split}
+\phi(a+b) &= \phi(a) + \phi(b) \\
+\phi(a\cdot b) &= \phi(a)\cdot\phi(b)
+\end{split}
+$$<p>即如果 $a\in K$，那么 $a$ 在 $L$ 中也有唯一的表示。为了保持乘法运算的结构，那么其实我们只要能找到一个 K 中的 Primitive Element $\alpha$ 对应到 $L$ 中的某个元素 $\beta$，那么这个同态映射就唯一确定了，因为 $K$ 中的任意一个元素都可以表示为 $\alpha$ 的幂次。不过，通常这个嵌入的同态映射并不是一个轻而易举可以找到。我们以 $\mathbb{F}_{2^2}\subset\mathbb{F}_{2^4}$ 为例，看看如何找到前者嵌入到后者的映射。</p>
+<p>因为 $\eta$ 是 $\mathbb{F}_{2^2}$ 中的一个 Primitive Element，所以我们只要考虑 $\eta$ 在 $\mathbb{F}_{2^4}$ 中的表示即可。</p>
+<p>我们先看看 $\mathbb{F}_{2^4}$ 中的 Primitive Element $\theta$ ，是否 $\eta\mapsto\theta$ 是一个嵌入映射？</p>
+$$
+\eta^2 = \eta+1 \quad \text{but} \quad \theta^2 \neq \theta+1
+$$<p>很显然，$\eta^2 \neq \theta^2$，所以 $\eta\mapsto\theta$ 不是一个嵌入映射。联想到不可约多项式决定了元素间乘法的关系，而因为 $\eta$ 是 $X^2+X+1$ 的根，而 $\theta$ 是 $X^4+X+1$ 的根，所以 $\eta$ 和 $\theta$ 的乘法关系肯定不一样。在 $\mathbb{F}_{2^4}$ 中，也存在 $X^2+X+1$ 的两个根，分别为 $\theta^2+\theta$ 和 $\theta^2+\theta+1$，读者可以验证下面的等式：</p>
+$$
+(\theta^2+\theta)^2 + (\theta^2+\theta) + 1 = \theta^4 + \theta^2 + \theta^2 + \theta + 1 = 0
+$$<p>那么，我们就定义嵌入映射：</p>
+$$
+\begin{split}
+\phi &: \mathbb{F}_{2^2} \to \mathbb{F}_{2^4},\quad \eta \mapsto \theta^2+\theta
+\end{split}
+$$<p>这就意味着二进制 $(10)$ 对应于 $L=\mathbb{F}_{2^4}$ 中的 $(0110)$ ；而二进制 $(11)$ （也就是 $\eta+1$）对应于 $L$ 中的 $(\theta^2+\theta+1)$，即 $(0111)$ 。这里要注意，我们也可以用 $\phi': \eta \mapsto \theta^2+\theta+1$ 作为另一个不同的嵌入映射，其内在原理是 $\theta^2+\theta$ 和 $\theta^2+\theta+1$ 互为共轭，它们是完美对称的，因此这两种映射都可以作为嵌入映射，除了映射到不同元素上，从整体结构上并且没有明显区别。</p>
+<p>而对于任意的 $[L:K]=n$ 而言，我们将 $K$ 嵌入到 $L$，一个直接的方法就是找 $f(X)$ $L$ 中 的根，当然这个计算并不简单。并且嵌入和反嵌入都需要额外的计算，这无疑增加了系统的复杂性。</p>
+<p>而 Binius 论文提到的采用递归式 Extension Tower 的构造方法，通过选取合适的不可约多项式和 Basis，我们就可以得到非常直接（称为 Zero-cost）的嵌入和反嵌入映射。</p>
+<h2 id="extension-tower">Extension Tower</h2>
+<p>我们可以通过两次的二次扩张来构造 $\mathbb{F}_{2^4}$，首先我们选择一个二次不可约多项式 $f(X)=X^2+X+1$，那么我们可以构造 $\mathbb{F}_{2^2}$，然后基于 $\mathbb{F}_{2^2}$ 再找到一个二次不可约多项式，从而构造 $\mathbb{F}_{2^4}$。</p>
+$$
+\mathbb{F}_{2^2} = \mathbb{F}_2[X]/\langle X^2+X+1 \rangle \cong\mathbb{F}_2(\eta)
+$$<p>接下我们要找到 $\mathbb{F}_{2^2}[X]$ 中的一个二次不可约多项式。首先注意，$X^2+X+1$ 已经不能使用，根据 $\mathbb{F}_{2^2}$ 的定义，它已经可以被分解。再考虑下 $X^2+1$，它也可以被分解 $(X+1)(X+1)$， 事实上所有的 $\mathbb{F}_2[X]$ 的二次多项式都可以被分解。而一个$\mathbb{F}_{2^2}[X]$ 中的二次不可约多项式，其系数中必然包含一个带有新元素 $\eta$ 的项。</p>
+<p>比如 $X^2+X+\eta$ 就是一个 $\mathbb{F}_{2^2}$ 上的二次不可约多项式。那么我们可以构造 $\mathbb{F}_{2^4}$：</p>
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_{2^2}[X]/\langle X^2+X+\eta \rangle 
+$$<p>我们把 $X^2+X+\eta$ 在 $\mathbb{F}_{2^4}$ 中的根记为 $\zeta$，那么 $\mathbb{F}_{2^4}$ 可以表示为：</p>
+$$
+\mathbb{F}_{2^4} = \cong \mathbb{F}_{2^2}(\zeta)  \cong \mathbb{F}_2(\eta)(\zeta) \cong \mathbb{F}_2(\eta, \zeta)
+$$<!-- raw HTML omitted -->
+<p>那么 $\mathbb{F}_{2^4}$ 的全部元素可以用 $\eta, \zeta$ 来表示：</p>
+$$
+\begin{array}{ccccccc}
+\hline
+0000 & 0001 & 0010 & 0011 & 0100 & 0101 & 0110 & 0111 \\
+0 & 1 & \eta & \eta+1 & \zeta & \zeta+\eta & \zeta+\eta+1 & \zeta+\eta+1 \\
+\hline
+1000 & 1001 & 1010 & 1011 & 1100 & 1101 & 1110 & 1111 \\
+\zeta\eta & \zeta\eta + 1 & \zeta\eta + \eta & \zeta\eta + \eta + 1 & \zeta\eta + \zeta & \zeta\eta + \zeta +1 & \zeta\eta+\zeta+\eta & \zeta\eta+\zeta+\eta+1 \\
+\hline
+\end{array}
+$$<p>这时，4bit 二进制中的每一个 bit 都对应于 $\mathbb{F}_{2^4}$ 中的一个元素，$(1000)$ 对应 $\zeta\eta$，$(0100)$ 对应 $\zeta$，$(0010)$ 对应 $\eta$，$(0001)$ 对应 $1$。因此我们可以用下面的 Basis 来表示 $\mathbb{F}_{2^4}$ 中的所有元素：</p>
+$$
+\mathcal{B} = (1,\ \eta,\ \zeta,\ \eta\zeta)
+$$<p>这时候，$\mathbb{F}_{2^2}$ 的二进制表示直接对应于 $\mathbb{F}_{2^4}$ 二进制表示的「低两位」，例如：</p>
+$$
+\begin{split}
+(1010) &= (10) || (10) = \zeta\eta + \eta \\
+\end{split}
+$$<p>因此，我们可以直接在 $\mathbb{F}_{2^2}$ 的二进制表示的高两位补零，即可以得到 $\mathbb{F}_{2^4}$ 的对应元素。反之，只要把高位两个零去除，一个 $\mathbb{F}_{2^4}$ 中的元素直接映射回 $\mathbb{F}_{2^2}$ 中的元素。</p>
+<!-- raw HTML omitted -->
+<p>如上图所示，$(1011)$ 是 $\zeta\eta+\eta+1$ 的二进制表示，它的低两位 $(11)$ 直接对应于 $\mathbb{F}_{2^2}$ 中的 $(\eta+1)$ 。这种嵌入是一种「自然嵌入」，因此 Binus 论文称之为 Zero-cost Embedding。</p>
+<p>不过 $\mathbb{F}_{2^4}$ 还是一个很小的域，不够用，如果继续往上进行二次扩张，怎么能找到合适的不可约多项式呢？方案并不唯一，我们先看看 Binius 论文 [DP23] 中给出的一个方案 —— Wiedemann Tower [Wie88]。</p>
+<h2 id="wiedemann-tower">Wiedemann Tower</h2>
+<p>Wiedemann Tower 是一个基于 $\mathbb{F}_2$ 的递归扩张塔。最底部的 Base Field 记为 $\mathcal{T}_0$，其元素仅为 $0$ 和 $1$：</p>
+$$
+\mathcal{T}_0 = \mathbb{F}_2 \cong \{0,1\}
+$$<p>然后我们引入一个未知数 $X_0$，构造一个一元多项式环 $\mathbb{F}_2[X_0]$ 。如前所讨论，$X^2 + X + 1$ 是一个 $\mathcal{T}_0$ 上的不可约多项式，因此，我们可以用它来构造 $\mathcal{T}_1$。</p>
+$$
+\mathcal{T}_1 = \mathbb{F}_2[X_0]/\langle  X_0^2+X_0+1 \rangle = \{0, 1, X_0, X_0+1\} \cong \mathbb{F}_{2^2} \cong \mathbb{F}_2(\alpha_0)
+$$<p>接下来，我们找到一个 $\mathcal{T}_1[X_1]$ 中的二次不可约多项式 $X_1^2+\alpha_0\cdot X_1+1$，那么我们可以构造 $\mathcal{T}_2$：</p>
+$$
+\mathcal{T}_2 = \mathcal{T}_1[X_1]/\langle  X_1^2+ \alpha_0\cdot X_1+1\rangle \cong \mathbb{F}_{2^4} \cong \mathbb{F}_2(\alpha_0, \alpha_1)
+$$<p>依次类推，我们可以构造出 $\mathcal{T}_3, \mathcal{T}_4, \cdots, \mathcal{T}_n$ ：</p>
+$$
+\mathcal{T}_{i+1} = \mathcal{T}_i[X_i]/\langle  X_i^2+\alpha_{i-1}\cdot X_i+1\rangle \cong \mathbb{F}_{2^{2^i}} \cong \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_i),\quad i\geq 1
+$$<p>这里，$\alpha_0, \alpha_1, \ldots, \alpha_{n-1}$ 是依次引入的二次不可约多项式的根，使得：</p>
+$$
+\mathcal{T}_{n} = \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_{n-1})
+$$<p>而 $|\mathcal{T}_{n}| = 2^{2^{n}}$。这些引入的根之间的关系满足下面的等式：</p>
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$<p>不难检验，$\alpha_0+\alpha^{-1}_0=1$。并且多元多项式环 $\mathcal{T}_0[X_0, X_1, \ldots, X_n]$ 中的多项式 $X_i^2+X_{i-1}X_i+1$ 的两个根为 $\alpha_i$ 和 $\alpha^{-1}_i$ ：</p>
+$$
+(\alpha^{-1}_i)^2 + \alpha_{i-1}\alpha^{-1}_i + 1 = \alpha^{-1}_i + \alpha_{i-1} + \alpha_i = \alpha_{i-1} + \alpha_{i-1} = 0
+$$<p>并且，$\alpha_i$ 和 $\alpha_{i+1}$ 满足下面的递推关系：</p>
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$<p>这是因为等式两边都乘以 $\alpha_{i+1}$ 就会得到：$\alpha_{i+1}^2 + \alpha_i\alpha_{i+1} + 1 = 0$ ，这正是我们递归构造二次扩张的不可约多项式。</p>
+<h3 id="multilinear-basis">Multilinear Basis</h3>
+<p>对于 $\mathcal{T}_{i+1}$ over $\mathbb{F}_2$，构成了一个关于 $\mathbb{F}_2$ 的 $n+1$ 维向量空间。我们可以使用 这些不可约多项式的根来构造 Multilinear Basis：</p>
+$$
+\begin{split}
+\mathcal{B}_{i+1} &= (1, \alpha_0)\otimes (1, \alpha_1) \otimes \cdots \otimes (1,\alpha_i)  \\
+& = (1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2,\ \ldots,\ \alpha_0\alpha_1\cdots \alpha_i)
+\end{split}
+$$<p>这与我们前面讨论过的，使用 $(1, \eta, \zeta, \zeta\eta)$ 作为 $\mathbb{F}_{2}(\eta, \zeta)$ 的 Basis 是一致的。我们可以快速地验证下，首先 $(1, \alpha_0)$ 是 $\mathcal{T}_1$ 的 Basis，因为 $\mathcal{T}_1$ 的每一个元素都可以表示为</p>
+$$
+a_0 + b_0\cdot \alpha_0,  \quad a_0, b_0\in\mathcal{T}_0
+$$<p>当 $\mathcal{T}_1$ 通过 $\alpha_1$ 扩张到 $\mathcal{T}_2$ 后，$\mathcal{T}_2$ 的元素都可以表示为：</p>
+$$
+a_1 + b_1\cdot \alpha_1,  \quad a_1, b_1\in\mathcal{T}_1
+$$<p>代入 $a_1=a_0+b_0\cdot \alpha_0$，$b_1=a_0'+b_0'\cdot \alpha_1$，于是有：</p>
+$$
+\begin{split}
+a_1 + b_1\cdot \alpha_1 &= (a_0+b_0\cdot \alpha_0) + (a'_0+b'_0\cdot \alpha_0)\cdot \alpha_1 \\
+ &= a_0 + b_0\alpha_0 + a'_0\cdot\alpha_1+ b_0'\cdot \alpha_0\alpha_1
+\end{split}
+$$<p>于是，$(1, \alpha_0, \alpha_1, \alpha_0\alpha_1)$ 就构成了 $\mathcal{T}_2$ 的 Basis。依次类推，$(1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2, \alpha_0\alpha_2, \alpha_1\alpha_2, \alpha_0\alpha_1\alpha_2)$ 是 $\mathcal{T}_3$ 的 Basis。最后，$\mathcal{B}_{n}$ 正是 $\mathcal{T}_{n}$ 的 Basis。</p>
+<h3 id="寻找-primitive-element">寻找 Primitive element</h3>
+<p>前面我们讨论过 $\alpha_i$ 和 $\alpha^{-1}_{i}$ 互为共轭根，由 Galois 理论，</p>
+$$
+\alpha_{i}^{2^{2^n}} = \alpha^{-1}_{i} 
+$$<p>那么 $\alpha_i$ 都满足下面的性质：</p>
+$$
+\alpha_i^{F_i} = 1
+$$<p>这里 $F_n$ 代表费马数（Fermat Number），$F_n=2^{2^n}+1$。一个著名的定理是 $\mathsf{gcd}(F_i, F_j) = 1,  i\neq j$，即任意的两个不同的费马数互质，因此</p>
+$$
+\mathsf{ord}(\alpha_0\alpha_1\cdots \alpha_i) = \mathsf{ord}(\alpha_0)\mathsf{ord}(\alpha_1)\cdots\mathsf{ord}(\alpha_i) 
+$$<p>因此，如果费马数 $F_i$ 为素数，那么很显然 $\mathsf{ord}(\alpha_i)=F_i$。目前我们已知 $i\leq 4$ 的情况下， $F_i$ 都是素数，那么</p>
+$$
+\begin{split}
+\mathsf{ord}(\alpha_0\cdot \alpha_1\cdot \cdots \cdot \alpha_i) &= \mathsf{ord}(\alpha_0)\cdot \mathsf{ord}(\alpha_1)\cdot \cdots \cdot \mathsf{ord}(\alpha_n) \\
+& = F_0\cdot F_1\cdot \cdots \cdot F_i = 2^{2^{i+1}} - 1 \\
+& = |\mathcal{T}_{n+1}| -1
+\end{split}
+$$<p>如果 $\alpha_0\cdots \alpha_i, i\leq 4$，那么根据有限域的性质，它是 $\mathcal{T}_{n+1}$ 的一个 Primitive Element。</p>
+<p>另外，通过计算机程序检查验证，对于 $5\leq i \leq 8$ 的情况，$\alpha_i$ 的 Order 仍然等于 $F_i$。这个 $\alpha_0\cdots \alpha_8$ 是有限域 $\mathbb{F}_{2^{512}}$的大小已经能满足类似 Binius 证明系统的需求。但在数学上，是否所有的 $\alpha_i$ 都满足这个性质？这个似乎还是个未解问题 [Wie88]。</p>
+<h2 id="乘法优化">乘法优化</h2>
+<p>采用 Extension Tower 的另一个显著的优点是乘法运算的优化。</p>
+<p>第一种优化是 &ldquo;Small-by-large Multiplication&rdquo;，即 $a\in\mathcal{T}_\iota$ 与 $b\in\mathcal{T}_{\iota+\kappa}$ 两个数的乘法运算。因为 $b$ 可以分解为 $2^\kappa$ 个 $\mathcal{T}_\iota$ 元素，因此这个乘法运算等价于 $2^\kappa$ 次 $\mathcal{T}_\iota$ 上的乘法运算。</p>
+$$
+a \cdot (b_0, b_1, \cdots, b_{2^\kappa-1}) = (a\cdot b_0, a\cdot b_1, \cdots, a\cdot b_{\kappa-1})
+$$<p>即使对于同一个域上的两个元素的乘法，也同样有优化手段。假设 $a, b\in\mathcal{T}_{i+1}$，那么根据 Tower 构造的定义，可以分别表示为 $a_0 + a_1\cdot\alpha_i$ 与 $b_0 + b_1\cdot \alpha_i$ ，那么它们的乘法可以推导如下：</p>
+$$
+\begin{split}
+a\cdot b  & = (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+ &= a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot\alpha_i^2 \\
+& = a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot(\alpha_{i-1}\alpha_i+1) \\
+& = a_0b_0  + a_1b_1 + (a_0b_1 + a_1b_0 + a_1b_1\cdot\alpha_{i-1})\cdot\alpha_i \\
+& = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i
+\end{split}
+$$<p>注意上面等式的右边，我们只需要计算三个 $\mathcal{T}_{i}$ 上的乘法，分别为 $A=a_0b_0$， $B=(a_0+a_1)(b_0+b_1)$ 与 $C=a_1b_1$，然后上面的公式可以转换为：</p>
+$$
+a\cdot b = (A + C) + (B-A-C+C\cdot \alpha_{i-1})\cdot\alpha_i 
+$$<p>其中还漏了一个 $C\cdot \alpha_{i-1}$，这是一个常数乘法，因为 $\alpha_{i-1}\in\mathcal{T}_{i}$ 是一个常数。这个常数乘法可以被归约到一个 $\mathcal{T}_{i-1}$ 上的常数乘法运算，如下所示：</p>
+$$
+\begin{split}
+C\cdot \alpha_{i-1} &= (c_0 + c_1\alpha_{i-1})\cdot \alpha_{i-1} \\
+& = c_0\cdot \alpha_{i-1} + c_1\cdot \alpha_{i-1}^2 \\
+& = c_0\cdot \alpha_{i-1} + c_1\cdot (\alpha_{i-2}\cdot \alpha_{i-1} + 1) \\
+& = c_1 + (c_0 + {\color{blue}c_1\cdot \alpha_{i-2}})\cdot \alpha_{i-1}
+\end{split}
+$$<p>其中蓝色部分表达式，${\color{blue}c_1\cdot \alpha_{i-2}}$ 为需要递归计算的 $\mathcal{T}_{i-2}$ 上的常数乘法运算。全部递归过程只需要计算若干次加法即可完成。</p>
+<p>再回头看看 $a\cdot b$ 的运算，我们也可以构造一个 Karatsuba 风格的递归算法，每一层递归只需要完成三次乘法运算，比不优化的四次乘法运算少一次。综合起来，优化效果会非常明显。</p>
+<p>进一步，$\mathcal{T}_{i}$ 上的乘法逆运算也可以被大大优化 [FP97]。考虑 $a, b\in\mathcal{T}_{i+1}$，满足 $a\cdot b=1$，展开 $a$ 和 $b$ 的表达式：</p>
+$$
+\begin{split}
+a\cdot b &= (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+& = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i\\
+&= 1\\
+\end{split}
+$$<p>我们可以计算得到 $b_0, b_1$ 的表达式：</p>
+$$
+\begin{split}
+b_0 &= \frac{a_0 + a_1\alpha_{i-1}}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2}  \\[2ex]
+b_1 &= \frac{a_1}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2} \\
+\end{split}
+$$<p>所以，$b_0$ 和 $b_1$ 的计算包括：一次求逆运算，三次乘法，两次加法，一次常数乘法，还有一次平方运算。</p>
+$$
+\begin{split}
+d_0 &= \alpha_{i-1}a_1\\
+d_1 &= a_0 + d_0 \\
+d_2 &= a_0 \cdot d_1 \\
+d_3 &= a_1^2   \\
+d_4 &= d_2 + d_3 \\
+d_5 &= 1/d_4 \\
+b_0 & = d_1\cdot d_5\\
+b_1 & = a_1 \cdot d_5\\
+\end{split}
+$$<p>其中 $d_5$ 的求逆运算可以沿着 Extension Tower 逐层递归，递归过程中的主要运算开销为三次乘法运算。还有 $d_3$ 的平方运算，它也可以递归地计算：</p>
+$$
+\begin{split}
+a_1^2 &= (e_0 + e_1\cdot\alpha_{i-1})^2 \\
+& = e_0^2 + e_1^2\cdot\alpha_{i-1}^2 \\
+& = e_0^2 + e_1^2\cdot(\alpha_{i-2}\alpha_{i-1} + 1) \\
+& = (e_0^2 + e_1^2) + (e_1^2\alpha_{i-2})\cdot\alpha_{i-1}  \\
+\end{split}
+$$<p>详细的递归效率分析可以参考 [FP97]。总体上，这个计算复杂度和 Karatsuba 算法复杂度相当，从而很大程度上降低了求逆的算法复杂度。</p>
+<h2 id="artin-schreier-tower-conway-tower">Artin-Schreier Tower (Conway Tower)</h2>
+<p>还有一种构造 Binary Tower 的方法，源自 Amil Artin 与 Otto Schreier 发表在 1927 年的论文中，也出现在 Conway 的 「On Numbers and Games」一书中。关于这个历史溯源与相关理论，请参考 [CHS24]。</p>
+<p>对于任意的 $\mathbb{F}_{p^n}$，我们选择 $h(X_{i+1}) = X_{i+1}^p - X_{i+1} - \alpha_0\alpha_1\cdots \alpha_i$ 作为每一层 Tower 的不可约多项式。而 $\alpha_{i+1}$ 作为 $h(X_{i+1})=0$ 在上一层 Tower 上的根。这样 我们可以得到一个 Extension Tower：</p>
+$$
+\mathbb{F}_2 \subset \mathbb{F}_{2^2}\cong\mathbb{F}_2(\alpha_0) \subset \mathbb{F}_{2^4}\cong\mathbb{F}_{2^2}(\alpha_1) \subset \mathbb{F}_{2^8}\cong\mathbb{F}_{2^4}(\alpha_2)
+$$<p>而且 $(1, \alpha_0)\otimes(1, \alpha_1)\otimes\cdots \otimes (1, \alpha_n)$ 构成了 $\mathbb{F}_{2^{2^{i+1}}}$ 向量空间的 Basis。依照我们前面的讨论，这组 Basis 也支持 Zero-cost 的子域嵌入。这类的 Multilinear Basis 也被称为 Cantor Basis [Can89]。</p>
+<h2 id="references">References</h2>
+<ul>
+<li>[Wie88] Wiedemann, Doug. &ldquo;An iterated quadratic extension of GF (2).&rdquo; Fibonacci Quart 26.4 (1988): 290-295.</li>
+<li>[DP23] Diamond, Benjamin E., and Jim Posen. &ldquo;Succinct arguments over towers of binary fields.&rdquo; Cryptology ePrint Archive (2023).</li>
+<li>[DP24] Diamond, Benjamin E., and Jim Posen. &ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers.&rdquo; Cryptology ePrint Archive (2024).</li>
+<li>[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.</li>
+<li>[FP97] Fan, John L., and Christof Paar. &ldquo;On efficient inversion in tower fields of characteristic two.&rdquo; Proceedings of IEEE International Symposium on Information Theory. IEEE, 1997.</li>
+<li>[CHS24] Cagliero, Leandro, Allen Herman, and Fernando Szechtman. &ldquo;Artin-Schreier towers of finite fields.&rdquo; arXiv preprint arXiv:2405.10159 (2024).</li>
+<li>[Can89] David G. Cantor. On arithmetical algorithms over finite fields. J. Comb. Theory Ser. A, 50(2):285–300, March 1989.</li>
+</ul>
+
+      </div>
+
+      
+      
+<div class="post-copyright">
+  <p class="copyright-item">
+    <span class="item-title">文章作者</span>
+    <span class="item-content">Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io></span>
+  </p>
+  <p class="copyright-item">
+    <span class="item-title">上次更新</span>
+    <span class="item-content">
+      2024-11-01
+      
+        <a href="https://github.com/sec-bit/blog/commit/0453263d11ca7e177a7154e403f6d7fe381806fc" title="add binius 01 &amp; 02">
+          (0453263)
+        </a>
+        
+          <br>add binius 01 &amp; 02
+        
+      
+    </span>
+  </p>
+  
+  <p class="copyright-item">
+    <span class="item-title">许可协议</span>
+    <span class="item-content">If you need to reprint, please indicate the author and source of the article.</span>
+  </p>
+</div>
+
+
+
+      
+      
+
+
+      <footer class="post-footer">
+        <div class="post-tags">
+          <a href="https://sec-bit.github.io/blog/tags/cryptography/">cryptography</a>
+          <a href="https://sec-bit.github.io/blog/tags/finite-fields/">finite fields</a>
+          <a href="https://sec-bit.github.io/blog/tags/snark/">SNARK</a>
+          <a href="https://sec-bit.github.io/blog/tags/binius/">Binius</a>
+          
+        </div>
+
+
+        
+        <nav class="post-nav">
+          
+          <a class="prev" href="/blog/2024/11/01/binius-02/">
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-left hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m15 18-6-6 6-6"/></svg>
+            </i>
+            <span class="prev-text nav-default">Notes on Binius (Part II): Subspace Polynomial</span>
+            <span class="prev-text nav-mobile">上一篇</span>
+          </a>
+          
+        </nav>
+      </footer>
+    </article>
+
+    
+    
+    
+    
+
+
+    
+    
+
+  
+
+  
+  
+    <div class="comment">
+  <script
+    src="https://giscus.app/client.js"
+    data-repo="sec-bit/comments-for-secbit-blog"
+    data-repo-id="MDEwOlJlcG9zaXRvcnkyMTQ2MDkzNjM="
+    data-category="Comments"
+    data-category-id="DIC_kwDODMqt084CY2v-"
+    data-mapping="pathname"
+    data-strict="0"
+    data-reactions-enabled="1"
+    data-emit-metadata="0"
+    data-input-position="top"
+    data-theme="light"
+    data-lang="en"
+    
+      data-loading="lazy"
+    
+    crossorigin="anonymous"
+    async
+  ></script>
+</div>
+
+  
+
+  
+  
+
+  
+
+  
+
+    
+
+  
+
+  
+
+
+  </div>
+
+  
+  <nav class="toc" id="toc">
+    <div class="toc-title">文章目录</div>
+    <div class="toc-content custom-scrollbar">
+      <nav id="TableOfContents">
+  <ul>
+    <li><a href="#extension-fields">Extension Fields</a></li>
+    <li><a href="#binary-field">Binary Field</a></li>
+    <li><a href="#field-embedding">Field Embedding</a></li>
+    <li><a href="#extension-tower">Extension Tower</a></li>
+    <li><a href="#wiedemann-tower">Wiedemann Tower</a>
+      <ul>
+        <li><a href="#multilinear-basis">Multilinear Basis</a></li>
+        <li><a href="#寻找-primitive-element">寻找 Primitive element</a></li>
+      </ul>
+    </li>
+    <li><a href="#乘法优化">乘法优化</a></li>
+    <li><a href="#artin-schreier-tower-conway-tower">Artin-Schreier Tower (Conway Tower)</a></li>
+    <li><a href="#references">References</a></li>
+  </ul>
+</nav>
+    </div>
+  </nav>
+
+
+</div>
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/2024/11/01/binius-02/index.html b/2024/11/01/binius-02/index.html
new file mode 100644
index 0000000..882155f
--- /dev/null
+++ b/2024/11/01/binius-02/index.html
@@ -0,0 +1,1058 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  Notes on Binius (Part II): Subspace Polynomial - SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/2024/11/01/binius-02/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="Yu Guo  and Jade Xie " />
+<meta name="description" content="FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。" />
+
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/2024/11/01/binius-02/" />
+
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/2024/11/01/binius-02/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta property="og:description" content="FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="article">
+    <meta property="article:section" content="post">
+    <meta property="article:published_time" content="2024-11-01T08:00:00+08:00">
+    <meta property="article:modified_time" content="2024-11-01T20:31:26+08:00">
+    <meta property="article:tag" content="Cryptography">
+    <meta property="article:tag" content="Finite Fields">
+    <meta property="article:tag" content="SNARK">
+    <meta property="article:tag" content="Binius">
+
+  <meta itemprop="name" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta itemprop="description" content="FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta itemprop="wordCount" content="3268">
+  <meta itemprop="keywords" content="Cryptography,Finite Fields,SNARK,Binius">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta name="twitter:description" content="FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    <div class="content-wrapper">
+  <aside class="sidebar">
+  </aside>
+  <div id="content" class="content">
+    <article class="post">
+      
+      <header class="post-header">
+        <h1 class="post-title">Notes on Binius (Part II): Subspace Polynomial</h1>
+        
+
+
+<div class="post-title-i18n">
+  
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+  
+  <div>
+    <a href="https://sec-bit.github.io/blog/en/2024/11/01/binius-02/">en</a>
+  </div>
+  
+</div>
+
+
+        <div class="post-meta-list">
+  <div class="post-meta-item post-meta-author">
+    
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+    Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
+    
+  </div>
+
+  <div class="post-meta-item post-meta-time">
+    
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+    <time datetime=" 2024-11-01">
+      2024-11-01
+    </time>
+
+
+    
+
+  </div>
+
+
+  <div class="post-meta__right">
+    
+
+    <div class="post-meta-item post-meta-category">
+      <a href="https://sec-bit.github.io/blog/categories/mle-pcs/"> mle-pcs </a>
+      
+    </div>
+
+
+    
+    
+
+
+    
+    
+  </div>
+</div>
+
+      </header>
+
+      
+      <div class="post-content">
+        <ul>
+<li>Yu Guo <a href="mailto:yu.guo@secbit.io">yu.guo@secbit.io</a></li>
+<li>Jade Xie <a href="mailto:jade@secbit.io">jade@secbit.io</a></li>
+</ul>
+<p>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</p>
+<p>由于 Additive FFT 依赖的代数结构和素数域上的 Multiplicative FFT 非常相似，因此关于 Multiplicative FFT 的知识将有助于理解本文的内容。</p>
+<h2 id="线性子空间多项式-subspace-polynomial">线性子空间多项式 Subspace Polynomial</h2>
+<p>我们继续探索基于 $\mathbb{F}_2$ 上的 Extension Field，$\mathbb{F}_{2^m}$ 。不管是用何种方式构造的 $\mathbb{F}_{2^m}$，所有的元素构成了一个向量空间，记为 $V_m$ ，并且存在一组 Basis $(\beta_0, \beta_1, \ldots, \beta_{m-1})$ ，张成这个向量空间，记为 $V_m=\mathsf{Span}(\beta_0, \beta_1, \ldots, \beta_{m-1})$，或者用符号 $\langle \cdots \rangle$ 表示：</p>
+$$
+V_m = \langle \beta_0, \beta_1, \ldots, \beta_{m-1} \rangle
+$$<p>这样任意一个元素 $ \theta\in\mathbb{F}_{2^m}$ ，可以写为 Basis 分量的线性组合：</p>
+$$
+\theta = c_0\cdot \beta_0 + c_1\cdot \beta_1 + \ldots + c_{m-1}\cdot \beta_{m-1}, \text{ where $c_i\in \mathbb{F}_2$}
+$$<p>同时 $V_m$ 还是一个加法群，单位元为 $V_0=\{0\}$ ，如果 $V_k$ 是 $V_m$ 的一个线性子空间，那么  $V_k$ 也是 $V_m$ 的一个加法子群。对于 $V_k$ ，我们可以用一个多项式来编码其中的所有元素，即该多项式的根集合正好对应 $V_k$ 的所有元素的集合，我们把多项式记为 $s_k(X)$ 。这个多项式也被称为「Subspace Polynomial」子空间多项式：</p>
+$$
+s_k(X) = \prod_{i=0}^{2^k-1}(X-\theta_i), \text{ where $\theta_i\in V_k$ }
+$$<p>多项式 $s_k(X)$ 也可以看成是 $V_k$ 这个 Domain 上的 Vanishing Polynomial，因为对于任意的 $\theta\in V_k$ ，都满足：</p>
+$$
+s_k(\theta) = 0
+$$<h3 id="linearized-polynomial">Linearized Polynomial</h3>
+<p>上面介绍的 Subspace 多项式是一种所谓的 Linearized Polynomial，因为它的定义满足下面的形式：</p>
+$$
+L(X) = \sum_{i=0}^{n-1} c_i\cdot X^{q^i}, \quad c_i\in \mathbb{F}_{q}
+$$<p>多项式 $L(X)$ 之所以被称为 Linearized Polynomial，因为每一个 $L(X)$ 都对应到 $\mathbb{F}_{q}$ 的扩张域 $K$ 上的一个线性算子（Linear Operator）。假如 $L(X)$ 的所有根都在扩张域 $K=\mathbb{F}_{q^s}$ 中，那么对于所有的 $\theta\in K$，都有 $L(\theta)\in K$。而且，如果 $\theta\neq\theta'$，那么 $L(\theta)\neq L(\theta')$。每一个 $L(X)$ 都可以被视为一个矩阵 $B\in \mathbb{F}_q^{s\times s}$ ，完成 向量空间 $\mathbb{F}^s_q$ 上的线性变换，使得：</p>
+$$
+(c_0, c_1, \ldots, c_{s-1}) B = (d_0, d_1, \ldots, d_{s-1})
+$$<p>对于 Subspace Polynomial 而言，每一个 $s_k(X)$ 都是一个 Linearized Polynomial，反过来，任何一个 Linearized polynomial $L(X)\in \mathbb{F}_{q^m}[X]$，它的所有根都构成某个线性子空间 $V_n\subset V_m$。详细的证明过程请参考 [LN97]。</p>
+<h3 id="线性性质">线性性质</h3>
+<p>由于 $s_k(X)$ 的每一项都是 $a_i\cdot X^{2^i}$ 的形式，因此它具有加法的同态性：</p>
+$$
+\begin{align*}
+s_k(x + y) &= s_k(x) + s_k(y), &\quad \forall x, y \in \mathbb{F}_{2^m}\\
+s_k(c\cdot x) &= c\cdot s_k(x), &\quad \forall x\in \mathbb{F}_{2^m}, \forall c\in \mathbb{F}_2
+\end{align*}
+$$<p>我们来尝试简单证明第一个等式，根据有限域理论的一个常见定理（Freshman&rsquo;s dream）：</p>
+$$
+(x + y)^{2} = x^2 + 2xy + y^2 = x^{2} + y^{2}, \quad\text{where $x, y\in \mathbb{F}_{2^m}$}
+$$<p>显然，$2xy=0$，因为在二进制域中，$2=0$。所以下面的等式也同理成立：</p>
+$$
+(x + y)^{2^i} = x^{2^i} + y^{2^i}
+$$<p>接下来验证下 $s_k(X)$ 的加法同态性：</p>
+$$
+s_k(x + y) = \sum_{i=0}^{k} a_i\cdot (x+y)^{2^i}  = \sum_{i=0}^{k} a_i\cdot \big(x^{2^i} + y^{2^i}\big) = s_k(x) + s_k(y)
+$$<h3 id="子空间多项式的递推式">子空间多项式的递推式</h3>
+<p>对于子空间 $V_k$，它可以被拆分为两个不相交的集合：</p>
+$$
+V_k = V_{k-1} \cup (\beta_{k-1}+V_{k-1})
+$$<p>这里 $V_k=\langle \beta_0, \beta_1, \ldots, \beta_{k-1} \rangle$ , $V_{k-1}=\langle \beta_0, \beta_1, \ldots, \beta_{k-2} \rangle $ ，
+那么 $V_k$, $V_{k-1}$, $\beta_{k-1}+V_{k-1}$ 所对应的子空间多项式满足下面的关系：</p>
+$$
+s_k(X) = s_{k-1}(X) \cdot s_{k-1}(X+\beta_{k-1})
+$$<p>举个简单例子，假设 $k=3$，$V_3=\langle \beta_0,\beta_1,\beta_2\rangle $ 由两部分构成，一部分是 $V_2=\langle \beta_0,\beta_1\rangle $，另一部分是 $V_2$ 中的每一个元素加上 ${\color{blue}\beta_2}$。因此，$V_3$ 的元素个数为 $2^2 + 2^2 = 8$，下面列出 $V_3$ 的全部元素：</p>
+$$
+V_3 = \{0, \beta_0, \beta_1, \beta_0+\beta_1\} \cup \{{\color{blue}\beta_2}, \beta_0+{\color{blue}\beta_2}, \beta_1+{\color{blue}\beta_2}, (\beta_0+\beta_1)+{\color{blue}\beta_2}\}
+$$<p>我们容易验证： $s_3(X) = s_{2}(X) \cdot s_{2}(X+\beta_{k-1})$ 。当然 $s_{2}(X)$ 也可以拆成关于 $s_1(X)$ 和 $s_1(X+\beta_1)$ 的乘积，我们不妨试着拆解到底：</p>
+$$
+\begin{split}
+s_3(X) & = s_2(X)\cdot s_2(X + \beta_2) \\
+& = s_2(X)^2 + \beta_2\cdot s_2(X) \\
+& = s_1(X)\cdot s_1(X + \beta_1)\cdot s_1(X)\cdot s_1(X + \beta_1) + \beta_2\cdot s_1(X)\cdot s_1(X + \beta_1) \\
+& = (s_1(X)^2 + \beta_1\cdot s_1(X))^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = s_1(X)^4 + \beta_1^2\cdot s_1(X)^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = s_1(X)^4 + (\beta_1^2+\beta_2)\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = (X\cdot(X+\beta_0))^4 + (\beta_1^2+\beta_2)\cdot (X\cdot(X + \beta_0))^2 + \beta_1\beta_2\cdot (X\cdot(X + \beta_0)) \\
+& = (X^2 + \beta_0\cdot X)^4 + (\beta_1^2+\beta_2)\cdot (X^2 + \beta_0\cdot X)^2 + \beta_1\beta_2\cdot (X^2 + \beta_0\cdot X) \\
+& = X^8  + \beta_0^4X^4 + (\beta_1^2+\beta_2)X^4 + \beta_0^2(\beta_1^2+\beta_2)X^2 + \beta_1\beta_2X^2 + \beta_0\beta_1\beta_2X \\
+\end{split}
+$$<p>最后 $s_3(X)$ 的展开式满足 $\sum_{i=0}^{k} a_i\cdot X^{2^i}$ 这样的模式，也符合了我们上面的结论。</p>
+<h2 id="子空间上的同态映射">子空间上的同态映射</h2>
+<p>因为 Subspace Polynomial 实际上是一种 Vanishing Polynomial，并且它还具有加法同态，所以我们可以利用 Subspace Polynomial 来定义子空间之间的同态映射。</p>
+<p>例如对于 $V_3=\langle \beta_0, \beta_1, \beta_2\rangle$ ，我们定义 $V_3$ 的子空间 $V_1=\{0, \beta_0\}$ 及其 Subspace Polynomial $s_1(X)$</p>
+$$
+s_1(X) = X\cdot (X+\beta_0)
+$$<p>很显然，$s_1(V_1)=\{0, 0\}$，如果将 $s_1(X)$ 作用到 $V_3$ ，我们会得到下面的结果：</p>
+$$
+\begin{split}
+s_1(0) &= 0\\
+s_1(\beta_0) & = 0 \\
+s_1(\beta_1) & = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_0+\beta_1) & = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_2) &= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_2) &= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_1+\beta_2) &= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_1+\beta_2) &= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+\end{split}
+$$<p>上面的等式显示 $s_1(V_3)$ 被映射到了一个大小只有 $V_3$ 一半的集合，记为 $V_2$。该集合也是一个子空间，$V_2= \langle \beta'_0, \beta'_1\rangle = \langle \beta_0\beta_1 + \beta_1^2, \beta_0\beta_2 + \beta_2^2 \rangle $，维度为 $2$ 。</p>
+<p>这不是巧合，根据群同构定理，同态映射 $\phi: H \to G$ 的 Image $G$ 满足 $G\cong H/Ker(\phi)$ ，其中 $G$ 是一个商群，并且 $|G| = |H|/|Ker(\phi)|$ 。在上面这个例子里，$s_1: V_3\to V_2$ 是同态映射，$V_1=Ker(s_1)$ 。</p>
+<h3 id="映射构成的链">映射构成的链</h3>
+<p>对于 $V_2 = s_1(V_3)$，我们仍然可以继续构造一个 Degree 为 $2$ 的 Subspace Polynomial，</p>
+$$
+s_1'(X) = X\cdot (X+\beta_0\beta_1 + \beta_1^2)
+$$<p>可以继续将 $V_2$ 映射到一个一维的子空间 $V_1=\langle \beta''\rangle$。我们只需要计算 $s_1(\beta'_0)$ 与 $s_1(\beta'_1)$ 即可，这些 Basis 分量构成了 $V_2$：</p>
+$$
+\begin{split}
+s_1'(\beta_0\beta_1 + \beta_1^2) &= 0 \\
+s_1'(\beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2)& = \beta_0^2\beta_1\beta_2 + \beta_0\beta_1^2\beta_2 + \beta_0^2\beta_2^2 + \beta_0\beta_1\beta_2^2 + \beta_1^2\beta_2^2 + \beta_2^4 \\
+ & = \beta''
+\end{split}
+$$<p>其中 $V_2$ 的 Basis $(\beta'_0, \beta'_1)$ 中第一个分量会被映射到 $0$，第二个分量映射到 $\beta''$ 。</p>
+<p>至此，我们得到一个映射的链：</p>
+$$
+V_3 \overset{s_1}{\longrightarrow} V_2 \overset{s'_1}{\longrightarrow} V_1
+$$<p>或者也可以写为：</p>
+$$
+\langle \beta_0, \beta_1, \beta_2 \rangle \overset{s_1}{\longrightarrow} \langle s_1(\beta_1), s_1(\beta_2) \rangle
+\overset{s'_1}{\longrightarrow} \langle s'_1(s_1(\beta_2)) \rangle
+$$<p>并且每次映射到的线性子空间的维度都减一，即集合大小减半。这个代数结构是我们后续构造 FFT 与 FRI 协议的关键。</p>
+<p>不难证明，对于任意的线性子空间，只要我们选定一个 Basis 之后，就可以依次构造 Degree 为 2 的 Subspace Polynomial 作为映射函数，然后通过映射得到一个维度减 1 的子空间，然后不断重复，直到子空间降至 1 维。当然 Basis 选择不同，以及 Subspace Polynomial 的选择不同都会导致不同的映射链。选择恰当的映射链可以显著提高计算的效率。</p>
+<h2 id="s_1-映射的复合">${s}_1$ 映射的复合</h2>
+<p>我们定义映射链的初始子空间为 $S^{(0)}$，映射后的子空间为 $S^{(1)}$，$i$ 次映射之后的子空间为 $S^{(i)}$ ：</p>
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$<p>给定 $S^{(i)}$ 的一组 Basis 后，假设为 $B^{(i)}=(\beta^{(i)}_0, \beta^{(i)}_1,\ldots, \beta^{(i)}_s)$，在 Basis 上定义 Subspace Polynomial ${s}^{(i)}_1$，并用其作为群同态映射函数，把 $S^{(i)}$ 降维到 $S^{(i+1)}$。降维后的线性子空间 $S^{(i+1)}$ 的 Basis 需要把 $S^{(i)}$ 的 Basis 同步跟着 ${s}^{(i)}_1$ 转换到一个新的 Basis。切换到新 Basis 之后，我们又可以定义一组新的 Subspace Polynomial ${s}^{(i+1)}_i(X)$。</p>
+<p>我们假设 $S^{(0)}=\langle \beta_0, \beta_1, \ldots, \beta_{k-1}\rangle $ 开始，给定一组 Basis $B_k$，经过 ${s}_1$ 的映射之后，我们得到了 $S^{(1)}$，以及其 Basis $B^{(1)}$：</p>
+$$
+B^{(1)} = \langle {\color{blue}{s}_1(\beta_1)}, {\color{blue}{s}_1(\beta_2)}, \ldots, {s}_1(\beta_{k-1}) \rangle
+$$<p>在 $S^{(1)}$ 再定义 ${s}^{(1)}_1(X)$：</p>
+$$
+{s}^{(1)}_1(X) = {X(X+{s}_1(\beta_1))} 
+$$<p>那么，$S^{(1)}$ 映射后产生的 $S^{(2)}$ 和 $S^{(0)}$ 之间的关系是什么？对于任何一个元素 $a \in S^{(0)}$，它先经过 ${s}_1$ 映射到 $S^{(1)}$，然后再经过 ${s}^{(1)}_1$ 映射到 $S^{(2)}$ 中的某个元素，因此经过两次映射后的值可以被写为两次映射函数的复合， ${s}^{(1)}_1({s}_1(X))$，我们化简下这个复合函数：</p>
+$$
+\begin{align*}
+{s}^{(1)}_1({s}_1(X)) &= {s}_1(X)({s}_1(X)+{s}_1(\beta_1))
+&  \\[3ex]
+&= {s}_1(X)({s}_1(X+\beta_1)) & (\text{additive homomorphism })\\[3ex]
+&= {s}_2(X) & (\text{recurrency } )
+\end{align*}
+$$<p>于是我们推导出了 ${s}^{(1)}_1({s}_1(X))={s}_2(X)$。这意味着经过两次 2-to-1 的映射，等价于做一次 4-to-1 的映射，并且对应的同态映射函数为 ${s}_2$:</p>
+$$
+\begin{split}
+{s}_2: &S^{(0)} \to S^{(2)} \\[3ex]
+& X \mapsto {X(X+\beta_0)(X+\beta_1)(X+\beta_1+\beta_0)} \\
+\end{split}
+$$<p>如下图所示，左右两种映射方式都会得到 $S^{(2)}$：</p>
+<!-- raw HTML omitted -->
+<p>同理，我们可以得到下面的结论，对于折叠 $j$ 次之后的线性子空间 $S^{(j)}$ 为</p>
+$$
+S^{(j)}  = \langle {s}_{j}(\beta_j), {s}_{j}(\beta_{j+1}), \ldots, {s}_{j}(\beta_{k-1}) \rangle
+$$<p>并且 ${s}_{j}$ 满足下面的复合等式：</p>
+$$
+s_{j}(X) = s^{(1)}_{j-1}(s_1(X)) =  s^{(1)}_{j-1}\circ s_1
+$$<p>这个复合映射的等式可以解读为：先做一次 $s_1$ 映射得到 $S^{(1)}$，然后再做一次 $j-1$ 维的映射 $s^{(1)}_{j-1}$，等价于直接一次 $j$ 维映射 $s_{j}$，两者都映射到同一个子空间 $S^{(j)}$。</p>
+<p>同样，我们还能证明：如果先做一次 $j-1$ 维的映射 $s_{j-1}$，再在映射后的子空间 $S^{(j-1)}$ 上做一次一维映射，同样可以得到子空间 $S^{(j)}$ ：</p>
+$$
+s_{j}(X) = s^{(1)}_{1}(s_{j-1}(X)) =  s^{(1)}_{1}\circ s_{j-1}
+$$<p>更一般地，我们可以证明得到下面的重要性质，即在任意子空间 $S^{(i)}$ 上做一次 $j$ 维映射，等价于在其上连续做 $j$ 次 1 维映射：</p>
+$$
+s^{(i)}_{j}(X) = s^{(i+j-1)}_1\circ s^{(i+j-2)}_1\circ \cdots \circ s^{(i)}_1
+$$<h2 id="多项式的-polynomial-basis">多项式的 Polynomial Basis</h2>
+<p>对于一个次数小于 $N=2^n$ 的一元多项式 $f(X) \in \mathbb{F}[X]^{<N}$，它有两种常见的表达形式，「系数式」与「点值式」。其中系数式是我们最常见的形式：</p>
+$$
+f(X) = c_0 + c_1X + c_2X^2 + \ldots + c_{N-1}X^{N-1}
+$$<p>其中 $\vec{c}=(c_0, c_1, \ldots, c_{N-1})$ 为多项式的系数向量。另外未知数的向量 $(1, X, X^2, \ldots, X^{N-1})$ 则构成了一组多项式的基（Basis），按惯例称之为 Monomial Basis，记为 $\mathcal{B}^{mono}$ :</p>
+$$
+\mathcal{B}^{mono}=(1, X, X^2, \ldots, X^{N-1})
+$$<p>这个基向量也可以表达为下面的 Tensor Product 形式：</p>
+$$
+\mathcal{B}^{mono}=(1, X) \otimes (1, X^2) \otimes \ldots \otimes (1, X^{2^{n-1}})
+$$<p>一元多项式的 「点值式」称为 Lagrange Basis 表示。即我们可以用 $N$ 个「系数」来唯一确定一个  Degree 小于 N 的多项式（请注意，这里的系数是更广泛意义上的概念，而不是局限于「系数式」表示中的系数）。</p>
+<p>通过多项式除法，我们可以得到多项式在 $\mathcal{B}^{mono}$  上的系数。例如有一个 degree 为 $7$ 的多项式 $t(X)$，那么我们可以先计算 $X^4\cdot X^2\cdot X$ 的系数，即计算多项式除法： $t(X)/(X^4\cdot X^2\cdot X)$ ，得到一个系数 $c_7$ 与一个余数多项式 $t'(X)$；然后再计算 $t'(X)/(X^4\cdot X^2)$，得到 $\mathcal{B}^{mono}_6 = X^6$ 的系数 $c_6$，以此类推，最终我们可以得到 $t(X)$ 关于 $\mathcal{B}^{mono}$ 的系数向量 $\vec{c}=(c_0, c_1, \ldots, c_7)$ ，使得：</p>
+$$
+t(X) = c_0 + c_1X + c_2X^2 + \ldots + c_7X^7
+$$<p>利用前文已讨论过的 Subspace Polynomial $s_k(X)$ ，我们可以定义一组新的 Basis。根据其定义， $s_k(X)$ 的 degree 恰好也是 $2^k$ ，类似 $(1, X, X^2, X^4)$ ，因此 $(s_0(X), s_1(X), s_2(X))$ 也可作为构造多项式 Basis 的基本原料。仿照 $\mathcal{B}^{mono}$ 的定义，我们定义 (Novel) Polynomial Basis $\mathcal{B}^{novel}$ ：</p>
+$$
+\mathcal{B}^{novel} = (1, s_0(X)) \otimes (1, s_1(X)) \otimes \ldots \otimes (1, s_{n-1}(X))
+$$<p>请注意与论文 [LCH14] 和 [DP24] 不同的是，这里我们暂时没有引入 Normalized Subspace Polynomial，以方便大家理解。回到上面的定义，其中每一个分量 $\mathcal{B}^{novel}_i$ 我们简记为 $\mathcal{X}_i(X)$ ，定义如下：</p>
+$$
+\mathcal{X}_i(X) = \prod_{j=0}^{n-1}(s_j(X))^{i_j}, \text{ where $\mathsf{bits}(i)=(i_0, i_1, \ldots, i_{n-1})$}
+$$<p>这里 $\mathsf{bits}(i)$ 表示把整数 $i$ 按照二进制展开，比如 $i=5$，那么 $\mathsf{bits}(5)=(1, 0, 1)$， $\mathsf{bits}(6) = (0, 1, 1)$。举例 $n=3, N=8$ ，按照上面的定义，我们可以计算出一组多项式基 $\big(\mathcal{X}_0(X), \mathcal{X}_1(X),\ldots, \mathcal{X}_7(X)\big)$</p>
+$$
+\begin{split}
+\mathcal{X}_0(X) &= 1 \\
+\mathcal{X}_1(X) &= s_0(X) = X\\
+\mathcal{X}_2(X) &= s_1(X) \\
+\mathcal{X}_3(X) &= s_0(X)\cdot s_1(X)\\
+\mathcal{X}_4(X) &= s_2(X)\\
+\mathcal{X}_5(X) &= s_0(X)\cdot s_2(X)\\
+\mathcal{X}_6(X) &= s_1(X)\cdot s_2(X) \\
+\mathcal{X}_7(X) &= s_0(X)\cdot s_1(X)\cdot s_2(X) \\
+\end{split}
+$$<p>容易检验，每一个 Basis 分量 $\mathcal{X}_i(X)$ 的 Degree 恰好为 $i$，因此 $\mathcal{B}^{novel}$ 就构成了一组线性无关的多项式 Basis。对于任意的 Degree 小于 8 的多项式 $f(X)\in \mathbb{F}_{2^m}[X]$ :</p>
+$$
+\begin{split}
+f(X) &= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&= a_0 + a_1s_0(X) + a_2s_1(X) + a_3s_0(X)\cdot {s}_1(X) \\
+& + a_4s_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot s_2(X) \\
+\end{split}
+$$<p>同样，我们可以利用多项式除法来将一个多项式在 $\mathcal{B}^{novel}$ 和 $\mathcal{B}^{mono}$ 之间转换。</p>
+<h2 id="additive-fft">Additive FFT</h2>
+<p>类似 Multiplicative FFT，要构造 Additive FFT，我们需要在 $\mathbb{F}_{2^m}$ 中定义一个加法子群的映射链。如前所述，Subspace Polynomials 恰好可以用来构造这个映射链。同时 Subspace Polynomials 又可以构造一组多项式 Basis。</p>
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$<p>为了演示方便，指定 $n=3$，$S^{(0)}=\langle \beta_0, \beta_1, \beta_2\rangle$ 。仿照 Multiplicative FFT 的思路，我们将用 $\mathcal{B}^{novel}$ 表示的多项式 $f(X)$ （Degree 为 7）进行奇偶项拆分，拆分成两个次数减半的多项式：</p>
+$$
+\begin{split}
+f(X) &= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&= a_0 + a_1{s}_0(X) + a_2{s}_1(X) + a_3{s}_0(X)\cdot {s}_1(X) \\
+& \qquad + a_4{s}_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot {s}_2(X) \\
+& = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+& \qquad + \big(a_1 + a_3{s}_0(X)\cdot {s}_1(X) + a_5{s}_0(X)\cdot{s}_2(X) + a_7{s}_0(X)\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+& = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+& \qquad + {\color{red}{s}_0(X)}\cdot \big(a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+\end{split}
+$$<p>然后我们引入两个辅助多项式 $f_{even}(X), f_{odd}(X)$ ，它们</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0 + a_2\cdot {s}_1(X) + a_4\cdot {s}_2(X) + a_6\cdot {s}_1(X)\cdot {s}_2(X) \\
+f_{odd}(X) &= a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X) \\
+\end{split}
+$$<p>根据我们之前推导的映射的复合性质，$s_1(X)=s^{(1)}_0\circ s_0(X)$，$s_2(X)=s^{(1)}_1\circ s_1(X)$，于是我们可以得到：</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0 + a_2 \cdot s^{(1)}_0(s_1(X)) + a_4 \cdot s^{(1)}_1(s_1(X)) + a_6 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ & = a_0 + a_2 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_4 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_6 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+f_{odd}(X) &= a_1 + a_3 \cdot s^{(1)}_0(s_1(X)) + a_5 \cdot s^{(1)}_1(s_1(X)) + a_7 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ & = a_1 + a_3 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_5 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_7 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+\end{split}
+$$<p>代入 ${\color{blue}Y=s_1(X)}$ 后，我们可以把 $f(X)$ 拆分成关于 $f_{even}({\color{blue}Y})$ 和 $f_{odd}({\color{blue}Y})$ 的等式：</p>
+$$
+\begin{split}
+f(X) & = f_{even}({\color{blue}Y}) +  {s}_0(X)\cdot f_{odd}({\color{blue}Y})
+\end{split}
+$$<p>而多项式 $f_{even}({\color{blue}Y})$ 和 $f_{odd}({\color{blue}Y})$ 正好是定义在 $\mathcal{X}^{(1)}$ 上的多项式：</p>
+$$
+\begin{array}{llll}
+\mathcal{X}^{(1)}_0(X) &= 1 \\
+\mathcal{X}^{(1)}_1(X) &= {s}^{(1)}_0(X) & = {s}_0({s}_1(X)) & = {s}_1(X) \\
+\mathcal{X}^{(1)}_2(X) &= {s}^{(1)}_1(X) & =  {s}_1({s}_1(X)) & = {s}_2(X) \\
+\mathcal{X}^{(1)}_3(X) &= {s}^{(1)}_0(X)\cdot {s}^{(1)}_1(X) & = {s}_0({s}_1(X)) \cdot {s}_1({s}_1(X)) & = {s}_1(X) \cdot {s}_2(X)\\
+\end{array}
+$$<p>重写下奇偶多项式：</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0\cdot\mathcal{X}^{(1)}_0(X) + a_2\cdot \mathcal{X}^{(1)}_1(X) + a_4\cdot \mathcal{X}^{(1)}_2(X) + a_6\cdot \mathcal{X}^{(1)}_3(X) \\
+f_{odd}(X) &= a_1\cdot\mathcal{X}^{(1)}_0(X) + a_3\cdot \mathcal{X}^{(1)}_1(X) + a_5\cdot \mathcal{X}^{(1)}_2(X) + a_7\cdot \mathcal{X}^{(1)}_3(X)
+\end{split}
+$$<p>从结构上看，这个等式与 Multiplicative FFT 中的 $f(X)=f_{even}(X^2) + X\cdot f_{odd}(X^2)$ 拆分非常相似；而 $X\mapsto X^2$ 映射也对应于 $s_1: X \mapsto X(X+\beta_0)$ 映射。 而 $S^{(0)}$ 在 $s_1$ 的映射下，产生出一个尺寸只有原来一半的子空间 $S^{(1)}$：</p>
+$$
+S^{(1)} = \langle s_1(\beta_1), s_1(\beta_2) \rangle
+$$<p>于是我们可以依赖递归调用，求得 $\{f_{even}(X) \mid X\in S^{(1)}\}$ 与 $\{ f_{odd}(X) \mid X\in S^{(1)}\}$ ，然后再利用 $f(X)=f_{even}(X) + s_0(X)\cdot f_{odd}(X)$ 这个等式得到 $f(X)$ 在 $S^{(0)}$ 上的值。</p>
+<p>下面我们假设递归调用成功返回，那么我们就得到了 $f_{even}(X)$ 和 $f_{odd}(X)$ 在 $S^{(1)}$ 上的全部求值，记为 $\vec{u}$ 与 $\vec{v}$，定义如下：</p>
+$$
+\begin{split}
+(u_0, u_1, u_2, u_3) &= \big(f_{even}(0), f_{even}(1), f_{even}(s_1(\beta_1)), f_{even}(s_1(\beta_1) + 1)\big)\\[2ex]
+(v_0, v_1, v_2, v_3) &= \big(f_{odd}(0), f_{odd}(1), f_{odd}(s_1(\beta_1)), f_{odd}(s_1(\beta_1) + 1)\big)\\
+\end{split}
+$$<p>然后我们就可以计算 $f(X)$ 在 $S^{(0)}$ 上的全部求值，即 $f(X)\mid_{S^{(0)}}$ ：</p>
+$$
+\begin{array}{rlll}
+f(0) &= f_{even}({s}_1(0)) + 0\cdot f_{odd}({s}_1(0)) \\
+    & = u_0\\[1ex]
+f(1) &= f_{even}({s}_1(1)) + 1\cdot v_1 \\
+    & = u_0 + v_1 \\[1ex]
+f(\beta_1) &= f_{even}({s}_1(\beta_1)) + \beta_1\cdot f_{odd}({s}_1(\beta_1)) \\ 
+    & = u_1 + \beta_1 \cdot v_1\\[1ex]
+f(\beta_1+1) &= f_{even}({s}_1(\beta_1)+{s}_1(1)) + (\beta_1 +1)\cdot f_{odd}({s}_1(\beta_1)+{s}_1(1)) \\
+    & = u_1 + \beta_1\cdot v_1 + v_1\\[1ex]
+f(\beta_2) &= f_{even}({s}_1(\beta_2)) + \beta_2 \cdot f_{odd}({s}_1(\beta_2)) \\ 
+    & = u_2 + \beta_2\cdot v_2 \\[1ex]
+f(\beta_2+1) &= f_{even}({s}_1(\beta_2)+{s}_1(1)) + (\beta_2 +1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(1)) \\
+    & = u_2 + \beta_2\cdot v_2 + v_2\\[1ex]
+f(\beta_2+\beta_1) &= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)) + (\beta_2 + \beta_1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)) \\
+    & = u_3 + \beta_2\cdot v_3 + \beta_1\cdot v_3 \\[1ex]
+f(\beta_2+\beta_1+1) &= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) + (\beta_2 + \beta_1 + 1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) \\
+    & = u_3 + \beta_2\cdot v_3  + \beta_1\cdot v_3 + v_3\\[1ex]
+\end{array}
+$$<p>我们把上面这个 Additive FFT 递归算法用 Python 代码实现如下：</p>
+<div class="highlight-container">
+
+  <button class="copy-code-btn outline">Copy</button>
+
+  
+  <div class="highlight"><div style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;">
+<table style="border-spacing:0;padding:0;margin:0;border:0;"><tr><td style="vertical-align:top;padding:0;margin:0;border:0;">
+<pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-1"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-1"> 1</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-2"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-2"> 2</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-3"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-3"> 3</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-4"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-4"> 4</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-5"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-5"> 5</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-6"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-6"> 6</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-7"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-7"> 7</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-8"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-8"> 8</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-9"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-9"> 9</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-10"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-10">10</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-11"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-11">11</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-12"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-12">12</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-13"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-13">13</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-14"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-14">14</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-15"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-15">15</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-16"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-16">16</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-17"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-17">17</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-18"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-18">18</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-19"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-19">19</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-20"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-20">20</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-21"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-21">21</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-22"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-22">22</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-23"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-23">23</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-24"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-24">24</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-25"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-25">25</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-26"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-26">26</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-27"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-27">27</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-28"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-28">28</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-29"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-29">29</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-30"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-30">30</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-31"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-31">31</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-32"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-32">32</a>
+</span></code></pre></td>
+<td style="vertical-align:top;padding:0;margin:0;border:0;;width:100%">
+<pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-python" data-lang="python"><span style="display:flex;"><span><span style="color:#66d9ef">def</span> <span style="color:#a6e22e">afft</span>(f, k, B):
+</span></span><span style="display:flex;"><span>    <span style="color:#e6db74">&#34;&#34;&#34;
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Perform the Additive Fast Fourier Transform (AFFT) on a given polynomial.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Args:
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        f (list): Coefficients of the polynomial to be transformed.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        k (int): The depth of recursion, where 2^k is the size of the domain.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        B (list): The basis of the domain over which the polynomial is evaluated.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Returns:
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        list: The evaluations of the polynomial over the domain.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    &#34;&#34;&#34;</span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">if</span> k <span style="color:#f92672">==</span> <span style="color:#ae81ff">0</span>:
+</span></span><span style="display:flex;"><span>        <span style="color:#66d9ef">return</span> [f[<span style="color:#ae81ff">0</span>]]
+</span></span><span style="display:flex;"><span>    half <span style="color:#f92672">=</span> <span style="color:#ae81ff">2</span><span style="color:#f92672">**</span>(k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>)
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    f_even <span style="color:#f92672">=</span> f[::<span style="color:#ae81ff">2</span>]
+</span></span><span style="display:flex;"><span>    f_odd <span style="color:#f92672">=</span> f[<span style="color:#ae81ff">1</span>::<span style="color:#ae81ff">2</span>]
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    V <span style="color:#f92672">=</span> span(B)                                <span style="color:#75715e"># the subspace spanned by B</span>
+</span></span><span style="display:flex;"><span>    q <span style="color:#f92672">=</span> <span style="color:#66d9ef">lambda</span> x: x<span style="color:#f92672">*</span>(x<span style="color:#f92672">+</span>B[<span style="color:#ae81ff">0</span>])<span style="color:#f92672">/</span>(B[<span style="color:#ae81ff">1</span>]<span style="color:#f92672">*</span>(B[<span style="color:#ae81ff">1</span>] <span style="color:#f92672">+</span> <span style="color:#ae81ff">1</span>)) <span style="color:#75715e"># s^(i)_1 map</span>
+</span></span><span style="display:flex;"><span>    B_half <span style="color:#f92672">=</span> [q(b) <span style="color:#66d9ef">for</span> b <span style="color:#f92672">in</span> B[<span style="color:#ae81ff">1</span>:]]             <span style="color:#75715e"># the basis of the mapped subspace</span>
+</span></span><span style="display:flex;"><span>    
+</span></span><span style="display:flex;"><span>    e_even <span style="color:#f92672">=</span> afft(f_even, k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>, B_half)  <span style="color:#75715e"># compute the evaluations of f_even</span>
+</span></span><span style="display:flex;"><span>    e_odd  <span style="color:#f92672">=</span> afft(f_odd, k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>, B_half)   <span style="color:#75715e"># compute the evaluations of f_odd</span>
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    e <span style="color:#f92672">=</span> [<span style="color:#ae81ff">0</span>] <span style="color:#f92672">*</span> (<span style="color:#ae81ff">2</span> <span style="color:#f92672">*</span> half)                <span style="color:#75715e"># initialize the list of evaluations</span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">for</span> i <span style="color:#f92672">in</span> range(<span style="color:#ae81ff">0</span>, half):
+</span></span><span style="display:flex;"><span>        e[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i]   <span style="color:#f92672">=</span> e_even[i] <span style="color:#f92672">+</span> V[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i] <span style="color:#f92672">*</span> e_odd[i]
+</span></span><span style="display:flex;"><span>        e[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i<span style="color:#f92672">+</span><span style="color:#ae81ff">1</span>] <span style="color:#f92672">=</span> e_even[i] <span style="color:#f92672">+</span> V[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i<span style="color:#f92672">+</span><span style="color:#ae81ff">1</span>] <span style="color:#f92672">*</span> e_odd[i]
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">return</span> e</span></span></code></pre></td></tr></table>
+</div>
+</div>
+</div>
+<p>函数 <code>afft(f, k, B)</code> 总共有三个参数，分别是多项式 $f(X)$ 在 $\mathcal{B}^{novel}$ 上的系数向量，递归深度 $k$，以及当前的子空间 $S^{(0)}$ 的 Basis。</p>
+<h2 id="总结">总结</h2>
+<p>Additive FFT 算法需要一个通过 Subspace Polynomial 构造的子空间的映射链。本文介绍的原理并不局限在递归构造的二进制域，而是一种更广泛的代数结构。
+在 [LCH14] 论文中采用的是另外一种递归 Additive FFT 算法，我们将在下一篇文中介绍两者的差异，以及 [DP24] 论文中的 Additive FFT 迭代算法（Algorithm 2）。</p>
+<h2 id="references">References</h2>
+<ul>
+<li>[DP24] Benjamin E. Diamond and Jim Posen. &ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers&rdquo;. 2024. <a href="https://eprint.iacr.org/2024/504">https://eprint.iacr.org/2024/504</a></li>
+<li>[LCH14] Lin, Sian-Jheng, Wei-Ho Chung, and Yunghsiang S. Han. &ldquo;Novel polynomial basis and its application to Reed-Solomon erasure codes.&rdquo; 2014 ieee 55th annual symposium on foundations of computer science. IEEE, 2014. <a href="https://arxiv.org/abs/1404.3458">https://arxiv.org/abs/1404.3458</a></li>
+<li>[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.</li>
+</ul>
+
+      </div>
+
+      
+      
+<div class="post-copyright">
+  <p class="copyright-item">
+    <span class="item-title">文章作者</span>
+    <span class="item-content">Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io></span>
+  </p>
+  <p class="copyright-item">
+    <span class="item-title">上次更新</span>
+    <span class="item-content">
+      2024-11-01
+      
+        <a href="https://github.com/sec-bit/blog/commit/0453263d11ca7e177a7154e403f6d7fe381806fc" title="add binius 01 &amp; 02">
+          (0453263)
+        </a>
+        
+          <br>add binius 01 &amp; 02
+        
+      
+    </span>
+  </p>
+  
+  <p class="copyright-item">
+    <span class="item-title">许可协议</span>
+    <span class="item-content">If you need to reprint, please indicate the author and source of the article.</span>
+  </p>
+</div>
+
+
+
+      
+      
+
+
+      <footer class="post-footer">
+        <div class="post-tags">
+          <a href="https://sec-bit.github.io/blog/tags/cryptography/">cryptography</a>
+          <a href="https://sec-bit.github.io/blog/tags/finite-fields/">finite fields</a>
+          <a href="https://sec-bit.github.io/blog/tags/snark/">SNARK</a>
+          <a href="https://sec-bit.github.io/blog/tags/binius/">Binius</a>
+          
+        </div>
+
+
+        
+        <nav class="post-nav">
+          
+          
+          <a class="next" href="/blog/2024/10/31/binius-01/">
+            <span class="next-text nav-default">Notes on FRI-Binius (Part I): Binary Towers</span>
+            <span class="prev-text nav-mobile">下一篇</span>
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-right hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m9 18 6-6-6-6"/></svg>
+            </i>
+          </a>
+        </nav>
+      </footer>
+    </article>
+
+    
+    
+    
+    
+
+
+    
+    
+
+  
+
+  
+  
+    <div class="comment">
+  <script
+    src="https://giscus.app/client.js"
+    data-repo="sec-bit/comments-for-secbit-blog"
+    data-repo-id="MDEwOlJlcG9zaXRvcnkyMTQ2MDkzNjM="
+    data-category="Comments"
+    data-category-id="DIC_kwDODMqt084CY2v-"
+    data-mapping="pathname"
+    data-strict="0"
+    data-reactions-enabled="1"
+    data-emit-metadata="0"
+    data-input-position="top"
+    data-theme="light"
+    data-lang="en"
+    
+      data-loading="lazy"
+    
+    crossorigin="anonymous"
+    async
+  ></script>
+</div>
+
+  
+
+  
+  
+
+  
+
+  
+
+    
+
+  
+
+  
+
+
+  </div>
+
+  
+  <nav class="toc" id="toc">
+    <div class="toc-title">文章目录</div>
+    <div class="toc-content custom-scrollbar">
+      <nav id="TableOfContents">
+  <ul>
+    <li><a href="#线性子空间多项式-subspace-polynomial">线性子空间多项式 Subspace Polynomial</a>
+      <ul>
+        <li><a href="#linearized-polynomial">Linearized Polynomial</a></li>
+        <li><a href="#线性性质">线性性质</a></li>
+        <li><a href="#子空间多项式的递推式">子空间多项式的递推式</a></li>
+      </ul>
+    </li>
+    <li><a href="#子空间上的同态映射">子空间上的同态映射</a>
+      <ul>
+        <li><a href="#映射构成的链">映射构成的链</a></li>
+      </ul>
+    </li>
+    <li><a href="#s_1-映射的复合"> 映射的复合</a></li>
+    <li><a href="#多项式的-polynomial-basis">多项式的 Polynomial Basis</a></li>
+    <li><a href="#additive-fft">Additive FFT</a></li>
+    <li><a href="#总结">总结</a></li>
+    <li><a href="#references">References</a></li>
+  </ul>
+</nav>
+    </div>
+  </nav>
+
+
+</div>
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/categories/bitcoin/index.html b/categories/bitcoin/index.html
index 054d3d5..ab0b0ee 100644
--- a/categories/bitcoin/index.html
+++ b/categories/bitcoin/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/blockchain/index.html b/categories/blockchain/index.html
index b7deb94..c0d76ab 100644
--- a/categories/blockchain/index.html
+++ b/categories/blockchain/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/ethereum/index.html b/categories/ethereum/index.html
index aea7f92..3d04f5c 100644
--- a/categories/ethereum/index.html
+++ b/categories/ethereum/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/formal-verification/index.html b/categories/formal-verification/index.html
index b6a8c03..e56ecfd 100644
--- a/categories/formal-verification/index.html
+++ b/categories/formal-verification/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/game-theory/index.html b/categories/game-theory/index.html
index 3f62dc6..eb1310e 100644
--- a/categories/game-theory/index.html
+++ b/categories/game-theory/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/index.html b/categories/index.html
index 8122b92..07ebee8 100644
--- a/categories/index.html
+++ b/categories/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Categories">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Categories">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -773,6 +773,47 @@ <h2 class="archive-year">
     
     
     
+      <section id="archive" class="archive">
+        <div class="archive-title">
+        </div>
+          <div class="collection-title">
+            <h2 class="archive-year">
+              <a href="https://sec-bit.github.io/blog/categories/mle-pcs/">
+                分类： mle-pcs
+              </a>
+            </h2>
+          </div>
+
+          
+            <div class="archive-post">
+              <time datetime="2024-11-01" class="archive-post-time">
+                2024-11-01
+              </time>
+              <span class="archive-post-title">
+                <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+                  Notes on Binius (Part II): Subspace Polynomial
+                </a>
+              </span>
+            </div>
+          
+            <div class="archive-post">
+              <time datetime="2024-10-31" class="archive-post-time">
+                2024-10-31
+              </time>
+              <span class="archive-post-title">
+                <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+                  Notes on FRI-Binius (Part I): Binary Towers
+                </a>
+              </span>
+            </div>
+          
+          
+      </section>
+    
+    
+    
+    
+    
       <section id="archive" class="archive">
         <div class="archive-title">
         </div>
diff --git a/categories/index.xml b/categories/index.xml
index e3a1e8c..fdfa02b 100644
--- a/categories/index.xml
+++ b/categories/index.xml
@@ -6,8 +6,15 @@
     <description>Recent content in Categories on SECBIT Blog</description>
     <generator>Hugo</generator>
     <language>zh-cn</language>
-    <lastBuildDate>Fri, 01 Nov 2024 16:58:03 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
     <atom:link href="https://sec-bit.github.io/blog/categories/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Mle-Pcs</title>
+      <link>https://sec-bit.github.io/blog/categories/mle-pcs/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/categories/mle-pcs/</guid>
+      <description></description>
+    </item>
     <item>
       <title>Zero Knowledge Proof</title>
       <link>https://sec-bit.github.io/blog/categories/zero-knowledge-proof/</link>
diff --git a/categories/libra/index.html b/categories/libra/index.html
index 1810b23..4fc6f3e 100644
--- a/categories/libra/index.html
+++ b/categories/libra/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/mle-pcs/index.html b/categories/mle-pcs/index.html
new file mode 100644
index 0000000..c74277f
--- /dev/null
+++ b/categories/mle-pcs/index.html
@@ -0,0 +1,608 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/categories/mle-pcs/" />
+
+<link href="/blog/categories/mle-pcs/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/categories/mle-pcs/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Mle-Pcs">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Mle-Pcs">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Mle-Pcs">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link archive-categories__link--current">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title category">
+        <h2 class="archive-name">分类： Mle-Pcs</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/categories/mle-pcs/index.xml b/categories/mle-pcs/index.xml
new file mode 100644
index 0000000..95ae7f1
--- /dev/null
+++ b/categories/mle-pcs/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Mle-Pcs on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/categories/mle-pcs/</link>
+    <description>Recent content in Mle-Pcs on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/categories/mle-pcs/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/categories/mle-pcs/page/1/index.html b/categories/mle-pcs/page/1/index.html
new file mode 100644
index 0000000..65651c7
--- /dev/null
+++ b/categories/mle-pcs/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/categories/mle-pcs/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/categories/mle-pcs/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/categories/mle-pcs/">
+  </head>
+</html>
diff --git a/categories/privacy/index.html b/categories/privacy/index.html
index 202f275..0b1c4d3 100644
--- a/categories/privacy/index.html
+++ b/categories/privacy/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link archive-categories__link--current">privacy</a>
     
   
diff --git a/categories/programming-language/index.html b/categories/programming-language/index.html
index f78d319..7951669 100644
--- a/categories/programming-language/index.html
+++ b/categories/programming-language/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/quantum-computing/index.html b/categories/quantum-computing/index.html
index 151c0b3..c181f40 100644
--- a/categories/quantum-computing/index.html
+++ b/categories/quantum-computing/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/smart-contract/index.html b/categories/smart-contract/index.html
index 64d7950..dee1fda 100644
--- a/categories/smart-contract/index.html
+++ b/categories/smart-contract/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/vulnerability/index.html b/categories/vulnerability/index.html
index 9f3c3ae..0c7a7b2 100644
--- a/categories/vulnerability/index.html
+++ b/categories/vulnerability/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/zero-knowledge-proof/index.html b/categories/zero-knowledge-proof/index.html
index 03533d8..4d5d481 100644
--- a/categories/zero-knowledge-proof/index.html
+++ b/categories/zero-knowledge-proof/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/zero-knowledge-proof/page/2/index.html b/categories/zero-knowledge-proof/page/2/index.html
index d8da315..062276a 100644
--- a/categories/zero-knowledge-proof/page/2/index.html
+++ b/categories/zero-knowledge-proof/page/2/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/zkpod/index.html b/categories/zkpod/index.html
index b51a16a..aaca3d8 100644
--- a/categories/zkpod/index.html
+++ b/categories/zkpod/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/categories/zksnarks/index.html b/categories/zksnarks/index.html
index 31f30e2..117f155 100644
--- a/categories/zksnarks/index.html
+++ b/categories/zksnarks/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/index.html b/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/index.html
index dfa4e73..d7934e1 100644
--- a/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/index.html
+++ b/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/index.html
@@ -769,6 +769,15 @@ <h2 id="credit">Credit</h2>
         
         <nav class="post-nav">
           
+          <a class="prev" href="/blog/en/2024/10/31/binius-01/">
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-left hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m15 18-6-6 6-6"/></svg>
+            </i>
+            <span class="prev-text nav-default">Notes on FRI-Binius (Part I): Binary Towers</span>
+            <span class="prev-text nav-mobile">Prev</span>
+          </a>
           
           <a class="next" href="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/">
             <span class="next-text nav-default">The &#39;Input Aliasing&#39; bug caused by a contract library of zkSNARKs</span>
diff --git a/en/2024/10/31/binius-01/index.html b/en/2024/10/31/binius-01/index.html
new file mode 100644
index 0000000..77db3a0
--- /dev/null
+++ b/en/2024/10/31/binius-01/index.html
@@ -0,0 +1,1002 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  Notes on FRI-Binius (Part I): Binary Towers - SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/2024/10/31/binius-01/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="Yu Guo  and Jade Xie " />
+<meta name="description" content="Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms." />
+
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/2024/10/31/binius-01/" />
+
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/2024/10/31/binius-01/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta property="og:description" content="Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="article">
+    <meta property="article:section" content="post">
+    <meta property="article:published_time" content="2024-10-31T11:00:00+08:00">
+    <meta property="article:modified_time" content="2024-11-01T20:31:26+08:00">
+    <meta property="article:tag" content="Cryptography">
+    <meta property="article:tag" content="Finite Fields">
+    <meta property="article:tag" content="SNARK">
+    <meta property="article:tag" content="Binius">
+
+  <meta itemprop="name" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta itemprop="description" content="Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.">
+  <meta itemprop="datePublished" content="2024-10-31T11:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta itemprop="wordCount" content="4211">
+  <meta itemprop="keywords" content="Cryptography,Finite Fields,SNARK,Binius">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Notes on FRI-Binius (Part I): Binary Towers">
+  <meta name="twitter:description" content="Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    <div class="content-wrapper">
+  <aside class="sidebar">
+  </aside>
+  <div id="content" class="content">
+    <article class="post">
+      
+      <header class="post-header">
+        <h1 class="post-title">Notes on FRI-Binius (Part I): Binary Towers</h1>
+        
+
+
+<div class="post-title-i18n">
+  
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+  
+  <div>
+    <a href="https://sec-bit.github.io/blog/2024/10/31/binius-01/">zh-cn</a>
+  </div>
+  
+</div>
+
+
+        <div class="post-meta-list">
+  <div class="post-meta-item post-meta-author">
+    
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+    Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
+    
+  </div>
+
+  <div class="post-meta-item post-meta-time">
+    
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+    <time datetime=" 2024-10-31">
+      2024-10-31
+    </time>
+
+
+    
+    <span class="post-meta-item post-meta-lastmod">
+      (LastMod:
+      2024-11-01)
+    </span>
+    
+
+  </div>
+
+
+  <div class="post-meta__right">
+    
+
+    <div class="post-meta-item post-meta-category">
+      <a href="https://sec-bit.github.io/blog/en/categories/mle-pcs/"> mle-pcs </a>
+      
+    </div>
+
+
+    
+    
+
+
+    
+    
+  </div>
+</div>
+
+      </header>
+
+      
+      <div class="post-content">
+        <ul>
+<li>Yu Guo <a href="mailto:yu.guo@secbit.io">yu.guo@secbit.io</a></li>
+<li>Jade Xie <a href="mailto:jade@secbit.io">jade@secbit.io</a></li>
+</ul>
+<p>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</p>
+<h2 id="extension-fields">Extension Fields</h2>
+<p>Let&rsquo;s try to describe the concept of Extension Fields in simple language to lay the groundwork for our study of Binary Towers. For in-depth learning, please refer to the strict definitions and proofs in finite field textbooks.</p>
+<p>The prime field $\mathbb{F}_{p}$ is a finite field with $p$ elements, where $p$ must be a prime number. It is isomorphic to $\mathbb{Z}/p\mathbb{Z}$, which means we can use the set of integers $\{0, 1, \ldots, p-1\}$ to represent all elements of $\mathbb{F}_p$.</p>
+<p>We can form a Tuple with any two elements from the prime field, i.e., $(a, b)\in\mathbb{F}_{p}^2$, and this Tuple also forms a field with $p^2$ elements. We can verify this: $a+b\in\mathbb{F}_p$, so we define the addition of Tuples as follows:</p>
+$$
+(a_1, b_1) + (a_2, b_2) = (a_1 + a_2, b_1 + b_2)
+$$<p>We can verify that $\mathbb{F}_{p}^2$ forms a vector space, thus it is an additive group with the zero element being $(0, 0)$. The next question is how to define multiplication. We want multiplication to be closed, i.e.:</p>
+$$
+(a_1, b_1)\cdot (a_2, b_2) = (c, d)
+$$<p>The simplest approach would be to use Entry-wise Multiplication to define multiplication, i.e., $(a_1, b_1)\cdot (a_2, b_2) = (a_1a_2, b_1b_2)$, with the multiplicative identity being $(1, 1)$. This seems to make multiplication closed. However, this doesn&rsquo;t ensure that every element has an inverse. For example, $(1, 0)$ multiplied by any Tuple can never result in $(1, 1)$, because the second part of the Tuple will always be $0$. Therefore, this kind of multiplication cannot form a &ldquo;field&rdquo;.</p>
+<p>In finite field theory, the multiplication operation of Tuples is implemented through polynomial modular multiplication. That is, we view $(a_1, b_1)$ as the coefficients of a degree 1 polynomial, and similarly $(a_2, b_2)$ can be viewed as the coefficients of another degree 1 polynomial. By multiplying these two, we get a degree 2 polynomial:</p>
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = a_1a_2 + (a_1b_2 + a_2b_1)X + b_1b_2X^2
+$$<p>Then we take the modulus of the resulting polynomial with an irreducible degree 2 polynomial $f(X)$, obtaining a remainder polynomial. The coefficients of this remainder polynomial are $(c, d)$. So we define the new Tuple multiplication as follows:</p>
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = c + d\cdot X \mod f(X)
+$$<p>And we define $(1, 0)$ as the multiplicative identity. Here we emphasize that $f(X)$ must be an irreducible polynomial. What would happen if $f(X)$ were a reducible polynomial? For instance, if $f(X)=(u_1+u_2X)(v_1+v_2X)$, then the product of two non-zero elements $(u_1, u_2)$ and $(v_1, v_2)$ would equal $(0, 0)$, breaking out of the multiplicative group. Strictly speaking, the appearance of Zero Divisors disrupts the structure of the multiplicative group, thus failing to form a &ldquo;field&rdquo;.</p>
+<p>The next question is whether there exists an irreducible degree 2 polynomial $f(X)$. If $f(X)$ doesn&rsquo;t exist, then constructing a field $\mathbb{F}_{p^2}$ would be out of the question. For the prime field $\mathbb{F}_p$, take any $w\in\mathbb{F}_p$ that is not a square of any element, which in number theory belongs to the non-quadratic residue class, i.e., $w\in QNR(p)$. If $w$ exists, then $f(X)=X^2-w$ is an irreducible polynomial. Furthermore, how is the existence of $w$ guaranteed? If $p$ is an odd number, then $w$ must exist. If $p=2$, although $w$ doesn&rsquo;t exist, we can specify $f(X)=X^2+X+1\in\mathbb{F}_2[X]$ as an irreducible polynomial.</p>
+<p>We now denote the field formed by the set of Tuples $\mathbb{F}_{p}^2$, along with the defined addition and multiplication operations, as $\mathbb{F}_{p^2}$, which has $p^2$ elements. According to finite field theory, we can expand the binary Tuple to an $n$-ary Tuple, thus constructing larger finite fields $\mathbb{F}_{p^n}$.</p>
+<p>For an irreducible polynomial $f(X) = c_0 + c_1X + X^2$ over $\mathbb{F}_p$, it can always be factored in $\mathbb{F}_{p^2}$. $f(X) = (X-\alpha)(X-\alpha')$, where $\alpha$ and $\alpha'$ are conjugates of each other, and they both belong to $\mathbb{F}_{p^2}$ but not to $\mathbb{F}_p$. According to the definition of extension fields, $\mathbb{F}_p(\alpha)$ is a degree 2 algebraic extension, which is isomorphic to the finite field we constructed earlier through modular multiplication with an irreducible polynomial. Therefore, we can also use $a_1 + a_2\cdot\alpha$ to represent any element in $\mathbb{F}_{p^2}$. Or further, we can view $(1, \alpha)$ as a Basis of the $\mathbb{F}_{p^2}$ vector space, any $a\in \mathbb{F}_{p^2}$ can be represented as a linear combination of the Basis:</p>
+$$
+a = a_0 \cdot 1 + a_1 \cdot \alpha, \quad a_0, a_1\in\mathbb{F}_p
+$$<p>This way, we can use the symbol $a_0 + a_1\cdot \alpha$ to represent elements in $\mathbb{F}_{p^2}$, rather than the polynomial representation $a_0 + a_1\cdot X$. The &ldquo;polynomial representation&rdquo; of elements doesn&rsquo;t specify which irreducible polynomial we used to construct the extension field, while using $\alpha$, the root of the irreducible polynomial, as a way to construct the extension field eliminates any ambiguity.</p>
+<p>Generalizing this concept to $\mathbb{F}_{p^n}$, for any element $a\in\mathbb{F}_{p^n}$, it can be represented as:</p>
+$$
+a = a_0 + a_1\cdot\alpha + a_2\cdot\alpha^2 + \cdots + a_{n-1}\cdot\alpha^{n-1}
+$$<p>Here $\alpha$ is the root of the degree $n$ irreducible polynomial $f(X)$. Therefore, $(1, \alpha, \alpha^2, \cdots, \alpha^{n-1})$ can be viewed as a Basis of $\mathbb{F}_{p^n}$, and this Basis is called the Polynomial Basis of the finite field. Note that $\mathbb{F}_{p^n}$ as an $n$-dimensional vector space has many different Bases. We will see later that the choice of Basis is a very important step, and an appropriate Basis can greatly optimize or simplify some representations or operations.</p>
+<blockquote>
+<p>TODO: Fp* multiplicative cyclic group</p>
+</blockquote>
+<h2 id="binary-field">Binary Field</h2>
+<p>For $\mathbb{F}_{2^n}$, we call it a binary field because its elements can all be expressed as vectors of length $n$ composed of $0$ and $1$. $\mathbb{F}_{2^n}$ can be constructed through two types of methods: one is through an irreducible polynomial of degree $n$; the other is by repeatedly using quadratic extensions, known as an Extension Tower. There are many paths for field extension, and for $2^n$, it has multiple factors of 2, so there exist multiple construction methods between these two methods. For example, for $\mathbb{F}_{2^8}$, we can first construct $\mathbb{F}_{2^4}$, then obtain $\mathbb{F}_{2^8}$ through a quadratic extension, or we can first construct $\mathbb{F}_{2^2}$, then construct $\mathbb{F}_{2^8}$ through a quartic irreducible polynomial extension.</p>
+<p>Let&rsquo;s warm up by constructing $\mathbb{F}_{2^2}$ using the quadratic extension method. We discussed earlier that $f(X)=X^2+X+1$ is an irreducible polynomial in $\mathbb{F}_2[X]$. Suppose $\eta$ is a root of $f(X)$, then $\mathbb{F}_{2^2}$ can be represented as $a_0 + b_0\cdot\eta$. Considering that $\mathbb{F}_{2^2}$ only has four elements, they can be listed below:</p>
+$$
+\mathbb{F}_{2^2} = \{0, 1, \eta, \eta+1\}
+$$<p>And $\eta$ as a generator can produce the multiplicative group $\mathbb{F}_{2^2}^*=\langle \eta \rangle$, which has an Order of 3:</p>
+$$
+\begin{split}
+\eta^0 &= 1 \\
+\eta^1 &= \eta \\
+\eta^2 &= \eta+1 \\
+\end{split}
+$$<p>We&rsquo;ll demonstrate two construction methods for $\mathbb{F}_{2^4}$. The first is to directly use a degree 4 irreducible polynomial over $\mathbb{F}_2$. In fact, there are 3 different degree 4 irreducible polynomials, so there are 3 different construction methods in total.</p>
+$$
+\begin{split}
+f_1(X) &= X^4 + X + 1 \\
+f_2(X) &= X^4 + X^3 + 1 \\
+f_3(X) &= X^4 + X^3 + X^2 + X + 1 \\
+\end{split}
+$$<p>Since we only need to choose one irreducible polynomial, let&rsquo;s choose $f_1(X)$ to define $\mathbb{F}_{2^4}$:</p>
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_2[X]/\langle f_1(X)\rangle 
+$$<p>Let&rsquo;s denote the root of $f_1(X)$ in $\mathbb{F}_{2^4}$ as $\theta$, then any element $a\in\mathbb{F}_{2^4}$ can be uniquely represented as:</p>
+$$
+a = a_0 + a_1\cdot\theta + a_2\cdot\theta^2 + \cdots + a_{n-1}\cdot\theta^{n-1}
+$$<p>To add here, $f_1(X)$ is also a Primitive polynomial, and its root $\theta$ is also a Primitive Element of $\mathbb{F}_{2^4}$. Note that not all irreducible polynomials are Primitive polynomials, for example, $f_3(X)$ listed above is not a Primitive polynomial.</p>
+<p>Now we can list all the elements in $\mathbb{F}_{2^4}$, each element corresponding to a 4-bit binary vector:</p>
+$$
+\begin{array}{ccccccc}
+0000 & 0001 & 0010 & 0011 & 0100 & 0101 & 0110 & 0111 \\
+0 & 1 & \theta & \theta+1 & \theta^2 & \theta^2+1 & \theta^2+\theta & \theta^2+\theta+1 \\
+\hline
+1000 & 1001 & 1010 & 1011 & 1100 & 1101 & 1110 & 1111 \\
+\theta^3 & \theta^3+1 & \theta^3+\theta & \theta^3+\theta+1 & \theta^3+\theta^2 & \theta^3+\theta^2+1 & \theta^3+\theta^2+\theta & \theta^3+\theta^2+\theta+1 \\
+\end{array}
+$$<p>For the addition of two elements in $\mathbb{F}_{2^4}$, we only need to add their binary representations bit by bit, for example:</p>
+$$
+(0101) + (1111) = (1010)
+$$<p>This operation is actually the XOR bitwise exclusive OR operation. As for multiplication, for example $a\cdot\theta$, it corresponds to a shift operation on the binary:</p>
+$$
+\begin{split}
+(0101) << 1 &= (1010)\\
+(\theta^2 + 1)\cdot\theta &= \theta^3 + \theta \\
+\end{split}
+$$<p>If we continue to multiply by $\theta$, a shift overflow situation will occur:</p>
+$$
+\begin{split}
+(\theta^3 + \theta)\cdot\theta &= {\color{blue}\theta^4} + \theta^2 = \theta^2 + \theta + 1 \\
+(1010) << 1  &= (0100) + (0011) = (0111)\\
+\end{split}
+$$<p>For the overflow bit, it needs to be added with $0011$, which is determined by the definition of the irreducible polynomial $f_1(X)$, $\theta^4=\theta+1$. So once the high bit overflows during shifting, an XOR operation with $0011$ needs to be performed. From this, we can see that the multiplication rules of $\mathbb{F}_{2^4}$ actually depend on the choice of the irreducible polynomial. Therefore, how to choose an appropriate irreducible polynomial is also a key step in optimizing binary field multiplication.</p>
+<h2 id="field-embedding">Field Embedding</h2>
+<p>If we want to construct a SNARK proof system based on binary fields, we would use smaller bit counts to represent smaller numbers, but in any case, in the challenge rounds of the protocol, the Verifier needs to give a random number in a relatively large extension field, in hopes of achieving sufficient cryptographic security strength. This requires us to encode witness information with polynomials in a small field, but perform evaluation operations on these polynomials in a larger field. Therefore, we need to find a way to &ldquo;embed&rdquo; the small field $K$ into the large field $L$.</p>
+<p>The so-called embedding refers to mapping elements from one field $K$ to another field $L$, denoted as $\phi: K\to L$. This mapping is Injective and this homomorphism mapping preserves the structure of addition and multiplication operations:</p>
+$$
+\begin{split}
+\phi(a+b) &= \phi(a) + \phi(b) \\
+\phi(a\cdot b) &= \phi(a)\cdot\phi(b)
+\end{split}
+$$<p>That is, if $a\in K$, then $a$ also has a unique representation in $L$. To maintain the structure of multiplication operations, we actually only need to find a Primitive Element $\alpha$ in K corresponding to an element $\beta$ in $L$, then this homomorphism mapping is uniquely determined, because any element in $K$ can be represented as a power of $\alpha$. However, usually this embedding homomorphism mapping is not easy to find. Let&rsquo;s take $\mathbb{F}_{2^2}\subset\mathbb{F}_{2^4}$ as an example to see how to find the mapping of the former embedded into the latter.</p>
+<p>Because $\eta$ is a Primitive Element in $\mathbb{F}_{2^2}$, we only need to consider the representation of $\eta$ in $\mathbb{F}_{2^4}$.</p>
+<p>Let&rsquo;s first look at the Primitive Element $\theta$ in $\mathbb{F}_{2^4}$, is $\eta\mapsto\theta$ an embedding mapping?</p>
+$$
+\eta^2 = \eta+1 \quad \text{but} \quad \theta^2 \neq \theta+1
+$$<p>Obviously, $\eta^2 \neq \theta^2$, so $\eta\mapsto\theta$ is not an embedding mapping. Thinking about how irreducible polynomials determine the multiplication relationship between elements, and because $\eta$ is a root of $X^2+X+1$ while $\theta$ is a root of $X^4+X+1$, the multiplication relationship between $\eta$ and $\theta$ must be different. In $\mathbb{F}_{2^4}$, there also exist two roots of $X^2+X+1$, which are $\theta^2+\theta$ and $\theta^2+\theta+1$ respectively. Readers can verify the following equation:</p>
+$$
+(\theta^2+\theta)^2 + (\theta^2+\theta) + 1 = \theta^4 + \theta^2 + \theta^2 + \theta + 1 = 0
+$$<p>So, we define the embedding mapping:</p>
+$$
+\begin{split}
+\phi &: \mathbb{F}_{2^2} \to \mathbb{F}_{2^4},\quad \eta \mapsto \theta^2+\theta
+\end{split}
+$$<p>This means that the binary representation $(10)$ corresponds to $(0110)$ in $L=\mathbb{F}_{2^4}$; and the binary representation $(11)$ (which is $\eta+1$) corresponds to $(\theta^2+\theta+1)$ in $L$, i.e., $(0111)$. Note here that we can also use $\phi': \eta \mapsto \theta^2+\theta+1$ as another different embedding mapping. The underlying principle is that $\theta^2+\theta$ and $\theta^2+\theta+1$ are conjugates of each other, they are perfectly symmetric, so both of these mappings can serve as embedding mappings. Although they map to different elements, there is no significant difference from the overall structure.</p>
+<p>For any $[L:K]=n$, when we embed $K$ into $L$, a direct method is to find the roots of $f(X)$ in $L$, although this calculation is not simple. Moreover, both embedding and de-embedding require additional calculations, which undoubtedly increases the complexity of the system.</p>
+<p>The recursive Extension Tower construction method mentioned in the Binius paper, by selecting appropriate irreducible polynomials and Bases, we can obtain very direct (called Zero-cost) embedding and de-embedding mappings.</p>
+<h2 id="extension-tower">Extension Tower</h2>
+<p>We can construct $\mathbb{F}_{2^4}$ through two quadratic extensions. First, we choose a quadratic irreducible polynomial $f(X)=X^2+X+1$, then we can construct $\mathbb{F}_{2^2}$, then based on $\mathbb{F}_{2^2}$ we find another quadratic irreducible polynomial to construct $\mathbb{F}_{2^4}$.</p>
+$$
+\mathbb{F}_{2^2} = \mathbb{F}_2[X]/\langle X^2+X+1 \rangle \cong\mathbb{F}_2(\eta)
+$$<p>Next, we need to find a quadratic irreducible polynomial in $\mathbb{F}_{2^2}[X]$. First note that $X^2+X+1$ can no longer be used, according to the definition of $\mathbb{F}_{2^2}$, it can already be factored. Consider $X^2+1$, it can also be factored $(X+1)(X+1)$. In fact, all quadratic polynomials in $\mathbb{F}_2[X]$ can be factored. A quadratic irreducible polynomial in $\mathbb{F}_{2^2}[X]$ must include a term with the new element $\eta$ in its coefficients.</p>
+<p>For example, $X^2+X+\eta$ is a quadratic irreducible polynomial over $\mathbb{F}_{2^2}$. Then we can construct $\mathbb{F}_{2^4}$:</p>
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_{2^2}[X]/\langle X^2+X+\eta \rangle 
+$$<p>Let&rsquo;s denote the root of $X^2+X+\eta$ in $\mathbb{F}_{2^4}$ as $\zeta$, then $\mathbb{F}_{2^4}$ can be represented as:</p>
+$$
+\mathbb{F}_{2^4} = \cong \mathbb{F}_{2^2}(\zeta)  \cong \mathbb{F}_2(\eta)(\zeta) \cong \mathbb{F}_2(\eta, \zeta)
+$$<!-- raw HTML omitted -->
+<p>Then all elements of $\mathbb{F}_{2^4}$ can be represented using $\eta, \zeta$:</p>
+$$
+\begin{array}{ccccccc}
+\hline
+0000 & 0001 & 0010 & 0011 & 0100 & 0101 & 0110 & 0111 \\
+0 & 1 & \eta & \eta+1 & \zeta & \zeta+\eta & \zeta+\eta+1 & \zeta+\eta+1 \\
+\hline
+1000 & 1001 & 1010 & 1011 & 1100 & 1101 & 1110 & 1111 \\
+\zeta\eta & \zeta\eta + 1 & \zeta\eta + \eta & \zeta\eta + \eta + 1 & \zeta\eta + \zeta & \zeta\eta + \zeta +1 & \zeta\eta+\zeta+\eta & \zeta\eta+\zeta+\eta+1 \\
+\hline
+\end{array}
+$$<p>At this point, each bit in the 4-bit binary corresponds to an element in $\mathbb{F}_{2^4}$, $(1000)$ corresponds to $\zeta\eta$, $(0100)$ corresponds to $\zeta$, $(0010)$ corresponds to $\eta$, $(0001)$ corresponds to $1$. Therefore, we can use the following Basis to represent all elements in $\mathbb{F}_{2^4}$:</p>
+$$
+\mathcal{B} = (1,\ \eta,\ \zeta,\ \eta\zeta)
+$$<p>Now, the binary representation of $\mathbb{F}_{2^2}$ directly corresponds to the &ldquo;lower two bits&rdquo; of the binary representation of $\mathbb{F}_{2^4}$, for example:</p>
+$$
+\begin{split}
+(1010) &= (10) || (10) = \zeta\eta + \eta \\
+\end{split}
+$$<p>Therefore, we can directly pad zeros to the higher two bits of the binary representation of $\mathbb{F}_{2^2}$ to get the corresponding element in $\mathbb{F}_{2^4}$. Conversely, by removing the two high-order zeros, an element in $\mathbb{F}_{2^4}$ directly maps back to an element in $\mathbb{F}_{2^2}$.</p>
+<!-- raw HTML omitted -->
+<p>As shown in the figure above, $(1011)$ is the binary representation of $\zeta\eta+\eta+1$, its lower two bits $(11)$ directly correspond to $(\eta+1)$ in $\mathbb{F}_{2^2}$. This kind of embedding is a &ldquo;natural embedding&rdquo;, so the Binus paper calls it Zero-cost Embedding.</p>
+<p>However, $\mathbb{F}_{2^4}$ is still a very small field, not enough. If we continue to perform quadratic extensions upwards, how can we find suitable irreducible polynomials? The solution is not unique. Let&rsquo;s first look at a scheme given in the Binius paper [DP23] — Wiedemann Tower [Wie88].</p>
+<h2 id="wiedemann-tower">Wiedemann Tower</h2>
+<p>The Wiedemann Tower is a recursive extension tower based on $\mathbb{F}_2$. The bottom Base Field is denoted as $\mathcal{T}_0$, with elements only $0$ and $1$:</p>
+$$
+\mathcal{T}_0 = \mathbb{F}_2 \cong \{0,1\}
+$$<p>Then we introduce an unknown $X_0$, constructing a univariate polynomial ring $\mathbb{F}_2[X_0]$. As discussed earlier, $X^2 + X + 1$ is an irreducible polynomial over $\mathcal{T}_0$, so we can use it to construct $\mathcal{T}_1$.</p>
+$$
+\mathcal{T}_1 = \mathbb{F}_2[X_0]/\langle  X_0^2+X_0+1 \rangle = \{0, 1, X_0, X_0+1\} \cong \mathbb{F}_{2^2} \cong \mathbb{F}_2(\alpha_0)
+$$<p>Next, we find a quadratic irreducible polynomial $X_1^2+\alpha_0\cdot X_1+1$ in $\mathcal{T}_1[X_1]$, then we can construct $\mathcal{T}_2$:</p>
+$$
+\mathcal{T}_2 = \mathcal{T}_1[X_1]/\langle  X_1^2+ \alpha_0\cdot X_1+1\rangle \cong \mathbb{F}_{2^4} \cong \mathbb{F}_2(\alpha_0, \alpha_1)
+$$<p>And so on, we can construct $\mathcal{T}_3, \mathcal{T}_4, \cdots, \mathcal{T}_n$:</p>
+$$
+\mathcal{T}_{i+1} = \mathcal{T}_i[X_i]/\langle  X_i^2+\alpha_{i-1}\cdot X_i+1\rangle \cong \mathbb{F}_{2^{2^i}} \cong \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_i),\quad i\geq 1
+$$<p>Here, $\alpha_0, \alpha_1, \ldots, \alpha_{n-1}$ are the roots of the successively introduced quadratic irreducible polynomials, such that:</p>
+$$
+\mathcal{T}_{n} = \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_{n-1})
+$$<p>And $|\mathcal{T}_{n}| = 2^{2^{n}}$. The relationship between these introduced roots satisfies the following equation:</p>
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$<p>It&rsquo;s not hard to verify that $\alpha_0+\alpha^{-1}_0=1$. And the polynomial $X_i^2+X_{i-1}X_i+1$ in the multivariate polynomial ring $\mathcal{T}_0[X_0, X_1, \ldots, X_n]$ has two roots $\alpha_i$ and $\alpha^{-1}_i$:</p>
+$$
+(\alpha^{-1}_i)^2 + \alpha_{i-1}\alpha^{-1}_i + 1 = \alpha^{-1}_i + \alpha_{i-1} + \alpha_i = \alpha_{i-1} + \alpha_{i-1} = 0
+$$<p>Moreover, $\alpha_i$ and $\alpha_{i+1}$ satisfy the following recursive relationship:</p>
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$<p>This is because if we multiply both sides of the equation by $\alpha_{i+1}$, we get: $\alpha_{i+1}^2 + \alpha_i\alpha_{i+1} + 1 = 0$, which is exactly the irreducible polynomial we use for recursive quadratic extension construction.</p>
+<h3 id="multilinear-basis">Multilinear Basis</h3>
+<p>For $\mathcal{T}_{i+1}$ over $\mathbb{F}_2$, it forms an $n+1$ dimensional vector space over $\mathbb{F}_2$. We can use the roots of these irreducible polynomials to construct a Multilinear Basis:</p>
+$$
+\begin{split}
+\mathcal{B}_{i+1} &= (1, \alpha_0)\otimes (1, \alpha_1) \otimes \cdots \otimes (1,\alpha_i)  \\
+& = (1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2,\ \ldots,\ \alpha_0\alpha_1\cdots \alpha_i)
+\end{split}
+$$<p>This is consistent with what we discussed earlier, using $(1, \eta, \zeta, \zeta\eta)$ as the Basis for $\mathbb{F}_{2}(\eta, \zeta)$. We can quickly verify this. First, $(1, \alpha_0)$ is the Basis of $\mathcal{T}_1$, because every element of $\mathcal{T}_1$ can be expressed as</p>
+$$
+a_0 + b_0\cdot \alpha_0,  \quad a_0, b_0\in\mathcal{T}_0
+$$<p>After $\mathcal{T}_1$ is extended to $\mathcal{T}_2$ through $\alpha_1$, elements of $\mathcal{T}_2$ can all be expressed as:</p>
+$$
+a_1 + b_1\cdot \alpha_1,  \quad a_1, b_1\in\mathcal{T}_1
+$$<p>Substituting $a_1=a_0+b_0\cdot \alpha_0$, $b_1=a_0'+b_0'\cdot \alpha_1$, we have:</p>
+$$
+\begin{split}
+a_1 + b_1\cdot \alpha_1 &= (a_0+b_0\cdot \alpha_0) + (a'_0+b'_0\cdot \alpha_0)\cdot \alpha_1 \\
+ &= a_0 + b_0\alpha_0 + a'_0\cdot\alpha_1+ b_0'\cdot \alpha_0\alpha_1
+\end{split}
+$$<p>Thus, $(1, \alpha_0, \alpha_1, \alpha_0\alpha_1)$ forms the Basis of $\mathcal{T}_2$. By extension, $(1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2, \alpha_0\alpha_2, \alpha_1\alpha_2, \alpha_0\alpha_1\alpha_2)$ is the Basis of $\mathcal{T}_3$. Finally, $\mathcal{B}_{n}$ is the Basis of $\mathcal{T}_{n}$.</p>
+<h3 id="finding-primitive-element">Finding Primitive element</h3>
+<p>We discussed earlier that $\alpha_i$ and $\alpha^{-1}_{i}$ are conjugate roots. By Galois theory,</p>
+$$
+\alpha_{i}^{2^{2^n}} = \alpha^{-1}_{i} 
+$$<p>Then all $\alpha_i$ satisfy the following property:</p>
+$$
+\alpha_i^{F_i} = 1
+$$<p>Here $F_n$ represents the Fermat Number, $F_n=2^{2^n}+1$. A famous theorem is that $\mathsf{gcd}(F_i, F_j) = 1,  i\neq j$, that is, any two different Fermat numbers are coprime, so</p>
+$$
+\mathsf{ord}(\alpha_0\alpha_1\cdots \alpha_i) = \mathsf{ord}(\alpha_0)\mathsf{ord}(\alpha_1)\cdots\mathsf{ord}(\alpha_i) 
+$$<p>Therefore, if the Fermat number $F_i$ is prime, then obviously $\mathsf{ord}(\alpha_i)=F_i$. Currently, we know that when $i\leq 4$, $F_i$ are all prime, so</p>
+$$
+\begin{split}
+\mathsf{ord}(\alpha_0\cdot \alpha_1\cdot \cdots \cdot \alpha_i) &= \mathsf{ord}(\alpha_0)\cdot \mathsf{ord}(\alpha_1)\cdot \cdots \cdot \mathsf{ord}(\alpha_n) \\
+& = F_0\cdot F_1\cdot \cdots \cdot F_i = 2^{2^{i+1}} - 1 \\
+& = |\mathcal{T}_{n+1}| -1
+\end{split}
+$$<p>If $\alpha_0\cdots \alpha_i, i\leq 4$, then according to the properties of finite fields, it is a Primitive Element of $\mathcal{T}_{n+1}$.</p>
+<p>Additionally, through computer program verification, for the cases of $5\leq i \leq 8$, the Order of $\alpha_i$ is still equal to $F_i$. The $\alpha_0\cdots \alpha_8$ is of the size of the finite field $\mathbb{F}_{2^{512}}$ which can already meet the needs of proof systems like Binius. But mathematically, do all $\alpha_i$ satisfy this property? This seems to still be an unsolved problem [Wie88].</p>
+<h2 id="multiplication-optimization">Multiplication Optimization</h2>
+<p>Another significant advantage of adopting the Extension Tower is the optimization of multiplication operations.</p>
+<p>The first optimization is &ldquo;Small-by-large Multiplication&rdquo;, that is, the multiplication operation of two numbers $a\in\mathcal{T}_\iota$ and $b\in\mathcal{T}_{\iota+\kappa}$. Since $b$ can be decomposed into $2^\kappa$ elements of $\mathcal{T}_\iota$, this multiplication operation is equivalent to $2^\kappa$ multiplication operations on $\mathcal{T}_\iota$.</p>
+$$
+a \cdot (b_0, b_1, \cdots, b_{2^\kappa-1}) = (a\cdot b_0, a\cdot b_1, \cdots, a\cdot b_{\kappa-1})
+$$<p>Even for the multiplication of two elements in the same field, there are still optimization techniques. Suppose $a, b\in\mathcal{T}_{i+1}$, then according to the definition of Tower construction, they can be represented as $a_0 + a_1\cdot\alpha_i$ and $b_0 + b_1\cdot \alpha_i$ respectively, then their multiplication can be derived as follows:</p>
+$$
+\begin{split}
+a\cdot b  & = (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+ &= a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot\alpha_i^2 \\
+& = a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot(\alpha_{i-1}\alpha_i+1) \\
+& = a_0b_0  + a_1b_1 + (a_0b_1 + a_1b_0 + a_1b_1\cdot\alpha_{i-1})\cdot\alpha_i \\
+& = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i
+\end{split}
+$$<p>Note on the right side of the above equation, we only need to calculate three multiplications on $\mathcal{T}_{i}$, namely $A=a_0b_0$, $B=(a_0+a_1)(b_0+b_1)$ and $C=a_1b_1$, then the above formula can be converted to:</p>
+$$
+a\cdot b = (A + C) + (B-A-C+C\cdot \alpha_{i-1})\cdot\alpha_i 
+$$<p>There&rsquo;s still one $C\cdot \alpha_{i-1}$ missing, which is a constant multiplication, because $\alpha_{i-1}\in\mathcal{T}_{i}$ is a constant. This constant multiplication can be reduced to a constant multiplication operation on $\mathcal{T}_{i-1}$, as shown below:</p>
+$$
+\begin{split}
+C\cdot \alpha_{i-1} &= (c_0 + c_1\alpha_{i-1})\cdot \alpha_{i-1} \\
+& = c_0\cdot \alpha_{i-1} + c_1\cdot \alpha_{i-1}^2 \\
+& = c_0\cdot \alpha_{i-1} + c_1\cdot (\alpha_{i-2}\cdot \alpha_{i-1} + 1) \\
+& = c_1 + (c_0 + {\color{blue}c_1\cdot \alpha_{i-2}})\cdot \alpha_{i-1}
+\end{split}
+$$<p>The blue part expression, ${\color{blue}c_1\cdot \alpha_{i-2}}$ is a constant multiplication operation on $\mathcal{T}_{i-2}$ that needs to be calculated recursively. The entire recursive process only needs to perform several additions to complete.</p>
+<p>Looking back at the $a\cdot b$ operation, we can also construct a Karatsuba-style recursive algorithm, where each layer of recursion only needs to complete three multiplication operations, one less than the four multiplication operations without optimization. Overall, the optimization effect will be very significant.</p>
+<p>Furthermore, the multiplication inverse operation on $\mathcal{T}_{i}$ can also be greatly optimized [FP97]. Consider $a, b\in\mathcal{T}_{i+1}$, satisfying $a\cdot b=1$, expand the expressions of $a$ and $b$:</p>
+$$
+\begin{split}
+a\cdot b &= (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+& = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i\\
+&= 1\\
+\end{split}
+$$<p>We can calculate to get the expressions for $b_0, b_1$:</p>
+$$
+\begin{split}
+b_0 &= \frac{a_0 + a_1\alpha_{i-1}}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2}  \\[2ex]
+b_1 &= \frac{a_1}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2} \\
+\end{split}
+$$<p>So, the calculation of $b_0$ and $b_1$ includes: one inversion operation, three multiplications, two additions, one constant multiplication, and one squaring operation.</p>
+$$
+\begin{split}
+d_0 &= \alpha_{i-1}a_1\\
+d_1 &= a_0 + d_0 \\
+d_2 &= a_0 \cdot d_1 \\
+d_3 &= a_1^2   \\
+d_4 &= d_2 + d_3 \\
+d_5 &= 1/d_4 \\
+b_0 & = d_1\cdot d_5\\
+b_1 & = a_1 \cdot d_5\\
+\end{split}
+$$<p>The inversion operation of $d_5$ can be recursively calculated layer by layer along the Extension Tower. The main computational cost in the recursive process is three multiplication operations. There&rsquo;s also the squaring operation of $d_3$, which can also be calculated recursively:</p>
+$$
+\begin{split}
+a_1^2 &= (e_0 + e_1\cdot\alpha_{i-1})^2 \\
+& = e_0^2 + e_1^2\cdot\alpha_{i-1}^2 \\
+& = e_0^2 + e_1^2\cdot(\alpha_{i-2}\alpha_{i-1} + 1) \\
+& = (e_0^2 + e_1^2) + (e_1^2\alpha_{i-2})\cdot\alpha_{i-1}  \\
+\end{split}
+$$<p>For detailed recursive efficiency analysis, please refer to [FP97]. Overall, the computational complexity is comparable to the Karatsuba algorithm, thus greatly reducing the algorithmic complexity of inversion.</p>
+<h2 id="artin-schreier-tower-conway-tower">Artin-Schreier Tower (Conway Tower)</h2>
+<p>There&rsquo;s another method to construct Binary Towers, originating from a paper published by Amil Artin and Otto Schreier in 1927, which also appears in Conway&rsquo;s book &ldquo;On Numbers and Games&rdquo;. For the historical origins and related theories, please refer to [CHS24].</p>
+<p>For any $\mathbb{F}_{p^n}$, we choose $h(X_{i+1}) = X_{i+1}^p - X_{i+1} - \alpha_0\alpha_1\cdots \alpha_i$ as the irreducible polynomial for each layer of the Tower. And $\alpha_{i+1}$ is the root of $h(X_{i+1})=0$ on the previous layer of the Tower. This way we can get an Extension Tower:</p>
+$$
+\mathbb{F}_2 \subset \mathbb{F}_{2^2}\cong\mathbb{F}_2(\alpha_0) \subset \mathbb{F}_{2^4}\cong\mathbb{F}_{2^2}(\alpha_1) \subset \mathbb{F}_{2^8}\cong\mathbb{F}_{2^4}(\alpha_2)
+$$<p>Moreover, $(1, \alpha_0)\otimes(1, \alpha_1)\otimes\cdots \otimes (1, \alpha_n)$ forms a Basis for the vector space $\mathbb{F}_{2^{2^{i+1}}}$. According to our previous discussion, this set of Bases also supports Zero-cost subfield embedding. This type of Multilinear Basis is also known as Cantor Basis [Can89].</p>
+<h2 id="references">References</h2>
+<ul>
+<li>[Wie88] Wiedemann, Doug. &ldquo;An iterated quadratic extension of GF (2).&rdquo; Fibonacci Quart 26.4 (1988): 290-295.</li>
+<li>[DP23] Diamond, Benjamin E., and Jim Posen. &ldquo;Succinct arguments over towers of binary fields.&rdquo; Cryptology ePrint Archive (2023).</li>
+<li>[DP24] Diamond, Benjamin E., and Jim Posen. &ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers.&rdquo; Cryptology ePrint Archive (2024).</li>
+<li>[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.</li>
+<li>[FP97] Fan, John L., and Christof Paar. &ldquo;On efficient inversion in tower fields of characteristic two.&rdquo; Proceedings of IEEE International Symposium on Information Theory. IEEE, 1997.</li>
+<li>[CHS24] Cagliero, Leandro, Allen Herman, and Fernando Szechtman. &ldquo;Artin-Schreier towers of finite fields.&rdquo; arXiv preprint arXiv:2405.10159 (2024).</li>
+<li>[Can89] David G. Cantor. On arithmetical algorithms over finite fields. J. Comb. Theory Ser. A, 50(2):285–300, March 1989.</li>
+</ul>
+
+      </div>
+
+      
+      
+<div class="post-copyright">
+  <p class="copyright-item">
+    <span class="item-title">Author</span>
+    <span class="item-content">Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io></span>
+  </p>
+  <p class="copyright-item">
+    <span class="item-title">LastMod</span>
+    <span class="item-content">
+      2024-11-01
+      
+        <a href="https://github.com/sec-bit/blog/commit/0453263d11ca7e177a7154e403f6d7fe381806fc" title="add binius 01 &amp; 02">
+          (0453263)
+        </a>
+        
+          <br>add binius 01 &amp; 02
+        
+      
+    </span>
+  </p>
+  
+  <p class="copyright-item">
+    <span class="item-title">License</span>
+    <span class="item-content">If you need to reprint, please indicate the author and source of the article.</span>
+  </p>
+</div>
+
+
+
+      
+      
+
+
+      <footer class="post-footer">
+        <div class="post-tags">
+          <a href="https://sec-bit.github.io/blog/en/tags/cryptography/">cryptography</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/finite-fields/">finite fields</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/snark/">SNARK</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/binius/">Binius</a>
+          
+        </div>
+
+
+        
+        <nav class="post-nav">
+          
+          <a class="prev" href="/blog/en/2024/11/01/binius-02/">
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-left hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m15 18-6-6 6-6"/></svg>
+            </i>
+            <span class="prev-text nav-default">Notes on Binius (Part II): Subspace Polynomial</span>
+            <span class="prev-text nav-mobile">Prev</span>
+          </a>
+          
+          <a class="next" href="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/">
+            <span class="next-text nav-default">Trust Wallet&#39;s Fomo3D Summer: Fresh Discovery of Low Entropy Flaw From 2018</span>
+            <span class="prev-text nav-mobile">Next</span>
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-right hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m9 18 6-6-6-6"/></svg>
+            </i>
+          </a>
+        </nav>
+      </footer>
+    </article>
+
+    
+    
+    
+    
+
+
+    
+    
+
+  
+
+  
+  
+    <div class="comment">
+  <script
+    src="https://giscus.app/client.js"
+    data-repo="sec-bit/comments-for-secbit-blog"
+    data-repo-id="MDEwOlJlcG9zaXRvcnkyMTQ2MDkzNjM="
+    data-category="Comments"
+    data-category-id="DIC_kwDODMqt084CY2v-"
+    data-mapping="pathname"
+    data-strict="0"
+    data-reactions-enabled="1"
+    data-emit-metadata="0"
+    data-input-position="top"
+    data-theme="light"
+    data-lang="en"
+    
+      data-loading="lazy"
+    
+    crossorigin="anonymous"
+    async
+  ></script>
+</div>
+
+  
+
+  
+  
+
+  
+
+  
+
+    
+
+  
+
+  
+
+
+  </div>
+
+  
+  <nav class="toc" id="toc">
+    <div class="toc-title">Table of Contents</div>
+    <div class="toc-content custom-scrollbar">
+      <nav id="TableOfContents">
+  <ul>
+    <li><a href="#extension-fields">Extension Fields</a></li>
+    <li><a href="#binary-field">Binary Field</a></li>
+    <li><a href="#field-embedding">Field Embedding</a></li>
+    <li><a href="#extension-tower">Extension Tower</a></li>
+    <li><a href="#wiedemann-tower">Wiedemann Tower</a>
+      <ul>
+        <li><a href="#multilinear-basis">Multilinear Basis</a></li>
+        <li><a href="#finding-primitive-element">Finding Primitive element</a></li>
+      </ul>
+    </li>
+    <li><a href="#multiplication-optimization">Multiplication Optimization</a></li>
+    <li><a href="#artin-schreier-tower-conway-tower">Artin-Schreier Tower (Conway Tower)</a></li>
+    <li><a href="#references">References</a></li>
+  </ul>
+</nav>
+    </div>
+  </nav>
+
+
+</div>
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/2024/11/01/binius-02/index.html b/en/2024/11/01/binius-02/index.html
new file mode 100644
index 0000000..10bc92c
--- /dev/null
+++ b/en/2024/11/01/binius-02/index.html
@@ -0,0 +1,1058 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  Notes on Binius (Part II): Subspace Polynomial - SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/2024/11/01/binius-02/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="Yu Guo  and Jade Xie " />
+<meta name="description" content="The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article." />
+
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/2024/11/01/binius-02/" />
+
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/2024/11/01/binius-02/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta property="og:description" content="The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="article">
+    <meta property="article:section" content="post">
+    <meta property="article:published_time" content="2024-11-01T08:00:00+08:00">
+    <meta property="article:modified_time" content="2024-11-01T20:31:26+08:00">
+    <meta property="article:tag" content="Cryptography">
+    <meta property="article:tag" content="Finite Fields">
+    <meta property="article:tag" content="SNARK">
+    <meta property="article:tag" content="Binius">
+
+  <meta itemprop="name" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta itemprop="description" content="The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta itemprop="wordCount" content="1818">
+  <meta itemprop="keywords" content="Cryptography,Finite Fields,SNARK,Binius">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Notes on Binius (Part II): Subspace Polynomial">
+  <meta name="twitter:description" content="The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    <div class="content-wrapper">
+  <aside class="sidebar">
+  </aside>
+  <div id="content" class="content">
+    <article class="post">
+      
+      <header class="post-header">
+        <h1 class="post-title">Notes on Binius (Part II): Subspace Polynomial</h1>
+        
+
+
+<div class="post-title-i18n">
+  
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+  
+  <div>
+    <a href="https://sec-bit.github.io/blog/2024/11/01/binius-02/">zh-cn</a>
+  </div>
+  
+</div>
+
+
+        <div class="post-meta-list">
+  <div class="post-meta-item post-meta-author">
+    
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+    Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
+    
+  </div>
+
+  <div class="post-meta-item post-meta-time">
+    
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+    <time datetime=" 2024-11-01">
+      2024-11-01
+    </time>
+
+
+    
+
+  </div>
+
+
+  <div class="post-meta__right">
+    
+
+    <div class="post-meta-item post-meta-category">
+      <a href="https://sec-bit.github.io/blog/en/categories/mle-pcs/"> mle-pcs </a>
+      
+    </div>
+
+
+    
+    
+
+
+    
+    
+  </div>
+</div>
+
+      </header>
+
+      
+      <div class="post-content">
+        <ul>
+<li>Yu Guo <a href="mailto:yu.guo@secbit.io">yu.guo@secbit.io</a></li>
+<li>Jade Xie <a href="mailto:jade@secbit.io">jade@secbit.io</a></li>
+</ul>
+<p>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</p>
+<p>Since the algebraic structure on which Additive FFT relies is very similar to Multiplicative FFT on prime fields, knowledge of Multiplicative FFT will help understand the content of this article.</p>
+<h2 id="linear-subspace-polynomial">Linear Subspace Polynomial</h2>
+<p>We continue to explore the Extension Field $\mathbb{F}_{2^m}$ based on $\mathbb{F}_2$. Regardless of how $\mathbb{F}_{2^m}$ is constructed, all elements form a vector space, denoted as $V_m$, and there exists a Basis $(\beta_0, \beta_1, \ldots, \beta_{m-1})$ that spans this vector space, denoted as $V_m=\mathsf{Span}(\beta_0, \beta_1, \ldots, \beta_{m-1})$, or represented by the symbol $\langle \cdots \rangle$:</p>
+$$
+V_m = \langle \beta_0, \beta_1, \ldots, \beta_{m-1} \rangle
+$$<p>Thus, any element $ \theta\in\mathbb{F}_{2^m}$ can be written as a linear combination of Basis components:</p>
+$$
+\theta = c_0\cdot \beta_0 + c_1\cdot \beta_1 + \ldots + c_{m-1}\cdot \beta_{m-1}, \text{ where $c_i\in \mathbb{F}_2$}
+$$<p>At the same time, $V_m$ is also an additive group with the identity element $V_0=\{0\}$. If $V_k$ is a linear subspace of $V_m$, then $V_k$ is also an additive subgroup of $V_m$. For $V_k$, we can use a polynomial to encode all its elements, i.e., the root set of this polynomial exactly corresponds to the set of all elements of $V_k$. We denote this polynomial as $s_k(X)$. This polynomial is also called the &ldquo;Subspace Polynomial&rdquo;:</p>
+$$
+s_k(X) = \prod_{i=0}^{2^k-1}(X-\theta_i), \text{ where $\theta_i\in V_k$ }
+$$<p>The polynomial $s_k(X)$ can also be seen as the Vanishing Polynomial on the Domain $V_k$, because for any $\theta\in V_k$, it satisfies:</p>
+$$
+s_k(\theta) = 0
+$$<h3 id="linearized-polynomial">Linearized Polynomial</h3>
+<p>The Subspace polynomial introduced above is a so-called Linearized Polynomial because its definition satisfies the following form:</p>
+$$
+L(X) = \sum_{i=0}^{n-1} c_i\cdot X^{q^i}, \quad c_i\in \mathbb{F}_{q}
+$$<p>The polynomial $L(X)$ is called a Linearized Polynomial because each $L(X)$ corresponds to a linear operator on the extension field $K$ of $\mathbb{F}_{q}$. If all roots of $L(X)$ are in the extension field $K=\mathbb{F}_{q^s}$, then for all $\theta\in K$, we have $L(\theta)\in K$. Moreover, if $\theta\neq\theta'$, then $L(\theta)\neq L(\theta')$. Each $L(X)$ can be viewed as a matrix $B\in \mathbb{F}_q^{s\times s}$, completing a linear transformation on the vector space $\mathbb{F}^s_q$, such that:</p>
+$$
+(c_0, c_1, \ldots, c_{s-1}) B = (d_0, d_1, \ldots, d_{s-1})
+$$<p>For Subspace Polynomials, each $s_k(X)$ is a Linearized Polynomial. Conversely, for any Linearized polynomial $L(X)\in \mathbb{F}_{q^m}[X]$, all its roots form a linear subspace $V_n\subset V_m$. For detailed proof, please refer to [LN97].</p>
+<h3 id="linear-properties">Linear Properties</h3>
+<p>Since each term of $s_k(X)$ is of the form $a_i\cdot X^{2^i}$, it has additive homomorphism:</p>
+$$
+\begin{align*}
+s_k(x + y) &= s_k(x) + s_k(y), &\quad \forall x, y \in \mathbb{F}_{2^m}\\
+s_k(c\cdot x) &= c\cdot s_k(x), &\quad \forall x\in \mathbb{F}_{2^m}, \forall c\in \mathbb{F}_2
+\end{align*}
+$$<p>Let&rsquo;s try to prove the first equation simply. According to a common theorem in finite field theory (Freshman&rsquo;s dream):</p>
+$$
+(x + y)^{2} = x^2 + 2xy + y^2 = x^{2} + y^{2}, \quad\text{where $x, y\in \mathbb{F}_{2^m}$}
+$$<p>Obviously, $2xy=0$, because in binary fields, $2=0$. So the following equation also holds:</p>
+$$
+(x + y)^{2^i} = x^{2^i} + y^{2^i}
+$$<p>Next, let&rsquo;s verify the additive homomorphism of $s_k(X)$:</p>
+$$
+s_k(x + y) = \sum_{i=0}^{k} a_i\cdot (x+y)^{2^i}  = \sum_{i=0}^{k} a_i\cdot \big(x^{2^i} + y^{2^i}\big) = s_k(x) + s_k(y)
+$$<h3 id="recursive-formula-of-subspace-polynomial">Recursive Formula of Subspace Polynomial</h3>
+<p>For the subspace $V_k$, it can be split into two disjoint sets:</p>
+$$
+V_k = V_{k-1} \cup (\beta_{k-1}+V_{k-1})
+$$<p>Here $V_k=\langle \beta_0, \beta_1, \ldots, \beta_{k-1} \rangle$ , $V_{k-1}=\langle \beta_0, \beta_1, \ldots, \beta_{k-2} \rangle $ ,
+then the subspace polynomials corresponding to $V_k$, $V_{k-1}$, $\beta_{k-1}+V_{k-1}$ satisfy the following relationship:</p>
+$$
+s_k(X) = s_{k-1}(X) \cdot s_{k-1}(X+\beta_{k-1})
+$$<p>Let&rsquo;s take a simple example, assuming $k=3$, $V_3=\langle \beta_0,\beta_1,\beta_2\rangle $ consists of two parts, one part is $V_2=\langle \beta_0,\beta_1\rangle $, the other part is each element in $V_2$ plus ${\color{blue}\beta_2}$. Therefore, the number of elements in $V_3$ is $2^2 + 2^2 = 8$. Here are all the elements of $V_3$:</p>
+$$
+V_3 = \{0, \beta_0, \beta_1, \beta_0+\beta_1\} \cup \{{\color{blue}\beta_2}, \beta_0+{\color{blue}\beta_2}, \beta_1+{\color{blue}\beta_2}, (\beta_0+\beta_1)+{\color{blue}\beta_2}\}
+$$<p>We can easily verify: $s_3(X) = s_{2}(X) \cdot s_{2}(X+\beta_{k-1})$. Of course, $s_{2}(X)$ can also be split into the product of $s_1(X)$ and $s_1(X+\beta_1)$. Let&rsquo;s try to break it down to the bottom:</p>
+$$
+\begin{split}
+s_3(X) & = s_2(X)\cdot s_2(X + \beta_2) \\
+& = s_2(X)^2 + \beta_2\cdot s_2(X) \\
+& = s_1(X)\cdot s_1(X + \beta_1)\cdot s_1(X)\cdot s_1(X + \beta_1) + \beta_2\cdot s_1(X)\cdot s_1(X + \beta_1) \\
+& = (s_1(X)^2 + \beta_1\cdot s_1(X))^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = s_1(X)^4 + \beta_1^2\cdot s_1(X)^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = s_1(X)^4 + (\beta_1^2+\beta_2)\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+& = (X\cdot(X+\beta_0))^4 + (\beta_1^2+\beta_2)\cdot (X\cdot(X + \beta_0))^2 + \beta_1\beta_2\cdot (X\cdot(X + \beta_0)) \\
+& = (X^2 + \beta_0\cdot X)^4 + (\beta_1^2+\beta_2)\cdot (X^2 + \beta_0\cdot X)^2 + \beta_1\beta_2\cdot (X^2 + \beta_0\cdot X) \\
+& = X^8  + \beta_0^4X^4 + (\beta_1^2+\beta_2)X^4 + \beta_0^2(\beta_1^2+\beta_2)X^2 + \beta_1\beta_2X^2 + \beta_0\beta_1\beta_2X \\
+\end{split}
+$$<p>Finally, the expansion of $s_3(X)$ satisfies the pattern of $\sum_{i=0}^{k} a_i\cdot X^{2^i}$, which is consistent with our conclusion above.</p>
+<h2 id="homomorphic-mapping-on-subspace">Homomorphic Mapping on Subspace</h2>
+<p>Because Subspace Polynomial is actually a kind of Vanishing Polynomial, and it also has additive homomorphism, we can use Subspace Polynomial to define homomorphic mapping between subspaces.</p>
+<p>For example, for $V_3=\langle \beta_0, \beta_1, \beta_2\rangle$, we define the subspace $V_1=\{0, \beta_0\}$ of $V_3$ and its Subspace Polynomial $s_1(X)$</p>
+$$
+s_1(X) = X\cdot (X+\beta_0)
+$$<p>Obviously, $s_1(V_1)=\{0, 0\}$. If we apply $s_1(X)$ to $V_3$, we will get the following result:</p>
+$$
+\begin{split}
+s_1(0) &= 0\\
+s_1(\beta_0) & = 0 \\
+s_1(\beta_1) & = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_0+\beta_1) & = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_2) &= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_2) &= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_1+\beta_2) &= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_1+\beta_2) &= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+\end{split}
+$$<p>The above equations show that $s_1(V_3)$ is mapped to a set that is only half the size of $V_3$, denoted as $V_2$. This set is also a subspace, $V_2= \langle \beta'_0, \beta'_1\rangle = \langle \beta_0\beta_1 + \beta_1^2, \beta_0\beta_2 + \beta_2^2 \rangle $, with dimension 2.</p>
+<p>This is not a coincidence. According to the group isomorphism theorem, the Image $G$ of the homomorphic mapping $\phi: H \to G$ satisfies $G\cong H/Ker(\phi)$, where $G$ is a quotient group, and $|G| = |H|/|Ker(\phi)|$. In the above example, $s_1: V_3\to V_2$ is a homomorphic mapping, $V_1=Ker(s_1)$.</p>
+<h3 id="chain-of-mappings">Chain of Mappings</h3>
+<p>For $V_2 = s_1(V_3)$, we can still construct a Subspace Polynomial of Degree 2,</p>
+$$
+s_1'(X) = X\cdot (X+\beta_0\beta_1 + \beta_1^2)
+$$<p>We can continue to map $V_2$ to a one-dimensional subspace $V_1=\langle \beta''\rangle$. We only need to calculate $s_1(\beta'_0)$ and $s_1(\beta'_1)$, these Basis components constitute $V_2$:</p>
+$$
+\begin{split}
+s_1'(\beta_0\beta_1 + \beta_1^2) &= 0 \\
+s_1'(\beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2)& = \beta_0^2\beta_1\beta_2 + \beta_0\beta_1^2\beta_2 + \beta_0^2\beta_2^2 + \beta_0\beta_1\beta_2^2 + \beta_1^2\beta_2^2 + \beta_2^4 \\
+ & = \beta''
+\end{split}
+$$<p>Where the first component of the Basis $(\beta'_0, \beta'_1)$ of $V_2$ will be mapped to $0$, and the second component is mapped to $\beta''$.</p>
+<p>So far, we have obtained a chain of mappings:</p>
+$$
+V_3 \overset{s_1}{\longrightarrow} V_2 \overset{s'_1}{\longrightarrow} V_1
+$$<p>Or it can be written as:</p>
+$$
+\langle \beta_0, \beta_1, \beta_2 \rangle \overset{s_1}{\longrightarrow} \langle s_1(\beta_1), s_1(\beta_2) \rangle
+\overset{s'_1}{\longrightarrow} \langle s'_1(s_1(\beta_2)) \rangle
+$$<p>And each mapping reduces the dimension of the linear subspace by one, i.e., halves the size of the set. This algebraic structure is key to our subsequent construction of FFT and FRI protocols.</p>
+<p>It&rsquo;s not hard to prove that for any linear subspace, as long as we choose a Basis, we can construct Subspace Polynomials of Degree 2 as mapping functions in sequence, then obtain a subspace with dimension reduced by 1 through mapping, and repeat this process until the subspace is reduced to 1 dimension. Of course, different choices of Basis and different choices of Subspace Polynomial will lead to different mapping chains. Choosing the appropriate mapping chain can significantly improve the efficiency of computation.</p>
+<h2 id="composition-of-s_1-mappings">Composition of ${s}_1$ Mappings</h2>
+<p>We define the initial subspace of the mapping chain as $S^{(0)}$, the subspace after mapping as $S^{(1)}$, and the subspace after $i$ mappings as $S^{(i)}$:</p>
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$<p>Given a set of Basis for $S^{(i)}$, assumed to be $B^{(i)}=(\beta^{(i)}_0, \beta^{(i)}_1,\ldots, \beta^{(i)}_s)$, define Subspace Polynomial ${s}^{(i)}_1$ on the Basis, and use it as the group homomorphism mapping function to reduce $S^{(i)}$ to $S^{(i+1)}$. The Basis of the reduced linear subspace $S^{(i+1)}$ needs to transform the Basis of $S^{(i)}$ along with ${s}^{(i)}_1$ to a new Basis. After switching to the new Basis, we can define a new set of Subspace Polynomials ${s}^{(i+1)}_i(X)$.</p>
+<p>Let&rsquo;s assume we start with $S^{(0)}=\langle \beta_0, \beta_1, \ldots, \beta_{k-1}\rangle $, given a set of Basis $B_k$, after mapping by ${s}_1$, we get $S^{(1)}$, and its Basis $B^{(1)}$:</p>
+$$
+B^{(1)} = \langle {\color{blue}{s}_1(\beta_1)}, {\color{blue}{s}_1(\beta_2)}, \ldots, {s}_1(\beta_{k-1}) \rangle
+$$<p>Define ${s}^{(1)}_1(X)$ on $S^{(1)}$ again:</p>
+$$
+{s}^{(1)}_1(X) = {X(X+{s}_1(\beta_1))} 
+$$<p>Then, what is the relationship between $S^{(2)}$ produced by mapping $S^{(1)}$ and $S^{(0)}$? For any element $a \in S^{(0)}$, it is first mapped to $S^{(1)}$ by ${s}_1$, and then mapped to an element in $S^{(2)}$ by ${s}^{(1)}_1$, so the value after two mappings can be written as the composition of two mapping functions, ${s}^{(1)}_1({s}_1(X))$. Let&rsquo;s simplify this composite function:</p>
+$$
+\begin{align*}
+{s}^{(1)}_1({s}_1(X)) &= {s}_1(X)({s}_1(X)+{s}_1(\beta_1))
+&  \\[3ex]
+&= {s}_1(X)({s}_1(X+\beta_1)) & (\text{additive homomorphism })\\[3ex]
+&= {s}_2(X) & (\text{recurrency } )
+\end{align*}
+$$<p>So we derived ${s}^{(1)}_1({s}_1(X))={s}_2(X)$. This means that after two 2-to-1 mappings, it is equivalent to doing one 4-to-1 mapping, and the corresponding homomorphic mapping function is ${s}_2$:</p>
+$$
+\begin{split}
+{s}_2: &S^{(0)} \to S^{(2)} \\[3ex]
+& X \mapsto {X(X+\beta_0)(X+\beta_1)(X+\beta_1+\beta_0)} \\
+\end{split}
+$$<p>As shown in the figure below, both left and right mapping methods will result in $S^{(2)}$:</p>
+<!-- raw HTML omitted -->
+<p>Similarly, we can get the following conclusion, for the linear subspace $S^{(j)}$ after $j$ folds</p>
+$$
+S^{(j)}  = \langle {s}_{j}(\beta_j), {s}_{j}(\beta_{j+1}), \ldots, {s}_{j}(\beta_{k-1}) \rangle
+$$<p>And ${s}_{j}$ satisfies the following composite equation:</p>
+$$
+s_{j}(X) = s^{(1)}_{j-1}(s_1(X)) =  s^{(1)}_{j-1}\circ s_1
+$$<p>This composite mapping equation can be interpreted as: first do a $s_1$ mapping to get $S^{(1)}$, then do a $j-1$ dimensional mapping $s^{(1)}_{j-1}$, which is equivalent to directly doing a $j$ dimensional mapping $s_{j}$, both mapping to the same subspace $S^{(j)}$.</p>
+<p>Similarly, we can also prove: if we first do a $j-1$ dimensional mapping $s_{j-1}$, and then do a one-dimensional mapping on the mapped subspace $S^{(j-1)}$, we can also get the subspace $S^{(j)}$:</p>
+$$
+s_{j}(X) = s^{(1)}_{1}(s_{j-1}(X)) =  s^{(1)}_{1}\circ s_{j-1}
+$$<p>More generally, we can prove the following important property, that is, doing a $j$ dimensional mapping on any subspace $S^{(i)}$ is equivalent to doing $j$ consecutive 1 dimensional mappings on it:</p>
+$$
+s^{(i)}_{j}(X) = s^{(i+j-1)}_1\circ s^{(i+j-2)}_1\circ \cdots \circ s^{(i)}_1
+$$<h2 id="polynomial-basis">Polynomial Basis</h2>
+<p>For a univariate polynomial $f(X) \in \mathbb{F}[X]^{<N}$ of degree less than $N=2^n$, it has two common forms of expression, &ldquo;coefficient form&rdquo; and &ldquo;point value form&rdquo;. The coefficient form is the most common form we see:</p>
+$$
+f(X) = c_0 + c_1X + c_2X^2 + \ldots + c_{N-1}X^{N-1}
+$$<p>where $\vec{c}=(c_0, c_1, \ldots, c_{N-1})$ is the coefficient vector of the polynomial. In addition, the vector of unknowns $(1, X, X^2, \ldots, X^{N-1})$ forms a basis of polynomials, conventionally called the Monomial Basis, denoted as $\mathcal{B}^{mono}$:</p>
+$$
+\mathcal{B}^{mono}=(1, X, X^2, \ldots, X^{N-1})
+$$<p>This basis vector can also be expressed in the form of Tensor Product:</p>
+$$
+\mathcal{B}^{mono}=(1, X) \otimes (1, X^2) \otimes \ldots \otimes (1, X^{2^{n-1}})
+$$<p>The &ldquo;point value form&rdquo; of a univariate polynomial is called the Lagrange Basis representation. That is, we can uniquely determine a polynomial of Degree less than N using N &ldquo;coefficients&rdquo; (please note that the concept of coefficients here is broader than just the coefficients in the &ldquo;coefficient form&rdquo; representation).</p>
+<p>Through polynomial division, we can obtain the coefficients of the polynomial on $\mathcal{B}^{mono}$. For example, for a polynomial $t(X)$ of degree 7, we can first calculate the coefficient of $X^4\cdot X^2\cdot X$, that is, calculate the polynomial division: $t(X)/(X^4\cdot X^2\cdot X)$, obtaining a coefficient $c_7$ and a remainder polynomial $t'(X)$; then calculate $t'(X)/(X^4\cdot X^2)$, obtaining the coefficient $c_6$ of $\mathcal{B}^{mono}_6 = X^6$, and so on. Finally, we can obtain the coefficient vector $\vec{c}=(c_0, c_1, \ldots, c_7)$ of $t(X)$ with respect to $\mathcal{B}^{mono}$, such that:</p>
+$$
+t(X) = c_0 + c_1X + c_2X^2 + \ldots + c_7X^7
+$$<p>Using the Subspace Polynomial $s_k(X)$ discussed earlier, we can define a new set of Basis. According to its definition, the degree of $s_k(X)$ is exactly $2^k$, similar to $(1, X, X^2, X^4)$, so $(s_0(X), s_1(X), s_2(X))$ can also be used as basic materials for constructing polynomial Basis. Following the definition of $\mathcal{B}^{mono}$, we define the (Novel) Polynomial Basis $\mathcal{B}^{novel}$:</p>
+$$
+\mathcal{B}^{novel} = (1, s_0(X)) \otimes (1, s_1(X)) \otimes \ldots \otimes (1, s_{n-1}(X))
+$$<p>Please note that unlike the papers [LCH14] and [DP24], we haven&rsquo;t introduced Normalized Subspace Polynomial here for easier understanding. Returning to the above definition, we abbreviate each component $\mathcal{B}^{novel}_i$ as $\mathcal{X}_i(X)$, defined as follows:</p>
+$$
+\mathcal{X}_i(X) = \prod_{j=0}^{n-1}(s_j(X))^{i_j}, \text{ where $\mathsf{bits}(i)=(i_0, i_1, \ldots, i_{n-1})$}
+$$<p>Here $\mathsf{bits}(i)$ means expanding the integer $i$ in binary, for example, if $i=5$, then $\mathsf{bits}(5)=(1, 0, 1)$, $\mathsf{bits}(6) = (0, 1, 1)$. For example, when $n=3, N=8$, according to the above definition, we can calculate a set of polynomial basis $\big(\mathcal{X}_0(X), \mathcal{X}_1(X),\ldots, \mathcal{X}_7(X)\big)$</p>
+$$
+\begin{split}
+\mathcal{X}_0(X) &= 1 \\
+\mathcal{X}_1(X) &= s_0(X) = X\\
+\mathcal{X}_2(X) &= s_1(X) \\
+\mathcal{X}_3(X) &= s_0(X)\cdot s_1(X)\\
+\mathcal{X}_4(X) &= s_2(X)\\
+\mathcal{X}_5(X) &= s_0(X)\cdot s_2(X)\\
+\mathcal{X}_6(X) &= s_1(X)\cdot s_2(X) \\
+\mathcal{X}_7(X) &= s_0(X)\cdot s_1(X)\cdot s_2(X) \\
+\end{split}
+$$<p>It&rsquo;s easy to verify that the Degree of each Basis component $\mathcal{X}_i(X)$ is exactly $i$, so $\mathcal{B}^{novel}$ forms a set of linearly independent polynomial Basis. For any polynomial $f(X)\in \mathbb{F}_{2^m}[X]$ of Degree less than 8:</p>
+$$
+\begin{split}
+f(X) &= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&= a_0 + a_1s_0(X) + a_2s_1(X) + a_3s_0(X)\cdot {s}_1(X) \\
+& + a_4s_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot s_2(X) \\
+\end{split}
+$$<p>Similarly, we can use polynomial division to convert a polynomial between $\mathcal{B}^{novel}$ and $\mathcal{B}^{mono}$.</p>
+<h2 id="additive-fft">Additive FFT</h2>
+<p>Similar to Multiplicative FFT, to construct Additive FFT, we need to define a mapping chain of additive subgroups in $\mathbb{F}_{2^m}$. As mentioned earlier, Subspace Polynomials can be used to construct this mapping chain. At the same time, Subspace Polynomials can also construct a set of polynomial Basis.</p>
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$<p>For convenience of demonstration, specify $n=3$, $S^{(0)}=\langle \beta_0, \beta_1, \beta_2\rangle$. Following the idea of Multiplicative FFT, we split the polynomial $f(X)$ (of Degree 7) represented by $\mathcal{B}^{novel}$ into two polynomials with halved degrees:</p>
+$$
+\begin{split}
+f(X) &= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&= a_0 + a_1{s}_0(X) + a_2{s}_1(X) + a_3{s}_0(X)\cdot {s}_1(X) \\
+& \qquad + a_4{s}_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot {s}_2(X) \\
+& = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+& \qquad + \big(a_1 + a_3{s}_0(X)\cdot {s}_1(X) + a_5{s}_0(X)\cdot{s}_2(X) + a_7{s}_0(X)\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+& = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) +a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+& \qquad + {\color{red}{s}_0(X)}\cdot \big(a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+\end{split}
+$$<p>Then we introduce two auxiliary polynomials $f_{even}(X), f_{odd}(X)$, they are</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0 + a_2\cdot {s}_1(X) + a_4\cdot {s}_2(X) + a_6\cdot {s}_1(X)\cdot {s}_2(X) \\
+f_{odd}(X) &= a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X) \\
+\end{split}
+$$<p>According to the composition property of mappings we derived earlier, $s_1(X)=s^{(1)}_0\circ s_0(X)$, $s_2(X)=s^{(1)}_1\circ s_1(X)$, so we can get:</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0 + a_2 \cdot s^{(1)}_0(s_1(X)) + a_4 \cdot s^{(1)}_1(s_1(X)) + a_6 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ & = a_0 + a_2 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_4 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_6 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+f_{odd}(X) &= a_1 + a_3 \cdot s^{(1)}_0(s_1(X)) + a_5 \cdot s^{(1)}_1(s_1(X)) + a_7 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ & = a_1 + a_3 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_5 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_7 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+\end{split}
+$$<p>After substituting ${\color{blue}Y=s_1(X)}$, we can split $f(X)$ into an equation about $f_{even}({\color{blue}Y})$ and $f_{odd}({\color{blue}Y})$:</p>
+$$
+\begin{split}
+f(X) & = f_{even}({\color{blue}Y}) +  {s}_0(X)\cdot f_{odd}({\color{blue}Y})
+\end{split}
+$$<p>And the polynomials $f_{even}({\color{blue}Y})$ and $f_{odd}({\color{blue}Y})$ are exactly defined on $\mathcal{X}^{(1)}$:</p>
+$$
+\begin{array}{llll}
+\mathcal{X}^{(1)}_0(X) &= 1 \\
+\mathcal{X}^{(1)}_1(X) &= {s}^{(1)}_0(X) & = {s}_0({s}_1(X)) & = {s}_1(X) \\
+\mathcal{X}^{(1)}_2(X) &= {s}^{(1)}_1(X) & =  {s}_1({s}_1(X)) & = {s}_2(X) \\
+\mathcal{X}^{(1)}_3(X) &= {s}^{(1)}_0(X)\cdot {s}^{(1)}_1(X) & = {s}_0({s}_1(X)) \cdot {s}_1({s}_1(X)) & = {s}_1(X) \cdot {s}_2(X)\\
+\end{array}
+$$<p>Rewrite the odd and even polynomials:</p>
+$$
+\begin{split}
+f_{even}(X) &= a_0\cdot\mathcal{X}^{(1)}_0(X) + a_2\cdot \mathcal{X}^{(1)}_1(X) + a_4\cdot \mathcal{X}^{(1)}_2(X) + a_6\cdot \mathcal{X}^{(1)}_3(X) \\
+f_{odd}(X) &= a_1\cdot\mathcal{X}^{(1)}_0(X) + a_3\cdot \mathcal{X}^{(1)}_1(X) + a_5\cdot \mathcal{X}^{(1)}_2(X) + a_7\cdot \mathcal{X}^{(1)}_3(X)
+\end{split}
+$$<p>Structurally, this equation is very similar to the split $f(X)=f_{even}(X^2) + X\cdot f_{odd}(X^2)$ in Multiplicative FFT; and the $X\mapsto X^2$ mapping also corresponds to the $s_1: X \mapsto X(X+\beta_0)$ mapping. And $S^{(0)}$ under the mapping of $s_1$ produces a subspace $S^{(1)}$ that is only half the size of the original:</p>
+$$
+S^{(1)} = \langle s_1(\beta_1), s_1(\beta_2) \rangle
+$$<p>So we can rely on recursive calls to find $\{f_{even}(X) \mid X\in S^{(1)}\}$ and $\{ f_{odd}(X) \mid X\in S^{(1)}\}$, and then use the equation $f(X)=f_{even}(X) + s_0(X)\cdot f_{odd}(X)$ to get the value of $f(X)$ on $S^{(0)}$.</p>
+<p>Let&rsquo;s assume the recursive call returns successfully, then we have obtained all the evaluations of $f_{even}(X)$ and $f_{odd}(X)$ on $S^{(1)}$, denoted as $\vec{u}$ and $\vec{v}$, defined as follows:</p>
+$$
+\begin{split}
+(u_0, u_1, u_2, u_3) &= \big(f_{even}(0), f_{even}(1), f_{even}(s_1(\beta_1)), f_{even}(s_1(\beta_1) + 1)\big)\\[2ex]
+(v_0, v_1, v_2, v_3) &= \big(f_{odd}(0), f_{odd}(1), f_{odd}(s_1(\beta_1)), f_{odd}(s_1(\beta_1) + 1)\big)\\
+\end{split}
+$$<p>Then we can calculate all the evaluations of $f(X)$ on $S^{(0)}$, i.e., $f(X)\mid_{S^{(0)}}$:</p>
+$$
+\begin{array}{rlll}
+f(0) &= f_{even}({s}_1(0)) + 0\cdot f_{odd}({s}_1(0)) \\
+    & = u_0\\[1ex]
+f(1) &= f_{even}({s}_1(1)) + 1\cdot v_1 \\
+    & = u_0 + v_1 \\[1ex]
+f(\beta_1) &= f_{even}({s}_1(\beta_1)) + \beta_1\cdot f_{odd}({s}_1(\beta_1)) \\ 
+    & = u_1 + \beta_1 \cdot v_1\\[1ex]
+f(\beta_1+1) &= f_{even}({s}_1(\beta_1)+{s}_1(1)) + (\beta_1 +1)\cdot f_{odd}({s}_1(\beta_1)+{s}_1(1)) \\
+    & = u_1 + \beta_1\cdot v_1 + v_1\\[1ex]
+f(\beta_2) &= f_{even}({s}_1(\beta_2)) + \beta_2 \cdot f_{odd}({s}_1(\beta_2)) \\ 
+    & = u_2 + \beta_2\cdot v_2 \\[1ex]
+f(\beta_2+1) &= f_{even}({s}_1(\beta_2)+{s}_1(1)) + (\beta_2 +1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(1)) \\
+    & = u_2 + \beta_2\cdot v_2 + v_2\\[1ex]
+f(\beta_2+\beta_1) &= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)) + (\beta_2 + \beta_1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)) \\
+    & = u_3 + \beta_2\cdot v_3 + \beta_1\cdot v_3 \\[1ex]
+f(\beta_2+\beta_1+1) &= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) + (\beta_2 + \beta_1 + 1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) \\
+    & = u_3 + \beta_2\cdot v_3  + \beta_1\cdot v_3 + v_3\\[1ex]
+\end{array}
+$$<p>We implement this Additive FFT recursive algorithm in Python code as follows:</p>
+<div class="highlight-container">
+
+  <button class="copy-code-btn outline">Copy</button>
+
+  
+  <div class="highlight"><div style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;">
+<table style="border-spacing:0;padding:0;margin:0;border:0;"><tr><td style="vertical-align:top;padding:0;margin:0;border:0;">
+<pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-1"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-1"> 1</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-2"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-2"> 2</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-3"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-3"> 3</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-4"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-4"> 4</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-5"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-5"> 5</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-6"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-6"> 6</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-7"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-7"> 7</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-8"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-8"> 8</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-9"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-9"> 9</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-10"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-10">10</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-11"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-11">11</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-12"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-12">12</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-13"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-13">13</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-14"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-14">14</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-15"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-15">15</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-16"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-16">16</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-17"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-17">17</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-18"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-18">18</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-19"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-19">19</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-20"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-20">20</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-21"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-21">21</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-22"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-22">22</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-23"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-23">23</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-24"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-24">24</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-25"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-25">25</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-26"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-26">26</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-27"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-27">27</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-28"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-28">28</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-29"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-29">29</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-30"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-30">30</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-31"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-31">31</a>
+</span><span style="white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f" id="hl-0-32"><a style="outline:none;text-decoration:none;color:inherit" href="#hl-0-32">32</a>
+</span></code></pre></td>
+<td style="vertical-align:top;padding:0;margin:0;border:0;;width:100%">
+<pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-python" data-lang="python"><span style="display:flex;"><span><span style="color:#66d9ef">def</span> <span style="color:#a6e22e">afft</span>(f, k, B):
+</span></span><span style="display:flex;"><span>    <span style="color:#e6db74">&#34;&#34;&#34;
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Perform the Additive Fast Fourier Transform (AFFT) on a given polynomial.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Args:
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        f (list): Coefficients of the polynomial to be transformed.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        k (int): The depth of recursion, where 2^k is the size of the domain.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        B (list): The basis of the domain over which the polynomial is evaluated.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    Returns:
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">        list: The evaluations of the polynomial over the domain.
+</span></span></span><span style="display:flex;"><span><span style="color:#e6db74">    &#34;&#34;&#34;</span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">if</span> k <span style="color:#f92672">==</span> <span style="color:#ae81ff">0</span>:
+</span></span><span style="display:flex;"><span>        <span style="color:#66d9ef">return</span> [f[<span style="color:#ae81ff">0</span>]]
+</span></span><span style="display:flex;"><span>    half <span style="color:#f92672">=</span> <span style="color:#ae81ff">2</span><span style="color:#f92672">**</span>(k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>)
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    f_even <span style="color:#f92672">=</span> f[::<span style="color:#ae81ff">2</span>]
+</span></span><span style="display:flex;"><span>    f_odd <span style="color:#f92672">=</span> f[<span style="color:#ae81ff">1</span>::<span style="color:#ae81ff">2</span>]
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    V <span style="color:#f92672">=</span> span(B)                                <span style="color:#75715e"># the subspace spanned by B</span>
+</span></span><span style="display:flex;"><span>    q <span style="color:#f92672">=</span> <span style="color:#66d9ef">lambda</span> x: x<span style="color:#f92672">*</span>(x<span style="color:#f92672">+</span>B[<span style="color:#ae81ff">0</span>])<span style="color:#f92672">/</span>(B[<span style="color:#ae81ff">1</span>]<span style="color:#f92672">*</span>(B[<span style="color:#ae81ff">1</span>] <span style="color:#f92672">+</span> <span style="color:#ae81ff">1</span>)) <span style="color:#75715e"># s^(i)_1 map</span>
+</span></span><span style="display:flex;"><span>    B_half <span style="color:#f92672">=</span> [q(b) <span style="color:#66d9ef">for</span> b <span style="color:#f92672">in</span> B[<span style="color:#ae81ff">1</span>:]]             <span style="color:#75715e"># the basis of the mapped subspace</span>
+</span></span><span style="display:flex;"><span>    
+</span></span><span style="display:flex;"><span>    e_even <span style="color:#f92672">=</span> afft(f_even, k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>, B_half)  <span style="color:#75715e"># compute the evaluations of f_even</span>
+</span></span><span style="display:flex;"><span>    e_odd  <span style="color:#f92672">=</span> afft(f_odd, k<span style="color:#f92672">-</span><span style="color:#ae81ff">1</span>, B_half)   <span style="color:#75715e"># compute the evaluations of f_odd</span>
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    e <span style="color:#f92672">=</span> [<span style="color:#ae81ff">0</span>] <span style="color:#f92672">*</span> (<span style="color:#ae81ff">2</span> <span style="color:#f92672">*</span> half)                <span style="color:#75715e"># initialize the list of evaluations</span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">for</span> i <span style="color:#f92672">in</span> range(<span style="color:#ae81ff">0</span>, half):
+</span></span><span style="display:flex;"><span>        e[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i]   <span style="color:#f92672">=</span> e_even[i] <span style="color:#f92672">+</span> V[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i] <span style="color:#f92672">*</span> e_odd[i]
+</span></span><span style="display:flex;"><span>        e[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i<span style="color:#f92672">+</span><span style="color:#ae81ff">1</span>] <span style="color:#f92672">=</span> e_even[i] <span style="color:#f92672">+</span> V[<span style="color:#ae81ff">2</span><span style="color:#f92672">*</span>i<span style="color:#f92672">+</span><span style="color:#ae81ff">1</span>] <span style="color:#f92672">*</span> e_odd[i]
+</span></span><span style="display:flex;"><span>
+</span></span><span style="display:flex;"><span>    <span style="color:#66d9ef">return</span> e</span></span></code></pre></td></tr></table>
+</div>
+</div>
+</div>
+<p>The function <code>afft(f, k, B)</code> has three parameters in total, which are the coefficient vector of the polynomial $f(X)$ on $\mathcal{B}^{novel}$, the recursion depth $k$, and the Basis of the current subspace $S^{(0)}$.</p>
+<h2 id="summary">Summary</h2>
+<p>The Additive FFT algorithm requires a mapping chain of subspaces constructed by Subspace Polynomials. The principles introduced in this article are not limited to recursively constructed binary fields, but a more general algebraic structure.
+The paper [LCH14] uses another recursive Additive FFT algorithm, we will introduce the differences between the two in the next article, as well as the iterative Additive FFT algorithm (Algorithm 2) in the [DP24] paper.</p>
+<h2 id="references">References</h2>
+<ul>
+<li>[DP24] Benjamin E. Diamond and Jim Posen. &ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers&rdquo;. 2024. <a href="https://eprint.iacr.org/2024/504">https://eprint.iacr.org/2024/504</a></li>
+<li>[LCH14] Lin, Sian-Jheng, Wei-Ho Chung, and Yunghsiang S. Han. &ldquo;Novel polynomial basis and its application to Reed-Solomon erasure codes.&rdquo; 2014 ieee 55th annual symposium on foundations of computer science. IEEE, 2014. <a href="https://arxiv.org/abs/1404.3458">https://arxiv.org/abs/1404.3458</a></li>
+<li>[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.</li>
+</ul>
+
+      </div>
+
+      
+      
+<div class="post-copyright">
+  <p class="copyright-item">
+    <span class="item-title">Author</span>
+    <span class="item-content">Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io></span>
+  </p>
+  <p class="copyright-item">
+    <span class="item-title">LastMod</span>
+    <span class="item-content">
+      2024-11-01
+      
+        <a href="https://github.com/sec-bit/blog/commit/0453263d11ca7e177a7154e403f6d7fe381806fc" title="add binius 01 &amp; 02">
+          (0453263)
+        </a>
+        
+          <br>add binius 01 &amp; 02
+        
+      
+    </span>
+  </p>
+  
+  <p class="copyright-item">
+    <span class="item-title">License</span>
+    <span class="item-content">If you need to reprint, please indicate the author and source of the article.</span>
+  </p>
+</div>
+
+
+
+      
+      
+
+
+      <footer class="post-footer">
+        <div class="post-tags">
+          <a href="https://sec-bit.github.io/blog/en/tags/cryptography/">cryptography</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/finite-fields/">finite fields</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/snark/">SNARK</a>
+          <a href="https://sec-bit.github.io/blog/en/tags/binius/">Binius</a>
+          
+        </div>
+
+
+        
+        <nav class="post-nav">
+          
+          
+          <a class="next" href="/blog/en/2024/10/31/binius-01/">
+            <span class="next-text nav-default">Notes on FRI-Binius (Part I): Binary Towers</span>
+            <span class="prev-text nav-mobile">Next</span>
+            
+            <i class="iconfont">
+              
+<svg aria-hidden="true" class="lucide lucide-chevron-right hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m9 18 6-6-6-6"/></svg>
+            </i>
+          </a>
+        </nav>
+      </footer>
+    </article>
+
+    
+    
+    
+    
+
+
+    
+    
+
+  
+
+  
+  
+    <div class="comment">
+  <script
+    src="https://giscus.app/client.js"
+    data-repo="sec-bit/comments-for-secbit-blog"
+    data-repo-id="MDEwOlJlcG9zaXRvcnkyMTQ2MDkzNjM="
+    data-category="Comments"
+    data-category-id="DIC_kwDODMqt084CY2v-"
+    data-mapping="pathname"
+    data-strict="0"
+    data-reactions-enabled="1"
+    data-emit-metadata="0"
+    data-input-position="top"
+    data-theme="light"
+    data-lang="en"
+    
+      data-loading="lazy"
+    
+    crossorigin="anonymous"
+    async
+  ></script>
+</div>
+
+  
+
+  
+  
+
+  
+
+  
+
+    
+
+  
+
+  
+
+
+  </div>
+
+  
+  <nav class="toc" id="toc">
+    <div class="toc-title">Table of Contents</div>
+    <div class="toc-content custom-scrollbar">
+      <nav id="TableOfContents">
+  <ul>
+    <li><a href="#linear-subspace-polynomial">Linear Subspace Polynomial</a>
+      <ul>
+        <li><a href="#linearized-polynomial">Linearized Polynomial</a></li>
+        <li><a href="#linear-properties">Linear Properties</a></li>
+        <li><a href="#recursive-formula-of-subspace-polynomial">Recursive Formula of Subspace Polynomial</a></li>
+      </ul>
+    </li>
+    <li><a href="#homomorphic-mapping-on-subspace">Homomorphic Mapping on Subspace</a>
+      <ul>
+        <li><a href="#chain-of-mappings">Chain of Mappings</a></li>
+      </ul>
+    </li>
+    <li><a href="#composition-of-s_1-mappings">Composition of  Mappings</a></li>
+    <li><a href="#polynomial-basis">Polynomial Basis</a></li>
+    <li><a href="#additive-fft">Additive FFT</a></li>
+    <li><a href="#summary">Summary</a></li>
+    <li><a href="#references">References</a></li>
+  </ul>
+</nav>
+    </div>
+  </nav>
+
+
+</div>
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/categories/crypto-wallet/index.html b/en/categories/crypto-wallet/index.html
index 47f5083..57e0dac 100644
--- a/en/categories/crypto-wallet/index.html
+++ b/en/categories/crypto-wallet/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/categories/index.html b/en/categories/index.html
index 1c05e22..cdef8f7 100644
--- a/en/categories/index.html
+++ b/en/categories/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Categories">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2024-01-19T11:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T17:05:24+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Categories">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -420,6 +420,47 @@ <h2 class="archive-year">
     
     
     
+      <section id="archive" class="archive">
+        <div class="archive-title">
+        </div>
+          <div class="collection-title">
+            <h2 class="archive-year">
+              <a href="https://sec-bit.github.io/blog/en/categories/mle-pcs/">
+                Category: mle-pcs
+              </a>
+            </h2>
+          </div>
+
+          
+            <div class="archive-post">
+              <time datetime="2024-11-01" class="archive-post-time">
+                2024-11-01
+              </time>
+              <span class="archive-post-title">
+                <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+                  Notes on Binius (Part II): Subspace Polynomial
+                </a>
+              </span>
+            </div>
+          
+            <div class="archive-post">
+              <time datetime="2024-10-31" class="archive-post-time">
+                2024-10-31
+              </time>
+              <span class="archive-post-title">
+                <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+                  Notes on FRI-Binius (Part I): Binary Towers
+                </a>
+              </span>
+            </div>
+          
+          
+      </section>
+    
+    
+    
+    
+    
       <section id="archive" class="archive">
         <div class="archive-title">
         </div>
diff --git a/en/categories/index.xml b/en/categories/index.xml
index a66124f..721d43c 100644
--- a/en/categories/index.xml
+++ b/en/categories/index.xml
@@ -6,8 +6,15 @@
     <description>Recent content in Categories on SECBIT Blog</description>
     <generator>Hugo</generator>
     <language>en</language>
-    <lastBuildDate>Fri, 01 Nov 2024 17:05:24 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
     <atom:link href="https://sec-bit.github.io/blog/en/categories/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Mle-Pcs</title>
+      <link>https://sec-bit.github.io/blog/en/categories/mle-pcs/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/categories/mle-pcs/</guid>
+      <description></description>
+    </item>
     <item>
       <title>Crypto Wallet</title>
       <link>https://sec-bit.github.io/blog/en/categories/crypto-wallet/</link>
diff --git a/en/categories/libra/index.html b/en/categories/libra/index.html
index 0c87122..2990037 100644
--- a/en/categories/libra/index.html
+++ b/en/categories/libra/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/categories/mle-pcs/index.html b/en/categories/mle-pcs/index.html
new file mode 100644
index 0000000..9e72c44
--- /dev/null
+++ b/en/categories/mle-pcs/index.html
@@ -0,0 +1,580 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/categories/mle-pcs/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" />
+
+<link href="/blog/en/categories/mle-pcs/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/categories/mle-pcs/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Mle-Pcs">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Mle-Pcs">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Mle-Pcs">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/en/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/crypto-wallet/" class="outline archive-categories__link ">crypto wallet</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link archive-categories__link--current">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title category">
+        <h2 class="archive-name">Category: Mle-Pcs</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/categories/mle-pcs/index.xml b/en/categories/mle-pcs/index.xml
new file mode 100644
index 0000000..e26de83
--- /dev/null
+++ b/en/categories/mle-pcs/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Mle-Pcs on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/en/categories/mle-pcs/</link>
+    <description>Recent content in Mle-Pcs on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>en</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/en/categories/mle-pcs/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
+  </channel>
+</rss>
diff --git a/en/categories/mle-pcs/page/1/index.html b/en/categories/mle-pcs/page/1/index.html
new file mode 100644
index 0000000..c722a6a
--- /dev/null
+++ b/en/categories/mle-pcs/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <title>https://sec-bit.github.io/blog/en/categories/mle-pcs/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/en/categories/mle-pcs/">
+  </head>
+</html>
diff --git a/en/categories/programming-language/index.html b/en/categories/programming-language/index.html
index 99d82d1..b6be86b 100644
--- a/en/categories/programming-language/index.html
+++ b/en/categories/programming-language/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link archive-categories__link--current">programming language</a>
     
   
diff --git a/en/categories/smart-contract/index.html b/en/categories/smart-contract/index.html
index 7d5975a..0650c7a 100644
--- a/en/categories/smart-contract/index.html
+++ b/en/categories/smart-contract/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/categories/vulnerability/index.html b/en/categories/vulnerability/index.html
index 9cf83d9..3874673 100644
--- a/en/categories/vulnerability/index.html
+++ b/en/categories/vulnerability/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/categories/zero-knowledge-proof/index.html b/en/categories/zero-knowledge-proof/index.html
index 76dbc19..31ce01a 100644
--- a/en/categories/zero-knowledge-proof/index.html
+++ b/en/categories/zero-knowledge-proof/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/categories/zksnarks/index.html b/en/categories/zksnarks/index.html
index 866c647..abf8950 100644
--- a/en/categories/zksnarks/index.html
+++ b/en/categories/zksnarks/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/index.html b/en/index.html
index 7bf7643..0585fe0 100644
--- a/en/index.html
+++ b/en/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2024-01-19T11:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T17:05:24+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/">
-        Trust Wallet&#39;s Fomo3D Summer: Fresh Discovery of Low Entropy Flaw From 2018
+      <a class="post-link" href="/blog/en/2024/11/01/binius-02/">
+        Notes on Binius (Part II): Subspace Polynomial
       </a>
     </h1>
     
@@ -381,14 +381,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        p0n1 and outoflegend
+        Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2024-01-19">
-          2024-01-19
+        <time datetime=" 2024-11-01">
+          2024-11-01
         </time>
       </div>
     </div>
@@ -397,16 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/img/front.png"><br>
+      
     </p>
 
     
     <div class="post-summary">
-      In July 2023, numerous ETH wallets were hacked, leading to an investigation that uncovered a low entropy flaw in Trust Wallet dating back to 2018. This vulnerability, linked to a predictable random number generation issue in Trust Wallet&rsquo;s code, resulted in easily guessable wallet keys. The exploit affected over 2100 victims, causing a loss of over 1360 ETH and potentially millions of dollars across various blockchains. Evidence suggests that most affected users were Trust Wallet users or users of Trust Wallet fork products. This incident highlights the importance of secure random number generation in wallet security.
+      The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/" class="read-more-link outline">Read more</a>
+      <a role="button" href="/blog/en/2024/11/01/binius-02/" class="read-more-link outline">Read more</a>
     </div>
     
   </div>
@@ -421,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/">
-        The &#39;Input Aliasing&#39; bug caused by a contract library of zkSNARKs
+      <a class="post-link" href="/blog/en/2024/10/31/binius-01/">
+        Notes on FRI-Binius (Part I): Binary Towers
       </a>
     </h1>
     
@@ -431,14 +431,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        p0n1
+        Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-29">
-          2019-07-29
+        <time datetime=" 2024-10-31">
+          2024-10-31
         </time>
       </div>
     </div>
@@ -447,16 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/scalar_fix.png"><br>
+      
     </p>
 
     
     <div class="post-summary">
-      Many zero-knowledge proof projects are threatened by attacks like faking proof, double spending and replaying due to the &lsquo;Input Aliasing&rsquo; bug caused by a contract library of zkSNARKs. This applies to many Ethereum open-source projects as well, including 3 most popular zkSNARKs library - snarkjs, ethsnarks, ZoKrates and 3 topical mixcoin apps - hopper, Heiswap, Miximus.
+      Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/" class="read-more-link outline">Read more</a>
+      <a role="button" href="/blog/en/2024/10/31/binius-01/" class="read-more-link outline">Read more</a>
     </div>
     
   </div>
@@ -471,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/">
-        &#39;Move&#39; Programming Language: The Highlight of Libra
+      <a class="post-link" href="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/">
+        Trust Wallet&#39;s Fomo3D Summer: Fresh Discovery of Low Entropy Flaw From 2018
       </a>
     </h1>
     
@@ -481,14 +481,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        Guo Yu
+        p0n1 and outoflegend
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-10">
-          2019-07-10
+        <time datetime=" 2024-01-19">
+          2024-01-19
         </time>
       </div>
     </div>
@@ -497,16 +497,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/cover1.png"><br>
+      <img src="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/img/front.png"><br>
     </p>
 
     
     <div class="post-summary">
-      Among publications of Libra, the most attractive thing would be the brand new &lsquo;Move&rsquo; programming language. After the first glance at &lsquo;Move&rsquo; whitepaper, we came to the idea that this is the future of smart contract language.
+      In July 2023, numerous ETH wallets were hacked, leading to an investigation that uncovered a low entropy flaw in Trust Wallet dating back to 2018. This vulnerability, linked to a predictable random number generation issue in Trust Wallet&rsquo;s code, resulted in easily guessable wallet keys. The exploit affected over 2100 victims, causing a loss of over 1360 ETH and potentially millions of dollars across various blockchains. Evidence suggests that most affected users were Trust Wallet users or users of Trust Wallet fork products. This incident highlights the importance of secure random number generation in wallet security.
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/" class="read-more-link outline">Read more</a>
+      <a role="button" href="/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/" class="read-more-link outline">Read more</a>
     </div>
     
   </div>
@@ -521,8 +521,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/">
-        How the winner got Fomo3D prize - A Detailed Explanation
+      <a class="post-link" href="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/">
+        The &#39;Input Aliasing&#39; bug caused by a contract library of zkSNARKs
       </a>
     </h1>
     
@@ -531,14 +531,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        SECBIT Labs
+        p0n1
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-08-23">
-          2018-08-23
+        <time datetime=" 2019-07-29">
+          2019-07-29
         </time>
       </div>
     </div>
@@ -547,17 +547,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/cover.jpeg"><br>
+      <img src="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/scalar_fix.png"><br>
     </p>
 
     
     <div class="post-summary">
-      The first round of Fomo3D has ended and the winner&rsquo;s address is 0xa169, with a prize of 10,469.66 ethers.
-You may think that the winner is just an ordinary participant.
+      Many zero-knowledge proof projects are threatened by attacks like faking proof, double spending and replaying due to the &lsquo;Input Aliasing&rsquo; bug caused by a contract library of zkSNARKs. This applies to many Ethereum open-source projects as well, including 3 most popular zkSNARKs library - snarkjs, ethsnarks, ZoKrates and 3 topical mixcoin apps - hopper, Heiswap, Miximus.
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/" class="read-more-link outline">Read more</a>
+      <a role="button" href="/blog/en/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/" class="read-more-link outline">Read more</a>
     </div>
     
   </div>
@@ -572,8 +571,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/">
-        Lacking Insights in ERC223 &amp; ERC827 Implementation
+      <a class="post-link" href="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/">
+        &#39;Move&#39; Programming Language: The Highlight of Libra
       </a>
     </h1>
     
@@ -582,14 +581,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        SECBIT Labs
+        Guo Yu
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-06-24">
-          2018-06-24
+        <time datetime=" 2019-07-10">
+          2019-07-10
         </time>
       </div>
     </div>
@@ -598,16 +597,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/1.png"><br>
+      <img src="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/cover1.png"><br>
     </p>
 
     
     <div class="post-summary">
-      This bug originates from a common practice: calling an arbitrary function appointed by the contract caller from another contract after invoking a function in the current one, while the bug in ATN contract reveals the danger of this approach: the contract caller could bypass authority checks or attack others with the identity of contract itself via this feature.
+      Among publications of Libra, the most attractive thing would be the brand new &lsquo;Move&rsquo; programming language. After the first glance at &lsquo;Move&rsquo; whitepaper, we came to the idea that this is the future of smart contract language.
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/" class="read-more-link outline">Read more</a>
+      <a role="button" href="/blog/en/2019/07/10/move-programming-language-the-highlight-of-libra/" class="read-more-link outline">Read more</a>
     </div>
     
   </div>
@@ -634,6 +633,22 @@ <h1 class="post-title">
 
 
 
+
+
+
+<nav class="pagination">
+  <ul>
+    
+    <li  class="active" >
+      <a href="/blog/en/">1</a>
+    </li>
+    
+    <li >
+      <a href="/blog/en/page/2/">2</a>
+    </li>
+    
+  </ul>
+</nav>
 
 
 
diff --git a/en/index.xml b/en/index.xml
index 439f10a..b266758 100644
--- a/en/index.xml
+++ b/en/index.xml
@@ -6,11 +6,673 @@
     <description>Recent content on SECBIT Blog</description>
     <generator>Hugo -- gohugo.io</generator>
     <language>en</language>
-    <lastBuildDate>Fri, 19 Jan 2024 11:00:00 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 08:00:00 +0800</lastBuildDate>
     
         <atom:link href="https://sec-bit.github.io/blog/en/index.xml" rel="self" type="application/rss+xml" />
     
     
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      
+        <description>&lt;ul&gt;
+&lt;li&gt;Yu Guo &lt;a href=&#34;mailto:yu.guo@secbit.io&#34;&gt;yu.guo@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;Jade Xie &lt;a href=&#34;mailto:jade@secbit.io&#34;&gt;jade@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;/ul&gt;
+&lt;p&gt;The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.&lt;/p&gt;
+&lt;p&gt;Since the algebraic structure on which Additive FFT relies is very similar to Multiplicative FFT on prime fields, knowledge of Multiplicative FFT will help understand the content of this article.&lt;/p&gt;
+&lt;h2 id=&#34;linear-subspace-polynomial&#34;&gt;Linear Subspace Polynomial&lt;/h2&gt;
+&lt;p&gt;We continue to explore the Extension Field $\mathbb{F}_{2^m}$ based on $\mathbb{F}_2$. Regardless of how $\mathbb{F}_{2^m}$ is constructed, all elements form a vector space, denoted as $V_m$, and there exists a Basis $(\beta_0, \beta_1, \ldots, \beta_{m-1})$ that spans this vector space, denoted as $V_m=\mathsf{Span}(\beta_0, \beta_1, \ldots, \beta_{m-1})$, or represented by the symbol $\langle \cdots \rangle$:&lt;/p&gt;
+$$
+V_m = \langle \beta_0, \beta_1, \ldots, \beta_{m-1} \rangle
+$$&lt;p&gt;Thus, any element $ \theta\in\mathbb{F}_{2^m}$ can be written as a linear combination of Basis components:&lt;/p&gt;
+$$
+\theta = c_0\cdot \beta_0 + c_1\cdot \beta_1 + \ldots + c_{m-1}\cdot \beta_{m-1}, \text{ where $c_i\in \mathbb{F}_2$}
+$$&lt;p&gt;At the same time, $V_m$ is also an additive group with the identity element $V_0=\{0\}$. If $V_k$ is a linear subspace of $V_m$, then $V_k$ is also an additive subgroup of $V_m$. For $V_k$, we can use a polynomial to encode all its elements, i.e., the root set of this polynomial exactly corresponds to the set of all elements of $V_k$. We denote this polynomial as $s_k(X)$. This polynomial is also called the &amp;ldquo;Subspace Polynomial&amp;rdquo;:&lt;/p&gt;
+$$
+s_k(X) = \prod_{i=0}^{2^k-1}(X-\theta_i), \text{ where $\theta_i\in V_k$ }
+$$&lt;p&gt;The polynomial $s_k(X)$ can also be seen as the Vanishing Polynomial on the Domain $V_k$, because for any $\theta\in V_k$, it satisfies:&lt;/p&gt;
+$$
+s_k(\theta) = 0
+$$&lt;h3 id=&#34;linearized-polynomial&#34;&gt;Linearized Polynomial&lt;/h3&gt;
+&lt;p&gt;The Subspace polynomial introduced above is a so-called Linearized Polynomial because its definition satisfies the following form:&lt;/p&gt;
+$$
+L(X) = \sum_{i=0}^{n-1} c_i\cdot X^{q^i}, \quad c_i\in \mathbb{F}_{q}
+$$&lt;p&gt;The polynomial $L(X)$ is called a Linearized Polynomial because each $L(X)$ corresponds to a linear operator on the extension field $K$ of $\mathbb{F}_{q}$. If all roots of $L(X)$ are in the extension field $K=\mathbb{F}_{q^s}$, then for all $\theta\in K$, we have $L(\theta)\in K$. Moreover, if $\theta\neq\theta&#39;$, then $L(\theta)\neq L(\theta&#39;)$. Each $L(X)$ can be viewed as a matrix $B\in \mathbb{F}_q^{s\times s}$, completing a linear transformation on the vector space $\mathbb{F}^s_q$, such that:&lt;/p&gt;
+$$
+(c_0, c_1, \ldots, c_{s-1}) B = (d_0, d_1, \ldots, d_{s-1})
+$$&lt;p&gt;For Subspace Polynomials, each $s_k(X)$ is a Linearized Polynomial. Conversely, for any Linearized polynomial $L(X)\in \mathbb{F}_{q^m}[X]$, all its roots form a linear subspace $V_n\subset V_m$. For detailed proof, please refer to [LN97].&lt;/p&gt;
+&lt;h3 id=&#34;linear-properties&#34;&gt;Linear Properties&lt;/h3&gt;
+&lt;p&gt;Since each term of $s_k(X)$ is of the form $a_i\cdot X^{2^i}$, it has additive homomorphism:&lt;/p&gt;
+$$
+\begin{align*}
+s_k(x + y) &amp;= s_k(x) + s_k(y), &amp;\quad \forall x, y \in \mathbb{F}_{2^m}\\
+s_k(c\cdot x) &amp;= c\cdot s_k(x), &amp;\quad \forall x\in \mathbb{F}_{2^m}, \forall c\in \mathbb{F}_2
+\end{align*}
+$$&lt;p&gt;Let&amp;rsquo;s try to prove the first equation simply. According to a common theorem in finite field theory (Freshman&amp;rsquo;s dream):&lt;/p&gt;
+$$
+(x + y)^{2} = x^2 + 2xy + y^2 = x^{2} + y^{2}, \quad\text{where $x, y\in \mathbb{F}_{2^m}$}
+$$&lt;p&gt;Obviously, $2xy=0$, because in binary fields, $2=0$. So the following equation also holds:&lt;/p&gt;
+$$
+(x + y)^{2^i} = x^{2^i} + y^{2^i}
+$$&lt;p&gt;Next, let&amp;rsquo;s verify the additive homomorphism of $s_k(X)$:&lt;/p&gt;
+$$
+s_k(x + y) = \sum_{i=0}^{k} a_i\cdot (x+y)^{2^i}  = \sum_{i=0}^{k} a_i\cdot \big(x^{2^i} + y^{2^i}\big) = s_k(x) + s_k(y)
+$$&lt;h3 id=&#34;recursive-formula-of-subspace-polynomial&#34;&gt;Recursive Formula of Subspace Polynomial&lt;/h3&gt;
+&lt;p&gt;For the subspace $V_k$, it can be split into two disjoint sets:&lt;/p&gt;
+$$
+V_k = V_{k-1} \cup (\beta_{k-1}+V_{k-1})
+$$&lt;p&gt;Here $V_k=\langle \beta_0, \beta_1, \ldots, \beta_{k-1} \rangle$ , $V_{k-1}=\langle \beta_0, \beta_1, \ldots, \beta_{k-2} \rangle $ ,
+then the subspace polynomials corresponding to $V_k$, $V_{k-1}$, $\beta_{k-1}+V_{k-1}$ satisfy the following relationship:&lt;/p&gt;
+$$
+s_k(X) = s_{k-1}(X) \cdot s_{k-1}(X+\beta_{k-1})
+$$&lt;p&gt;Let&amp;rsquo;s take a simple example, assuming $k=3$, $V_3=\langle \beta_0,\beta_1,\beta_2\rangle $ consists of two parts, one part is $V_2=\langle \beta_0,\beta_1\rangle $, the other part is each element in $V_2$ plus ${\color{blue}\beta_2}$. Therefore, the number of elements in $V_3$ is $2^2 + 2^2 = 8$. Here are all the elements of $V_3$:&lt;/p&gt;
+$$
+V_3 = \{0, \beta_0, \beta_1, \beta_0+\beta_1\} \cup \{{\color{blue}\beta_2}, \beta_0+{\color{blue}\beta_2}, \beta_1+{\color{blue}\beta_2}, (\beta_0+\beta_1)+{\color{blue}\beta_2}\}
+$$&lt;p&gt;We can easily verify: $s_3(X) = s_{2}(X) \cdot s_{2}(X+\beta_{k-1})$. Of course, $s_{2}(X)$ can also be split into the product of $s_1(X)$ and $s_1(X+\beta_1)$. Let&amp;rsquo;s try to break it down to the bottom:&lt;/p&gt;
+$$
+\begin{split}
+s_3(X) &amp; = s_2(X)\cdot s_2(X + \beta_2) \\
+&amp; = s_2(X)^2 + \beta_2\cdot s_2(X) \\
+&amp; = s_1(X)\cdot s_1(X + \beta_1)\cdot s_1(X)\cdot s_1(X + \beta_1) + \beta_2\cdot s_1(X)\cdot s_1(X + \beta_1) \\
+&amp; = (s_1(X)^2 + \beta_1\cdot s_1(X))^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = s_1(X)^4 + \beta_1^2\cdot s_1(X)^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = s_1(X)^4 + (\beta_1^2+\beta_2)\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = (X\cdot(X+\beta_0))^4 + (\beta_1^2+\beta_2)\cdot (X\cdot(X + \beta_0))^2 + \beta_1\beta_2\cdot (X\cdot(X + \beta_0)) \\
+&amp; = (X^2 + \beta_0\cdot X)^4 + (\beta_1^2+\beta_2)\cdot (X^2 + \beta_0\cdot X)^2 + \beta_1\beta_2\cdot (X^2 + \beta_0\cdot X) \\
+&amp; = X^8  + \beta_0^4X^4 + (\beta_1^2+\beta_2)X^4 + \beta_0^2(\beta_1^2+\beta_2)X^2 + \beta_1\beta_2X^2 + \beta_0\beta_1\beta_2X \\
+\end{split}
+$$&lt;p&gt;Finally, the expansion of $s_3(X)$ satisfies the pattern of $\sum_{i=0}^{k} a_i\cdot X^{2^i}$, which is consistent with our conclusion above.&lt;/p&gt;
+&lt;h2 id=&#34;homomorphic-mapping-on-subspace&#34;&gt;Homomorphic Mapping on Subspace&lt;/h2&gt;
+&lt;p&gt;Because Subspace Polynomial is actually a kind of Vanishing Polynomial, and it also has additive homomorphism, we can use Subspace Polynomial to define homomorphic mapping between subspaces.&lt;/p&gt;
+&lt;p&gt;For example, for $V_3=\langle \beta_0, \beta_1, \beta_2\rangle$, we define the subspace $V_1=\{0, \beta_0\}$ of $V_3$ and its Subspace Polynomial $s_1(X)$&lt;/p&gt;
+$$
+s_1(X) = X\cdot (X+\beta_0)
+$$&lt;p&gt;Obviously, $s_1(V_1)=\{0, 0\}$. If we apply $s_1(X)$ to $V_3$, we will get the following result:&lt;/p&gt;
+$$
+\begin{split}
+s_1(0) &amp;= 0\\
+s_1(\beta_0) &amp; = 0 \\
+s_1(\beta_1) &amp; = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_0+\beta_1) &amp; = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_2) &amp;= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_2) &amp;= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_1+\beta_2) &amp;= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_1+\beta_2) &amp;= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+\end{split}
+$$&lt;p&gt;The above equations show that $s_1(V_3)$ is mapped to a set that is only half the size of $V_3$, denoted as $V_2$. This set is also a subspace, $V_2= \langle \beta&#39;_0, \beta&#39;_1\rangle = \langle \beta_0\beta_1 + \beta_1^2, \beta_0\beta_2 + \beta_2^2 \rangle $, with dimension 2.&lt;/p&gt;
+&lt;p&gt;This is not a coincidence. According to the group isomorphism theorem, the Image $G$ of the homomorphic mapping $\phi: H \to G$ satisfies $G\cong H/Ker(\phi)$, where $G$ is a quotient group, and $|G| = |H|/|Ker(\phi)|$. In the above example, $s_1: V_3\to V_2$ is a homomorphic mapping, $V_1=Ker(s_1)$.&lt;/p&gt;
+&lt;h3 id=&#34;chain-of-mappings&#34;&gt;Chain of Mappings&lt;/h3&gt;
+&lt;p&gt;For $V_2 = s_1(V_3)$, we can still construct a Subspace Polynomial of Degree 2,&lt;/p&gt;
+$$
+s_1&#39;(X) = X\cdot (X+\beta_0\beta_1 + \beta_1^2)
+$$&lt;p&gt;We can continue to map $V_2$ to a one-dimensional subspace $V_1=\langle \beta&#39;&#39;\rangle$. We only need to calculate $s_1(\beta&#39;_0)$ and $s_1(\beta&#39;_1)$, these Basis components constitute $V_2$:&lt;/p&gt;
+$$
+\begin{split}
+s_1&#39;(\beta_0\beta_1 + \beta_1^2) &amp;= 0 \\
+s_1&#39;(\beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2)&amp; = \beta_0^2\beta_1\beta_2 + \beta_0\beta_1^2\beta_2 + \beta_0^2\beta_2^2 + \beta_0\beta_1\beta_2^2 + \beta_1^2\beta_2^2 + \beta_2^4 \\
+ &amp; = \beta&#39;&#39;
+\end{split}
+$$&lt;p&gt;Where the first component of the Basis $(\beta&#39;_0, \beta&#39;_1)$ of $V_2$ will be mapped to $0$, and the second component is mapped to $\beta&#39;&#39;$.&lt;/p&gt;
+&lt;p&gt;So far, we have obtained a chain of mappings:&lt;/p&gt;
+$$
+V_3 \overset{s_1}{\longrightarrow} V_2 \overset{s&#39;_1}{\longrightarrow} V_1
+$$&lt;p&gt;Or it can be written as:&lt;/p&gt;
+$$
+\langle \beta_0, \beta_1, \beta_2 \rangle \overset{s_1}{\longrightarrow} \langle s_1(\beta_1), s_1(\beta_2) \rangle
+\overset{s&#39;_1}{\longrightarrow} \langle s&#39;_1(s_1(\beta_2)) \rangle
+$$&lt;p&gt;And each mapping reduces the dimension of the linear subspace by one, i.e., halves the size of the set. This algebraic structure is key to our subsequent construction of FFT and FRI protocols.&lt;/p&gt;
+&lt;p&gt;It&amp;rsquo;s not hard to prove that for any linear subspace, as long as we choose a Basis, we can construct Subspace Polynomials of Degree 2 as mapping functions in sequence, then obtain a subspace with dimension reduced by 1 through mapping, and repeat this process until the subspace is reduced to 1 dimension. Of course, different choices of Basis and different choices of Subspace Polynomial will lead to different mapping chains. Choosing the appropriate mapping chain can significantly improve the efficiency of computation.&lt;/p&gt;
+&lt;h2 id=&#34;composition-of-s_1-mappings&#34;&gt;Composition of ${s}_1$ Mappings&lt;/h2&gt;
+&lt;p&gt;We define the initial subspace of the mapping chain as $S^{(0)}$, the subspace after mapping as $S^{(1)}$, and the subspace after $i$ mappings as $S^{(i)}$:&lt;/p&gt;
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$&lt;p&gt;Given a set of Basis for $S^{(i)}$, assumed to be $B^{(i)}=(\beta^{(i)}_0, \beta^{(i)}_1,\ldots, \beta^{(i)}_s)$, define Subspace Polynomial ${s}^{(i)}_1$ on the Basis, and use it as the group homomorphism mapping function to reduce $S^{(i)}$ to $S^{(i+1)}$. The Basis of the reduced linear subspace $S^{(i+1)}$ needs to transform the Basis of $S^{(i)}$ along with ${s}^{(i)}_1$ to a new Basis. After switching to the new Basis, we can define a new set of Subspace Polynomials ${s}^{(i+1)}_i(X)$.&lt;/p&gt;
+&lt;p&gt;Let&amp;rsquo;s assume we start with $S^{(0)}=\langle \beta_0, \beta_1, \ldots, \beta_{k-1}\rangle $, given a set of Basis $B_k$, after mapping by ${s}_1$, we get $S^{(1)}$, and its Basis $B^{(1)}$:&lt;/p&gt;
+$$
+B^{(1)} = \langle {\color{blue}{s}_1(\beta_1)}, {\color{blue}{s}_1(\beta_2)}, \ldots, {s}_1(\beta_{k-1}) \rangle
+$$&lt;p&gt;Define ${s}^{(1)}_1(X)$ on $S^{(1)}$ again:&lt;/p&gt;
+$$
+{s}^{(1)}_1(X) = {X(X+{s}_1(\beta_1))} 
+$$&lt;p&gt;Then, what is the relationship between $S^{(2)}$ produced by mapping $S^{(1)}$ and $S^{(0)}$? For any element $a \in S^{(0)}$, it is first mapped to $S^{(1)}$ by ${s}_1$, and then mapped to an element in $S^{(2)}$ by ${s}^{(1)}_1$, so the value after two mappings can be written as the composition of two mapping functions, ${s}^{(1)}_1({s}_1(X))$. Let&amp;rsquo;s simplify this composite function:&lt;/p&gt;
+$$
+\begin{align*}
+{s}^{(1)}_1({s}_1(X)) &amp;= {s}_1(X)({s}_1(X)+{s}_1(\beta_1))
+&amp;  \\[3ex]
+&amp;= {s}_1(X)({s}_1(X+\beta_1)) &amp; (\text{additive homomorphism })\\[3ex]
+&amp;= {s}_2(X) &amp; (\text{recurrency } )
+\end{align*}
+$$&lt;p&gt;So we derived ${s}^{(1)}_1({s}_1(X))={s}_2(X)$. This means that after two 2-to-1 mappings, it is equivalent to doing one 4-to-1 mapping, and the corresponding homomorphic mapping function is ${s}_2$:&lt;/p&gt;
+$$
+\begin{split}
+{s}_2: &amp;S^{(0)} \to S^{(2)} \\[3ex]
+&amp; X \mapsto {X(X+\beta_0)(X+\beta_1)(X+\beta_1+\beta_0)} \\
+\end{split}
+$$&lt;p&gt;As shown in the figure below, both left and right mapping methods will result in $S^{(2)}$:&lt;/p&gt;
+&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;Similarly, we can get the following conclusion, for the linear subspace $S^{(j)}$ after $j$ folds&lt;/p&gt;
+$$
+S^{(j)}  = \langle {s}_{j}(\beta_j), {s}_{j}(\beta_{j+1}), \ldots, {s}_{j}(\beta_{k-1}) \rangle
+$$&lt;p&gt;And ${s}_{j}$ satisfies the following composite equation:&lt;/p&gt;
+$$
+s_{j}(X) = s^{(1)}_{j-1}(s_1(X)) =  s^{(1)}_{j-1}\circ s_1
+$$&lt;p&gt;This composite mapping equation can be interpreted as: first do a $s_1$ mapping to get $S^{(1)}$, then do a $j-1$ dimensional mapping $s^{(1)}_{j-1}$, which is equivalent to directly doing a $j$ dimensional mapping $s_{j}$, both mapping to the same subspace $S^{(j)}$.&lt;/p&gt;
+&lt;p&gt;Similarly, we can also prove: if we first do a $j-1$ dimensional mapping $s_{j-1}$, and then do a one-dimensional mapping on the mapped subspace $S^{(j-1)}$, we can also get the subspace $S^{(j)}$:&lt;/p&gt;
+$$
+s_{j}(X) = s^{(1)}_{1}(s_{j-1}(X)) =  s^{(1)}_{1}\circ s_{j-1}
+$$&lt;p&gt;More generally, we can prove the following important property, that is, doing a $j$ dimensional mapping on any subspace $S^{(i)}$ is equivalent to doing $j$ consecutive 1 dimensional mappings on it:&lt;/p&gt;
+$$
+s^{(i)}_{j}(X) = s^{(i+j-1)}_1\circ s^{(i+j-2)}_1\circ \cdots \circ s^{(i)}_1
+$$&lt;h2 id=&#34;polynomial-basis&#34;&gt;Polynomial Basis&lt;/h2&gt;
+&lt;p&gt;For a univariate polynomial $f(X) \in \mathbb{F}[X]^{&lt;N}$ of degree less than $N=2^n$, it has two common forms of expression, &amp;ldquo;coefficient form&amp;rdquo; and &amp;ldquo;point value form&amp;rdquo;. The coefficient form is the most common form we see:&lt;/p&gt;
+$$
+f(X) = c_0 + c_1X + c_2X^2 + \ldots + c_{N-1}X^{N-1}
+$$&lt;p&gt;where $\vec{c}=(c_0, c_1, \ldots, c_{N-1})$ is the coefficient vector of the polynomial. In addition, the vector of unknowns $(1, X, X^2, \ldots, X^{N-1})$ forms a basis of polynomials, conventionally called the Monomial Basis, denoted as $\mathcal{B}^{mono}$:&lt;/p&gt;
+$$
+\mathcal{B}^{mono}=(1, X, X^2, \ldots, X^{N-1})
+$$&lt;p&gt;This basis vector can also be expressed in the form of Tensor Product:&lt;/p&gt;
+$$
+\mathcal{B}^{mono}=(1, X) \otimes (1, X^2) \otimes \ldots \otimes (1, X^{2^{n-1}})
+$$&lt;p&gt;The &amp;ldquo;point value form&amp;rdquo; of a univariate polynomial is called the Lagrange Basis representation. That is, we can uniquely determine a polynomial of Degree less than N using N &amp;ldquo;coefficients&amp;rdquo; (please note that the concept of coefficients here is broader than just the coefficients in the &amp;ldquo;coefficient form&amp;rdquo; representation).&lt;/p&gt;
+&lt;p&gt;Through polynomial division, we can obtain the coefficients of the polynomial on $\mathcal{B}^{mono}$. For example, for a polynomial $t(X)$ of degree 7, we can first calculate the coefficient of $X^4\cdot X^2\cdot X$, that is, calculate the polynomial division: $t(X)/(X^4\cdot X^2\cdot X)$, obtaining a coefficient $c_7$ and a remainder polynomial $t&#39;(X)$; then calculate $t&#39;(X)/(X^4\cdot X^2)$, obtaining the coefficient $c_6$ of $\mathcal{B}^{mono}_6 = X^6$, and so on. Finally, we can obtain the coefficient vector $\vec{c}=(c_0, c_1, \ldots, c_7)$ of $t(X)$ with respect to $\mathcal{B}^{mono}$, such that:&lt;/p&gt;
+$$
+t(X) = c_0 + c_1X + c_2X^2 + \ldots + c_7X^7
+$$&lt;p&gt;Using the Subspace Polynomial $s_k(X)$ discussed earlier, we can define a new set of Basis. According to its definition, the degree of $s_k(X)$ is exactly $2^k$, similar to $(1, X, X^2, X^4)$, so $(s_0(X), s_1(X), s_2(X))$ can also be used as basic materials for constructing polynomial Basis. Following the definition of $\mathcal{B}^{mono}$, we define the (Novel) Polynomial Basis $\mathcal{B}^{novel}$:&lt;/p&gt;
+$$
+\mathcal{B}^{novel} = (1, s_0(X)) \otimes (1, s_1(X)) \otimes \ldots \otimes (1, s_{n-1}(X))
+$$&lt;p&gt;Please note that unlike the papers [LCH14] and [DP24], we haven&amp;rsquo;t introduced Normalized Subspace Polynomial here for easier understanding. Returning to the above definition, we abbreviate each component $\mathcal{B}^{novel}_i$ as $\mathcal{X}_i(X)$, defined as follows:&lt;/p&gt;
+$$
+\mathcal{X}_i(X) = \prod_{j=0}^{n-1}(s_j(X))^{i_j}, \text{ where $\mathsf{bits}(i)=(i_0, i_1, \ldots, i_{n-1})$}
+$$&lt;p&gt;Here $\mathsf{bits}(i)$ means expanding the integer $i$ in binary, for example, if $i=5$, then $\mathsf{bits}(5)=(1, 0, 1)$, $\mathsf{bits}(6) = (0, 1, 1)$. For example, when $n=3, N=8$, according to the above definition, we can calculate a set of polynomial basis $\big(\mathcal{X}_0(X), \mathcal{X}_1(X),\ldots, \mathcal{X}_7(X)\big)$&lt;/p&gt;
+$$
+\begin{split}
+\mathcal{X}_0(X) &amp;= 1 \\
+\mathcal{X}_1(X) &amp;= s_0(X) = X\\
+\mathcal{X}_2(X) &amp;= s_1(X) \\
+\mathcal{X}_3(X) &amp;= s_0(X)\cdot s_1(X)\\
+\mathcal{X}_4(X) &amp;= s_2(X)\\
+\mathcal{X}_5(X) &amp;= s_0(X)\cdot s_2(X)\\
+\mathcal{X}_6(X) &amp;= s_1(X)\cdot s_2(X) \\
+\mathcal{X}_7(X) &amp;= s_0(X)\cdot s_1(X)\cdot s_2(X) \\
+\end{split}
+$$&lt;p&gt;It&amp;rsquo;s easy to verify that the Degree of each Basis component $\mathcal{X}_i(X)$ is exactly $i$, so $\mathcal{B}^{novel}$ forms a set of linearly independent polynomial Basis. For any polynomial $f(X)\in \mathbb{F}_{2^m}[X]$ of Degree less than 8:&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp;= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&amp;= a_0 + a_1s_0(X) + a_2s_1(X) + a_3s_0(X)\cdot {s}_1(X) \\
+&amp; + a_4s_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot s_2(X) \\
+\end{split}
+$$&lt;p&gt;Similarly, we can use polynomial division to convert a polynomial between $\mathcal{B}^{novel}$ and $\mathcal{B}^{mono}$.&lt;/p&gt;
+&lt;h2 id=&#34;additive-fft&#34;&gt;Additive FFT&lt;/h2&gt;
+&lt;p&gt;Similar to Multiplicative FFT, to construct Additive FFT, we need to define a mapping chain of additive subgroups in $\mathbb{F}_{2^m}$. As mentioned earlier, Subspace Polynomials can be used to construct this mapping chain. At the same time, Subspace Polynomials can also construct a set of polynomial Basis.&lt;/p&gt;
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$&lt;p&gt;For convenience of demonstration, specify $n=3$, $S^{(0)}=\langle \beta_0, \beta_1, \beta_2\rangle$. Following the idea of Multiplicative FFT, we split the polynomial $f(X)$ (of Degree 7) represented by $\mathcal{B}^{novel}$ into two polynomials with halved degrees:&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp;= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&amp;= a_0 + a_1{s}_0(X) + a_2{s}_1(X) + a_3{s}_0(X)\cdot {s}_1(X) \\
+&amp; \qquad + a_4{s}_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot {s}_2(X) \\
+&amp; = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; \qquad + \big(a_1 + a_3{s}_0(X)\cdot {s}_1(X) + a_5{s}_0(X)\cdot{s}_2(X) + a_7{s}_0(X)\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) +a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; \qquad + {\color{red}{s}_0(X)}\cdot \big(a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+\end{split}
+$$&lt;p&gt;Then we introduce two auxiliary polynomials $f_{even}(X), f_{odd}(X)$, they are&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0 + a_2\cdot {s}_1(X) + a_4\cdot {s}_2(X) + a_6\cdot {s}_1(X)\cdot {s}_2(X) \\
+f_{odd}(X) &amp;= a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X) \\
+\end{split}
+$$&lt;p&gt;According to the composition property of mappings we derived earlier, $s_1(X)=s^{(1)}_0\circ s_0(X)$, $s_2(X)=s^{(1)}_1\circ s_1(X)$, so we can get:&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0 + a_2 \cdot s^{(1)}_0(s_1(X)) + a_4 \cdot s^{(1)}_1(s_1(X)) + a_6 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ &amp; = a_0 + a_2 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_4 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_6 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+f_{odd}(X) &amp;= a_1 + a_3 \cdot s^{(1)}_0(s_1(X)) + a_5 \cdot s^{(1)}_1(s_1(X)) + a_7 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ &amp; = a_1 + a_3 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_5 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_7 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+\end{split}
+$$&lt;p&gt;After substituting ${\color{blue}Y=s_1(X)}$, we can split $f(X)$ into an equation about $f_{even}({\color{blue}Y})$ and $f_{odd}({\color{blue}Y})$:&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp; = f_{even}({\color{blue}Y}) +  {s}_0(X)\cdot f_{odd}({\color{blue}Y})
+\end{split}
+$$&lt;p&gt;And the polynomials $f_{even}({\color{blue}Y})$ and $f_{odd}({\color{blue}Y})$ are exactly defined on $\mathcal{X}^{(1)}$:&lt;/p&gt;
+$$
+\begin{array}{llll}
+\mathcal{X}^{(1)}_0(X) &amp;= 1 \\
+\mathcal{X}^{(1)}_1(X) &amp;= {s}^{(1)}_0(X) &amp; = {s}_0({s}_1(X)) &amp; = {s}_1(X) \\
+\mathcal{X}^{(1)}_2(X) &amp;= {s}^{(1)}_1(X) &amp; =  {s}_1({s}_1(X)) &amp; = {s}_2(X) \\
+\mathcal{X}^{(1)}_3(X) &amp;= {s}^{(1)}_0(X)\cdot {s}^{(1)}_1(X) &amp; = {s}_0({s}_1(X)) \cdot {s}_1({s}_1(X)) &amp; = {s}_1(X) \cdot {s}_2(X)\\
+\end{array}
+$$&lt;p&gt;Rewrite the odd and even polynomials:&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0\cdot\mathcal{X}^{(1)}_0(X) + a_2\cdot \mathcal{X}^{(1)}_1(X) + a_4\cdot \mathcal{X}^{(1)}_2(X) + a_6\cdot \mathcal{X}^{(1)}_3(X) \\
+f_{odd}(X) &amp;= a_1\cdot\mathcal{X}^{(1)}_0(X) + a_3\cdot \mathcal{X}^{(1)}_1(X) + a_5\cdot \mathcal{X}^{(1)}_2(X) + a_7\cdot \mathcal{X}^{(1)}_3(X)
+\end{split}
+$$&lt;p&gt;Structurally, this equation is very similar to the split $f(X)=f_{even}(X^2) + X\cdot f_{odd}(X^2)$ in Multiplicative FFT; and the $X\mapsto X^2$ mapping also corresponds to the $s_1: X \mapsto X(X+\beta_0)$ mapping. And $S^{(0)}$ under the mapping of $s_1$ produces a subspace $S^{(1)}$ that is only half the size of the original:&lt;/p&gt;
+$$
+S^{(1)} = \langle s_1(\beta_1), s_1(\beta_2) \rangle
+$$&lt;p&gt;So we can rely on recursive calls to find $\{f_{even}(X) \mid X\in S^{(1)}\}$ and $\{ f_{odd}(X) \mid X\in S^{(1)}\}$, and then use the equation $f(X)=f_{even}(X) + s_0(X)\cdot f_{odd}(X)$ to get the value of $f(X)$ on $S^{(0)}$.&lt;/p&gt;
+&lt;p&gt;Let&amp;rsquo;s assume the recursive call returns successfully, then we have obtained all the evaluations of $f_{even}(X)$ and $f_{odd}(X)$ on $S^{(1)}$, denoted as $\vec{u}$ and $\vec{v}$, defined as follows:&lt;/p&gt;
+$$
+\begin{split}
+(u_0, u_1, u_2, u_3) &amp;= \big(f_{even}(0), f_{even}(1), f_{even}(s_1(\beta_1)), f_{even}(s_1(\beta_1) + 1)\big)\\[2ex]
+(v_0, v_1, v_2, v_3) &amp;= \big(f_{odd}(0), f_{odd}(1), f_{odd}(s_1(\beta_1)), f_{odd}(s_1(\beta_1) + 1)\big)\\
+\end{split}
+$$&lt;p&gt;Then we can calculate all the evaluations of $f(X)$ on $S^{(0)}$, i.e., $f(X)\mid_{S^{(0)}}$:&lt;/p&gt;
+$$
+\begin{array}{rlll}
+f(0) &amp;= f_{even}({s}_1(0)) + 0\cdot f_{odd}({s}_1(0)) \\
+    &amp; = u_0\\[1ex]
+f(1) &amp;= f_{even}({s}_1(1)) + 1\cdot v_1 \\
+    &amp; = u_0 + v_1 \\[1ex]
+f(\beta_1) &amp;= f_{even}({s}_1(\beta_1)) + \beta_1\cdot f_{odd}({s}_1(\beta_1)) \\ 
+    &amp; = u_1 + \beta_1 \cdot v_1\\[1ex]
+f(\beta_1+1) &amp;= f_{even}({s}_1(\beta_1)+{s}_1(1)) + (\beta_1 +1)\cdot f_{odd}({s}_1(\beta_1)+{s}_1(1)) \\
+    &amp; = u_1 + \beta_1\cdot v_1 + v_1\\[1ex]
+f(\beta_2) &amp;= f_{even}({s}_1(\beta_2)) + \beta_2 \cdot f_{odd}({s}_1(\beta_2)) \\ 
+    &amp; = u_2 + \beta_2\cdot v_2 \\[1ex]
+f(\beta_2+1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(1)) + (\beta_2 +1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(1)) \\
+    &amp; = u_2 + \beta_2\cdot v_2 + v_2\\[1ex]
+f(\beta_2+\beta_1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)) + (\beta_2 + \beta_1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)) \\
+    &amp; = u_3 + \beta_2\cdot v_3 + \beta_1\cdot v_3 \\[1ex]
+f(\beta_2+\beta_1+1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) + (\beta_2 + \beta_1 + 1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) \\
+    &amp; = u_3 + \beta_2\cdot v_3  + \beta_1\cdot v_3 + v_3\\[1ex]
+\end{array}
+$$&lt;p&gt;We implement this Additive FFT recursive algorithm in Python code as follows:&lt;/p&gt;
+&lt;div class=&#34;highlight-container&#34;&gt;
+
+  &lt;button class=&#34;copy-code-btn outline&#34;&gt;Copy&lt;/button&gt;
+
+  
+  &lt;div class=&#34;highlight&#34;&gt;&lt;div style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;
+&lt;table style=&#34;border-spacing:0;padding:0;margin:0;border:0;&#34;&gt;&lt;tr&gt;&lt;td style=&#34;vertical-align:top;padding:0;margin:0;border:0;&#34;&gt;
+&lt;pre tabindex=&#34;0&#34; style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;&lt;code&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-1&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-1&#34;&gt; 1&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-2&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-2&#34;&gt; 2&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-3&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-3&#34;&gt; 3&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-4&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-4&#34;&gt; 4&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-5&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-5&#34;&gt; 5&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-6&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-6&#34;&gt; 6&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-7&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-7&#34;&gt; 7&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-8&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-8&#34;&gt; 8&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-9&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-9&#34;&gt; 9&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-10&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-10&#34;&gt;10&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-11&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-11&#34;&gt;11&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-12&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-12&#34;&gt;12&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-13&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-13&#34;&gt;13&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-14&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-14&#34;&gt;14&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-15&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-15&#34;&gt;15&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-16&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-16&#34;&gt;16&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-17&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-17&#34;&gt;17&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-18&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-18&#34;&gt;18&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-19&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-19&#34;&gt;19&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-20&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-20&#34;&gt;20&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-21&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-21&#34;&gt;21&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-22&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-22&#34;&gt;22&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-23&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-23&#34;&gt;23&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-24&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-24&#34;&gt;24&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-25&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-25&#34;&gt;25&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-26&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-26&#34;&gt;26&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-27&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-27&#34;&gt;27&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-28&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-28&#34;&gt;28&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-29&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-29&#34;&gt;29&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-30&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-30&#34;&gt;30&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-31&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-31&#34;&gt;31&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-32&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-32&#34;&gt;32&lt;/a&gt;
+&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;&lt;/td&gt;
+&lt;td style=&#34;vertical-align:top;padding:0;margin:0;border:0;;width:100%&#34;&gt;
+&lt;pre tabindex=&#34;0&#34; style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;&lt;code class=&#34;language-python&#34; data-lang=&#34;python&#34;&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#66d9ef&#34;&gt;def&lt;/span&gt; &lt;span style=&#34;color:#a6e22e&#34;&gt;afft&lt;/span&gt;(f, k, B):
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#e6db74&#34;&gt;&amp;#34;&amp;#34;&amp;#34;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Perform the Additive Fast Fourier Transform (AFFT) on a given polynomial.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Args:
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        f (list): Coefficients of the polynomial to be transformed.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        k (int): The depth of recursion, where 2^k is the size of the domain.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        B (list): The basis of the domain over which the polynomial is evaluated.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Returns:
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        list: The evaluations of the polynomial over the domain.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    &amp;#34;&amp;#34;&amp;#34;&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;if&lt;/span&gt; k &lt;span style=&#34;color:#f92672&#34;&gt;==&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;:
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        &lt;span style=&#34;color:#66d9ef&#34;&gt;return&lt;/span&gt; [f[&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;]]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    half &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;**&lt;/span&gt;(k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;)
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    f_even &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; f[::&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    f_odd &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; f[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;::&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    V &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; span(B)                                &lt;span style=&#34;color:#75715e&#34;&gt;# the subspace spanned by B&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    q &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; &lt;span style=&#34;color:#66d9ef&#34;&gt;lambda&lt;/span&gt; x: x&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;(x&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;B[&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;])&lt;span style=&#34;color:#f92672&#34;&gt;/&lt;/span&gt;(B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;]&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;(B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;)) &lt;span style=&#34;color:#75715e&#34;&gt;# s^(i)_1 map&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    B_half &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; [q(b) &lt;span style=&#34;color:#66d9ef&#34;&gt;for&lt;/span&gt; b &lt;span style=&#34;color:#f92672&#34;&gt;in&lt;/span&gt; B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;:]]             &lt;span style=&#34;color:#75715e&#34;&gt;# the basis of the mapped subspace&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e_even &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; afft(f_even, k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;, B_half)  &lt;span style=&#34;color:#75715e&#34;&gt;# compute the evaluations of f_even&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e_odd  &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; afft(f_odd, k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;, B_half)   &lt;span style=&#34;color:#75715e&#34;&gt;# compute the evaluations of f_odd&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; [&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; (&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt; &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; half)                &lt;span style=&#34;color:#75715e&#34;&gt;# initialize the list of evaluations&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;for&lt;/span&gt; i &lt;span style=&#34;color:#f92672&#34;&gt;in&lt;/span&gt; range(&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;, half):
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        e[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i]   &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; e_even[i] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; V[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; e_odd[i]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        e[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; e_even[i] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; V[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; e_odd[i]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;return&lt;/span&gt; e&lt;/span&gt;&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;
+&lt;/div&gt;
+&lt;/div&gt;
+&lt;/div&gt;
+&lt;p&gt;The function &lt;code&gt;afft(f, k, B)&lt;/code&gt; has three parameters in total, which are the coefficient vector of the polynomial $f(X)$ on $\mathcal{B}^{novel}$, the recursion depth $k$, and the Basis of the current subspace $S^{(0)}$.&lt;/p&gt;
+&lt;h2 id=&#34;summary&#34;&gt;Summary&lt;/h2&gt;
+&lt;p&gt;The Additive FFT algorithm requires a mapping chain of subspaces constructed by Subspace Polynomials. The principles introduced in this article are not limited to recursively constructed binary fields, but a more general algebraic structure.
+The paper [LCH14] uses another recursive Additive FFT algorithm, we will introduce the differences between the two in the next article, as well as the iterative Additive FFT algorithm (Algorithm 2) in the [DP24] paper.&lt;/p&gt;
+&lt;h2 id=&#34;references&#34;&gt;References&lt;/h2&gt;
+&lt;ul&gt;
+&lt;li&gt;[DP24] Benjamin E. Diamond and Jim Posen. &amp;ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers&amp;rdquo;. 2024. &lt;a href=&#34;https://eprint.iacr.org/2024/504&#34;&gt;https://eprint.iacr.org/2024/504&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;[LCH14] Lin, Sian-Jheng, Wei-Ho Chung, and Yunghsiang S. Han. &amp;ldquo;Novel polynomial basis and its application to Reed-Solomon erasure codes.&amp;rdquo; 2014 ieee 55th annual symposium on foundations of computer science. IEEE, 2014. &lt;a href=&#34;https://arxiv.org/abs/1404.3458&#34;&gt;https://arxiv.org/abs/1404.3458&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.&lt;/li&gt;
+&lt;/ul&gt;
+</description>
+      
+    </item>
+    
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      
+        <description>&lt;ul&gt;
+&lt;li&gt;Yu Guo &lt;a href=&#34;mailto:yu.guo@secbit.io&#34;&gt;yu.guo@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;Jade Xie &lt;a href=&#34;mailto:jade@secbit.io&#34;&gt;jade@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;/ul&gt;
+&lt;p&gt;Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.&lt;/p&gt;
+&lt;h2 id=&#34;extension-fields&#34;&gt;Extension Fields&lt;/h2&gt;
+&lt;p&gt;Let&amp;rsquo;s try to describe the concept of Extension Fields in simple language to lay the groundwork for our study of Binary Towers. For in-depth learning, please refer to the strict definitions and proofs in finite field textbooks.&lt;/p&gt;
+&lt;p&gt;The prime field $\mathbb{F}_{p}$ is a finite field with $p$ elements, where $p$ must be a prime number. It is isomorphic to $\mathbb{Z}/p\mathbb{Z}$, which means we can use the set of integers $\{0, 1, \ldots, p-1\}$ to represent all elements of $\mathbb{F}_p$.&lt;/p&gt;
+&lt;p&gt;We can form a Tuple with any two elements from the prime field, i.e., $(a, b)\in\mathbb{F}_{p}^2$, and this Tuple also forms a field with $p^2$ elements. We can verify this: $a+b\in\mathbb{F}_p$, so we define the addition of Tuples as follows:&lt;/p&gt;
+$$
+(a_1, b_1) + (a_2, b_2) = (a_1 + a_2, b_1 + b_2)
+$$&lt;p&gt;We can verify that $\mathbb{F}_{p}^2$ forms a vector space, thus it is an additive group with the zero element being $(0, 0)$. The next question is how to define multiplication. We want multiplication to be closed, i.e.:&lt;/p&gt;
+$$
+(a_1, b_1)\cdot (a_2, b_2) = (c, d)
+$$&lt;p&gt;The simplest approach would be to use Entry-wise Multiplication to define multiplication, i.e., $(a_1, b_1)\cdot (a_2, b_2) = (a_1a_2, b_1b_2)$, with the multiplicative identity being $(1, 1)$. This seems to make multiplication closed. However, this doesn&amp;rsquo;t ensure that every element has an inverse. For example, $(1, 0)$ multiplied by any Tuple can never result in $(1, 1)$, because the second part of the Tuple will always be $0$. Therefore, this kind of multiplication cannot form a &amp;ldquo;field&amp;rdquo;.&lt;/p&gt;
+&lt;p&gt;In finite field theory, the multiplication operation of Tuples is implemented through polynomial modular multiplication. That is, we view $(a_1, b_1)$ as the coefficients of a degree 1 polynomial, and similarly $(a_2, b_2)$ can be viewed as the coefficients of another degree 1 polynomial. By multiplying these two, we get a degree 2 polynomial:&lt;/p&gt;
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = a_1a_2 + (a_1b_2 + a_2b_1)X + b_1b_2X^2
+$$&lt;p&gt;Then we take the modulus of the resulting polynomial with an irreducible degree 2 polynomial $f(X)$, obtaining a remainder polynomial. The coefficients of this remainder polynomial are $(c, d)$. So we define the new Tuple multiplication as follows:&lt;/p&gt;
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = c + d\cdot X \mod f(X)
+$$&lt;p&gt;And we define $(1, 0)$ as the multiplicative identity. Here we emphasize that $f(X)$ must be an irreducible polynomial. What would happen if $f(X)$ were a reducible polynomial? For instance, if $f(X)=(u_1+u_2X)(v_1+v_2X)$, then the product of two non-zero elements $(u_1, u_2)$ and $(v_1, v_2)$ would equal $(0, 0)$, breaking out of the multiplicative group. Strictly speaking, the appearance of Zero Divisors disrupts the structure of the multiplicative group, thus failing to form a &amp;ldquo;field&amp;rdquo;.&lt;/p&gt;
+&lt;p&gt;The next question is whether there exists an irreducible degree 2 polynomial $f(X)$. If $f(X)$ doesn&amp;rsquo;t exist, then constructing a field $\mathbb{F}_{p^2}$ would be out of the question. For the prime field $\mathbb{F}_p$, take any $w\in\mathbb{F}_p$ that is not a square of any element, which in number theory belongs to the non-quadratic residue class, i.e., $w\in QNR(p)$. If $w$ exists, then $f(X)=X^2-w$ is an irreducible polynomial. Furthermore, how is the existence of $w$ guaranteed? If $p$ is an odd number, then $w$ must exist. If $p=2$, although $w$ doesn&amp;rsquo;t exist, we can specify $f(X)=X^2+X+1\in\mathbb{F}_2[X]$ as an irreducible polynomial.&lt;/p&gt;
+&lt;p&gt;We now denote the field formed by the set of Tuples $\mathbb{F}_{p}^2$, along with the defined addition and multiplication operations, as $\mathbb{F}_{p^2}$, which has $p^2$ elements. According to finite field theory, we can expand the binary Tuple to an $n$-ary Tuple, thus constructing larger finite fields $\mathbb{F}_{p^n}$.&lt;/p&gt;
+&lt;p&gt;For an irreducible polynomial $f(X) = c_0 + c_1X + X^2$ over $\mathbb{F}_p$, it can always be factored in $\mathbb{F}_{p^2}$. $f(X) = (X-\alpha)(X-\alpha&#39;)$, where $\alpha$ and $\alpha&#39;$ are conjugates of each other, and they both belong to $\mathbb{F}_{p^2}$ but not to $\mathbb{F}_p$. According to the definition of extension fields, $\mathbb{F}_p(\alpha)$ is a degree 2 algebraic extension, which is isomorphic to the finite field we constructed earlier through modular multiplication with an irreducible polynomial. Therefore, we can also use $a_1 + a_2\cdot\alpha$ to represent any element in $\mathbb{F}_{p^2}$. Or further, we can view $(1, \alpha)$ as a Basis of the $\mathbb{F}_{p^2}$ vector space, any $a\in \mathbb{F}_{p^2}$ can be represented as a linear combination of the Basis:&lt;/p&gt;
+$$
+a = a_0 \cdot 1 + a_1 \cdot \alpha, \quad a_0, a_1\in\mathbb{F}_p
+$$&lt;p&gt;This way, we can use the symbol $a_0 + a_1\cdot \alpha$ to represent elements in $\mathbb{F}_{p^2}$, rather than the polynomial representation $a_0 + a_1\cdot X$. The &amp;ldquo;polynomial representation&amp;rdquo; of elements doesn&amp;rsquo;t specify which irreducible polynomial we used to construct the extension field, while using $\alpha$, the root of the irreducible polynomial, as a way to construct the extension field eliminates any ambiguity.&lt;/p&gt;
+&lt;p&gt;Generalizing this concept to $\mathbb{F}_{p^n}$, for any element $a\in\mathbb{F}_{p^n}$, it can be represented as:&lt;/p&gt;
+$$
+a = a_0 + a_1\cdot\alpha + a_2\cdot\alpha^2 + \cdots + a_{n-1}\cdot\alpha^{n-1}
+$$&lt;p&gt;Here $\alpha$ is the root of the degree $n$ irreducible polynomial $f(X)$. Therefore, $(1, \alpha, \alpha^2, \cdots, \alpha^{n-1})$ can be viewed as a Basis of $\mathbb{F}_{p^n}$, and this Basis is called the Polynomial Basis of the finite field. Note that $\mathbb{F}_{p^n}$ as an $n$-dimensional vector space has many different Bases. We will see later that the choice of Basis is a very important step, and an appropriate Basis can greatly optimize or simplify some representations or operations.&lt;/p&gt;
+&lt;blockquote&gt;
+&lt;p&gt;TODO: Fp* multiplicative cyclic group&lt;/p&gt;
+&lt;/blockquote&gt;
+&lt;h2 id=&#34;binary-field&#34;&gt;Binary Field&lt;/h2&gt;
+&lt;p&gt;For $\mathbb{F}_{2^n}$, we call it a binary field because its elements can all be expressed as vectors of length $n$ composed of $0$ and $1$. $\mathbb{F}_{2^n}$ can be constructed through two types of methods: one is through an irreducible polynomial of degree $n$; the other is by repeatedly using quadratic extensions, known as an Extension Tower. There are many paths for field extension, and for $2^n$, it has multiple factors of 2, so there exist multiple construction methods between these two methods. For example, for $\mathbb{F}_{2^8}$, we can first construct $\mathbb{F}_{2^4}$, then obtain $\mathbb{F}_{2^8}$ through a quadratic extension, or we can first construct $\mathbb{F}_{2^2}$, then construct $\mathbb{F}_{2^8}$ through a quartic irreducible polynomial extension.&lt;/p&gt;
+&lt;p&gt;Let&amp;rsquo;s warm up by constructing $\mathbb{F}_{2^2}$ using the quadratic extension method. We discussed earlier that $f(X)=X^2+X+1$ is an irreducible polynomial in $\mathbb{F}_2[X]$. Suppose $\eta$ is a root of $f(X)$, then $\mathbb{F}_{2^2}$ can be represented as $a_0 + b_0\cdot\eta$. Considering that $\mathbb{F}_{2^2}$ only has four elements, they can be listed below:&lt;/p&gt;
+$$
+\mathbb{F}_{2^2} = \{0, 1, \eta, \eta+1\}
+$$&lt;p&gt;And $\eta$ as a generator can produce the multiplicative group $\mathbb{F}_{2^2}^*=\langle \eta \rangle$, which has an Order of 3:&lt;/p&gt;
+$$
+\begin{split}
+\eta^0 &amp;= 1 \\
+\eta^1 &amp;= \eta \\
+\eta^2 &amp;= \eta+1 \\
+\end{split}
+$$&lt;p&gt;We&amp;rsquo;ll demonstrate two construction methods for $\mathbb{F}_{2^4}$. The first is to directly use a degree 4 irreducible polynomial over $\mathbb{F}_2$. In fact, there are 3 different degree 4 irreducible polynomials, so there are 3 different construction methods in total.&lt;/p&gt;
+$$
+\begin{split}
+f_1(X) &amp;= X^4 + X + 1 \\
+f_2(X) &amp;= X^4 + X^3 + 1 \\
+f_3(X) &amp;= X^4 + X^3 + X^2 + X + 1 \\
+\end{split}
+$$&lt;p&gt;Since we only need to choose one irreducible polynomial, let&amp;rsquo;s choose $f_1(X)$ to define $\mathbb{F}_{2^4}$:&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_2[X]/\langle f_1(X)\rangle 
+$$&lt;p&gt;Let&amp;rsquo;s denote the root of $f_1(X)$ in $\mathbb{F}_{2^4}$ as $\theta$, then any element $a\in\mathbb{F}_{2^4}$ can be uniquely represented as:&lt;/p&gt;
+$$
+a = a_0 + a_1\cdot\theta + a_2\cdot\theta^2 + \cdots + a_{n-1}\cdot\theta^{n-1}
+$$&lt;p&gt;To add here, $f_1(X)$ is also a Primitive polynomial, and its root $\theta$ is also a Primitive Element of $\mathbb{F}_{2^4}$. Note that not all irreducible polynomials are Primitive polynomials, for example, $f_3(X)$ listed above is not a Primitive polynomial.&lt;/p&gt;
+&lt;p&gt;Now we can list all the elements in $\mathbb{F}_{2^4}$, each element corresponding to a 4-bit binary vector:&lt;/p&gt;
+$$
+\begin{array}{ccccccc}
+0000 &amp; 0001 &amp; 0010 &amp; 0011 &amp; 0100 &amp; 0101 &amp; 0110 &amp; 0111 \\
+0 &amp; 1 &amp; \theta &amp; \theta+1 &amp; \theta^2 &amp; \theta^2+1 &amp; \theta^2+\theta &amp; \theta^2+\theta+1 \\
+\hline
+1000 &amp; 1001 &amp; 1010 &amp; 1011 &amp; 1100 &amp; 1101 &amp; 1110 &amp; 1111 \\
+\theta^3 &amp; \theta^3+1 &amp; \theta^3+\theta &amp; \theta^3+\theta+1 &amp; \theta^3+\theta^2 &amp; \theta^3+\theta^2+1 &amp; \theta^3+\theta^2+\theta &amp; \theta^3+\theta^2+\theta+1 \\
+\end{array}
+$$&lt;p&gt;For the addition of two elements in $\mathbb{F}_{2^4}$, we only need to add their binary representations bit by bit, for example:&lt;/p&gt;
+$$
+(0101) + (1111) = (1010)
+$$&lt;p&gt;This operation is actually the XOR bitwise exclusive OR operation. As for multiplication, for example $a\cdot\theta$, it corresponds to a shift operation on the binary:&lt;/p&gt;
+$$
+\begin{split}
+(0101) &lt;&lt; 1 &amp;= (1010)\\
+(\theta^2 + 1)\cdot\theta &amp;= \theta^3 + \theta \\
+\end{split}
+$$&lt;p&gt;If we continue to multiply by $\theta$, a shift overflow situation will occur:&lt;/p&gt;
+$$
+\begin{split}
+(\theta^3 + \theta)\cdot\theta &amp;= {\color{blue}\theta^4} + \theta^2 = \theta^2 + \theta + 1 \\
+(1010) &lt;&lt; 1  &amp;= (0100) + (0011) = (0111)\\
+\end{split}
+$$&lt;p&gt;For the overflow bit, it needs to be added with $0011$, which is determined by the definition of the irreducible polynomial $f_1(X)$, $\theta^4=\theta+1$. So once the high bit overflows during shifting, an XOR operation with $0011$ needs to be performed. From this, we can see that the multiplication rules of $\mathbb{F}_{2^4}$ actually depend on the choice of the irreducible polynomial. Therefore, how to choose an appropriate irreducible polynomial is also a key step in optimizing binary field multiplication.&lt;/p&gt;
+&lt;h2 id=&#34;field-embedding&#34;&gt;Field Embedding&lt;/h2&gt;
+&lt;p&gt;If we want to construct a SNARK proof system based on binary fields, we would use smaller bit counts to represent smaller numbers, but in any case, in the challenge rounds of the protocol, the Verifier needs to give a random number in a relatively large extension field, in hopes of achieving sufficient cryptographic security strength. This requires us to encode witness information with polynomials in a small field, but perform evaluation operations on these polynomials in a larger field. Therefore, we need to find a way to &amp;ldquo;embed&amp;rdquo; the small field $K$ into the large field $L$.&lt;/p&gt;
+&lt;p&gt;The so-called embedding refers to mapping elements from one field $K$ to another field $L$, denoted as $\phi: K\to L$. This mapping is Injective and this homomorphism mapping preserves the structure of addition and multiplication operations:&lt;/p&gt;
+$$
+\begin{split}
+\phi(a+b) &amp;= \phi(a) + \phi(b) \\
+\phi(a\cdot b) &amp;= \phi(a)\cdot\phi(b)
+\end{split}
+$$&lt;p&gt;That is, if $a\in K$, then $a$ also has a unique representation in $L$. To maintain the structure of multiplication operations, we actually only need to find a Primitive Element $\alpha$ in K corresponding to an element $\beta$ in $L$, then this homomorphism mapping is uniquely determined, because any element in $K$ can be represented as a power of $\alpha$. However, usually this embedding homomorphism mapping is not easy to find. Let&amp;rsquo;s take $\mathbb{F}_{2^2}\subset\mathbb{F}_{2^4}$ as an example to see how to find the mapping of the former embedded into the latter.&lt;/p&gt;
+&lt;p&gt;Because $\eta$ is a Primitive Element in $\mathbb{F}_{2^2}$, we only need to consider the representation of $\eta$ in $\mathbb{F}_{2^4}$.&lt;/p&gt;
+&lt;p&gt;Let&amp;rsquo;s first look at the Primitive Element $\theta$ in $\mathbb{F}_{2^4}$, is $\eta\mapsto\theta$ an embedding mapping?&lt;/p&gt;
+$$
+\eta^2 = \eta+1 \quad \text{but} \quad \theta^2 \neq \theta+1
+$$&lt;p&gt;Obviously, $\eta^2 \neq \theta^2$, so $\eta\mapsto\theta$ is not an embedding mapping. Thinking about how irreducible polynomials determine the multiplication relationship between elements, and because $\eta$ is a root of $X^2+X+1$ while $\theta$ is a root of $X^4+X+1$, the multiplication relationship between $\eta$ and $\theta$ must be different. In $\mathbb{F}_{2^4}$, there also exist two roots of $X^2+X+1$, which are $\theta^2+\theta$ and $\theta^2+\theta+1$ respectively. Readers can verify the following equation:&lt;/p&gt;
+$$
+(\theta^2+\theta)^2 + (\theta^2+\theta) + 1 = \theta^4 + \theta^2 + \theta^2 + \theta + 1 = 0
+$$&lt;p&gt;So, we define the embedding mapping:&lt;/p&gt;
+$$
+\begin{split}
+\phi &amp;: \mathbb{F}_{2^2} \to \mathbb{F}_{2^4},\quad \eta \mapsto \theta^2+\theta
+\end{split}
+$$&lt;p&gt;This means that the binary representation $(10)$ corresponds to $(0110)$ in $L=\mathbb{F}_{2^4}$; and the binary representation $(11)$ (which is $\eta+1$) corresponds to $(\theta^2+\theta+1)$ in $L$, i.e., $(0111)$. Note here that we can also use $\phi&#39;: \eta \mapsto \theta^2+\theta+1$ as another different embedding mapping. The underlying principle is that $\theta^2+\theta$ and $\theta^2+\theta+1$ are conjugates of each other, they are perfectly symmetric, so both of these mappings can serve as embedding mappings. Although they map to different elements, there is no significant difference from the overall structure.&lt;/p&gt;
+&lt;p&gt;For any $[L:K]=n$, when we embed $K$ into $L$, a direct method is to find the roots of $f(X)$ in $L$, although this calculation is not simple. Moreover, both embedding and de-embedding require additional calculations, which undoubtedly increases the complexity of the system.&lt;/p&gt;
+&lt;p&gt;The recursive Extension Tower construction method mentioned in the Binius paper, by selecting appropriate irreducible polynomials and Bases, we can obtain very direct (called Zero-cost) embedding and de-embedding mappings.&lt;/p&gt;
+&lt;h2 id=&#34;extension-tower&#34;&gt;Extension Tower&lt;/h2&gt;
+&lt;p&gt;We can construct $\mathbb{F}_{2^4}$ through two quadratic extensions. First, we choose a quadratic irreducible polynomial $f(X)=X^2+X+1$, then we can construct $\mathbb{F}_{2^2}$, then based on $\mathbb{F}_{2^2}$ we find another quadratic irreducible polynomial to construct $\mathbb{F}_{2^4}$.&lt;/p&gt;
+$$
+\mathbb{F}_{2^2} = \mathbb{F}_2[X]/\langle X^2+X+1 \rangle \cong\mathbb{F}_2(\eta)
+$$&lt;p&gt;Next, we need to find a quadratic irreducible polynomial in $\mathbb{F}_{2^2}[X]$. First note that $X^2+X+1$ can no longer be used, according to the definition of $\mathbb{F}_{2^2}$, it can already be factored. Consider $X^2+1$, it can also be factored $(X+1)(X+1)$. In fact, all quadratic polynomials in $\mathbb{F}_2[X]$ can be factored. A quadratic irreducible polynomial in $\mathbb{F}_{2^2}[X]$ must include a term with the new element $\eta$ in its coefficients.&lt;/p&gt;
+&lt;p&gt;For example, $X^2+X+\eta$ is a quadratic irreducible polynomial over $\mathbb{F}_{2^2}$. Then we can construct $\mathbb{F}_{2^4}$:&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_{2^2}[X]/\langle X^2+X+\eta \rangle 
+$$&lt;p&gt;Let&amp;rsquo;s denote the root of $X^2+X+\eta$ in $\mathbb{F}_{2^4}$ as $\zeta$, then $\mathbb{F}_{2^4}$ can be represented as:&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \cong \mathbb{F}_{2^2}(\zeta)  \cong \mathbb{F}_2(\eta)(\zeta) \cong \mathbb{F}_2(\eta, \zeta)
+$$&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;Then all elements of $\mathbb{F}_{2^4}$ can be represented using $\eta, \zeta$:&lt;/p&gt;
+$$
+\begin{array}{ccccccc}
+\hline
+0000 &amp; 0001 &amp; 0010 &amp; 0011 &amp; 0100 &amp; 0101 &amp; 0110 &amp; 0111 \\
+0 &amp; 1 &amp; \eta &amp; \eta+1 &amp; \zeta &amp; \zeta+\eta &amp; \zeta+\eta+1 &amp; \zeta+\eta+1 \\
+\hline
+1000 &amp; 1001 &amp; 1010 &amp; 1011 &amp; 1100 &amp; 1101 &amp; 1110 &amp; 1111 \\
+\zeta\eta &amp; \zeta\eta + 1 &amp; \zeta\eta + \eta &amp; \zeta\eta + \eta + 1 &amp; \zeta\eta + \zeta &amp; \zeta\eta + \zeta +1 &amp; \zeta\eta+\zeta+\eta &amp; \zeta\eta+\zeta+\eta+1 \\
+\hline
+\end{array}
+$$&lt;p&gt;At this point, each bit in the 4-bit binary corresponds to an element in $\mathbb{F}_{2^4}$, $(1000)$ corresponds to $\zeta\eta$, $(0100)$ corresponds to $\zeta$, $(0010)$ corresponds to $\eta$, $(0001)$ corresponds to $1$. Therefore, we can use the following Basis to represent all elements in $\mathbb{F}_{2^4}$:&lt;/p&gt;
+$$
+\mathcal{B} = (1,\ \eta,\ \zeta,\ \eta\zeta)
+$$&lt;p&gt;Now, the binary representation of $\mathbb{F}_{2^2}$ directly corresponds to the &amp;ldquo;lower two bits&amp;rdquo; of the binary representation of $\mathbb{F}_{2^4}$, for example:&lt;/p&gt;
+$$
+\begin{split}
+(1010) &amp;= (10) || (10) = \zeta\eta + \eta \\
+\end{split}
+$$&lt;p&gt;Therefore, we can directly pad zeros to the higher two bits of the binary representation of $\mathbb{F}_{2^2}$ to get the corresponding element in $\mathbb{F}_{2^4}$. Conversely, by removing the two high-order zeros, an element in $\mathbb{F}_{2^4}$ directly maps back to an element in $\mathbb{F}_{2^2}$.&lt;/p&gt;
+&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;As shown in the figure above, $(1011)$ is the binary representation of $\zeta\eta+\eta+1$, its lower two bits $(11)$ directly correspond to $(\eta+1)$ in $\mathbb{F}_{2^2}$. This kind of embedding is a &amp;ldquo;natural embedding&amp;rdquo;, so the Binus paper calls it Zero-cost Embedding.&lt;/p&gt;
+&lt;p&gt;However, $\mathbb{F}_{2^4}$ is still a very small field, not enough. If we continue to perform quadratic extensions upwards, how can we find suitable irreducible polynomials? The solution is not unique. Let&amp;rsquo;s first look at a scheme given in the Binius paper [DP23] — Wiedemann Tower [Wie88].&lt;/p&gt;
+&lt;h2 id=&#34;wiedemann-tower&#34;&gt;Wiedemann Tower&lt;/h2&gt;
+&lt;p&gt;The Wiedemann Tower is a recursive extension tower based on $\mathbb{F}_2$. The bottom Base Field is denoted as $\mathcal{T}_0$, with elements only $0$ and $1$:&lt;/p&gt;
+$$
+\mathcal{T}_0 = \mathbb{F}_2 \cong \{0,1\}
+$$&lt;p&gt;Then we introduce an unknown $X_0$, constructing a univariate polynomial ring $\mathbb{F}_2[X_0]$. As discussed earlier, $X^2 + X + 1$ is an irreducible polynomial over $\mathcal{T}_0$, so we can use it to construct $\mathcal{T}_1$.&lt;/p&gt;
+$$
+\mathcal{T}_1 = \mathbb{F}_2[X_0]/\langle  X_0^2+X_0+1 \rangle = \{0, 1, X_0, X_0+1\} \cong \mathbb{F}_{2^2} \cong \mathbb{F}_2(\alpha_0)
+$$&lt;p&gt;Next, we find a quadratic irreducible polynomial $X_1^2+\alpha_0\cdot X_1+1$ in $\mathcal{T}_1[X_1]$, then we can construct $\mathcal{T}_2$:&lt;/p&gt;
+$$
+\mathcal{T}_2 = \mathcal{T}_1[X_1]/\langle  X_1^2+ \alpha_0\cdot X_1+1\rangle \cong \mathbb{F}_{2^4} \cong \mathbb{F}_2(\alpha_0, \alpha_1)
+$$&lt;p&gt;And so on, we can construct $\mathcal{T}_3, \mathcal{T}_4, \cdots, \mathcal{T}_n$:&lt;/p&gt;
+$$
+\mathcal{T}_{i+1} = \mathcal{T}_i[X_i]/\langle  X_i^2+\alpha_{i-1}\cdot X_i+1\rangle \cong \mathbb{F}_{2^{2^i}} \cong \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_i),\quad i\geq 1
+$$&lt;p&gt;Here, $\alpha_0, \alpha_1, \ldots, \alpha_{n-1}$ are the roots of the successively introduced quadratic irreducible polynomials, such that:&lt;/p&gt;
+$$
+\mathcal{T}_{n} = \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_{n-1})
+$$&lt;p&gt;And $|\mathcal{T}_{n}| = 2^{2^{n}}$. The relationship between these introduced roots satisfies the following equation:&lt;/p&gt;
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$&lt;p&gt;It&amp;rsquo;s not hard to verify that $\alpha_0+\alpha^{-1}_0=1$. And the polynomial $X_i^2+X_{i-1}X_i+1$ in the multivariate polynomial ring $\mathcal{T}_0[X_0, X_1, \ldots, X_n]$ has two roots $\alpha_i$ and $\alpha^{-1}_i$:&lt;/p&gt;
+$$
+(\alpha^{-1}_i)^2 + \alpha_{i-1}\alpha^{-1}_i + 1 = \alpha^{-1}_i + \alpha_{i-1} + \alpha_i = \alpha_{i-1} + \alpha_{i-1} = 0
+$$&lt;p&gt;Moreover, $\alpha_i$ and $\alpha_{i+1}$ satisfy the following recursive relationship:&lt;/p&gt;
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$&lt;p&gt;This is because if we multiply both sides of the equation by $\alpha_{i+1}$, we get: $\alpha_{i+1}^2 + \alpha_i\alpha_{i+1} + 1 = 0$, which is exactly the irreducible polynomial we use for recursive quadratic extension construction.&lt;/p&gt;
+&lt;h3 id=&#34;multilinear-basis&#34;&gt;Multilinear Basis&lt;/h3&gt;
+&lt;p&gt;For $\mathcal{T}_{i+1}$ over $\mathbb{F}_2$, it forms an $n+1$ dimensional vector space over $\mathbb{F}_2$. We can use the roots of these irreducible polynomials to construct a Multilinear Basis:&lt;/p&gt;
+$$
+\begin{split}
+\mathcal{B}_{i+1} &amp;= (1, \alpha_0)\otimes (1, \alpha_1) \otimes \cdots \otimes (1,\alpha_i)  \\
+&amp; = (1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2,\ \ldots,\ \alpha_0\alpha_1\cdots \alpha_i)
+\end{split}
+$$&lt;p&gt;This is consistent with what we discussed earlier, using $(1, \eta, \zeta, \zeta\eta)$ as the Basis for $\mathbb{F}_{2}(\eta, \zeta)$. We can quickly verify this. First, $(1, \alpha_0)$ is the Basis of $\mathcal{T}_1$, because every element of $\mathcal{T}_1$ can be expressed as&lt;/p&gt;
+$$
+a_0 + b_0\cdot \alpha_0,  \quad a_0, b_0\in\mathcal{T}_0
+$$&lt;p&gt;After $\mathcal{T}_1$ is extended to $\mathcal{T}_2$ through $\alpha_1$, elements of $\mathcal{T}_2$ can all be expressed as:&lt;/p&gt;
+$$
+a_1 + b_1\cdot \alpha_1,  \quad a_1, b_1\in\mathcal{T}_1
+$$&lt;p&gt;Substituting $a_1=a_0+b_0\cdot \alpha_0$, $b_1=a_0&#39;+b_0&#39;\cdot \alpha_1$, we have:&lt;/p&gt;
+$$
+\begin{split}
+a_1 + b_1\cdot \alpha_1 &amp;= (a_0+b_0\cdot \alpha_0) + (a&#39;_0+b&#39;_0\cdot \alpha_0)\cdot \alpha_1 \\
+ &amp;= a_0 + b_0\alpha_0 + a&#39;_0\cdot\alpha_1+ b_0&#39;\cdot \alpha_0\alpha_1
+\end{split}
+$$&lt;p&gt;Thus, $(1, \alpha_0, \alpha_1, \alpha_0\alpha_1)$ forms the Basis of $\mathcal{T}_2$. By extension, $(1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2, \alpha_0\alpha_2, \alpha_1\alpha_2, \alpha_0\alpha_1\alpha_2)$ is the Basis of $\mathcal{T}_3$. Finally, $\mathcal{B}_{n}$ is the Basis of $\mathcal{T}_{n}$.&lt;/p&gt;
+&lt;h3 id=&#34;finding-primitive-element&#34;&gt;Finding Primitive element&lt;/h3&gt;
+&lt;p&gt;We discussed earlier that $\alpha_i$ and $\alpha^{-1}_{i}$ are conjugate roots. By Galois theory,&lt;/p&gt;
+$$
+\alpha_{i}^{2^{2^n}} = \alpha^{-1}_{i} 
+$$&lt;p&gt;Then all $\alpha_i$ satisfy the following property:&lt;/p&gt;
+$$
+\alpha_i^{F_i} = 1
+$$&lt;p&gt;Here $F_n$ represents the Fermat Number, $F_n=2^{2^n}+1$. A famous theorem is that $\mathsf{gcd}(F_i, F_j) = 1,  i\neq j$, that is, any two different Fermat numbers are coprime, so&lt;/p&gt;
+$$
+\mathsf{ord}(\alpha_0\alpha_1\cdots \alpha_i) = \mathsf{ord}(\alpha_0)\mathsf{ord}(\alpha_1)\cdots\mathsf{ord}(\alpha_i) 
+$$&lt;p&gt;Therefore, if the Fermat number $F_i$ is prime, then obviously $\mathsf{ord}(\alpha_i)=F_i$. Currently, we know that when $i\leq 4$, $F_i$ are all prime, so&lt;/p&gt;
+$$
+\begin{split}
+\mathsf{ord}(\alpha_0\cdot \alpha_1\cdot \cdots \cdot \alpha_i) &amp;= \mathsf{ord}(\alpha_0)\cdot \mathsf{ord}(\alpha_1)\cdot \cdots \cdot \mathsf{ord}(\alpha_n) \\
+&amp; = F_0\cdot F_1\cdot \cdots \cdot F_i = 2^{2^{i+1}} - 1 \\
+&amp; = |\mathcal{T}_{n+1}| -1
+\end{split}
+$$&lt;p&gt;If $\alpha_0\cdots \alpha_i, i\leq 4$, then according to the properties of finite fields, it is a Primitive Element of $\mathcal{T}_{n+1}$.&lt;/p&gt;
+&lt;p&gt;Additionally, through computer program verification, for the cases of $5\leq i \leq 8$, the Order of $\alpha_i$ is still equal to $F_i$. The $\alpha_0\cdots \alpha_8$ is of the size of the finite field $\mathbb{F}_{2^{512}}$ which can already meet the needs of proof systems like Binius. But mathematically, do all $\alpha_i$ satisfy this property? This seems to still be an unsolved problem [Wie88].&lt;/p&gt;
+&lt;h2 id=&#34;multiplication-optimization&#34;&gt;Multiplication Optimization&lt;/h2&gt;
+&lt;p&gt;Another significant advantage of adopting the Extension Tower is the optimization of multiplication operations.&lt;/p&gt;
+&lt;p&gt;The first optimization is &amp;ldquo;Small-by-large Multiplication&amp;rdquo;, that is, the multiplication operation of two numbers $a\in\mathcal{T}_\iota$ and $b\in\mathcal{T}_{\iota+\kappa}$. Since $b$ can be decomposed into $2^\kappa$ elements of $\mathcal{T}_\iota$, this multiplication operation is equivalent to $2^\kappa$ multiplication operations on $\mathcal{T}_\iota$.&lt;/p&gt;
+$$
+a \cdot (b_0, b_1, \cdots, b_{2^\kappa-1}) = (a\cdot b_0, a\cdot b_1, \cdots, a\cdot b_{\kappa-1})
+$$&lt;p&gt;Even for the multiplication of two elements in the same field, there are still optimization techniques. Suppose $a, b\in\mathcal{T}_{i+1}$, then according to the definition of Tower construction, they can be represented as $a_0 + a_1\cdot\alpha_i$ and $b_0 + b_1\cdot \alpha_i$ respectively, then their multiplication can be derived as follows:&lt;/p&gt;
+$$
+\begin{split}
+a\cdot b  &amp; = (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+ &amp;= a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot\alpha_i^2 \\
+&amp; = a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot(\alpha_{i-1}\alpha_i+1) \\
+&amp; = a_0b_0  + a_1b_1 + (a_0b_1 + a_1b_0 + a_1b_1\cdot\alpha_{i-1})\cdot\alpha_i \\
+&amp; = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i
+\end{split}
+$$&lt;p&gt;Note on the right side of the above equation, we only need to calculate three multiplications on $\mathcal{T}_{i}$, namely $A=a_0b_0$, $B=(a_0+a_1)(b_0+b_1)$ and $C=a_1b_1$, then the above formula can be converted to:&lt;/p&gt;
+$$
+a\cdot b = (A + C) + (B-A-C+C\cdot \alpha_{i-1})\cdot\alpha_i 
+$$&lt;p&gt;There&amp;rsquo;s still one $C\cdot \alpha_{i-1}$ missing, which is a constant multiplication, because $\alpha_{i-1}\in\mathcal{T}_{i}$ is a constant. This constant multiplication can be reduced to a constant multiplication operation on $\mathcal{T}_{i-1}$, as shown below:&lt;/p&gt;
+$$
+\begin{split}
+C\cdot \alpha_{i-1} &amp;= (c_0 + c_1\alpha_{i-1})\cdot \alpha_{i-1} \\
+&amp; = c_0\cdot \alpha_{i-1} + c_1\cdot \alpha_{i-1}^2 \\
+&amp; = c_0\cdot \alpha_{i-1} + c_1\cdot (\alpha_{i-2}\cdot \alpha_{i-1} + 1) \\
+&amp; = c_1 + (c_0 + {\color{blue}c_1\cdot \alpha_{i-2}})\cdot \alpha_{i-1}
+\end{split}
+$$&lt;p&gt;The blue part expression, ${\color{blue}c_1\cdot \alpha_{i-2}}$ is a constant multiplication operation on $\mathcal{T}_{i-2}$ that needs to be calculated recursively. The entire recursive process only needs to perform several additions to complete.&lt;/p&gt;
+&lt;p&gt;Looking back at the $a\cdot b$ operation, we can also construct a Karatsuba-style recursive algorithm, where each layer of recursion only needs to complete three multiplication operations, one less than the four multiplication operations without optimization. Overall, the optimization effect will be very significant.&lt;/p&gt;
+&lt;p&gt;Furthermore, the multiplication inverse operation on $\mathcal{T}_{i}$ can also be greatly optimized [FP97]. Consider $a, b\in\mathcal{T}_{i+1}$, satisfying $a\cdot b=1$, expand the expressions of $a$ and $b$:&lt;/p&gt;
+$$
+\begin{split}
+a\cdot b &amp;= (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+&amp; = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i\\
+&amp;= 1\\
+\end{split}
+$$&lt;p&gt;We can calculate to get the expressions for $b_0, b_1$:&lt;/p&gt;
+$$
+\begin{split}
+b_0 &amp;= \frac{a_0 + a_1\alpha_{i-1}}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2}  \\[2ex]
+b_1 &amp;= \frac{a_1}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2} \\
+\end{split}
+$$&lt;p&gt;So, the calculation of $b_0$ and $b_1$ includes: one inversion operation, three multiplications, two additions, one constant multiplication, and one squaring operation.&lt;/p&gt;
+$$
+\begin{split}
+d_0 &amp;= \alpha_{i-1}a_1\\
+d_1 &amp;= a_0 + d_0 \\
+d_2 &amp;= a_0 \cdot d_1 \\
+d_3 &amp;= a_1^2   \\
+d_4 &amp;= d_2 + d_3 \\
+d_5 &amp;= 1/d_4 \\
+b_0 &amp; = d_1\cdot d_5\\
+b_1 &amp; = a_1 \cdot d_5\\
+\end{split}
+$$&lt;p&gt;The inversion operation of $d_5$ can be recursively calculated layer by layer along the Extension Tower. The main computational cost in the recursive process is three multiplication operations. There&amp;rsquo;s also the squaring operation of $d_3$, which can also be calculated recursively:&lt;/p&gt;
+$$
+\begin{split}
+a_1^2 &amp;= (e_0 + e_1\cdot\alpha_{i-1})^2 \\
+&amp; = e_0^2 + e_1^2\cdot\alpha_{i-1}^2 \\
+&amp; = e_0^2 + e_1^2\cdot(\alpha_{i-2}\alpha_{i-1} + 1) \\
+&amp; = (e_0^2 + e_1^2) + (e_1^2\alpha_{i-2})\cdot\alpha_{i-1}  \\
+\end{split}
+$$&lt;p&gt;For detailed recursive efficiency analysis, please refer to [FP97]. Overall, the computational complexity is comparable to the Karatsuba algorithm, thus greatly reducing the algorithmic complexity of inversion.&lt;/p&gt;
+&lt;h2 id=&#34;artin-schreier-tower-conway-tower&#34;&gt;Artin-Schreier Tower (Conway Tower)&lt;/h2&gt;
+&lt;p&gt;There&amp;rsquo;s another method to construct Binary Towers, originating from a paper published by Amil Artin and Otto Schreier in 1927, which also appears in Conway&amp;rsquo;s book &amp;ldquo;On Numbers and Games&amp;rdquo;. For the historical origins and related theories, please refer to [CHS24].&lt;/p&gt;
+&lt;p&gt;For any $\mathbb{F}_{p^n}$, we choose $h(X_{i+1}) = X_{i+1}^p - X_{i+1} - \alpha_0\alpha_1\cdots \alpha_i$ as the irreducible polynomial for each layer of the Tower. And $\alpha_{i+1}$ is the root of $h(X_{i+1})=0$ on the previous layer of the Tower. This way we can get an Extension Tower:&lt;/p&gt;
+$$
+\mathbb{F}_2 \subset \mathbb{F}_{2^2}\cong\mathbb{F}_2(\alpha_0) \subset \mathbb{F}_{2^4}\cong\mathbb{F}_{2^2}(\alpha_1) \subset \mathbb{F}_{2^8}\cong\mathbb{F}_{2^4}(\alpha_2)
+$$&lt;p&gt;Moreover, $(1, \alpha_0)\otimes(1, \alpha_1)\otimes\cdots \otimes (1, \alpha_n)$ forms a Basis for the vector space $\mathbb{F}_{2^{2^{i+1}}}$. According to our previous discussion, this set of Bases also supports Zero-cost subfield embedding. This type of Multilinear Basis is also known as Cantor Basis [Can89].&lt;/p&gt;
+&lt;h2 id=&#34;references&#34;&gt;References&lt;/h2&gt;
+&lt;ul&gt;
+&lt;li&gt;[Wie88] Wiedemann, Doug. &amp;ldquo;An iterated quadratic extension of GF (2).&amp;rdquo; Fibonacci Quart 26.4 (1988): 290-295.&lt;/li&gt;
+&lt;li&gt;[DP23] Diamond, Benjamin E., and Jim Posen. &amp;ldquo;Succinct arguments over towers of binary fields.&amp;rdquo; Cryptology ePrint Archive (2023).&lt;/li&gt;
+&lt;li&gt;[DP24] Diamond, Benjamin E., and Jim Posen. &amp;ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers.&amp;rdquo; Cryptology ePrint Archive (2024).&lt;/li&gt;
+&lt;li&gt;[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.&lt;/li&gt;
+&lt;li&gt;[FP97] Fan, John L., and Christof Paar. &amp;ldquo;On efficient inversion in tower fields of characteristic two.&amp;rdquo; Proceedings of IEEE International Symposium on Information Theory. IEEE, 1997.&lt;/li&gt;
+&lt;li&gt;[CHS24] Cagliero, Leandro, Allen Herman, and Fernando Szechtman. &amp;ldquo;Artin-Schreier towers of finite fields.&amp;rdquo; arXiv preprint arXiv:2405.10159 (2024).&lt;/li&gt;
+&lt;li&gt;[Can89] David G. Cantor. On arithmetical algorithms over finite fields. J. Comb. Theory Ser. A, 50(2):285–300, March 1989.&lt;/li&gt;
+&lt;/ul&gt;
+</description>
+      
+    </item>
+    
     <item>
       <title>Trust Wallet&#39;s Fomo3D Summer: Fresh Discovery of Low Entropy Flaw From 2018</title>
       <link>https://sec-bit.github.io/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/</link>
diff --git a/en/page/2/index.html b/en/page/2/index.html
new file mode 100644
index 0000000..12cd7ec
--- /dev/null
+++ b/en/page/2/index.html
@@ -0,0 +1,637 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/" />
+
+<link href="/blog/en/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="SECBIT Blog">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="SECBIT Blog">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="SECBIT Blog">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+<div class="home-container">
+  
+  
+  
+  
+  
+  
+  
+
+<section class="jane-card post">
+  
+
+  <header class="post-header">
+    <h1 class="post-title">
+      <a class="post-link" href="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/">
+        How the winner got Fomo3D prize - A Detailed Explanation
+      </a>
+    </h1>
+    
+    
+    <div class="post-meta-list">
+      <div class="post-meta-item post-meta-author">
+        
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+        SECBIT Labs
+        
+      </div>
+      <div class="post-meta-item post-meta-time">
+        
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+        <time datetime=" 2018-08-23">
+          2018-08-23
+        </time>
+      </div>
+    </div>
+  </header>
+  
+  <div class="post-content">
+
+    <p>
+      <img src="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/cover.jpeg"><br>
+    </p>
+
+    
+    <div class="post-summary">
+      The first round of Fomo3D has ended and the winner&rsquo;s address is 0xa169, with a prize of 10,469.66 ethers.
+You may think that the winner is just an ordinary participant.
+    </div>
+
+    <div class="read-more">
+      <a role="button" href="/blog/en/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/" class="read-more-link outline">Read more</a>
+    </div>
+    
+  </div>
+
+</section>
+
+  
+  
+
+<section class="jane-card post">
+  
+
+  <header class="post-header">
+    <h1 class="post-title">
+      <a class="post-link" href="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/">
+        Lacking Insights in ERC223 &amp; ERC827 Implementation
+      </a>
+    </h1>
+    
+    
+    <div class="post-meta-list">
+      <div class="post-meta-item post-meta-author">
+        
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+        SECBIT Labs
+        
+      </div>
+      <div class="post-meta-item post-meta-time">
+        
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+        <time datetime=" 2018-06-24">
+          2018-06-24
+        </time>
+      </div>
+    </div>
+  </header>
+  
+  <div class="post-content">
+
+    <p>
+      <img src="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/1.png"><br>
+    </p>
+
+    
+    <div class="post-summary">
+      This bug originates from a common practice: calling an arbitrary function appointed by the contract caller from another contract after invoking a function in the current one, while the bug in ATN contract reveals the danger of this approach: the contract caller could bypass authority checks or attack others with the identity of contract itself via this feature.
+    </div>
+
+    <div class="read-more">
+      <a role="button" href="/blog/en/2018/06/24/lacking-insights-in-erc223-erc827-implementation/" class="read-more-link outline">Read more</a>
+    </div>
+    
+  </div>
+
+</section>
+
+  
+
+
+  
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+<nav class="pagination">
+  <ul>
+    
+    <li >
+      <a href="/blog/en/">1</a>
+    </li>
+    
+    <li  class="active" >
+      <a href="/blog/en/page/2/">2</a>
+    </li>
+    
+  </ul>
+</nav>
+
+
+
+
+
+
+</div>
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/post/index.html b/en/post/index.html
index dfc5d1d..252ff9d 100644
--- a/en/post/index.html
+++ b/en/post/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Posts">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2024-01-19T11:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T17:05:24+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Posts">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,6 +371,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
@@ -396,13 +400,33 @@
   <div class="archive-title">
     <h1>Archive</h1>
     <span class="archive-post-counter">
-      5 posts In Total
+      7 posts In Total
     </span>
   </div>
   <section class="archive-group">
     <div class="archive-group-title">
       <h2 class="archive-year">2024</h2>
     </div>
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
     <div class="archive-post">
       <time datetime=" 2024-01-19" class="archive-post-time">
         2024-01-19
diff --git a/en/post/index.xml b/en/post/index.xml
index c753610..f57d3f4 100644
--- a/en/post/index.xml
+++ b/en/post/index.xml
@@ -6,8 +6,22 @@
     <description>Recent content in Posts on SECBIT Blog</description>
     <generator>Hugo</generator>
     <language>en</language>
-    <lastBuildDate>Fri, 01 Nov 2024 17:05:24 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
     <atom:link href="https://sec-bit.github.io/blog/en/post/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
     <item>
       <title>Trust Wallet&#39;s Fomo3D Summer: Fresh Discovery of Low Entropy Flaw From 2018</title>
       <link>https://sec-bit.github.io/blog/en/2024/01/19/trust-wallets-fomo3d-summer-vuln/</link>
diff --git a/en/sitemap.xml b/en/sitemap.xml
index 4aff978..e2d8f21 100644
--- a/en/sitemap.xml
+++ b/en/sitemap.xml
@@ -2,106 +2,155 @@
 <urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/binance/</loc>
-    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/binius/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
     <loc>https://sec-bit.github.io/blog/en/categories/</loc>
-    <lastmod>2024-11-01T17:05:24+08:00</lastmod>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/crypto-wallet/</loc>
-    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/cryptography/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/categories/crypto-wallet/</loc>
-    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/finite-fields/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/fomo3d/</loc>
+    <loc>https://sec-bit.github.io/blog/en/categories/mle-pcs/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/post/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/tags/snark/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/tags/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/en/tags/binance/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/hacking/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/crypto-wallet/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/libbitcoin/</loc>
+    <loc>https://sec-bit.github.io/blog/en/categories/crypto-wallet/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/low-entropy/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/fomo3d/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/milk-sad/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/hacking/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/mnemonic/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/libbitcoin/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/post/</loc>
-    <lastmod>2024-11-01T17:05:24+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/low-entropy/</loc>
+    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/random-number/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/milk-sad/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/</loc>
-    <lastmod>2024-11-01T17:05:24+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/mnemonic/</loc>
+    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/seed/</loc>
+    <loc>https://sec-bit.github.io/blog/en/tags/random-number/</loc>
     <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
-    <loc>https://sec-bit.github.io/blog/en/tags/</loc>
-    <lastmod>2024-11-01T17:05:24+08:00</lastmod>
+    <loc>https://sec-bit.github.io/blog/en/tags/seed/</loc>
+    <lastmod>2024-01-25T14:47:27+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
diff --git a/en/tags/binance/index.html b/en/tags/binance/index.html
index c790cdc..aba6605 100644
--- a/en/tags/binance/index.html
+++ b/en/tags/binance/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/binius/index.html b/en/tags/binius/index.html
new file mode 100644
index 0000000..eda2a92
--- /dev/null
+++ b/en/tags/binius/index.html
@@ -0,0 +1,580 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/tags/binius/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/binius/" />
+
+<link href="/blog/en/tags/binius/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/tags/binius/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Binius">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Binius">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Binius">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/en/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/crypto-wallet/" class="outline archive-categories__link ">crypto wallet</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">Tag: Binius</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/tags/binius/index.xml b/en/tags/binius/index.xml
new file mode 100644
index 0000000..a76d0fa
--- /dev/null
+++ b/en/tags/binius/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Binius on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/en/tags/binius/</link>
+    <description>Recent content in Binius on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>en</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/en/tags/binius/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
+  </channel>
+</rss>
diff --git a/en/tags/binius/page/1/index.html b/en/tags/binius/page/1/index.html
new file mode 100644
index 0000000..e517ce5
--- /dev/null
+++ b/en/tags/binius/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <title>https://sec-bit.github.io/blog/en/tags/binius/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/binius/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/en/tags/binius/">
+  </head>
+</html>
diff --git a/en/tags/blockchain/index.html b/en/tags/blockchain/index.html
index ba354f9..7ae612b 100644
--- a/en/tags/blockchain/index.html
+++ b/en/tags/blockchain/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/crypto-wallet/index.html b/en/tags/crypto-wallet/index.html
index 74650d0..9f9baa7 100644
--- a/en/tags/crypto-wallet/index.html
+++ b/en/tags/crypto-wallet/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/cryptography/index.html b/en/tags/cryptography/index.html
new file mode 100644
index 0000000..8236a76
--- /dev/null
+++ b/en/tags/cryptography/index.html
@@ -0,0 +1,580 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/tags/cryptography/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/cryptography/" />
+
+<link href="/blog/en/tags/cryptography/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/tags/cryptography/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Cryptography">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Cryptography">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Cryptography">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/en/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/crypto-wallet/" class="outline archive-categories__link ">crypto wallet</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">Tag: Cryptography</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/tags/cryptography/index.xml b/en/tags/cryptography/index.xml
new file mode 100644
index 0000000..c50000d
--- /dev/null
+++ b/en/tags/cryptography/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Cryptography on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/en/tags/cryptography/</link>
+    <description>Recent content in Cryptography on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>en</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/en/tags/cryptography/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
+  </channel>
+</rss>
diff --git a/en/tags/cryptography/page/1/index.html b/en/tags/cryptography/page/1/index.html
new file mode 100644
index 0000000..a5a2ef3
--- /dev/null
+++ b/en/tags/cryptography/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <title>https://sec-bit.github.io/blog/en/tags/cryptography/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/cryptography/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/en/tags/cryptography/">
+  </head>
+</html>
diff --git a/en/tags/dapp/index.html b/en/tags/dapp/index.html
index 6107f6d..ced8e9f 100644
--- a/en/tags/dapp/index.html
+++ b/en/tags/dapp/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/erc223/index.html b/en/tags/erc223/index.html
index 73ba96c..5cdf535 100644
--- a/en/tags/erc223/index.html
+++ b/en/tags/erc223/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/erc827/index.html b/en/tags/erc827/index.html
index d993338..e6d3688 100644
--- a/en/tags/erc827/index.html
+++ b/en/tags/erc827/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/facebook/index.html b/en/tags/facebook/index.html
index ff79e79..ad65fa4 100644
--- a/en/tags/facebook/index.html
+++ b/en/tags/facebook/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/finite-fields/index.html b/en/tags/finite-fields/index.html
new file mode 100644
index 0000000..a9c77da
--- /dev/null
+++ b/en/tags/finite-fields/index.html
@@ -0,0 +1,580 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/tags/finite-fields/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/finite-fields/" />
+
+<link href="/blog/en/tags/finite-fields/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/tags/finite-fields/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Finite Fields">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Finite Fields">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Finite Fields">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/en/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/crypto-wallet/" class="outline archive-categories__link ">crypto wallet</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">Tag: Finite Fields</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/tags/finite-fields/index.xml b/en/tags/finite-fields/index.xml
new file mode 100644
index 0000000..d9114a5
--- /dev/null
+++ b/en/tags/finite-fields/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Finite Fields on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/en/tags/finite-fields/</link>
+    <description>Recent content in Finite Fields on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>en</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/en/tags/finite-fields/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
+  </channel>
+</rss>
diff --git a/en/tags/finite-fields/page/1/index.html b/en/tags/finite-fields/page/1/index.html
new file mode 100644
index 0000000..d13dd23
--- /dev/null
+++ b/en/tags/finite-fields/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <title>https://sec-bit.github.io/blog/en/tags/finite-fields/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/finite-fields/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/en/tags/finite-fields/">
+  </head>
+</html>
diff --git a/en/tags/fomo3d/index.html b/en/tags/fomo3d/index.html
index 92efe08..a9e3efa 100644
--- a/en/tags/fomo3d/index.html
+++ b/en/tags/fomo3d/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/game/index.html b/en/tags/game/index.html
index 09be776..0d359b2 100644
--- a/en/tags/game/index.html
+++ b/en/tags/game/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/hacking/index.html b/en/tags/hacking/index.html
index 1fe4001..7c053ee 100644
--- a/en/tags/hacking/index.html
+++ b/en/tags/hacking/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/index.html b/en/tags/index.html
index 2886fc5..8c78a38 100644
--- a/en/tags/index.html
+++ b/en/tags/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Tags">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2024-01-19T11:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T17:05:24+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Tags">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -375,7 +375,7 @@
     
     <div class="tag-cloud" style="padding: 5px 15px">
       <div class="tag-cloud-title">
-        23 Tags In Total
+        27 Tags In Total
       </div>
       <div class="tag-cloud-tags">
       
@@ -397,6 +397,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/en/tags/binius/"
+          style="font-size:1.6460148371100896rem">binius</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/en/tags/blockchain/"
           style="font-size:1rem">blockchain</a>
         
@@ -419,6 +430,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/en/tags/cryptography/"
+          style="font-size:1.6460148371100896rem">cryptography</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/en/tags/dapp/"
           style="font-size:1rem">dapp</a>
         
@@ -463,6 +485,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/en/tags/finite-fields/"
+          style="font-size:1.6460148371100896rem">finite fields</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/en/tags/fomo3d/"
           style="font-size:1.6460148371100896rem">fomo3d</a>
         
@@ -595,6 +628,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/en/tags/snark/"
+          style="font-size:1.6460148371100896rem">snark</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/en/tags/trust-wallet/"
           style="font-size:1rem">trust wallet</a>
         
diff --git a/en/tags/index.xml b/en/tags/index.xml
index 1543809..3be497b 100644
--- a/en/tags/index.xml
+++ b/en/tags/index.xml
@@ -6,8 +6,36 @@
     <description>Recent content in Tags on SECBIT Blog</description>
     <generator>Hugo</generator>
     <language>en</language>
-    <lastBuildDate>Fri, 01 Nov 2024 17:05:24 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
     <atom:link href="https://sec-bit.github.io/blog/en/tags/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Binius</title>
+      <link>https://sec-bit.github.io/blog/en/tags/binius/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/tags/binius/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>Cryptography</title>
+      <link>https://sec-bit.github.io/blog/en/tags/cryptography/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/tags/cryptography/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>Finite Fields</title>
+      <link>https://sec-bit.github.io/blog/en/tags/finite-fields/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/tags/finite-fields/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>SNARK</title>
+      <link>https://sec-bit.github.io/blog/en/tags/snark/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/tags/snark/</guid>
+      <description></description>
+    </item>
     <item>
       <title>Binance</title>
       <link>https://sec-bit.github.io/blog/en/tags/binance/</link>
@@ -120,33 +148,5 @@
       <guid>https://sec-bit.github.io/blog/en/tags/facebook/</guid>
       <description></description>
     </item>
-    <item>
-      <title>Libra</title>
-      <link>https://sec-bit.github.io/blog/en/tags/libra/</link>
-      <pubDate>Wed, 10 Jul 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/en/tags/libra/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>Programming Language</title>
-      <link>https://sec-bit.github.io/blog/en/tags/programming-language/</link>
-      <pubDate>Wed, 10 Jul 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/en/tags/programming-language/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>Blockchain</title>
-      <link>https://sec-bit.github.io/blog/en/tags/blockchain/</link>
-      <pubDate>Thu, 23 Aug 2018 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/en/tags/blockchain/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>DApp</title>
-      <link>https://sec-bit.github.io/blog/en/tags/dapp/</link>
-      <pubDate>Thu, 23 Aug 2018 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/en/tags/dapp/</guid>
-      <description></description>
-    </item>
   </channel>
 </rss>
diff --git a/en/tags/libbitcoin/index.html b/en/tags/libbitcoin/index.html
index f25e2a8..09f05f8 100644
--- a/en/tags/libbitcoin/index.html
+++ b/en/tags/libbitcoin/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/libra/index.html b/en/tags/libra/index.html
index 0e34b3a..9d20f87 100644
--- a/en/tags/libra/index.html
+++ b/en/tags/libra/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/low-entropy/index.html b/en/tags/low-entropy/index.html
index 728be41..e88b20a 100644
--- a/en/tags/low-entropy/index.html
+++ b/en/tags/low-entropy/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/milk-sad/index.html b/en/tags/milk-sad/index.html
index 9994985..4237a2b 100644
--- a/en/tags/milk-sad/index.html
+++ b/en/tags/milk-sad/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/mnemonic/index.html b/en/tags/mnemonic/index.html
index d6f45c9..dfae323 100644
--- a/en/tags/mnemonic/index.html
+++ b/en/tags/mnemonic/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/programming-language/index.html b/en/tags/programming-language/index.html
index af88032..35fd0c3 100644
--- a/en/tags/programming-language/index.html
+++ b/en/tags/programming-language/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/random-number/index.html b/en/tags/random-number/index.html
index e627bbb..9a4e6c1 100644
--- a/en/tags/random-number/index.html
+++ b/en/tags/random-number/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/seed/index.html b/en/tags/seed/index.html
index 65bd2a9..86502c2 100644
--- a/en/tags/seed/index.html
+++ b/en/tags/seed/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/smart-contract/index.html b/en/tags/smart-contract/index.html
index cf8620f..5476345 100644
--- a/en/tags/smart-contract/index.html
+++ b/en/tags/smart-contract/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/snark/index.html b/en/tags/snark/index.html
new file mode 100644
index 0000000..25147ed
--- /dev/null
+++ b/en/tags/snark/index.html
@@ -0,0 +1,580 @@
+<!DOCTYPE html>
+<html lang="en" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="zh-cn" href="https://sec-bit.github.io/blog/tags/snark/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/snark/" />
+
+<link href="/blog/en/tags/snark/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/en/tags/snark/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="SNARK">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="en">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="SNARK">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="SNARK">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/en/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          English
+        </a>
+        <ul class="submenu">
+          
+          
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+          </li>
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/en/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/">Home</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/post/">Archives</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/tags/">Tags</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/categories/">Categories</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            English
+            Language
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/"><strong>English</strong></a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/">中文</a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/en/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/crypto-wallet/" class="outline archive-categories__link ">crypto wallet</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">Tag: SNARK</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/en/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/en/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/en/tags/snark/index.xml b/en/tags/snark/index.xml
new file mode 100644
index 0000000..657573c
--- /dev/null
+++ b/en/tags/snark/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>SNARK on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/en/tags/snark/</link>
+    <description>Recent content in SNARK on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>en</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/en/tags/snark/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/11/01/binius-02/</guid>
+      <description>The FRI-Binus paper [DP24] discusses the Additive FFT algorithm based on Subspace Polynomial and provides a perspective to understand the Additive FFT algorithm based on Novel Polynomial Basis in [LCH14] using odd-even decomposition. This article directly introduces the Subspace Polynomial, and then introduces the Additive FFT algorithm from the perspective of odd-even decomposition. This article omits the definition of Normalized Subspace Polynomial for easier understanding. Normalization only affects the performance of the FFT algorithm and has no essential difference from the simplified algorithm introduced in this article.</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/en/2024/10/31/binius-01/</guid>
+      <description>Binary fields possess elegant internal structures, and Binius aims to fully utilize these internal structures to construct efficient SNARK proof systems. This article mainly discusses the Binary Fields that Binius relies on at its core and the construction methods of Extension Towers based on Binary Fields. Binary Fields provide smaller fields and are compatible with various tool constructions in traditional cryptography while also being able to fully utilize optimization of special instructions on hardware. There are two main advantages to choosing Extension Towers: one is that the recursive Extension construction provides a consistent and incremental Basis selection, allowing Small Fields to be embedded into Large Fields in a very natural way; the other advantage is that multiplication and inversion operations have efficient recursive algorithms.</description>
+    </item>
+  </channel>
+</rss>
diff --git a/en/tags/snark/page/1/index.html b/en/tags/snark/page/1/index.html
new file mode 100644
index 0000000..29996d0
--- /dev/null
+++ b/en/tags/snark/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <title>https://sec-bit.github.io/blog/en/tags/snark/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/en/tags/snark/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/en/tags/snark/">
+  </head>
+</html>
diff --git a/en/tags/trust-wallet/index.html b/en/tags/trust-wallet/index.html
index 6b03f40..eedb418 100644
--- a/en/tags/trust-wallet/index.html
+++ b/en/tags/trust-wallet/index.html
@@ -370,6 +370,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/vulnerability/index.html b/en/tags/vulnerability/index.html
index 3e88f8b..b4808b0 100644
--- a/en/tags/vulnerability/index.html
+++ b/en/tags/vulnerability/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/zero-knowledge-proof/index.html b/en/tags/zero-knowledge-proof/index.html
index 3ee34e5..f4f4a3e 100644
--- a/en/tags/zero-knowledge-proof/index.html
+++ b/en/tags/zero-knowledge-proof/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/en/tags/zksnarks/index.html b/en/tags/zksnarks/index.html
index 7ee3eb9..30301e1 100644
--- a/en/tags/zksnarks/index.html
+++ b/en/tags/zksnarks/index.html
@@ -372,6 +372,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/en/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/en/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
     
   
diff --git a/index.html b/index.html
index 782f387..fecb6bd 100644
--- a/index.html
+++ b/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/">
-        从零开始学习 zk-SNARK（五）——Pinocchio 协议
+      <a class="post-link" href="/blog/2024/11/01/binius-02/">
+        Notes on Binius (Part II): Subspace Polynomial
       </a>
     </h1>
     
@@ -381,14 +381,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
+        Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-22">
-          2020-01-22
+        <time datetime=" 2024-11-01">
+          2024-11-01
         </time>
       </div>
     </div>
@@ -397,17 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/img/5/vlad-hilitanu-m8-b0Pbkru4-unsplash.jpg"><br>
+      
     </p>
 
     
     <div class="post-summary">
-      作为本系列的最后一篇文章，本文继续对 zk-SNARK
-协议进行完善，最终形成一个完整的 zk-SNARK 协议。
+      FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2024/11/01/binius-02/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -422,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/">
-        从零开始学习 zk-SNARK（四）——多项式的约束
+      <a class="post-link" href="/blog/2024/10/31/binius-01/">
+        Notes on FRI-Binius (Part I): Binary Towers
       </a>
     </h1>
     
@@ -432,14 +431,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
+        Yu Guo <yu.guo@secbit.io> and Jade Xie <jade@secbit.io>
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-15">
-          2020-01-15
+        <time datetime=" 2024-10-31">
+          2024-10-31
         </time>
       </div>
     </div>
@@ -448,16 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/img/4/WX20200116-211300@2x.png"><br>
+      
     </p>
 
     
     <div class="post-summary">
-      上一篇文章中我们学习了如何将程序转换为多项式进行证明。到这里似乎已经有点晕了，本文将对协议执行进一步的约束，并对协议展开优化。
+      二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2024/10/31/binius-01/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -472,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/">
-        从零开始学习 zk-SNARK（三）——从程序到多项式的构造
+      <a class="post-link" href="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/">
+        从零开始学习 zk-SNARK（五）——Pinocchio 协议
       </a>
     </h1>
     
@@ -488,8 +487,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-08">
-          2020-01-08
+        <time datetime=" 2020-01-22">
+          2020-01-22
         </time>
       </div>
     </div>
@@ -498,16 +497,17 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/img/3/mario-gogh-mLdpivRGSg0-unsplash.jpg"><br>
+      <img src="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/img/5/vlad-hilitanu-m8-b0Pbkru4-unsplash.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      前文主要介绍了如何构造多项式的零知识证明协议，现在将开始探讨如何构造更通用的协议。本节主要是讲如何将一组计算的证明转换为多项式进行证明。本文重点主要包括：多项式的算术性质，多项式插值等。
+      作为本系列的最后一篇文章，本文继续对 zk-SNARK
+协议进行完善，最终形成一个完整的 zk-SNARK 协议。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/22/learn-zk-snark-from-zero-part-five/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -522,8 +522,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/08/nizk-by-crs/">
-        云中「秘密」：构建非交互式零知识证明
+      <a class="post-link" href="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/">
+        从零开始学习 zk-SNARK（四）——多项式的约束
       </a>
     </h1>
     
@@ -532,14 +532,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        郭宇
+        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-08">
-          2020-01-08
+        <time datetime=" 2020-01-15">
+          2020-01-15
         </time>
       </div>
     </div>
@@ -548,16 +548,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/08/nizk-by-crs/img/private_eye.png"><br>
+      <img src="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/img/4/WX20200116-211300@2x.png"><br>
     </p>
 
     
     <div class="post-summary">
-      之前我们介绍了如何采用「随机预言机」来扮演一个虚拟的「第三方」角色，实现虚拟的「交互」与「随机挑战」。本文将深入讲述另一种方法实现非交互式零知识证明，即如何通过一段共享的字符串去除「交互」与「隐藏随机性」。这个字符串必须事先由「第三方」来随机产生，这就是传说中的「公共参考串」（Common Reference String，简称 CRS）。
+      上一篇文章中我们学习了如何将程序转换为多项式进行证明。到这里似乎已经有点晕了，本文将对协议执行进一步的约束，并对协议展开优化。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/08/nizk-by-crs/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/15/learn-zk-snark-from-zero-part-four/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -572,8 +572,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/">
-        零知识证明 Learn by Coding：libsnark 入门篇
+      <a class="post-link" href="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/">
+        从零开始学习 zk-SNARK（三）——从程序到多项式的构造
       </a>
     </h1>
     
@@ -582,14 +582,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        p0n1
+        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-03">
-          2020-01-03
+        <time datetime=" 2020-01-08">
+          2020-01-08
         </time>
       </div>
     </div>
@@ -598,16 +598,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/img/cover.jpeg"><br>
+      <img src="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/img/3/mario-gogh-mLdpivRGSg0-unsplash.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      希望通过本系列文章，所有开发者都能亲自上手实践，在短时间内迅速入门 libsnark，一步步了解 libsnark 的基本概念，学会如何开发 zk-SNARKs 电路，完成证明的生成和验证，最终将零知识证明应用到真实业务中去。
+      前文主要介绍了如何构造多项式的零知识证明协议，现在将开始探讨如何构造更通用的协议。本节主要是讲如何将一组计算的证明转换为多项式进行证明。本文重点主要包括：多项式的算术性质，多项式插值等。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/08/learn-zk-snark-from-zero-part-three/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -660,6 +660,10 @@ <h1 class="post-title">
       <a href="/blog/page/5/">5</a>
     </li>
     
+    <li >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
   </ul>
 </nav>
 
diff --git a/index.xml b/index.xml
index c6b9272..aa76b19 100644
--- a/index.xml
+++ b/index.xml
@@ -6,11 +6,673 @@
     <description>Recent content on SECBIT Blog</description>
     <generator>Hugo -- gohugo.io</generator>
     <language>zh-cn</language>
-    <lastBuildDate>Wed, 22 Jan 2020 08:00:00 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 08:00:00 +0800</lastBuildDate>
     
         <atom:link href="https://sec-bit.github.io/blog/index.xml" rel="self" type="application/rss+xml" />
     
     
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      
+        <description>&lt;ul&gt;
+&lt;li&gt;Yu Guo &lt;a href=&#34;mailto:yu.guo@secbit.io&#34;&gt;yu.guo@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;Jade Xie &lt;a href=&#34;mailto:jade@secbit.io&#34;&gt;jade@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;/ul&gt;
+&lt;p&gt;FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。&lt;/p&gt;
+&lt;p&gt;由于 Additive FFT 依赖的代数结构和素数域上的 Multiplicative FFT 非常相似，因此关于 Multiplicative FFT 的知识将有助于理解本文的内容。&lt;/p&gt;
+&lt;h2 id=&#34;线性子空间多项式-subspace-polynomial&#34;&gt;线性子空间多项式 Subspace Polynomial&lt;/h2&gt;
+&lt;p&gt;我们继续探索基于 $\mathbb{F}_2$ 上的 Extension Field，$\mathbb{F}_{2^m}$ 。不管是用何种方式构造的 $\mathbb{F}_{2^m}$，所有的元素构成了一个向量空间，记为 $V_m$ ，并且存在一组 Basis $(\beta_0, \beta_1, \ldots, \beta_{m-1})$ ，张成这个向量空间，记为 $V_m=\mathsf{Span}(\beta_0, \beta_1, \ldots, \beta_{m-1})$，或者用符号 $\langle \cdots \rangle$ 表示：&lt;/p&gt;
+$$
+V_m = \langle \beta_0, \beta_1, \ldots, \beta_{m-1} \rangle
+$$&lt;p&gt;这样任意一个元素 $ \theta\in\mathbb{F}_{2^m}$ ，可以写为 Basis 分量的线性组合：&lt;/p&gt;
+$$
+\theta = c_0\cdot \beta_0 + c_1\cdot \beta_1 + \ldots + c_{m-1}\cdot \beta_{m-1}, \text{ where $c_i\in \mathbb{F}_2$}
+$$&lt;p&gt;同时 $V_m$ 还是一个加法群，单位元为 $V_0=\{0\}$ ，如果 $V_k$ 是 $V_m$ 的一个线性子空间，那么  $V_k$ 也是 $V_m$ 的一个加法子群。对于 $V_k$ ，我们可以用一个多项式来编码其中的所有元素，即该多项式的根集合正好对应 $V_k$ 的所有元素的集合，我们把多项式记为 $s_k(X)$ 。这个多项式也被称为「Subspace Polynomial」子空间多项式：&lt;/p&gt;
+$$
+s_k(X) = \prod_{i=0}^{2^k-1}(X-\theta_i), \text{ where $\theta_i\in V_k$ }
+$$&lt;p&gt;多项式 $s_k(X)$ 也可以看成是 $V_k$ 这个 Domain 上的 Vanishing Polynomial，因为对于任意的 $\theta\in V_k$ ，都满足：&lt;/p&gt;
+$$
+s_k(\theta) = 0
+$$&lt;h3 id=&#34;linearized-polynomial&#34;&gt;Linearized Polynomial&lt;/h3&gt;
+&lt;p&gt;上面介绍的 Subspace 多项式是一种所谓的 Linearized Polynomial，因为它的定义满足下面的形式：&lt;/p&gt;
+$$
+L(X) = \sum_{i=0}^{n-1} c_i\cdot X^{q^i}, \quad c_i\in \mathbb{F}_{q}
+$$&lt;p&gt;多项式 $L(X)$ 之所以被称为 Linearized Polynomial，因为每一个 $L(X)$ 都对应到 $\mathbb{F}_{q}$ 的扩张域 $K$ 上的一个线性算子（Linear Operator）。假如 $L(X)$ 的所有根都在扩张域 $K=\mathbb{F}_{q^s}$ 中，那么对于所有的 $\theta\in K$，都有 $L(\theta)\in K$。而且，如果 $\theta\neq\theta&#39;$，那么 $L(\theta)\neq L(\theta&#39;)$。每一个 $L(X)$ 都可以被视为一个矩阵 $B\in \mathbb{F}_q^{s\times s}$ ，完成 向量空间 $\mathbb{F}^s_q$ 上的线性变换，使得：&lt;/p&gt;
+$$
+(c_0, c_1, \ldots, c_{s-1}) B = (d_0, d_1, \ldots, d_{s-1})
+$$&lt;p&gt;对于 Subspace Polynomial 而言，每一个 $s_k(X)$ 都是一个 Linearized Polynomial，反过来，任何一个 Linearized polynomial $L(X)\in \mathbb{F}_{q^m}[X]$，它的所有根都构成某个线性子空间 $V_n\subset V_m$。详细的证明过程请参考 [LN97]。&lt;/p&gt;
+&lt;h3 id=&#34;线性性质&#34;&gt;线性性质&lt;/h3&gt;
+&lt;p&gt;由于 $s_k(X)$ 的每一项都是 $a_i\cdot X^{2^i}$ 的形式，因此它具有加法的同态性：&lt;/p&gt;
+$$
+\begin{align*}
+s_k(x + y) &amp;= s_k(x) + s_k(y), &amp;\quad \forall x, y \in \mathbb{F}_{2^m}\\
+s_k(c\cdot x) &amp;= c\cdot s_k(x), &amp;\quad \forall x\in \mathbb{F}_{2^m}, \forall c\in \mathbb{F}_2
+\end{align*}
+$$&lt;p&gt;我们来尝试简单证明第一个等式，根据有限域理论的一个常见定理（Freshman&amp;rsquo;s dream）：&lt;/p&gt;
+$$
+(x + y)^{2} = x^2 + 2xy + y^2 = x^{2} + y^{2}, \quad\text{where $x, y\in \mathbb{F}_{2^m}$}
+$$&lt;p&gt;显然，$2xy=0$，因为在二进制域中，$2=0$。所以下面的等式也同理成立：&lt;/p&gt;
+$$
+(x + y)^{2^i} = x^{2^i} + y^{2^i}
+$$&lt;p&gt;接下来验证下 $s_k(X)$ 的加法同态性：&lt;/p&gt;
+$$
+s_k(x + y) = \sum_{i=0}^{k} a_i\cdot (x+y)^{2^i}  = \sum_{i=0}^{k} a_i\cdot \big(x^{2^i} + y^{2^i}\big) = s_k(x) + s_k(y)
+$$&lt;h3 id=&#34;子空间多项式的递推式&#34;&gt;子空间多项式的递推式&lt;/h3&gt;
+&lt;p&gt;对于子空间 $V_k$，它可以被拆分为两个不相交的集合：&lt;/p&gt;
+$$
+V_k = V_{k-1} \cup (\beta_{k-1}+V_{k-1})
+$$&lt;p&gt;这里 $V_k=\langle \beta_0, \beta_1, \ldots, \beta_{k-1} \rangle$ , $V_{k-1}=\langle \beta_0, \beta_1, \ldots, \beta_{k-2} \rangle $ ，
+那么 $V_k$, $V_{k-1}$, $\beta_{k-1}+V_{k-1}$ 所对应的子空间多项式满足下面的关系：&lt;/p&gt;
+$$
+s_k(X) = s_{k-1}(X) \cdot s_{k-1}(X+\beta_{k-1})
+$$&lt;p&gt;举个简单例子，假设 $k=3$，$V_3=\langle \beta_0,\beta_1,\beta_2\rangle $ 由两部分构成，一部分是 $V_2=\langle \beta_0,\beta_1\rangle $，另一部分是 $V_2$ 中的每一个元素加上 ${\color{blue}\beta_2}$。因此，$V_3$ 的元素个数为 $2^2 + 2^2 = 8$，下面列出 $V_3$ 的全部元素：&lt;/p&gt;
+$$
+V_3 = \{0, \beta_0, \beta_1, \beta_0+\beta_1\} \cup \{{\color{blue}\beta_2}, \beta_0+{\color{blue}\beta_2}, \beta_1+{\color{blue}\beta_2}, (\beta_0+\beta_1)+{\color{blue}\beta_2}\}
+$$&lt;p&gt;我们容易验证： $s_3(X) = s_{2}(X) \cdot s_{2}(X+\beta_{k-1})$ 。当然 $s_{2}(X)$ 也可以拆成关于 $s_1(X)$ 和 $s_1(X+\beta_1)$ 的乘积，我们不妨试着拆解到底：&lt;/p&gt;
+$$
+\begin{split}
+s_3(X) &amp; = s_2(X)\cdot s_2(X + \beta_2) \\
+&amp; = s_2(X)^2 + \beta_2\cdot s_2(X) \\
+&amp; = s_1(X)\cdot s_1(X + \beta_1)\cdot s_1(X)\cdot s_1(X + \beta_1) + \beta_2\cdot s_1(X)\cdot s_1(X + \beta_1) \\
+&amp; = (s_1(X)^2 + \beta_1\cdot s_1(X))^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = s_1(X)^4 + \beta_1^2\cdot s_1(X)^2 + \beta_2\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = s_1(X)^4 + (\beta_1^2+\beta_2)\cdot s_1(X)^2 + \beta_1\beta_2\cdot s_1(X) \\
+&amp; = (X\cdot(X+\beta_0))^4 + (\beta_1^2+\beta_2)\cdot (X\cdot(X + \beta_0))^2 + \beta_1\beta_2\cdot (X\cdot(X + \beta_0)) \\
+&amp; = (X^2 + \beta_0\cdot X)^4 + (\beta_1^2+\beta_2)\cdot (X^2 + \beta_0\cdot X)^2 + \beta_1\beta_2\cdot (X^2 + \beta_0\cdot X) \\
+&amp; = X^8  + \beta_0^4X^4 + (\beta_1^2+\beta_2)X^4 + \beta_0^2(\beta_1^2+\beta_2)X^2 + \beta_1\beta_2X^2 + \beta_0\beta_1\beta_2X \\
+\end{split}
+$$&lt;p&gt;最后 $s_3(X)$ 的展开式满足 $\sum_{i=0}^{k} a_i\cdot X^{2^i}$ 这样的模式，也符合了我们上面的结论。&lt;/p&gt;
+&lt;h2 id=&#34;子空间上的同态映射&#34;&gt;子空间上的同态映射&lt;/h2&gt;
+&lt;p&gt;因为 Subspace Polynomial 实际上是一种 Vanishing Polynomial，并且它还具有加法同态，所以我们可以利用 Subspace Polynomial 来定义子空间之间的同态映射。&lt;/p&gt;
+&lt;p&gt;例如对于 $V_3=\langle \beta_0, \beta_1, \beta_2\rangle$ ，我们定义 $V_3$ 的子空间 $V_1=\{0, \beta_0\}$ 及其 Subspace Polynomial $s_1(X)$&lt;/p&gt;
+$$
+s_1(X) = X\cdot (X+\beta_0)
+$$&lt;p&gt;很显然，$s_1(V_1)=\{0, 0\}$，如果将 $s_1(X)$ 作用到 $V_3$ ，我们会得到下面的结果：&lt;/p&gt;
+$$
+\begin{split}
+s_1(0) &amp;= 0\\
+s_1(\beta_0) &amp; = 0 \\
+s_1(\beta_1) &amp; = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_0+\beta_1) &amp; = \beta_0\beta_1 + \beta_1^2\\
+s_1(\beta_2) &amp;= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_2) &amp;= \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_1+\beta_2) &amp;= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+s_1(\beta_0+\beta_1+\beta_2) &amp;= \beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2\\
+\end{split}
+$$&lt;p&gt;上面的等式显示 $s_1(V_3)$ 被映射到了一个大小只有 $V_3$ 一半的集合，记为 $V_2$。该集合也是一个子空间，$V_2= \langle \beta&#39;_0, \beta&#39;_1\rangle = \langle \beta_0\beta_1 + \beta_1^2, \beta_0\beta_2 + \beta_2^2 \rangle $，维度为 $2$ 。&lt;/p&gt;
+&lt;p&gt;这不是巧合，根据群同构定理，同态映射 $\phi: H \to G$ 的 Image $G$ 满足 $G\cong H/Ker(\phi)$ ，其中 $G$ 是一个商群，并且 $|G| = |H|/|Ker(\phi)|$ 。在上面这个例子里，$s_1: V_3\to V_2$ 是同态映射，$V_1=Ker(s_1)$ 。&lt;/p&gt;
+&lt;h3 id=&#34;映射构成的链&#34;&gt;映射构成的链&lt;/h3&gt;
+&lt;p&gt;对于 $V_2 = s_1(V_3)$，我们仍然可以继续构造一个 Degree 为 $2$ 的 Subspace Polynomial，&lt;/p&gt;
+$$
+s_1&#39;(X) = X\cdot (X+\beta_0\beta_1 + \beta_1^2)
+$$&lt;p&gt;可以继续将 $V_2$ 映射到一个一维的子空间 $V_1=\langle \beta&#39;&#39;\rangle$。我们只需要计算 $s_1(\beta&#39;_0)$ 与 $s_1(\beta&#39;_1)$ 即可，这些 Basis 分量构成了 $V_2$：&lt;/p&gt;
+$$
+\begin{split}
+s_1&#39;(\beta_0\beta_1 + \beta_1^2) &amp;= 0 \\
+s_1&#39;(\beta_0\beta_1 + \beta_1^2 + \beta_0\beta_2 + \beta_2^2)&amp; = \beta_0^2\beta_1\beta_2 + \beta_0\beta_1^2\beta_2 + \beta_0^2\beta_2^2 + \beta_0\beta_1\beta_2^2 + \beta_1^2\beta_2^2 + \beta_2^4 \\
+ &amp; = \beta&#39;&#39;
+\end{split}
+$$&lt;p&gt;其中 $V_2$ 的 Basis $(\beta&#39;_0, \beta&#39;_1)$ 中第一个分量会被映射到 $0$，第二个分量映射到 $\beta&#39;&#39;$ 。&lt;/p&gt;
+&lt;p&gt;至此，我们得到一个映射的链：&lt;/p&gt;
+$$
+V_3 \overset{s_1}{\longrightarrow} V_2 \overset{s&#39;_1}{\longrightarrow} V_1
+$$&lt;p&gt;或者也可以写为：&lt;/p&gt;
+$$
+\langle \beta_0, \beta_1, \beta_2 \rangle \overset{s_1}{\longrightarrow} \langle s_1(\beta_1), s_1(\beta_2) \rangle
+\overset{s&#39;_1}{\longrightarrow} \langle s&#39;_1(s_1(\beta_2)) \rangle
+$$&lt;p&gt;并且每次映射到的线性子空间的维度都减一，即集合大小减半。这个代数结构是我们后续构造 FFT 与 FRI 协议的关键。&lt;/p&gt;
+&lt;p&gt;不难证明，对于任意的线性子空间，只要我们选定一个 Basis 之后，就可以依次构造 Degree 为 2 的 Subspace Polynomial 作为映射函数，然后通过映射得到一个维度减 1 的子空间，然后不断重复，直到子空间降至 1 维。当然 Basis 选择不同，以及 Subspace Polynomial 的选择不同都会导致不同的映射链。选择恰当的映射链可以显著提高计算的效率。&lt;/p&gt;
+&lt;h2 id=&#34;s_1-映射的复合&#34;&gt;${s}_1$ 映射的复合&lt;/h2&gt;
+&lt;p&gt;我们定义映射链的初始子空间为 $S^{(0)}$，映射后的子空间为 $S^{(1)}$，$i$ 次映射之后的子空间为 $S^{(i)}$ ：&lt;/p&gt;
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$&lt;p&gt;给定 $S^{(i)}$ 的一组 Basis 后，假设为 $B^{(i)}=(\beta^{(i)}_0, \beta^{(i)}_1,\ldots, \beta^{(i)}_s)$，在 Basis 上定义 Subspace Polynomial ${s}^{(i)}_1$，并用其作为群同态映射函数，把 $S^{(i)}$ 降维到 $S^{(i+1)}$。降维后的线性子空间 $S^{(i+1)}$ 的 Basis 需要把 $S^{(i)}$ 的 Basis 同步跟着 ${s}^{(i)}_1$ 转换到一个新的 Basis。切换到新 Basis 之后，我们又可以定义一组新的 Subspace Polynomial ${s}^{(i+1)}_i(X)$。&lt;/p&gt;
+&lt;p&gt;我们假设 $S^{(0)}=\langle \beta_0, \beta_1, \ldots, \beta_{k-1}\rangle $ 开始，给定一组 Basis $B_k$，经过 ${s}_1$ 的映射之后，我们得到了 $S^{(1)}$，以及其 Basis $B^{(1)}$：&lt;/p&gt;
+$$
+B^{(1)} = \langle {\color{blue}{s}_1(\beta_1)}, {\color{blue}{s}_1(\beta_2)}, \ldots, {s}_1(\beta_{k-1}) \rangle
+$$&lt;p&gt;在 $S^{(1)}$ 再定义 ${s}^{(1)}_1(X)$：&lt;/p&gt;
+$$
+{s}^{(1)}_1(X) = {X(X+{s}_1(\beta_1))} 
+$$&lt;p&gt;那么，$S^{(1)}$ 映射后产生的 $S^{(2)}$ 和 $S^{(0)}$ 之间的关系是什么？对于任何一个元素 $a \in S^{(0)}$，它先经过 ${s}_1$ 映射到 $S^{(1)}$，然后再经过 ${s}^{(1)}_1$ 映射到 $S^{(2)}$ 中的某个元素，因此经过两次映射后的值可以被写为两次映射函数的复合， ${s}^{(1)}_1({s}_1(X))$，我们化简下这个复合函数：&lt;/p&gt;
+$$
+\begin{align*}
+{s}^{(1)}_1({s}_1(X)) &amp;= {s}_1(X)({s}_1(X)+{s}_1(\beta_1))
+&amp;  \\[3ex]
+&amp;= {s}_1(X)({s}_1(X+\beta_1)) &amp; (\text{additive homomorphism })\\[3ex]
+&amp;= {s}_2(X) &amp; (\text{recurrency } )
+\end{align*}
+$$&lt;p&gt;于是我们推导出了 ${s}^{(1)}_1({s}_1(X))={s}_2(X)$。这意味着经过两次 2-to-1 的映射，等价于做一次 4-to-1 的映射，并且对应的同态映射函数为 ${s}_2$:&lt;/p&gt;
+$$
+\begin{split}
+{s}_2: &amp;S^{(0)} \to S^{(2)} \\[3ex]
+&amp; X \mapsto {X(X+\beta_0)(X+\beta_1)(X+\beta_1+\beta_0)} \\
+\end{split}
+$$&lt;p&gt;如下图所示，左右两种映射方式都会得到 $S^{(2)}$：&lt;/p&gt;
+&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;同理，我们可以得到下面的结论，对于折叠 $j$ 次之后的线性子空间 $S^{(j)}$ 为&lt;/p&gt;
+$$
+S^{(j)}  = \langle {s}_{j}(\beta_j), {s}_{j}(\beta_{j+1}), \ldots, {s}_{j}(\beta_{k-1}) \rangle
+$$&lt;p&gt;并且 ${s}_{j}$ 满足下面的复合等式：&lt;/p&gt;
+$$
+s_{j}(X) = s^{(1)}_{j-1}(s_1(X)) =  s^{(1)}_{j-1}\circ s_1
+$$&lt;p&gt;这个复合映射的等式可以解读为：先做一次 $s_1$ 映射得到 $S^{(1)}$，然后再做一次 $j-1$ 维的映射 $s^{(1)}_{j-1}$，等价于直接一次 $j$ 维映射 $s_{j}$，两者都映射到同一个子空间 $S^{(j)}$。&lt;/p&gt;
+&lt;p&gt;同样，我们还能证明：如果先做一次 $j-1$ 维的映射 $s_{j-1}$，再在映射后的子空间 $S^{(j-1)}$ 上做一次一维映射，同样可以得到子空间 $S^{(j)}$ ：&lt;/p&gt;
+$$
+s_{j}(X) = s^{(1)}_{1}(s_{j-1}(X)) =  s^{(1)}_{1}\circ s_{j-1}
+$$&lt;p&gt;更一般地，我们可以证明得到下面的重要性质，即在任意子空间 $S^{(i)}$ 上做一次 $j$ 维映射，等价于在其上连续做 $j$ 次 1 维映射：&lt;/p&gt;
+$$
+s^{(i)}_{j}(X) = s^{(i+j-1)}_1\circ s^{(i+j-2)}_1\circ \cdots \circ s^{(i)}_1
+$$&lt;h2 id=&#34;多项式的-polynomial-basis&#34;&gt;多项式的 Polynomial Basis&lt;/h2&gt;
+&lt;p&gt;对于一个次数小于 $N=2^n$ 的一元多项式 $f(X) \in \mathbb{F}[X]^{&lt;N}$，它有两种常见的表达形式，「系数式」与「点值式」。其中系数式是我们最常见的形式：&lt;/p&gt;
+$$
+f(X) = c_0 + c_1X + c_2X^2 + \ldots + c_{N-1}X^{N-1}
+$$&lt;p&gt;其中 $\vec{c}=(c_0, c_1, \ldots, c_{N-1})$ 为多项式的系数向量。另外未知数的向量 $(1, X, X^2, \ldots, X^{N-1})$ 则构成了一组多项式的基（Basis），按惯例称之为 Monomial Basis，记为 $\mathcal{B}^{mono}$ :&lt;/p&gt;
+$$
+\mathcal{B}^{mono}=(1, X, X^2, \ldots, X^{N-1})
+$$&lt;p&gt;这个基向量也可以表达为下面的 Tensor Product 形式：&lt;/p&gt;
+$$
+\mathcal{B}^{mono}=(1, X) \otimes (1, X^2) \otimes \ldots \otimes (1, X^{2^{n-1}})
+$$&lt;p&gt;一元多项式的 「点值式」称为 Lagrange Basis 表示。即我们可以用 $N$ 个「系数」来唯一确定一个  Degree 小于 N 的多项式（请注意，这里的系数是更广泛意义上的概念，而不是局限于「系数式」表示中的系数）。&lt;/p&gt;
+&lt;p&gt;通过多项式除法，我们可以得到多项式在 $\mathcal{B}^{mono}$  上的系数。例如有一个 degree 为 $7$ 的多项式 $t(X)$，那么我们可以先计算 $X^4\cdot X^2\cdot X$ 的系数，即计算多项式除法： $t(X)/(X^4\cdot X^2\cdot X)$ ，得到一个系数 $c_7$ 与一个余数多项式 $t&#39;(X)$；然后再计算 $t&#39;(X)/(X^4\cdot X^2)$，得到 $\mathcal{B}^{mono}_6 = X^6$ 的系数 $c_6$，以此类推，最终我们可以得到 $t(X)$ 关于 $\mathcal{B}^{mono}$ 的系数向量 $\vec{c}=(c_0, c_1, \ldots, c_7)$ ，使得：&lt;/p&gt;
+$$
+t(X) = c_0 + c_1X + c_2X^2 + \ldots + c_7X^7
+$$&lt;p&gt;利用前文已讨论过的 Subspace Polynomial $s_k(X)$ ，我们可以定义一组新的 Basis。根据其定义， $s_k(X)$ 的 degree 恰好也是 $2^k$ ，类似 $(1, X, X^2, X^4)$ ，因此 $(s_0(X), s_1(X), s_2(X))$ 也可作为构造多项式 Basis 的基本原料。仿照 $\mathcal{B}^{mono}$ 的定义，我们定义 (Novel) Polynomial Basis $\mathcal{B}^{novel}$ ：&lt;/p&gt;
+$$
+\mathcal{B}^{novel} = (1, s_0(X)) \otimes (1, s_1(X)) \otimes \ldots \otimes (1, s_{n-1}(X))
+$$&lt;p&gt;请注意与论文 [LCH14] 和 [DP24] 不同的是，这里我们暂时没有引入 Normalized Subspace Polynomial，以方便大家理解。回到上面的定义，其中每一个分量 $\mathcal{B}^{novel}_i$ 我们简记为 $\mathcal{X}_i(X)$ ，定义如下：&lt;/p&gt;
+$$
+\mathcal{X}_i(X) = \prod_{j=0}^{n-1}(s_j(X))^{i_j}, \text{ where $\mathsf{bits}(i)=(i_0, i_1, \ldots, i_{n-1})$}
+$$&lt;p&gt;这里 $\mathsf{bits}(i)$ 表示把整数 $i$ 按照二进制展开，比如 $i=5$，那么 $\mathsf{bits}(5)=(1, 0, 1)$， $\mathsf{bits}(6) = (0, 1, 1)$。举例 $n=3, N=8$ ，按照上面的定义，我们可以计算出一组多项式基 $\big(\mathcal{X}_0(X), \mathcal{X}_1(X),\ldots, \mathcal{X}_7(X)\big)$&lt;/p&gt;
+$$
+\begin{split}
+\mathcal{X}_0(X) &amp;= 1 \\
+\mathcal{X}_1(X) &amp;= s_0(X) = X\\
+\mathcal{X}_2(X) &amp;= s_1(X) \\
+\mathcal{X}_3(X) &amp;= s_0(X)\cdot s_1(X)\\
+\mathcal{X}_4(X) &amp;= s_2(X)\\
+\mathcal{X}_5(X) &amp;= s_0(X)\cdot s_2(X)\\
+\mathcal{X}_6(X) &amp;= s_1(X)\cdot s_2(X) \\
+\mathcal{X}_7(X) &amp;= s_0(X)\cdot s_1(X)\cdot s_2(X) \\
+\end{split}
+$$&lt;p&gt;容易检验，每一个 Basis 分量 $\mathcal{X}_i(X)$ 的 Degree 恰好为 $i$，因此 $\mathcal{B}^{novel}$ 就构成了一组线性无关的多项式 Basis。对于任意的 Degree 小于 8 的多项式 $f(X)\in \mathbb{F}_{2^m}[X]$ :&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp;= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&amp;= a_0 + a_1s_0(X) + a_2s_1(X) + a_3s_0(X)\cdot {s}_1(X) \\
+&amp; + a_4s_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot s_2(X) \\
+\end{split}
+$$&lt;p&gt;同样，我们可以利用多项式除法来将一个多项式在 $\mathcal{B}^{novel}$ 和 $\mathcal{B}^{mono}$ 之间转换。&lt;/p&gt;
+&lt;h2 id=&#34;additive-fft&#34;&gt;Additive FFT&lt;/h2&gt;
+&lt;p&gt;类似 Multiplicative FFT，要构造 Additive FFT，我们需要在 $\mathbb{F}_{2^m}$ 中定义一个加法子群的映射链。如前所述，Subspace Polynomials 恰好可以用来构造这个映射链。同时 Subspace Polynomials 又可以构造一组多项式 Basis。&lt;/p&gt;
+$$
+S^{(0)} \overset{s_1}{\longrightarrow} S^{(1)} \overset{s^{(1)}_1}{\longrightarrow} \cdots \overset{s^{(n-1)}_1}{\longrightarrow} S^{(n)}
+$$&lt;p&gt;为了演示方便，指定 $n=3$，$S^{(0)}=\langle \beta_0, \beta_1, \beta_2\rangle$ 。仿照 Multiplicative FFT 的思路，我们将用 $\mathcal{B}^{novel}$ 表示的多项式 $f(X)$ （Degree 为 7）进行奇偶项拆分，拆分成两个次数减半的多项式：&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp;= a_0\mathcal{X}_0(X) + a_1\mathcal{X}_1(X) + \ldots + a_7\mathcal{X}_7(X)\\
+&amp;= a_0 + a_1{s}_0(X) + a_2{s}_1(X) + a_3{s}_0(X)\cdot {s}_1(X) \\
+&amp; \qquad + a_4{s}_2(X) + a_5{s}_0(X)\cdot {s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X) + a_7{s}_0(X)\cdot {s}_1(X)\cdot {s}_2(X) \\
+&amp; = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; \qquad + \big(a_1 + a_3{s}_0(X)\cdot {s}_1(X) + a_5{s}_0(X)\cdot{s}_2(X) + a_7{s}_0(X)\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; = \big(a_0 + a_2 {s}_1(X) + a_4{s}_2(X) + a_6{s}_1(X)\cdot {s}_2(X)\big) \\
+&amp; \qquad + {\color{red}{s}_0(X)}\cdot \big(a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X)\big) \\
+\end{split}
+$$&lt;p&gt;然后我们引入两个辅助多项式 $f_{even}(X), f_{odd}(X)$ ，它们&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0 + a_2\cdot {s}_1(X) + a_4\cdot {s}_2(X) + a_6\cdot {s}_1(X)\cdot {s}_2(X) \\
+f_{odd}(X) &amp;= a_1 + a_3\cdot{s}_1(X) + a_5\cdot{s}_2(X) + a_7\cdot{s}_1(X)\cdot {s}_2(X) \\
+\end{split}
+$$&lt;p&gt;根据我们之前推导的映射的复合性质，$s_1(X)=s^{(1)}_0\circ s_0(X)$，$s_2(X)=s^{(1)}_1\circ s_1(X)$，于是我们可以得到：&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0 + a_2 \cdot s^{(1)}_0(s_1(X)) + a_4 \cdot s^{(1)}_1(s_1(X)) + a_6 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ &amp; = a_0 + a_2 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_4 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_6 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+f_{odd}(X) &amp;= a_1 + a_3 \cdot s^{(1)}_0(s_1(X)) + a_5 \cdot s^{(1)}_1(s_1(X)) + a_7 \cdot s^{(1)}_0(s_1(X))\cdot s^{(1)}_1(s_1(X)) \\
+ &amp; = a_1 + a_3 \cdot s^{(1)}_0({\color{blue}s_1(X)}) + a_5 \cdot s^{(1)}_1({\color{blue}s_1(X)}) + a_7 \cdot s^{(1)}_0({\color{blue}s_1(X)})\cdot s^{(1)}_1({\color{blue}s_1(X)}) \\
+\end{split}
+$$&lt;p&gt;代入 ${\color{blue}Y=s_1(X)}$ 后，我们可以把 $f(X)$ 拆分成关于 $f_{even}({\color{blue}Y})$ 和 $f_{odd}({\color{blue}Y})$ 的等式：&lt;/p&gt;
+$$
+\begin{split}
+f(X) &amp; = f_{even}({\color{blue}Y}) +  {s}_0(X)\cdot f_{odd}({\color{blue}Y})
+\end{split}
+$$&lt;p&gt;而多项式 $f_{even}({\color{blue}Y})$ 和 $f_{odd}({\color{blue}Y})$ 正好是定义在 $\mathcal{X}^{(1)}$ 上的多项式：&lt;/p&gt;
+$$
+\begin{array}{llll}
+\mathcal{X}^{(1)}_0(X) &amp;= 1 \\
+\mathcal{X}^{(1)}_1(X) &amp;= {s}^{(1)}_0(X) &amp; = {s}_0({s}_1(X)) &amp; = {s}_1(X) \\
+\mathcal{X}^{(1)}_2(X) &amp;= {s}^{(1)}_1(X) &amp; =  {s}_1({s}_1(X)) &amp; = {s}_2(X) \\
+\mathcal{X}^{(1)}_3(X) &amp;= {s}^{(1)}_0(X)\cdot {s}^{(1)}_1(X) &amp; = {s}_0({s}_1(X)) \cdot {s}_1({s}_1(X)) &amp; = {s}_1(X) \cdot {s}_2(X)\\
+\end{array}
+$$&lt;p&gt;重写下奇偶多项式：&lt;/p&gt;
+$$
+\begin{split}
+f_{even}(X) &amp;= a_0\cdot\mathcal{X}^{(1)}_0(X) + a_2\cdot \mathcal{X}^{(1)}_1(X) + a_4\cdot \mathcal{X}^{(1)}_2(X) + a_6\cdot \mathcal{X}^{(1)}_3(X) \\
+f_{odd}(X) &amp;= a_1\cdot\mathcal{X}^{(1)}_0(X) + a_3\cdot \mathcal{X}^{(1)}_1(X) + a_5\cdot \mathcal{X}^{(1)}_2(X) + a_7\cdot \mathcal{X}^{(1)}_3(X)
+\end{split}
+$$&lt;p&gt;从结构上看，这个等式与 Multiplicative FFT 中的 $f(X)=f_{even}(X^2) + X\cdot f_{odd}(X^2)$ 拆分非常相似；而 $X\mapsto X^2$ 映射也对应于 $s_1: X \mapsto X(X+\beta_0)$ 映射。 而 $S^{(0)}$ 在 $s_1$ 的映射下，产生出一个尺寸只有原来一半的子空间 $S^{(1)}$：&lt;/p&gt;
+$$
+S^{(1)} = \langle s_1(\beta_1), s_1(\beta_2) \rangle
+$$&lt;p&gt;于是我们可以依赖递归调用，求得 $\{f_{even}(X) \mid X\in S^{(1)}\}$ 与 $\{ f_{odd}(X) \mid X\in S^{(1)}\}$ ，然后再利用 $f(X)=f_{even}(X) + s_0(X)\cdot f_{odd}(X)$ 这个等式得到 $f(X)$ 在 $S^{(0)}$ 上的值。&lt;/p&gt;
+&lt;p&gt;下面我们假设递归调用成功返回，那么我们就得到了 $f_{even}(X)$ 和 $f_{odd}(X)$ 在 $S^{(1)}$ 上的全部求值，记为 $\vec{u}$ 与 $\vec{v}$，定义如下：&lt;/p&gt;
+$$
+\begin{split}
+(u_0, u_1, u_2, u_3) &amp;= \big(f_{even}(0), f_{even}(1), f_{even}(s_1(\beta_1)), f_{even}(s_1(\beta_1) + 1)\big)\\[2ex]
+(v_0, v_1, v_2, v_3) &amp;= \big(f_{odd}(0), f_{odd}(1), f_{odd}(s_1(\beta_1)), f_{odd}(s_1(\beta_1) + 1)\big)\\
+\end{split}
+$$&lt;p&gt;然后我们就可以计算 $f(X)$ 在 $S^{(0)}$ 上的全部求值，即 $f(X)\mid_{S^{(0)}}$ ：&lt;/p&gt;
+$$
+\begin{array}{rlll}
+f(0) &amp;= f_{even}({s}_1(0)) + 0\cdot f_{odd}({s}_1(0)) \\
+    &amp; = u_0\\[1ex]
+f(1) &amp;= f_{even}({s}_1(1)) + 1\cdot v_1 \\
+    &amp; = u_0 + v_1 \\[1ex]
+f(\beta_1) &amp;= f_{even}({s}_1(\beta_1)) + \beta_1\cdot f_{odd}({s}_1(\beta_1)) \\ 
+    &amp; = u_1 + \beta_1 \cdot v_1\\[1ex]
+f(\beta_1+1) &amp;= f_{even}({s}_1(\beta_1)+{s}_1(1)) + (\beta_1 +1)\cdot f_{odd}({s}_1(\beta_1)+{s}_1(1)) \\
+    &amp; = u_1 + \beta_1\cdot v_1 + v_1\\[1ex]
+f(\beta_2) &amp;= f_{even}({s}_1(\beta_2)) + \beta_2 \cdot f_{odd}({s}_1(\beta_2)) \\ 
+    &amp; = u_2 + \beta_2\cdot v_2 \\[1ex]
+f(\beta_2+1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(1)) + (\beta_2 +1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(1)) \\
+    &amp; = u_2 + \beta_2\cdot v_2 + v_2\\[1ex]
+f(\beta_2+\beta_1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)) + (\beta_2 + \beta_1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)) \\
+    &amp; = u_3 + \beta_2\cdot v_3 + \beta_1\cdot v_3 \\[1ex]
+f(\beta_2+\beta_1+1) &amp;= f_{even}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) + (\beta_2 + \beta_1 + 1) \cdot f_{odd}({s}_1(\beta_2)+{s}_1(\beta_1)+{s}_1(1)) \\
+    &amp; = u_3 + \beta_2\cdot v_3  + \beta_1\cdot v_3 + v_3\\[1ex]
+\end{array}
+$$&lt;p&gt;我们把上面这个 Additive FFT 递归算法用 Python 代码实现如下：&lt;/p&gt;
+&lt;div class=&#34;highlight-container&#34;&gt;
+
+  &lt;button class=&#34;copy-code-btn outline&#34;&gt;Copy&lt;/button&gt;
+
+  
+  &lt;div class=&#34;highlight&#34;&gt;&lt;div style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;
+&lt;table style=&#34;border-spacing:0;padding:0;margin:0;border:0;&#34;&gt;&lt;tr&gt;&lt;td style=&#34;vertical-align:top;padding:0;margin:0;border:0;&#34;&gt;
+&lt;pre tabindex=&#34;0&#34; style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;&lt;code&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-1&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-1&#34;&gt; 1&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-2&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-2&#34;&gt; 2&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-3&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-3&#34;&gt; 3&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-4&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-4&#34;&gt; 4&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-5&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-5&#34;&gt; 5&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-6&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-6&#34;&gt; 6&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-7&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-7&#34;&gt; 7&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-8&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-8&#34;&gt; 8&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-9&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-9&#34;&gt; 9&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-10&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-10&#34;&gt;10&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-11&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-11&#34;&gt;11&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-12&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-12&#34;&gt;12&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-13&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-13&#34;&gt;13&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-14&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-14&#34;&gt;14&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-15&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-15&#34;&gt;15&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-16&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-16&#34;&gt;16&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-17&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-17&#34;&gt;17&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-18&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-18&#34;&gt;18&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-19&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-19&#34;&gt;19&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-20&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-20&#34;&gt;20&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-21&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-21&#34;&gt;21&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-22&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-22&#34;&gt;22&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-23&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-23&#34;&gt;23&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-24&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-24&#34;&gt;24&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-25&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-25&#34;&gt;25&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-26&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-26&#34;&gt;26&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-27&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-27&#34;&gt;27&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-28&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-28&#34;&gt;28&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-29&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-29&#34;&gt;29&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-30&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-30&#34;&gt;30&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-31&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-31&#34;&gt;31&lt;/a&gt;
+&lt;/span&gt;&lt;span style=&#34;white-space:pre;-webkit-user-select:none;user-select:none;margin-right:0.4em;padding:0 0.4em 0 0.4em;color:#7f7f7f&#34; id=&#34;hl-0-32&#34;&gt;&lt;a style=&#34;outline:none;text-decoration:none;color:inherit&#34; href=&#34;#hl-0-32&#34;&gt;32&lt;/a&gt;
+&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;&lt;/td&gt;
+&lt;td style=&#34;vertical-align:top;padding:0;margin:0;border:0;;width:100%&#34;&gt;
+&lt;pre tabindex=&#34;0&#34; style=&#34;color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;&#34;&gt;&lt;code class=&#34;language-python&#34; data-lang=&#34;python&#34;&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#66d9ef&#34;&gt;def&lt;/span&gt; &lt;span style=&#34;color:#a6e22e&#34;&gt;afft&lt;/span&gt;(f, k, B):
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#e6db74&#34;&gt;&amp;#34;&amp;#34;&amp;#34;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Perform the Additive Fast Fourier Transform (AFFT) on a given polynomial.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Args:
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        f (list): Coefficients of the polynomial to be transformed.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        k (int): The depth of recursion, where 2^k is the size of the domain.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        B (list): The basis of the domain over which the polynomial is evaluated.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    Returns:
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;        list: The evaluations of the polynomial over the domain.
+&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;&lt;span style=&#34;color:#e6db74&#34;&gt;    &amp;#34;&amp;#34;&amp;#34;&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;if&lt;/span&gt; k &lt;span style=&#34;color:#f92672&#34;&gt;==&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;:
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        &lt;span style=&#34;color:#66d9ef&#34;&gt;return&lt;/span&gt; [f[&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;]]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    half &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;**&lt;/span&gt;(k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;)
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    f_even &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; f[::&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    f_odd &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; f[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;::&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    V &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; span(B)                                &lt;span style=&#34;color:#75715e&#34;&gt;# the subspace spanned by B&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    q &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; &lt;span style=&#34;color:#66d9ef&#34;&gt;lambda&lt;/span&gt; x: x&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;(x&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;B[&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;])&lt;span style=&#34;color:#f92672&#34;&gt;/&lt;/span&gt;(B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;]&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;(B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; &lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;)) &lt;span style=&#34;color:#75715e&#34;&gt;# s^(i)_1 map&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    B_half &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; [q(b) &lt;span style=&#34;color:#66d9ef&#34;&gt;for&lt;/span&gt; b &lt;span style=&#34;color:#f92672&#34;&gt;in&lt;/span&gt; B[&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;:]]             &lt;span style=&#34;color:#75715e&#34;&gt;# the basis of the mapped subspace&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e_even &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; afft(f_even, k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;, B_half)  &lt;span style=&#34;color:#75715e&#34;&gt;# compute the evaluations of f_even&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e_odd  &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; afft(f_odd, k&lt;span style=&#34;color:#f92672&#34;&gt;-&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;, B_half)   &lt;span style=&#34;color:#75715e&#34;&gt;# compute the evaluations of f_odd&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    e &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; [&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; (&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt; &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; half)                &lt;span style=&#34;color:#75715e&#34;&gt;# initialize the list of evaluations&lt;/span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;for&lt;/span&gt; i &lt;span style=&#34;color:#f92672&#34;&gt;in&lt;/span&gt; range(&lt;span style=&#34;color:#ae81ff&#34;&gt;0&lt;/span&gt;, half):
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        e[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i]   &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; e_even[i] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; V[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; e_odd[i]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;        e[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;=&lt;/span&gt; e_even[i] &lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt; V[&lt;span style=&#34;color:#ae81ff&#34;&gt;2&lt;/span&gt;&lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt;i&lt;span style=&#34;color:#f92672&#34;&gt;+&lt;/span&gt;&lt;span style=&#34;color:#ae81ff&#34;&gt;1&lt;/span&gt;] &lt;span style=&#34;color:#f92672&#34;&gt;*&lt;/span&gt; e_odd[i]
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;
+&lt;/span&gt;&lt;/span&gt;&lt;span style=&#34;display:flex;&#34;&gt;&lt;span&gt;    &lt;span style=&#34;color:#66d9ef&#34;&gt;return&lt;/span&gt; e&lt;/span&gt;&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;
+&lt;/div&gt;
+&lt;/div&gt;
+&lt;/div&gt;
+&lt;p&gt;函数 &lt;code&gt;afft(f, k, B)&lt;/code&gt; 总共有三个参数，分别是多项式 $f(X)$ 在 $\mathcal{B}^{novel}$ 上的系数向量，递归深度 $k$，以及当前的子空间 $S^{(0)}$ 的 Basis。&lt;/p&gt;
+&lt;h2 id=&#34;总结&#34;&gt;总结&lt;/h2&gt;
+&lt;p&gt;Additive FFT 算法需要一个通过 Subspace Polynomial 构造的子空间的映射链。本文介绍的原理并不局限在递归构造的二进制域，而是一种更广泛的代数结构。
+在 [LCH14] 论文中采用的是另外一种递归 Additive FFT 算法，我们将在下一篇文中介绍两者的差异，以及 [DP24] 论文中的 Additive FFT 迭代算法（Algorithm 2）。&lt;/p&gt;
+&lt;h2 id=&#34;references&#34;&gt;References&lt;/h2&gt;
+&lt;ul&gt;
+&lt;li&gt;[DP24] Benjamin E. Diamond and Jim Posen. &amp;ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers&amp;rdquo;. 2024. &lt;a href=&#34;https://eprint.iacr.org/2024/504&#34;&gt;https://eprint.iacr.org/2024/504&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;[LCH14] Lin, Sian-Jheng, Wei-Ho Chung, and Yunghsiang S. Han. &amp;ldquo;Novel polynomial basis and its application to Reed-Solomon erasure codes.&amp;rdquo; 2014 ieee 55th annual symposium on foundations of computer science. IEEE, 2014. &lt;a href=&#34;https://arxiv.org/abs/1404.3458&#34;&gt;https://arxiv.org/abs/1404.3458&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.&lt;/li&gt;
+&lt;/ul&gt;
+</description>
+      
+    </item>
+    
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      
+        <description>&lt;ul&gt;
+&lt;li&gt;Yu Guo &lt;a href=&#34;mailto:yu.guo@secbit.io&#34;&gt;yu.guo@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;li&gt;Jade Xie &lt;a href=&#34;mailto:jade@secbit.io&#34;&gt;jade@secbit.io&lt;/a&gt;&lt;/li&gt;
+&lt;/ul&gt;
+&lt;p&gt;二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。&lt;/p&gt;
+&lt;h2 id=&#34;extension-fields&#34;&gt;Extension Fields&lt;/h2&gt;
+&lt;p&gt;我们尝试用简单的语言来描述下 Extension Field 的概念，为后续我们研究 Binary Tower 做铺垫，深入学习请参考有限域教科书中的严格定义和证明。&lt;/p&gt;
+&lt;p&gt;素数域 $\mathbb{F}_{p}$ 是有 $p$ 个元素的有限域，其中 $p$ 必定是一个素数。它同构于 $\mathbb{Z}/p\mathbb{Z}$ ，也就是说我们可以用整数集合 $\{0, 1, \ldots, p-1\}$ 来表示 $\mathbb{F}_p$ 的全体元素。&lt;/p&gt;
+&lt;p&gt;我们可以把素数域的任意两个元素组成一个 Tuple，即 $(a, b)\in\mathbb{F}_{p}^2$，那么这个 Tuple 也构成了一个域，其元素数量为 $p^2$。我们可以检验一下， $a+b\in\mathbb{F}_p$，那么我们定义 Tuple 的加法如下：&lt;/p&gt;
+$$
+(a_1, b_1) + (a_2, b_2) = (a_1 + a_2, b_1 + b_2)
+$$&lt;p&gt;可以验证， $\mathbb{F}_{p}^2$ 构成了一个向量空间， 因此它是一个加法群，其中零元素为 $(0, 0)$ 。接下来是怎么定义乘法的问题，我们希望乘法可以封闭，即：&lt;/p&gt;
+$$
+(a_1, b_1)\cdot (a_2, b_2) = (c, d)
+$$&lt;p&gt;一种最简单的做法是采用 Entry-wise Mulplication 来定义乘法，即 $(a_1, b_1)\cdot (a_2, b_2) = (a_1a_2, b_1b_2)$，并且乘法单位元为 $(1, 1)$，貌似这样我们构造可以让乘法封闭。但是这并不能保证每一个元素都有逆元素。例如 $(1, 0)$，它乘上任何 Tuple 都不能得到 $(1, 1)$，因为 Tuple 的第二个部分怎么计算都是 $0$。因此，这样的乘法无法构成一个「域」。&lt;/p&gt;
+&lt;p&gt;在有限域理论中，Tuple 的乘法运算是通过多项式模乘来实现的。也就是我们把 $(a_1, b_1)$ 看成是一个 Degree 为 1 的多项式的系数，同样 $(a_2, b_2)$ 也可以看成是一个 Degree 为 1 的多项式的系数，通过两者相乘，我们得到一个 Degree 为 2 的多项式：&lt;/p&gt;
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = a_1a_2 + (a_1b_2 + a_2b_1)X + b_1b_2X^2
+$$&lt;p&gt;然后我们再把结果多项式模掉一个 Degree 为 2 的不可约的多项式 $f(X)$，得到一个余数多项式，这个余数多项式的系数即是 $(c, d)$。那么我们定义新的 Tuple 乘法如下：&lt;/p&gt;
+$$
+(a_1 + b_1\cdot X) \cdot (a_2 + b_2\cdot X) = c + d\cdot X \mod f(X)
+$$&lt;p&gt;并且定义 $(1, 0)$ 为乘法单位元。这里我们强调 $f(X)$ 必须是一个不可约多项式。那么假如 $f(X)$ 是一个可约多项式，会有什么后果？比如 $f(X)=(u_1+u_2X)(v_1+v_2X)$，那么 $(u_1, u_2)$ 和 $(v_1, v_2)$ 这两个非零元素的乘积等于 $(0, 0)$，跳出了乘法群。严格的说，Zero Divisor 的出现破坏了乘法群的结构，从而无法构成一个「域」。&lt;/p&gt;
+&lt;p&gt;接下来的问题是，是否存在一个不可约的 Degree 为 2 的多项式 $f(X)$。如果不存在 $f(X)$ ，那么构造一个 $\mathbb{F}_{p^2}$ 的域也就无从谈起。对于素数域 $\mathbb{F}_p$，任取 $w\in\mathbb{F}_p$，它不是任何元素的平方，数论中它属于非二次剩余类，即 $w\in QNR(p)$ 。如果 $w$ 存在，那么 $f(X)=X^2-w$ 就是一个不可约多项式。进一步，$w$ 的存在性如何保证？如果 $p$ 是一个奇数，那么 $w$ 必然存在。如果 $p=2$，虽然 $w$ 不存在，但我们可以指定 $f(X)=X^2+X+1\in\mathbb{F}_2[X]$ 作为一个不可约多项式。&lt;/p&gt;
+&lt;p&gt;我们现在把 $\mathbb{F}_{p}^2$ 这个 Tuple 构成的集合，连同定义的加法和乘法运算，构成的域记为 $\mathbb{F}_{p^2}$ ，元素个数为 $p^2$。根据有限域理论，我们可以把二元 Tuple 扩大到 $n$ 元 Tuple，从而可以构成更大的有限域 $\mathbb{F}_{p^n}$。&lt;/p&gt;
+&lt;p&gt;对于某个 $\mathbb{F}_p$ 上的不可约多项式 $f(X) = c_0 + c_1X + X^2$ ，它在 $\mathbb{F}_{p^2}$ 中一定可以被分解。$f(X) = (X-\alpha)(X-\alpha&#39;)$ ，其中 $\alpha$ 和 $\alpha&#39;$ 互为共轭（Conjugate），并且它们都属于  $\mathbb{F}_{p^2}$，但不属于 $\mathbb{F}_p$ 。按照扩张域的定义，$\mathbb{F}_p(\alpha)$ 是一个 Degree 为 2 的代数扩张，它与前面我们通过不可约多项式的模乘构造的有限域同构。因此，我们也可以用 $a_1 + a_2\cdot\alpha$ 来表示 $\mathbb{F}_{p^2}$ 中的任意一个元素。或者进一步，我们可以把 $(1, \alpha)$ 看成是 $\mathbb{F}_{p^2}$ 向量空间的一组 Basis，任意一个 $a\in \mathbb{F}_{p^2}$ ，都可以表示为 Basis 的线性组合：&lt;/p&gt;
+$$
+a = a_0 \cdot 1 + a_1 \cdot \alpha, \quad a_0, a_1\in\mathbb{F}_p
+$$&lt;p&gt;这样一来，我们就可以用符号 $a_0 + a_1\cdot \alpha$ 来表示 $\mathbb{F}_{p^2}$ 中的元素，而非 $a_0 + a_1\cdot X$ 这样的多项式表示。元素的「多项式表示」并没有指定我们到底采用了哪个不可约多项式来构造的扩张域，而采用 $\alpha$ 这个不不可约多项式的根作为构建扩张域的方式，则不存在二义性。&lt;/p&gt;
+&lt;p&gt;把这个概念推广到 $\mathbb{F}_{p^n}$，对于任意一个元素 $a\in\mathbb{F}_{p^n}$，都可以表示为：&lt;/p&gt;
+$$
+a = a_0 + a_1\cdot\alpha + a_2\cdot\alpha^2 + \cdots + a_{n-1}\cdot\alpha^{n-1}
+$$&lt;p&gt;这里 $\alpha$ 是 $n$ 次不可约多项式 $f(X)$ 的根。因此 $(1, \alpha, \alpha^2, \cdots, \alpha^{n-1})$ 可以看成是 $\mathbb{F}_{p^n}$ 的一组 Basis，这个 Basis 被称为有限域的 Polynomial Basis。注意 $\mathbb{F}_{p^n}$ 作为一个 $n$ 维的向量空间，它有很多很多个不同的 Basis。后续我们将看到 Basis 选择是一个非常重要的步骤，恰当的 Basis 可以大大优化或简化一些表示或运算。&lt;/p&gt;
+&lt;blockquote&gt;
+&lt;p&gt;TODO: Fp* 乘法循环群&lt;/p&gt;
+&lt;/blockquote&gt;
+&lt;h2 id=&#34;binary-field&#34;&gt;Binary Field&lt;/h2&gt;
+&lt;p&gt;对于 $\mathbb{F}_{2^n}$ ，我们称之为二进制域，因为它的元素都可以表达为由 $0$ 和 $1$ 组成的长度为 $n$ 的向量。构造 $\mathbb{F}_{2^n}$ 可以通过两类方法构造，一种是通过 $n$ 次的不可约多项式；另一种是反复使用二次扩张的方法，被称为 Extension Tower。域扩张的路径非常多，对于 $2^n$ ，它有多个 2 因子，因此存在多种介于两种方法之间的构造方式，比如对于 $\mathbb{F}_{2^8}$，可以先构造 $\mathbb{F}_{2^4}$，再通过二次扩张得到 $\mathbb{F}_{2^8}$，也可以先构造 $\mathbb{F}_{2^2}$，再通过四次不可约多项式进行扩张，构造 $\mathbb{F}_{2^8}$。&lt;/p&gt;
+&lt;p&gt;我们先热身下，利用二次扩张的方法构造 $\mathbb{F}_{2^2}$。前面我们讨论过 $f(X)=X^2+X+1$ 是一个 $\mathbb{F}_2[X]$ 的不可约多项式，假设 $\eta$ 是 $f(X)$ 的一个根，那么 $\mathbb{F}_{2^2}$ 可以表示为 $a_0 + b_0\cdot\eta$。考虑到 $\mathbb{F}_{2^2}$ 只有四个元素，可以列在下面&lt;/p&gt;
+$$
+\mathbb{F}_{2^2} = \{0, 1, \eta, \eta+1\}
+$$&lt;p&gt;并且 $\eta$ 作为生成元可以产生乘法群 $\mathbb{F}_{2^2}^*=\langle \eta \rangle$，它的 Order 为 3:&lt;/p&gt;
+$$
+\begin{split}
+\eta^0 &amp;= 1 \\
+\eta^1 &amp;= \eta \\
+\eta^2 &amp;= \eta+1 \\
+\end{split}
+$$&lt;p&gt;我们演示下 $\mathbb{F}_{2^4}$ 的两种构造方式。第一种是直接采用一个 4 次 $\mathbb{F}_2$ 上的不可约多项式。其实总共有 3 个不同的 4 次不可约多项式，因此总共有 3 种不同的构造方式。&lt;/p&gt;
+$$
+\begin{split}
+f_1(X) &amp;= X^4 + X + 1 \\
+f_2(X) &amp;= X^4 + X^3 + 1 \\
+f_3(X) &amp;= X^4 + X^3 + X^2 + X + 1 \\
+\end{split}
+$$&lt;p&gt;因为只需要选择一个不可约多项式即可，那我们就选择 $f_1(X)$ 来定义 $\mathbb{F}_{2^4}$ ：&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_2[X]/\langle f_1(X)\rangle 
+$$&lt;p&gt;我们把 $f_1(X)$ 在 $\mathbb{F}_{2^4}$ 上的根记为 $\theta$，那么 $a\in\mathbb{F}_{2^4}$ 元素可以唯一地表示为：&lt;/p&gt;
+$$
+a = a_0 + a_1\cdot\theta + a_2\cdot\theta^2 + \cdots + a_{n-1}\cdot\theta^{n-1}
+$$&lt;p&gt;这里补充一下，$f_1(X)$ 同时还是一个 Primitive 多项式，它的根 $\theta$ 同时也是 $\mathbb{F}_{2^4}$ 的一个 Primitive Element。注意并不是所有的不可约多项式都是 Primitive 多项式，例如上面列出的 $f_3(X)$ 就不是一个 Primitive 多项式。&lt;/p&gt;
+&lt;p&gt;下面我们可以列出 $\mathbb{F}_{2^4}$ 中的所有元素，每一个元素对应一个 4bit 的二进制向量：&lt;/p&gt;
+$$
+\begin{array}{ccccccc}
+0000 &amp; 0001 &amp; 0010 &amp; 0011 &amp; 0100 &amp; 0101 &amp; 0110 &amp; 0111 \\
+0 &amp; 1 &amp; \theta &amp; \theta+1 &amp; \theta^2 &amp; \theta^2+1 &amp; \theta^2+\theta &amp; \theta^2+\theta+1 \\
+\hline
+1000 &amp; 1001 &amp; 1010 &amp; 1011 &amp; 1100 &amp; 1101 &amp; 1110 &amp; 1111 \\
+\theta^3 &amp; \theta^3+1 &amp; \theta^3+\theta &amp; \theta^3+\theta+1 &amp; \theta^3+\theta^2 &amp; \theta^3+\theta^2+1 &amp; \theta^3+\theta^2+\theta &amp; \theta^3+\theta^2+\theta+1 \\
+\end{array}
+$$&lt;p&gt;对于 $\mathbb{F}_{2^4}$ 中两个元素的加法，我们只需要把它们的二进制表示按位相加即可，例如：&lt;/p&gt;
+$$
+(0101) + (1111) = (1010)
+$$&lt;p&gt;这个运算实际上就是 XOR 按位异或运算。而对于乘法，比如 $a\cdot\theta$，则对应于二进制上的移位运算：&lt;/p&gt;
+$$
+\begin{split}
+(0101) &lt;&lt; 1 &amp;= (1010)\\
+(\theta^2 + 1)\cdot\theta &amp;= \theta^3 + \theta \\
+\end{split}
+$$&lt;p&gt;如果继续乘以 $\theta$，就会出现移位溢出的情况，&lt;/p&gt;
+$$
+\begin{split}
+(\theta^3 + \theta)\cdot\theta &amp;= {\color{blue}\theta^4} + \theta^2 = \theta^2 + \theta + 1 \\
+(1010) &lt;&lt; 1  &amp;= (0100) + (0011) = (0111)\\
+\end{split}
+$$&lt;p&gt;对于溢出位，则需要补加上 $0011$，这是由不可约多项式 $f_1(X)$ 的定义决定的， $\theta^4=\theta+1$。所以一旦高位的 bit 移位溢出，就需要做一个与 $0011$ 的 XOR 运算。由此，我们看到 $\mathbb{F}_{2^4}$ 的乘法运算规则实际上取决于不可约多项式的选择。所以说，如何选择合适的不可约多项式也是二进制域乘法优化的关键步骤。&lt;/p&gt;
+&lt;h2 id=&#34;field-embedding&#34;&gt;Field Embedding&lt;/h2&gt;
+&lt;p&gt;如果我们要基于二进制域的构造 SNARK 证明系统，我们会将较小的数字用小位数来表示，但是不管怎么样，在协议的挑战轮，Verifier 都要给出一个在较大的扩张域中的随机数，以期望达到足够的密码学安全强度。这就需要我们在小域中用多项式编码 witness 信息，但在一个较大的域中对这些多项式进行取值运算。那么，我们需要找到一种办法把小域 $K$ 「嵌入」到大域 $L$ 中。&lt;/p&gt;
+&lt;p&gt;所谓的嵌入（Embedding），指的是把一个域 $K$ 中的元素映射到另一个域 $L$ 中，记为 $\phi: K\to L$。这个映射是 Injective 的，并且这个同态映射保持了加法和乘法运算的结构：&lt;/p&gt;
+$$
+\begin{split}
+\phi(a+b) &amp;= \phi(a) + \phi(b) \\
+\phi(a\cdot b) &amp;= \phi(a)\cdot\phi(b)
+\end{split}
+$$&lt;p&gt;即如果 $a\in K$，那么 $a$ 在 $L$ 中也有唯一的表示。为了保持乘法运算的结构，那么其实我们只要能找到一个 K 中的 Primitive Element $\alpha$ 对应到 $L$ 中的某个元素 $\beta$，那么这个同态映射就唯一确定了，因为 $K$ 中的任意一个元素都可以表示为 $\alpha$ 的幂次。不过，通常这个嵌入的同态映射并不是一个轻而易举可以找到。我们以 $\mathbb{F}_{2^2}\subset\mathbb{F}_{2^4}$ 为例，看看如何找到前者嵌入到后者的映射。&lt;/p&gt;
+&lt;p&gt;因为 $\eta$ 是 $\mathbb{F}_{2^2}$ 中的一个 Primitive Element，所以我们只要考虑 $\eta$ 在 $\mathbb{F}_{2^4}$ 中的表示即可。&lt;/p&gt;
+&lt;p&gt;我们先看看 $\mathbb{F}_{2^4}$ 中的 Primitive Element $\theta$ ，是否 $\eta\mapsto\theta$ 是一个嵌入映射？&lt;/p&gt;
+$$
+\eta^2 = \eta+1 \quad \text{but} \quad \theta^2 \neq \theta+1
+$$&lt;p&gt;很显然，$\eta^2 \neq \theta^2$，所以 $\eta\mapsto\theta$ 不是一个嵌入映射。联想到不可约多项式决定了元素间乘法的关系，而因为 $\eta$ 是 $X^2+X+1$ 的根，而 $\theta$ 是 $X^4+X+1$ 的根，所以 $\eta$ 和 $\theta$ 的乘法关系肯定不一样。在 $\mathbb{F}_{2^4}$ 中，也存在 $X^2+X+1$ 的两个根，分别为 $\theta^2+\theta$ 和 $\theta^2+\theta+1$，读者可以验证下面的等式：&lt;/p&gt;
+$$
+(\theta^2+\theta)^2 + (\theta^2+\theta) + 1 = \theta^4 + \theta^2 + \theta^2 + \theta + 1 = 0
+$$&lt;p&gt;那么，我们就定义嵌入映射：&lt;/p&gt;
+$$
+\begin{split}
+\phi &amp;: \mathbb{F}_{2^2} \to \mathbb{F}_{2^4},\quad \eta \mapsto \theta^2+\theta
+\end{split}
+$$&lt;p&gt;这就意味着二进制 $(10)$ 对应于 $L=\mathbb{F}_{2^4}$ 中的 $(0110)$ ；而二进制 $(11)$ （也就是 $\eta+1$）对应于 $L$ 中的 $(\theta^2+\theta+1)$，即 $(0111)$ 。这里要注意，我们也可以用 $\phi&#39;: \eta \mapsto \theta^2+\theta+1$ 作为另一个不同的嵌入映射，其内在原理是 $\theta^2+\theta$ 和 $\theta^2+\theta+1$ 互为共轭，它们是完美对称的，因此这两种映射都可以作为嵌入映射，除了映射到不同元素上，从整体结构上并且没有明显区别。&lt;/p&gt;
+&lt;p&gt;而对于任意的 $[L:K]=n$ 而言，我们将 $K$ 嵌入到 $L$，一个直接的方法就是找 $f(X)$ $L$ 中 的根，当然这个计算并不简单。并且嵌入和反嵌入都需要额外的计算，这无疑增加了系统的复杂性。&lt;/p&gt;
+&lt;p&gt;而 Binius 论文提到的采用递归式 Extension Tower 的构造方法，通过选取合适的不可约多项式和 Basis，我们就可以得到非常直接（称为 Zero-cost）的嵌入和反嵌入映射。&lt;/p&gt;
+&lt;h2 id=&#34;extension-tower&#34;&gt;Extension Tower&lt;/h2&gt;
+&lt;p&gt;我们可以通过两次的二次扩张来构造 $\mathbb{F}_{2^4}$，首先我们选择一个二次不可约多项式 $f(X)=X^2+X+1$，那么我们可以构造 $\mathbb{F}_{2^2}$，然后基于 $\mathbb{F}_{2^2}$ 再找到一个二次不可约多项式，从而构造 $\mathbb{F}_{2^4}$。&lt;/p&gt;
+$$
+\mathbb{F}_{2^2} = \mathbb{F}_2[X]/\langle X^2+X+1 \rangle \cong\mathbb{F}_2(\eta)
+$$&lt;p&gt;接下我们要找到 $\mathbb{F}_{2^2}[X]$ 中的一个二次不可约多项式。首先注意，$X^2+X+1$ 已经不能使用，根据 $\mathbb{F}_{2^2}$ 的定义，它已经可以被分解。再考虑下 $X^2+1$，它也可以被分解 $(X+1)(X+1)$， 事实上所有的 $\mathbb{F}_2[X]$ 的二次多项式都可以被分解。而一个$\mathbb{F}_{2^2}[X]$ 中的二次不可约多项式，其系数中必然包含一个带有新元素 $\eta$ 的项。&lt;/p&gt;
+&lt;p&gt;比如 $X^2+X+\eta$ 就是一个 $\mathbb{F}_{2^2}$ 上的二次不可约多项式。那么我们可以构造 $\mathbb{F}_{2^4}$：&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \mathbb{F}_{2^2}[X]/\langle X^2+X+\eta \rangle 
+$$&lt;p&gt;我们把 $X^2+X+\eta$ 在 $\mathbb{F}_{2^4}$ 中的根记为 $\zeta$，那么 $\mathbb{F}_{2^4}$ 可以表示为：&lt;/p&gt;
+$$
+\mathbb{F}_{2^4} = \cong \mathbb{F}_{2^2}(\zeta)  \cong \mathbb{F}_2(\eta)(\zeta) \cong \mathbb{F}_2(\eta, \zeta)
+$$&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;那么 $\mathbb{F}_{2^4}$ 的全部元素可以用 $\eta, \zeta$ 来表示：&lt;/p&gt;
+$$
+\begin{array}{ccccccc}
+\hline
+0000 &amp; 0001 &amp; 0010 &amp; 0011 &amp; 0100 &amp; 0101 &amp; 0110 &amp; 0111 \\
+0 &amp; 1 &amp; \eta &amp; \eta+1 &amp; \zeta &amp; \zeta+\eta &amp; \zeta+\eta+1 &amp; \zeta+\eta+1 \\
+\hline
+1000 &amp; 1001 &amp; 1010 &amp; 1011 &amp; 1100 &amp; 1101 &amp; 1110 &amp; 1111 \\
+\zeta\eta &amp; \zeta\eta + 1 &amp; \zeta\eta + \eta &amp; \zeta\eta + \eta + 1 &amp; \zeta\eta + \zeta &amp; \zeta\eta + \zeta +1 &amp; \zeta\eta+\zeta+\eta &amp; \zeta\eta+\zeta+\eta+1 \\
+\hline
+\end{array}
+$$&lt;p&gt;这时，4bit 二进制中的每一个 bit 都对应于 $\mathbb{F}_{2^4}$ 中的一个元素，$(1000)$ 对应 $\zeta\eta$，$(0100)$ 对应 $\zeta$，$(0010)$ 对应 $\eta$，$(0001)$ 对应 $1$。因此我们可以用下面的 Basis 来表示 $\mathbb{F}_{2^4}$ 中的所有元素：&lt;/p&gt;
+$$
+\mathcal{B} = (1,\ \eta,\ \zeta,\ \eta\zeta)
+$$&lt;p&gt;这时候，$\mathbb{F}_{2^2}$ 的二进制表示直接对应于 $\mathbb{F}_{2^4}$ 二进制表示的「低两位」，例如：&lt;/p&gt;
+$$
+\begin{split}
+(1010) &amp;= (10) || (10) = \zeta\eta + \eta \\
+\end{split}
+$$&lt;p&gt;因此，我们可以直接在 $\mathbb{F}_{2^2}$ 的二进制表示的高两位补零，即可以得到 $\mathbb{F}_{2^4}$ 的对应元素。反之，只要把高位两个零去除，一个 $\mathbb{F}_{2^4}$ 中的元素直接映射回 $\mathbb{F}_{2^2}$ 中的元素。&lt;/p&gt;
+&lt;!-- raw HTML omitted --&gt;
+&lt;p&gt;如上图所示，$(1011)$ 是 $\zeta\eta+\eta+1$ 的二进制表示，它的低两位 $(11)$ 直接对应于 $\mathbb{F}_{2^2}$ 中的 $(\eta+1)$ 。这种嵌入是一种「自然嵌入」，因此 Binus 论文称之为 Zero-cost Embedding。&lt;/p&gt;
+&lt;p&gt;不过 $\mathbb{F}_{2^4}$ 还是一个很小的域，不够用，如果继续往上进行二次扩张，怎么能找到合适的不可约多项式呢？方案并不唯一，我们先看看 Binius 论文 [DP23] 中给出的一个方案 —— Wiedemann Tower [Wie88]。&lt;/p&gt;
+&lt;h2 id=&#34;wiedemann-tower&#34;&gt;Wiedemann Tower&lt;/h2&gt;
+&lt;p&gt;Wiedemann Tower 是一个基于 $\mathbb{F}_2$ 的递归扩张塔。最底部的 Base Field 记为 $\mathcal{T}_0$，其元素仅为 $0$ 和 $1$：&lt;/p&gt;
+$$
+\mathcal{T}_0 = \mathbb{F}_2 \cong \{0,1\}
+$$&lt;p&gt;然后我们引入一个未知数 $X_0$，构造一个一元多项式环 $\mathbb{F}_2[X_0]$ 。如前所讨论，$X^2 + X + 1$ 是一个 $\mathcal{T}_0$ 上的不可约多项式，因此，我们可以用它来构造 $\mathcal{T}_1$。&lt;/p&gt;
+$$
+\mathcal{T}_1 = \mathbb{F}_2[X_0]/\langle  X_0^2+X_0+1 \rangle = \{0, 1, X_0, X_0+1\} \cong \mathbb{F}_{2^2} \cong \mathbb{F}_2(\alpha_0)
+$$&lt;p&gt;接下来，我们找到一个 $\mathcal{T}_1[X_1]$ 中的二次不可约多项式 $X_1^2+\alpha_0\cdot X_1+1$，那么我们可以构造 $\mathcal{T}_2$：&lt;/p&gt;
+$$
+\mathcal{T}_2 = \mathcal{T}_1[X_1]/\langle  X_1^2+ \alpha_0\cdot X_1+1\rangle \cong \mathbb{F}_{2^4} \cong \mathbb{F}_2(\alpha_0, \alpha_1)
+$$&lt;p&gt;依次类推，我们可以构造出 $\mathcal{T}_3, \mathcal{T}_4, \cdots, \mathcal{T}_n$ ：&lt;/p&gt;
+$$
+\mathcal{T}_{i+1} = \mathcal{T}_i[X_i]/\langle  X_i^2+\alpha_{i-1}\cdot X_i+1\rangle \cong \mathbb{F}_{2^{2^i}} \cong \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_i),\quad i\geq 1
+$$&lt;p&gt;这里，$\alpha_0, \alpha_1, \ldots, \alpha_{n-1}$ 是依次引入的二次不可约多项式的根，使得：&lt;/p&gt;
+$$
+\mathcal{T}_{n} = \mathbb{F}_2(\alpha_0, \alpha_1, \ldots, \alpha_{n-1})
+$$&lt;p&gt;而 $|\mathcal{T}_{n}| = 2^{2^{n}}$。这些引入的根之间的关系满足下面的等式：&lt;/p&gt;
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$&lt;p&gt;不难检验，$\alpha_0+\alpha^{-1}_0=1$。并且多元多项式环 $\mathcal{T}_0[X_0, X_1, \ldots, X_n]$ 中的多项式 $X_i^2+X_{i-1}X_i+1$ 的两个根为 $\alpha_i$ 和 $\alpha^{-1}_i$ ：&lt;/p&gt;
+$$
+(\alpha^{-1}_i)^2 + \alpha_{i-1}\alpha^{-1}_i + 1 = \alpha^{-1}_i + \alpha_{i-1} + \alpha_i = \alpha_{i-1} + \alpha_{i-1} = 0
+$$&lt;p&gt;并且，$\alpha_i$ 和 $\alpha_{i+1}$ 满足下面的递推关系：&lt;/p&gt;
+$$
+\alpha_{i+1} + \alpha^{-1}_{i+1} = \alpha_i
+$$&lt;p&gt;这是因为等式两边都乘以 $\alpha_{i+1}$ 就会得到：$\alpha_{i+1}^2 + \alpha_i\alpha_{i+1} + 1 = 0$ ，这正是我们递归构造二次扩张的不可约多项式。&lt;/p&gt;
+&lt;h3 id=&#34;multilinear-basis&#34;&gt;Multilinear Basis&lt;/h3&gt;
+&lt;p&gt;对于 $\mathcal{T}_{i+1}$ over $\mathbb{F}_2$，构成了一个关于 $\mathbb{F}_2$ 的 $n+1$ 维向量空间。我们可以使用 这些不可约多项式的根来构造 Multilinear Basis：&lt;/p&gt;
+$$
+\begin{split}
+\mathcal{B}_{i+1} &amp;= (1, \alpha_0)\otimes (1, \alpha_1) \otimes \cdots \otimes (1,\alpha_i)  \\
+&amp; = (1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2,\ \ldots,\ \alpha_0\alpha_1\cdots \alpha_i)
+\end{split}
+$$&lt;p&gt;这与我们前面讨论过的，使用 $(1, \eta, \zeta, \zeta\eta)$ 作为 $\mathbb{F}_{2}(\eta, \zeta)$ 的 Basis 是一致的。我们可以快速地验证下，首先 $(1, \alpha_0)$ 是 $\mathcal{T}_1$ 的 Basis，因为 $\mathcal{T}_1$ 的每一个元素都可以表示为&lt;/p&gt;
+$$
+a_0 + b_0\cdot \alpha_0,  \quad a_0, b_0\in\mathcal{T}_0
+$$&lt;p&gt;当 $\mathcal{T}_1$ 通过 $\alpha_1$ 扩张到 $\mathcal{T}_2$ 后，$\mathcal{T}_2$ 的元素都可以表示为：&lt;/p&gt;
+$$
+a_1 + b_1\cdot \alpha_1,  \quad a_1, b_1\in\mathcal{T}_1
+$$&lt;p&gt;代入 $a_1=a_0+b_0\cdot \alpha_0$，$b_1=a_0&#39;+b_0&#39;\cdot \alpha_1$，于是有：&lt;/p&gt;
+$$
+\begin{split}
+a_1 + b_1\cdot \alpha_1 &amp;= (a_0+b_0\cdot \alpha_0) + (a&#39;_0+b&#39;_0\cdot \alpha_0)\cdot \alpha_1 \\
+ &amp;= a_0 + b_0\alpha_0 + a&#39;_0\cdot\alpha_1+ b_0&#39;\cdot \alpha_0\alpha_1
+\end{split}
+$$&lt;p&gt;于是，$(1, \alpha_0, \alpha_1, \alpha_0\alpha_1)$ 就构成了 $\mathcal{T}_2$ 的 Basis。依次类推，$(1, \alpha_0, \alpha_1, \alpha_0\alpha_1, \alpha_2, \alpha_0\alpha_2, \alpha_1\alpha_2, \alpha_0\alpha_1\alpha_2)$ 是 $\mathcal{T}_3$ 的 Basis。最后，$\mathcal{B}_{n}$ 正是 $\mathcal{T}_{n}$ 的 Basis。&lt;/p&gt;
+&lt;h3 id=&#34;寻找-primitive-element&#34;&gt;寻找 Primitive element&lt;/h3&gt;
+&lt;p&gt;前面我们讨论过 $\alpha_i$ 和 $\alpha^{-1}_{i}$ 互为共轭根，由 Galois 理论，&lt;/p&gt;
+$$
+\alpha_{i}^{2^{2^n}} = \alpha^{-1}_{i} 
+$$&lt;p&gt;那么 $\alpha_i$ 都满足下面的性质：&lt;/p&gt;
+$$
+\alpha_i^{F_i} = 1
+$$&lt;p&gt;这里 $F_n$ 代表费马数（Fermat Number），$F_n=2^{2^n}+1$。一个著名的定理是 $\mathsf{gcd}(F_i, F_j) = 1,  i\neq j$，即任意的两个不同的费马数互质，因此&lt;/p&gt;
+$$
+\mathsf{ord}(\alpha_0\alpha_1\cdots \alpha_i) = \mathsf{ord}(\alpha_0)\mathsf{ord}(\alpha_1)\cdots\mathsf{ord}(\alpha_i) 
+$$&lt;p&gt;因此，如果费马数 $F_i$ 为素数，那么很显然 $\mathsf{ord}(\alpha_i)=F_i$。目前我们已知 $i\leq 4$ 的情况下， $F_i$ 都是素数，那么&lt;/p&gt;
+$$
+\begin{split}
+\mathsf{ord}(\alpha_0\cdot \alpha_1\cdot \cdots \cdot \alpha_i) &amp;= \mathsf{ord}(\alpha_0)\cdot \mathsf{ord}(\alpha_1)\cdot \cdots \cdot \mathsf{ord}(\alpha_n) \\
+&amp; = F_0\cdot F_1\cdot \cdots \cdot F_i = 2^{2^{i+1}} - 1 \\
+&amp; = |\mathcal{T}_{n+1}| -1
+\end{split}
+$$&lt;p&gt;如果 $\alpha_0\cdots \alpha_i, i\leq 4$，那么根据有限域的性质，它是 $\mathcal{T}_{n+1}$ 的一个 Primitive Element。&lt;/p&gt;
+&lt;p&gt;另外，通过计算机程序检查验证，对于 $5\leq i \leq 8$ 的情况，$\alpha_i$ 的 Order 仍然等于 $F_i$。这个 $\alpha_0\cdots \alpha_8$ 是有限域 $\mathbb{F}_{2^{512}}$的大小已经能满足类似 Binius 证明系统的需求。但在数学上，是否所有的 $\alpha_i$ 都满足这个性质？这个似乎还是个未解问题 [Wie88]。&lt;/p&gt;
+&lt;h2 id=&#34;乘法优化&#34;&gt;乘法优化&lt;/h2&gt;
+&lt;p&gt;采用 Extension Tower 的另一个显著的优点是乘法运算的优化。&lt;/p&gt;
+&lt;p&gt;第一种优化是 &amp;ldquo;Small-by-large Multiplication&amp;rdquo;，即 $a\in\mathcal{T}_\iota$ 与 $b\in\mathcal{T}_{\iota+\kappa}$ 两个数的乘法运算。因为 $b$ 可以分解为 $2^\kappa$ 个 $\mathcal{T}_\iota$ 元素，因此这个乘法运算等价于 $2^\kappa$ 次 $\mathcal{T}_\iota$ 上的乘法运算。&lt;/p&gt;
+$$
+a \cdot (b_0, b_1, \cdots, b_{2^\kappa-1}) = (a\cdot b_0, a\cdot b_1, \cdots, a\cdot b_{\kappa-1})
+$$&lt;p&gt;即使对于同一个域上的两个元素的乘法，也同样有优化手段。假设 $a, b\in\mathcal{T}_{i+1}$，那么根据 Tower 构造的定义，可以分别表示为 $a_0 + a_1\cdot\alpha_i$ 与 $b_0 + b_1\cdot \alpha_i$ ，那么它们的乘法可以推导如下：&lt;/p&gt;
+$$
+\begin{split}
+a\cdot b  &amp; = (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+ &amp;= a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot\alpha_i^2 \\
+&amp; = a_0b_0 + (a_0b_1+a_1b_0)\cdot\alpha_i + a_1b_1\cdot(\alpha_{i-1}\alpha_i+1) \\
+&amp; = a_0b_0  + a_1b_1 + (a_0b_1 + a_1b_0 + a_1b_1\cdot\alpha_{i-1})\cdot\alpha_i \\
+&amp; = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i
+\end{split}
+$$&lt;p&gt;注意上面等式的右边，我们只需要计算三个 $\mathcal{T}_{i}$ 上的乘法，分别为 $A=a_0b_0$， $B=(a_0+a_1)(b_0+b_1)$ 与 $C=a_1b_1$，然后上面的公式可以转换为：&lt;/p&gt;
+$$
+a\cdot b = (A + C) + (B-A-C+C\cdot \alpha_{i-1})\cdot\alpha_i 
+$$&lt;p&gt;其中还漏了一个 $C\cdot \alpha_{i-1}$，这是一个常数乘法，因为 $\alpha_{i-1}\in\mathcal{T}_{i}$ 是一个常数。这个常数乘法可以被归约到一个 $\mathcal{T}_{i-1}$ 上的常数乘法运算，如下所示：&lt;/p&gt;
+$$
+\begin{split}
+C\cdot \alpha_{i-1} &amp;= (c_0 + c_1\alpha_{i-1})\cdot \alpha_{i-1} \\
+&amp; = c_0\cdot \alpha_{i-1} + c_1\cdot \alpha_{i-1}^2 \\
+&amp; = c_0\cdot \alpha_{i-1} + c_1\cdot (\alpha_{i-2}\cdot \alpha_{i-1} + 1) \\
+&amp; = c_1 + (c_0 + {\color{blue}c_1\cdot \alpha_{i-2}})\cdot \alpha_{i-1}
+\end{split}
+$$&lt;p&gt;其中蓝色部分表达式，${\color{blue}c_1\cdot \alpha_{i-2}}$ 为需要递归计算的 $\mathcal{T}_{i-2}$ 上的常数乘法运算。全部递归过程只需要计算若干次加法即可完成。&lt;/p&gt;
+&lt;p&gt;再回头看看 $a\cdot b$ 的运算，我们也可以构造一个 Karatsuba 风格的递归算法，每一层递归只需要完成三次乘法运算，比不优化的四次乘法运算少一次。综合起来，优化效果会非常明显。&lt;/p&gt;
+&lt;p&gt;进一步，$\mathcal{T}_{i}$ 上的乘法逆运算也可以被大大优化 [FP97]。考虑 $a, b\in\mathcal{T}_{i+1}$，满足 $a\cdot b=1$，展开 $a$ 和 $b$ 的表达式：&lt;/p&gt;
+$$
+\begin{split}
+a\cdot b &amp;= (a_0 + a_1\cdot\alpha_i)\cdot (b_0 + b_1\cdot\alpha_i) \\
+&amp; = a_0b_0  + a_1b_1 + \big((a_0+a_1)(b_0+b_1) - a_0b_0 - a_1b_1) + a_1b_1\cdot\alpha_{i-1}\big)\cdot\alpha_i\\
+&amp;= 1\\
+\end{split}
+$$&lt;p&gt;我们可以计算得到 $b_0, b_1$ 的表达式：&lt;/p&gt;
+$$
+\begin{split}
+b_0 &amp;= \frac{a_0 + a_1\alpha_{i-1}}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2}  \\[2ex]
+b_1 &amp;= \frac{a_1}{a_0(a_0 + a_1\alpha_{i-1}) + a_1^2} \\
+\end{split}
+$$&lt;p&gt;所以，$b_0$ 和 $b_1$ 的计算包括：一次求逆运算，三次乘法，两次加法，一次常数乘法，还有一次平方运算。&lt;/p&gt;
+$$
+\begin{split}
+d_0 &amp;= \alpha_{i-1}a_1\\
+d_1 &amp;= a_0 + d_0 \\
+d_2 &amp;= a_0 \cdot d_1 \\
+d_3 &amp;= a_1^2   \\
+d_4 &amp;= d_2 + d_3 \\
+d_5 &amp;= 1/d_4 \\
+b_0 &amp; = d_1\cdot d_5\\
+b_1 &amp; = a_1 \cdot d_5\\
+\end{split}
+$$&lt;p&gt;其中 $d_5$ 的求逆运算可以沿着 Extension Tower 逐层递归，递归过程中的主要运算开销为三次乘法运算。还有 $d_3$ 的平方运算，它也可以递归地计算：&lt;/p&gt;
+$$
+\begin{split}
+a_1^2 &amp;= (e_0 + e_1\cdot\alpha_{i-1})^2 \\
+&amp; = e_0^2 + e_1^2\cdot\alpha_{i-1}^2 \\
+&amp; = e_0^2 + e_1^2\cdot(\alpha_{i-2}\alpha_{i-1} + 1) \\
+&amp; = (e_0^2 + e_1^2) + (e_1^2\alpha_{i-2})\cdot\alpha_{i-1}  \\
+\end{split}
+$$&lt;p&gt;详细的递归效率分析可以参考 [FP97]。总体上，这个计算复杂度和 Karatsuba 算法复杂度相当，从而很大程度上降低了求逆的算法复杂度。&lt;/p&gt;
+&lt;h2 id=&#34;artin-schreier-tower-conway-tower&#34;&gt;Artin-Schreier Tower (Conway Tower)&lt;/h2&gt;
+&lt;p&gt;还有一种构造 Binary Tower 的方法，源自 Amil Artin 与 Otto Schreier 发表在 1927 年的论文中，也出现在 Conway 的 「On Numbers and Games」一书中。关于这个历史溯源与相关理论，请参考 [CHS24]。&lt;/p&gt;
+&lt;p&gt;对于任意的 $\mathbb{F}_{p^n}$，我们选择 $h(X_{i+1}) = X_{i+1}^p - X_{i+1} - \alpha_0\alpha_1\cdots \alpha_i$ 作为每一层 Tower 的不可约多项式。而 $\alpha_{i+1}$ 作为 $h(X_{i+1})=0$ 在上一层 Tower 上的根。这样 我们可以得到一个 Extension Tower：&lt;/p&gt;
+$$
+\mathbb{F}_2 \subset \mathbb{F}_{2^2}\cong\mathbb{F}_2(\alpha_0) \subset \mathbb{F}_{2^4}\cong\mathbb{F}_{2^2}(\alpha_1) \subset \mathbb{F}_{2^8}\cong\mathbb{F}_{2^4}(\alpha_2)
+$$&lt;p&gt;而且 $(1, \alpha_0)\otimes(1, \alpha_1)\otimes\cdots \otimes (1, \alpha_n)$ 构成了 $\mathbb{F}_{2^{2^{i+1}}}$ 向量空间的 Basis。依照我们前面的讨论，这组 Basis 也支持 Zero-cost 的子域嵌入。这类的 Multilinear Basis 也被称为 Cantor Basis [Can89]。&lt;/p&gt;
+&lt;h2 id=&#34;references&#34;&gt;References&lt;/h2&gt;
+&lt;ul&gt;
+&lt;li&gt;[Wie88] Wiedemann, Doug. &amp;ldquo;An iterated quadratic extension of GF (2).&amp;rdquo; Fibonacci Quart 26.4 (1988): 290-295.&lt;/li&gt;
+&lt;li&gt;[DP23] Diamond, Benjamin E., and Jim Posen. &amp;ldquo;Succinct arguments over towers of binary fields.&amp;rdquo; Cryptology ePrint Archive (2023).&lt;/li&gt;
+&lt;li&gt;[DP24] Diamond, Benjamin E., and Jim Posen. &amp;ldquo;Polylogarithmic Proofs for Multilinears over Binary Towers.&amp;rdquo; Cryptology ePrint Archive (2024).&lt;/li&gt;
+&lt;li&gt;[LN97] Lidl, Rudolf, and Harald Niederreiter. Finite fields. No. 20. Cambridge university press, 1997.&lt;/li&gt;
+&lt;li&gt;[FP97] Fan, John L., and Christof Paar. &amp;ldquo;On efficient inversion in tower fields of characteristic two.&amp;rdquo; Proceedings of IEEE International Symposium on Information Theory. IEEE, 1997.&lt;/li&gt;
+&lt;li&gt;[CHS24] Cagliero, Leandro, Allen Herman, and Fernando Szechtman. &amp;ldquo;Artin-Schreier towers of finite fields.&amp;rdquo; arXiv preprint arXiv:2405.10159 (2024).&lt;/li&gt;
+&lt;li&gt;[Can89] David G. Cantor. On arithmetical algorithms over finite fields. J. Comb. Theory Ser. A, 50(2):285–300, March 1989.&lt;/li&gt;
+&lt;/ul&gt;
+</description>
+      
+    </item>
+    
     <item>
       <title>从零开始学习 zk-SNARK（五）——Pinocchio 协议</title>
       <link>https://sec-bit.github.io/blog/2020/01/22/learn-zk-snark-from-zero-part-five/</link>
@@ -6338,211 +7000,6 @@ Conference on the Theory and Applications of Cryptographic Techniques. Springer,
 &lt;blockquote&gt;
 &lt;p&gt;在区块链领域里面，凡是套用传统方法的方案，无一胜出，唯有创新才有未来。&lt;/p&gt;
 &lt;/blockquote&gt;
-</description>
-      
-    </item>
-    
-    <item>
-      <title>为什么说区块链是一座全新的博弈竞技场？</title>
-      <link>https://sec-bit.github.io/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/</link>
-      <pubDate>Thu, 13 Jun 2019 08:00:00 +0800</pubDate>
-      
-      <guid>https://sec-bit.github.io/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/</guid>
-      
-        <description>&lt;p&gt;（本文由安比实验室&amp;amp;橙皮书联合出品）&lt;/p&gt;
-&lt;p&gt;&lt;strong&gt;区块链到底有什么用？&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;针对这个问题，以太坊基金会成员 Virgil Griffith 曾以以太坊为例，提出了一个让人眼前一亮的观点[1]：&lt;/p&gt;
-&lt;p&gt;&lt;em&gt;Ethereum is an unprecedented arena for playing cooperative games（以太坊是前所未有的合作博弈竞技场）。&lt;/em&gt;&lt;/p&gt;
-&lt;p&gt;区块链和博弈论是两个不同的领域，乍一看似乎并没有太大的关联性，但事实并非如此。&lt;strong&gt;几乎所有的博弈论经典案例都可以借助区块链构建出新的博弈关系&lt;/strong&gt;。Virgil Griffith 在他的文章中以以太坊为基础，借用博弈论中经典的案例解释了如何利用区块链来建立新的博弈关系。&lt;/p&gt;
-&lt;h3 id=&#34;两败俱伤合作共赢-建立非合作博弈转变为合作博弈的支点&#34;&gt;两败俱伤？合作共赢？—— 建立非合作博弈转变为合作博弈的支点&lt;/h3&gt;
-&lt;p&gt;&lt;strong&gt;博弈论&lt;/strong&gt;（&lt;strong&gt;Game Theory&lt;/strong&gt;）是经济学的一个分支，是研究博弈行为中斗争各方是否存在着最合理的行为方案，以及如何找到这个合理的行为方案的数学理论和方法[t2]。其中具有竞争或对抗性质的行为称为&lt;strong&gt;博弈行为&lt;/strong&gt;[2]。&lt;/p&gt;
-&lt;p&gt;说到博弈论就不得不提到一个大家所熟知的经典案例——&lt;strong&gt;囚徒困境&lt;/strong&gt;[3]。&lt;/p&gt;
-&lt;p&gt;有两个共谋犯罪的囚徒张三和李四被捕，他们之间不能互相交流。如果双方都不揭发对方，则每个人都只被关押 1 年；若他们双方有一方揭发，而另一方选择沉默，则揭发者将立即获释，沉默者则将被关押 8 年；若互相揭发，双方将同时被关押 5 年。&lt;/p&gt;
-&lt;p&gt;&lt;strong&gt;很显然如果双方都保持沉默，是对他们最有利的选择。但实际上，最终双方在都会倾向于揭发对方。&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;是什么导致了如此反直觉的结果呢？&lt;/p&gt;
-&lt;p&gt;我们用下图的矩阵来简单解释一下。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img1.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;对于张三来说，若选择沉默，结果有两种：&lt;/p&gt;
-&lt;ul&gt;
-&lt;li&gt;被关押 1 年，此时李四选择沉默，同样被关押 1 年；&lt;/li&gt;
-&lt;li&gt;被关押 8 年，此时李四选择揭发，直接释放。&lt;/li&gt;
-&lt;/ul&gt;
-&lt;p&gt;若张三选择揭发，其两种结果为：&lt;/p&gt;
-&lt;ul&gt;
-&lt;li&gt;直接释放，此时李四选择沉默，被关押 8 年；&lt;/li&gt;
-&lt;li&gt;被关押 5 年，此时李四选择揭发，同样被关押 5 年。&lt;/li&gt;
-&lt;/ul&gt;
-&lt;p&gt;所以无论张三怎么选择，对李四较来说，揭发张三都是对他个人比较有利的选择。同样对张三来说亦然。&lt;/p&gt;
-&lt;p&gt;因而在双方未进行沟通协商的前提下，张三和李四只会做出对个人最有利的选择。囚徒双方的这种博弈关系被称为&lt;strong&gt;非合作博弈&lt;/strong&gt;。这里囚徒双方的选择被称为基于&lt;strong&gt;个体理性&lt;/strong&gt;的决策，与之相反的是基于&lt;strong&gt;群体理性&lt;/strong&gt;做出的决策。这里双方在做出决策揭露对方后即达到了博弈的&lt;strong&gt;纳什均衡点&lt;/strong&gt;。&lt;/p&gt;
-&lt;blockquote&gt;
-&lt;p&gt;博弈的分类根据不同的基准也有不同的分类。一般认为，博弈主要可以分为合作博弈和非合作博弈[t2] 。&lt;strong&gt;合作博弈论&lt;/strong&gt;是指一些参与者以形成联盟、互相合作的方式所进行的博弈。合作博弈的相反是&lt;strong&gt;非合作博弈&lt;/strong&gt;，指的是参与者不可能形成联盟或任何合作机制都必须为自我履约契约(例如，透过置信威胁的方式)[t4]。&lt;/p&gt;
-&lt;p&gt;&lt;strong&gt;纳什均衡点&lt;/strong&gt; 是指相互作用的经济主体在假定所有其他主体所选策略为既定的情况下选择他们自己最优策略的状态。如果某情况下无一参与者可以通过独自行动而增加收益，则此策略组合被称为纳什均衡点[5]。&lt;/p&gt;
-&lt;/blockquote&gt;
-&lt;p&gt;在博弈论中，形成&lt;strong&gt;合作博弈&lt;/strong&gt;需要满足两个基本条件[6]：&lt;/p&gt;
-&lt;ol&gt;
-&lt;li&gt;对联盟来说，整体收益大于其每个成员单独经营时的收益之和。&lt;/li&gt;
-&lt;li&gt;对联盟内部而言，每个成员都能获得比不加入联盟时多一些的收益。&lt;/li&gt;
-&lt;/ol&gt;
-&lt;p&gt;囚徒困境的问题在于，在不知道对方选择的前提下，选择不合作将被关押的时间更短（即他们个人获得的收益更大），所以不满足合作博弈的基本条件。&lt;/p&gt;
-&lt;p&gt;Virgil Griffith  给出了一个实现合作博弈的解决方案——&lt;strong&gt;借助区块链智能合约建立新的契约关系来创建新的规则。&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;我们先将囚徒双方被关押的年数转换成其在以太坊上的收益（如收益为 -1ETH 即指的是被关押 1 年）来解释这个问题。在张三和李四被逮捕之前，他们在以太坊上部署一个合约，合约内容如下：两人同时抵押 1000 ETH，并且保证选择沉默。如果任意一方选择不遵守诺言，将烧掉其在合约中锁定的 1000 ETH，即他将损失 1000 ETH，这远远大于他们原本在选择沉默或是揭发时的损失，所以囚徒困境的纳什均衡被打破。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img2.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;通过部署一个不可修改且自动执行的合约，就可以使囚徒之间达成一个具有约束力且强制执行的协议，原来基于&lt;strong&gt;个人理性&lt;/strong&gt;而做的决策被相互&lt;strong&gt;合作的决策&lt;/strong&gt;所替代，我们成功得将&lt;strong&gt;非合作博弈关系转换成了合作博弈&lt;/strong&gt;。&lt;/p&gt;
-&lt;p&gt;不仅仅是囚徒困境，&lt;strong&gt;几乎所有的非合作博弈都能借助智能合约构造新的博弈关系&lt;/strong&gt;。&lt;/p&gt;
-&lt;p&gt;我们再来看一个非合作博弈转化为合作博弈的例子 —— &lt;strong&gt;猎鹿赛局&lt;/strong&gt;[7] 。&lt;/p&gt;
-&lt;p&gt;两名猎人 A 和 B一起去打猎，他们可以猎取鹿，也可以猎取野兔。鹿需要两个人合作才能获取，野兔一个人就可猎得，但猎鹿所得的收益大于猎野兔所得的收益。如下图所示，我们假定猎取野兔的收益为 1 ETH，猎取鹿的收益为 3 ETH。&lt;img src=&#34;./img3.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;虽然两名猎人同时选择猎取鹿的收益最大，但却需要承担对方不选择猎取鹿的后果。所以猎人们可能会更倾向于做出猎取野兔这种收益小但风险也小的选择。&lt;/p&gt;
-&lt;p&gt;与囚徒困境类似，这里我们同样可以利用区块链在猎人之间建立合作关系。猎人们先在以太坊上创建合约，双方各自向合约中抵押 1000 ETH，若任意一方最终猎取了野兔，则将其抵押的 1000 ETH烧掉，于是此时任何一名猎人此时都不会选择猎取野兔。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img4.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;在上述例子中，我们将博弈方的收益和损失都转换为了以太坊上的价值符号表示，但在实际的应用场景中，能否以此来代替实际的收益还有待商榷；另外智能合约如何感知实际场景中的决策结果并自动触发合约执行也相对困难。因此&lt;strong&gt;如何找到适合的机制让现实博弈的关键操作与链上合约绑定&lt;/strong&gt; 至关重要。&lt;/p&gt;
-&lt;h3 id=&#34;博弈革命竞技场上的角逐新规则&#34;&gt;博弈革命——竞技场上的角逐新规则&lt;/h3&gt;
-&lt;p&gt;其实区块链和智能合约并不是改变博弈的必要条件，但区块链智能合约在应用和部署博弈模型方面有着巨大的潜力。&lt;/p&gt;
-&lt;p&gt;由于真实情况下我们难以找到适合的可信第三方来做为公平的仲裁者，辅助执行博弈结果的利益裁定。而区块链及智能合约的出现让这一切变得十分容易，正如 Upgradeability is a bug[8] 这篇文章中所说的那样，&lt;strong&gt;智能合约最大的价值恰恰是在于它的 Trustless&lt;/strong&gt;。&lt;/p&gt;
-&lt;p&gt;不仅仅是非合作博弈，几乎任意的博弈关系都可以与区块链结合，创造出新的规则。&lt;/p&gt;
-&lt;h4 id=&#34;1-懦夫博弈&#34;&gt;1. 懦夫博弈&lt;/h4&gt;
-&lt;p&gt;&lt;strong&gt;在非合作博弈中打造竞争优势。&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;懦夫博弈也叫&amp;quot;胆小鬼博弈&amp;quot;，是指两名车手甲和乙相对驱车而行，最先转弯的一方被耻笑为“胆小鬼”（chicken），另一方胜出，但如果两人拒绝转弯，任由两车相撞，最终谁都无法受益[9]。&lt;/p&gt;
-&lt;p&gt;我们假定当两人同时转弯时记为收益为 0；当一方转弯，另一方直行时，转弯的一方记为收益 -1 ETH，另一方收益为 10 ETH；当两人同时直行时记为收益为 -100 ETH。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img5.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;很显然，这个游戏只有当一方选择直行，另一方选择转弯收益最大，但是谁选择直行谁选择转弯却很难判定。&lt;/p&gt;
-&lt;p&gt;为了打破僵局获得最大收益，车手甲可以在游戏开始之前创建合约，抵押 1000 ETH ，并通知车手乙。若其选择转弯，合约将自动烧毁其抵押的 1000 ETH，这就使得车手甲必定选择直行，而乙就不得不选择转弯以将损失降到最低。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img6.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;h4 id=&#34;2-爵士乐队表演&#34;&gt;2. 爵士乐队表演&lt;/h4&gt;
-&lt;p&gt;&lt;strong&gt;借助智能合约保障合作博弈中的利益公平分配&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;爵士乐队表演是一个合作博弈的案例[10]。假设一个场景，某台晚会需要招募表演人员，可供选择的表演人员包括一名吉他手，一名架子鼓手和一名歌手。&lt;/p&gt;
-&lt;ul&gt;
-&lt;li&gt;
-&lt;p&gt;若招募的结果是只招募到一个人（歌手，吉他手，架子鼓手任意一人），则仅支付 1 ETH；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若招募到一名歌手和一名吉他手，则共支付他们 7 ETH；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若招募到一名歌手和一名架子鼓手，则共支付他们 5 ETH；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若招募到一名吉他手和一名架子鼓手，则共支付他们 4 ETH；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若同时招募到歌手，吉他手和架子鼓手 3 人，则共支付他们 10 ETH。&lt;/p&gt;
-&lt;/li&gt;
-&lt;/ul&gt;
-&lt;p&gt;&lt;img src=&#34;./img7.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;在上述表演费用中，显然歌手，吉他手和架子鼓手组成一个乐队参与表演的收益是最大的，他们有很大的动力组成一个联盟去参加表演。三个人组成乐队得到10个以太币的报酬之后，每个人应该分配多少个以太币才合理呢？&lt;/p&gt;
-&lt;p&gt;我们可以简略分析一下乐队中每个成员的贡献：&lt;/p&gt;
-&lt;p&gt;有歌手参加的二人合作总收益为：7+5=12&lt;/p&gt;
-&lt;p&gt;有吉他手参与的二人合作总收益为：7+4=11&lt;/p&gt;
-&lt;p&gt;有架子鼓手参与的二人合作总收益为：5+4=9&lt;/p&gt;
-&lt;p&gt;在二人合作中，我们可以看到歌手的价值最高，吉他手的价值居中，架子鼓手的价值最低。&lt;/p&gt;
-&lt;p&gt;2012年诺贝尔经济学奖获得者夏普利曾提出一个Shapley值的概念，解决了在合作博弈中合理分配收益给参与者的问题[11]。如果依据他的理论进行分配，歌手应该得到 4，吉他手 3.5，架子鼓手 2.5。&lt;/p&gt;
-&lt;p&gt;举办方可以将分配的Shapley值计算公式写入智能合约，在演奏结束之后让合约自动转账给演奏参与者，从而保证分配的公平性。&lt;/p&gt;
-&lt;h4 id=&#34;3-从他人的博弈中套利&#34;&gt;3. 从他人的博弈中套利&lt;/h4&gt;
-&lt;p&gt;&lt;strong&gt;空手套白狼：干扰他人博弈以套利&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;假设在一个博弈关系中有两个参与者：A 和 B。A 可以执行两个动作，向上或者向下；B 也可以执行两个动作向左或者向右。&lt;/p&gt;
-&lt;ul&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 选择向上，B 选择向左，则双方均获得 10 ETH 的收益；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 选择向上，B 选择向右，则双方没有收益；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 选择向下，B 选择向左，A没有收益，B 获得 1 ETH的收益；&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 选择向下，B 选择向右，A获得 1 ETH的收益，B 没有收益。&lt;/p&gt;
-&lt;/li&gt;
-&lt;/ul&gt;
-&lt;p&gt;&lt;img src=&#34;./img8.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;p&gt;显然这个时候 A 选择向上，B 选择向左是对双方最有利的选择。&lt;/p&gt;
-&lt;p&gt;在游戏开始之前，第三方 C 创建一个合约，A 需在游戏开始前向 C 转 5 ETH,&lt;/p&gt;
-&lt;ul&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 按照要求向 C 转 5 ETH，C将不再干预游戏，最终 A 获得 5ETH收益，B 获得 10 ETH的收益。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img9.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;/li&gt;
-&lt;li&gt;
-&lt;p&gt;若 A 未按照要求向 C 转 5 ETH，C将干预游戏，游戏结束后若B选择向右，合约自动向 B 转 100 ETH，那么 A 最多获得 1ETH 的收益，B 则获得 100 ETH的收益。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./img10.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
-&lt;/li&gt;
-&lt;/ul&gt;
-&lt;p&gt;对于 B 来说，他需要根据 A 是否事先向 C 转账来决定他的选择。而对于 A 来说，向 C 转 5 ETH最终他还能获得 5 ETH的收益，如果不转则最多只能获得 1 ETH 的收益。面对理性的 A 和 B，C 仅需要创建一个合约，不支付任何费用，就可以让 A 乖乖得将部分收益转让给他。&lt;/p&gt;
-&lt;p&gt;&lt;em&gt;面对这种赤裸裸的 &amp;ldquo;&lt;strong&gt;敲诈&lt;/strong&gt;&amp;rdquo; 行为，A 是否可以借助区块链来逆转局面呢？&lt;/em&gt;&lt;/p&gt;
-&lt;p&gt;（聪明的小伙伴如果想到了解决的办法，欢迎添加小安的微信 secbit_xiaoanbi 来参与讨论）&lt;/p&gt;
-&lt;h3 id=&#34;道阻且长--寻找链上链下的绑定机制&#34;&gt;道阻且长 —— 寻找链上链下的绑定机制&lt;/h3&gt;
-&lt;p&gt;正如 Virgil Griffith 所说，&lt;/p&gt;
-&lt;p&gt;&amp;lsquo;&lt;em&gt;Ethereum enables powerful economic vehicles we don&amp;rsquo;t yet understand.（以太坊支持我们不甚知晓的强大的经济学工具。）&lt;/em&gt;&amp;rsquo; [1]&lt;/p&gt;
-&lt;p&gt;区块链作为一种去中心化，执行结果明确，不可篡改的&amp;quot;可信第三方&amp;quot;，打破了传统的思维，为打破博弈关系建立新的规则提供了非常有效的途径。作为一座全新的博弈竞技场，区块链和智能合约必定会为博弈的应用和改变注入更多的灵感。&lt;/p&gt;
-&lt;p&gt;但正如上文所提到的，如何找到适合的机制让现实博弈的关键操作与链上合约绑定，还需要更进一步的探索。&lt;/p&gt;
-&lt;p&gt;&amp;ldquo;或许距离这座&amp;quot;竞技场&amp;quot;真正运转起来还有很长的路要走。&amp;rdquo;&lt;/p&gt;
-&lt;p&gt;​																			— 郭宇(安比实验室创始人)&lt;/p&gt;
-&lt;p&gt;参考文献&lt;/p&gt;
-&lt;p&gt;[1] &lt;a href=&#34;https://medium.com/@virgilgr/ethereum-is-game-changing-technology-literally-d67e01a01cf8&#34;&gt;https://medium.com/@virgilgr/ethereum-is-game-changing-technology-literally-d67e01a01cf8&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[2] &lt;a href=&#34;https://en.wikipedia.org/wiki/Game_theory&#34;&gt;https://en.wikipedia.org/wiki/Game_theory&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[3] &lt;a href=&#34;https://en.wikipedia.org/wiki/Prisoner%27s_dilemma&#34;&gt;https://en.wikipedia.org/wiki/Prisoner%27s_dilemma&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[4] &lt;a href=&#34;https://en.wikipedia.org/wiki/Cooperative_game_theory&#34;&gt;https://en.wikipedia.org/wiki/Cooperative_game_theory&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[5] &lt;a href=&#34;https://en.wikipedia.org/wiki/Nash_equilibrium&#34;&gt;https://en.wikipedia.org/wiki/Nash_equilibrium&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[6] &lt;a href=&#34;https://wiki.mbalib.com/wiki/%E5%90%88%E4%BD%9C%E5%8D%9A%E5%BC%88&#34;&gt;https://wiki.mbalib.com/wiki/%E5%90%88%E4%BD%9C%E5%8D%9A%E5%BC%88&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[7]https://en.wikipedia.org/wiki/Stag_hunt&lt;/p&gt;
-&lt;p&gt;[8] Upgradeability Is a Bug &lt;a href=&#34;https://medium.com/consensys-diligence/upgradeability-is-a-bug-dba0203152ce&#34;&gt;https://medium.com/consensys-diligence/upgradeability-is-a-bug-dba0203152ce&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[9] &lt;a href=&#34;https://en.wikipedia.org/wiki/Chicken_(game)&#34;&gt;https://en.wikipedia.org/wiki/Chicken_(game)&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[10] &lt;a href=&#34;https://www.coursera.org/lecture/mathematical-game-theory/shapley-value-and-core-gWuz9&#34;&gt;https://www.coursera.org/lecture/mathematical-game-theory/shapley-value-and-core-gWuz9&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[11] &lt;a href=&#34;https://en.wikipedia.org/wiki/Shapley_value&#34;&gt;https://en.wikipedia.org/wiki/Shapley_value&lt;/a&gt;&lt;/p&gt;
-</description>
-      
-    </item>
-    
-    <item>
-      <title>Don’t Test, Verify —— 哪个故事真正符合你对形式化验证的想象？</title>
-      <link>https://sec-bit.github.io/blog/2018/10/24/formal-verification-background/</link>
-      <pubDate>Wed, 24 Oct 2018 08:00:00 +0800</pubDate>
-      
-      <guid>https://sec-bit.github.io/blog/2018/10/24/formal-verification-background/</guid>
-      
-        <description>&lt;blockquote&gt;
-&lt;p&gt;世界上是否有一种技术可以保证计算机程序绝对安全，能够完全抵挡住黑客的进攻？&lt;/p&gt;
-&lt;/blockquote&gt;
-&lt;p&gt;&lt;em&gt;2015年夏天，一组黑客奉命对美国军方一款名为Little Bird的无人直升机发动电子攻击，目的是掌控无人机的控制权[1]。该攻击测试持续进行了几个月之久，在每次正式进攻开始前，黑客们占尽先机，他们已经被授权进入了该无人机系统的一部分子系统。接下来，黑客们要做的就是侵入这个无人机的飞行控制系统，从而完全掌握该无人机的控制权。在此次攻击测试刚开始的时候，黑客团队很容易就能侵入该无人机的控制系统。在接下来的一段时间内，来自美国国防部高级研究计划署（DARPA）的专家们重新开发了该无人机的核心控制程序，当该程序被部署到Little Bird上之后，黑客们对Little Bird重新发动攻击。在给定的六周时间内，黑客们使用了当今世界上所有的攻击手段，都未能攻破新部署的系统。&lt;/em&gt;&lt;/p&gt;
-&lt;p&gt;到底是什么技术给予了Little Bird超强的防御能力，从而使它阻挡了所有的攻击？答案就是：&lt;strong&gt;数学证明！&lt;/strong&gt;&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;./2-little-bird.jpg&#34; alt=&#34;Little Bird&#34;&gt;&lt;/p&gt;
-&lt;p&gt;&lt;strong&gt;通过数学证明来进行程序设计与验证的技术通称为形式化方法&lt;/strong&gt;。如果说这个世界上是否有一种技术可以保证计算机程序绝对安全，能够完全抵挡住黑客的进攻？答案已经呼之欲出了。&lt;/p&gt;
-&lt;p&gt;在区块链领域，据安比（SECBIT）实验室调查显示,仅2018年上半年就已经有大约&lt;strong&gt;11亿美元&lt;/strong&gt;的加密货币被盗，不仅如此，与区块链系统相关的漏洞（如以太坊中的智能合约漏洞）以及围绕加密货币的生态系统安全问题（如多个中心化交易所被盗）更是层出不穷。目前区块链系统中的相关漏洞，以及加密货币生态系统的安全问题归根结底是相关程序设计与实现的问题。以智能合约为例，其一经部署、发布便不能更改的特性，为形式化方法在区块链领域的应用探索提供了可能性。&lt;/p&gt;
-&lt;p&gt;形式化方法的核心思想由计算机科学先驱，1972年图灵奖获得者Edsger Dijkstra（大名鼎鼎的Dijkstra最短路径算法发明者）率先提出，其目的是&lt;strong&gt;通过严格的逻辑推理开发出正确且可靠的程序&lt;/strong&gt;，从而避免程序出现错误。如今大部分的计算机系统都通过软件测试来保证程序的正确性，然而正如Dijkstra所说的那样：“&lt;em&gt;程序测试能证明错误的存在,但不能证明错误不存在&lt;/em&gt;”。&lt;/p&gt;
-&lt;p&gt;人类已经在软件和硬件开发方面由于程序设计错误付出了十分惨痛的代价。1996年6月4日，雄心勃勃的欧洲航天局首次发射新一代重型航天运载火箭-阿丽亚娜5型（Ariane 5），欧洲航天局花费了约&lt;strong&gt;80亿美元&lt;/strong&gt;和&lt;strong&gt;9年时间&lt;/strong&gt;设计和研发该型运载火箭，虽然这是阿丽亚娜5型火箭的首次发射，欧洲航天局依然将价值不菲的卫星搭载到该火箭上。然而，火箭在发射仅仅37秒后便偏离了预定轨道，最终坠毁。经过详细调查，调查委员会认定火箭发射失败是由于控制惯性导航系统的计算机向箭载计算机发送了一个错误指令造成的，该&lt;strong&gt;错误指令是由将浮点数转换为整数造成溢出而产生的&lt;/strong&gt;。&lt;/p&gt;
-&lt;p&gt;无独有偶，2016年2月17日，日本将价值约3亿美元的天体观测卫星“瞳”发射至距离地面580公里的轨道上，大约五周之后，“瞳”与地面信息通信中断，并且逐步解体。“瞳”卫星上搭载了先进的X射线望远镜及检测器，科学家希望通过这些设备研究宇宙的起源。随着卫星的解体，原本设定的研究计划完全无法进行，给天文学的研究带来了巨大的损失。日本宇宙航空研究开发机构（JAXA）调查显示，事故发生的原因在于卫星底层软件系统的设计出现了问题，“瞳”的控制系统在发现卫星飞行姿态错位时启动了&lt;strong&gt;错误的调整命令&lt;/strong&gt;，导致推进器点火时朝向了相反的方向，进而使卫星产生了更加严重的自旋，在错误指令的操作下“瞳”最终解体。由于航天控制器对软件系统的安全性要求很高，我们国家已经将形式化方法用在验证玉兔号月球车相关控制系统的正确性上[2]。玉兔号月球车于2013年12月15日登陆月球，并且在月球表面生存工作了972天，超额完成了任务。此外，研究人员已经逐步对我国第一个自主研发的空间飞行器嵌入式实时操作系统SpaceOS进行安全性验证[3]。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;yutu.jpg&#34; alt=&#34;玉兔&#34;&gt;&lt;/p&gt;
-&lt;p&gt;1994年，数学教授Thomas Nicely在使用电脑进行大数除法运算时一直出错，经过调查，发现这个错误是由于英特尔（Intel）奔腾处理器存在漏洞-奔腾浮点除错误（Pentium FDIV bug）导致的,这个漏洞不仅使英特尔公司付出了5亿美元的代价，更加严重影响了英特尔的声誉。经过这次惨痛的教训，英特尔公司聘请剑桥大学专家Harrison用HOL证明器对芯片中的浮点运算器进行了形式化的验证，从而证明了新设计的浮点运算器的正确性[4]。时至今日，英特尔公司成立了专门形式化验证的小组专门对芯片的功能进行正确性验证。&lt;/p&gt;
-&lt;h2 id=&#34;什么是形式化方法&#34;&gt;什么是形式化方法&lt;/h2&gt;
-&lt;p&gt;&lt;strong&gt;形式化方法已经被运用到对软件和硬件安全要求很高的领域&lt;/strong&gt;。除了Intel公司之外，其他几家硬件巨头如AMD， NVIDIA 和 CADENCE都已经将形式化方法应用到产品设计与验证过程中。美国国家航空航天局（NASA）早已意识到形式化方法在设计航空航天控制系统中的重要作用，早在30年前就成立了专门的形式化方法小组。随着无人航天技术的发展，NASA对软硬件系统进行错误检测、诊断和预测的需求日益增多，形式化方法已经被NASA运用到系统规范，开发和验证全过程。为了促进形式化方法的研究，NASA每年都会举办形式化方法研讨会（NASA Formal Methods Symposium）[5]，NASA形式化方法研究团队一直在不断壮大，如今，其形式化研究小组的成员分布在NASA的六个研究中心，是NASA研发力量的一个重要组成部分。&lt;/p&gt;
-&lt;blockquote&gt;
-&lt;p&gt;形式化方法特指用来对软件和硬件系统进行&lt;strong&gt;规范&lt;/strong&gt;，&lt;strong&gt;设计&lt;/strong&gt;和&lt;strong&gt;验证&lt;/strong&gt;的数学理论及相关工具。&lt;/p&gt;
-&lt;/blockquote&gt;
-&lt;p&gt;其中，形式化规范  (formal specification) 通过&lt;strong&gt;数学语言&lt;/strong&gt;对系统的预期行为 (例如将数量 S 的 token 从账户 A 转移到账户 B) 和性质 (例如转账不会造成账户 B 额度的溢出) 进行严格和全面的定义。形式化规范往往定义了系统的正确性和安全性。&lt;/p&gt;
-&lt;p&gt;给定一个系统的形式化规范，我们即可以从规范出发开始迭代设计和实现出这个系统。在迭代的每一步中，我们可以通过精化 (refinement)、集成 (synthesis) 、形式化证明在内的一系列方法在数学上严格的保证迭代产生的系统和迭代前的规范或者系统保持一致。&lt;/p&gt;
-&lt;p&gt;除了从形式化规范出发设计和实现一个系统，我们也可以使用包括&lt;strong&gt;符号执行 (symbolic execution)&lt;/strong&gt;、&lt;strong&gt;模型检测 (model checking) &lt;strong&gt;和&lt;/strong&gt;形式化证明 (formal proving)&lt;/strong&gt; 在内的一系列方法验证已有的设计和实现与该规范保持一致。例如，对于一段智能合约程序，我们可以从它所有可能的输入 (例如函数参数的组合) 和初始状态 (例如状态变量初始值的组合) 出发，根据每条语句的语义，逐句推导出程序的所有可能的结束状态 (例如合约执行结束后的状态变量的值和产生的 event log)，并检查合约的所有输入、初始状态、结束状态的组合是否都和形式化规范保持一致。这里，所有的定义都是通过严格的数学语言描述，推导和检查也是严格的数学推导和证明。根据待验证的系统及其形式化规范的复杂程度，推导和证明即可以手工构造，也可能可以由机器自动产生。在实践中，&lt;strong&gt;推导&lt;/strong&gt;和&lt;strong&gt;证明&lt;/strong&gt;无法进行下去往往意味着设计和实现中存在不符合规范的 bug。通过分析推导和证明卡壳的位置和原因，往往可以定位出 bug 在设计和实现中具体位置和成因。&lt;/p&gt;
-&lt;h2 id=&#34;形式化方法的应用&#34;&gt;形式化方法的应用&lt;/h2&gt;
-&lt;p&gt;通过形式化方法对程序进行验证，需要在原程序的基础上增加相关的检查和证明语句，对程序添加证明是一件十分复杂的工作。在目前的软件开发实践中，软件测试比形式化方法更加广泛的应用到程序开发中。随着与形式化方法相关的技术不断发展，工业界已经开始使用形式化方法来开发和验证高度可靠的软件系统。&lt;/p&gt;
-&lt;p&gt;2009年，澳大利亚的科学家使用形式化方法对工业级操作系统seL4微内核进行了完整功能性验证[6]，这是世界上第一个没有漏洞的操作系统内核，能够完全防止系统崩溃或者恶意攻击。&lt;em&gt;微内核是操作系统的最小核心&lt;/em&gt;，其提供了底层位地址空间管理、进程间通信和调度等功能。与seL4微内核相关的信息可以在其官方网站上查看。此外，耶鲁大学的研究团队通过模块分层验证法（modular layered verification methods）也成功的研发了一个可以防范黑客攻击,并且支持并发操作的计算机操作系统CertiKOS[7]，CertiKOS具有极高的安全性和可靠性。中国科学技术大学软件安全实验室的研究人员也提出一个针对可抢占操作系统的形式化验证框架，并成功的应用在对商用嵌入式操作系统 uC/OS-II 的验证中，以数学证明的形式为其调度系统等主要模块的正确性提供了严格的证据[8]。美国国家自然科学基金（NSF）资助了美国多所顶尖大学进行形式化方法方面的研究，其中一个项目DeepSpec[9]目的在于为硬件和软件开发提供深度规范和验证，从而保证系统的安全性。&lt;/p&gt;
-&lt;p&gt;形式化验证技术还被用来设计和验证轨道交通系统，欧洲铁路安全标准（例如EN50128）要求使用形式化方法来确保系统设计满足相应的安全属性。一个典型的例子是Ansaldo-STS公司的开发人员在设计列车管理系统软件LDS时，使用形式化方法验证该系统安全逻辑的正确性[10]。&lt;/p&gt;
-&lt;p&gt;&lt;img src=&#34;proof.png&#34; alt=&#34;proof&#34;&gt;&lt;/p&gt;
-&lt;p&gt;在目前区块链安全事件频发的时期，&lt;strong&gt;将形式化方法应用到区块链领域有着非常现实的意义&lt;/strong&gt;。以太坊黑客攻击第一大案The DAO中，攻击者窃取了当时价值5500万美元的以太币，并且导致了以太坊的硬分叉。这之后，与以太坊智能合约相关的攻击一直在继续，2017年11月，以太坊Parity钱包由于被黑客攻击，导致用户损失了价值约为&lt;strong&gt;1.5亿美元&lt;/strong&gt;的数字资产。由于智能合约关键逻辑代码全都是开源的，并且代码直接与数字货币的操作相关，这就导致黑客们会不遗余力的寻找每一个智能合约代码中的漏洞，从而瞬间获得数额巨大的不义之财。&lt;em&gt;通过形式化方法对智能合约的行为进行精确地数学推理和证明，可以保证智能合约的行为符合开发者的设计意图，从而保证代码的安全性。&lt;/em&gt;&lt;/p&gt;
-&lt;p&gt;安比（SECBIT）实验室在应用形式化方法对智能合约进行安全验证方面走在世界前列，其率先完成了全球首个携带交互式形式化证明的智能合约库，并且将相关代码开源[11]。&lt;strong&gt;安比（SECBIT）实验室的研究员通过交互式定理证明工具 COQ，对 ERC20 智能合约中的一些高阶逻辑特性进行了证明&lt;/strong&gt;。经过证明的 ERC20合约具有以下特性：不存在溢出漏洞、所有账户余额的总和与totalSupply一致、Token中的总量不变、合约转账无法影响非相关账户余额等。此外，MakerDAO项目方发布了第一个经过形式化验证的去中心化应用程序（DApp）[12]，MakerDAO 是一个基于以太坊的智能合约平台，该平台提供了稳定币（stablecoin），抵押贷款（collateral loans），以及去中心化社区治理功能。为了保证所部署的智能合约的安全性，MakerDAO团队对抵押贷款（CDP）核心引擎合约代码通过K-Framewok进行了验证，因此而表明其智能合约程序满足预期的规范，相关证明代码可参考其项目库[13]。&lt;/p&gt;
-&lt;h2 id=&#34;结语&#34;&gt;结语&lt;/h2&gt;
-&lt;p&gt;由于区块链自身不可篡改的特点，智能合约在部署之前要确保没有bug，这与传统软件开发允许试错，快速迭代的特点十分不同；又由于区块链在金融领域的应用使得相关智能合约直接与数字资产绑定，而智能合约一旦被攻破，所有者的资产将化为乌有。&lt;strong&gt;基于数学证明的形式化方法为开发高可信的软件系统提供了有效的手段&lt;/strong&gt;。安比（SECBIT）实验室认为应用形式化方法对安全性要求非常高的智能合约系统进行开发和验证，能够切实解决区块链目前遇到的安全威胁。形式化方法要求对代码进行额外的推理证明，相比于基于测试的软件开发流程更加复杂，为了保证智能合约的安全，付出更多的努力是值得的。我们的后续文章将更加系统的介绍形式化验证及其在智能合约安全方面的应用。&lt;/p&gt;
-&lt;p&gt;参考文献&lt;/p&gt;
-&lt;p&gt;[1] COMPUTER SCIENTISTS CLOSE IN ON PERFECT, HACK-PROOF CODE, &lt;a href=&#34;https://www.wired.com/2016/09/computer-scientists-close-perfect-hack-proof-code/&#34;&gt;https://www.wired.com/2016/09/computer-scientists-close-perfect-hack-proof-code/&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[2] Shan, L., Wang, Y., Fu, N., Zhou, X., Zhao, L., Wan, L., Qiao, L. and Chen, J., 2014, May. Formal verification of lunar rover control software using UPPAAL. In International Symposium on Formal Methods (pp. 718-732). Springer, Cham.&lt;/p&gt;
-&lt;p&gt;[3] 乔磊, 杨孟飞, 谭彦亮, 蒲戈光 and 杨桦, 2017. 基于 Event-B 的航天器内存管理系统形式化验证. 软件学报, 28(5), pp.1204-1220.&lt;/p&gt;
-&lt;p&gt;[4] Formal Proofs of Floating-Point Algorithms, 2010, &lt;a href=&#34;https://www.cl.cam.ac.uk/~jrh13/slides/scan-28sep10/slides.pdf&#34;&gt;https://www.cl.cam.ac.uk/~jrh13/slides/scan-28sep10/slides.pdf&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[5] Tenth NASA Formal Methods Symposium, 2018, &lt;a href=&#34;https://shemesh.larc.nasa.gov/NFM2018/&#34;&gt;https://shemesh.larc.nasa.gov/NFM2018/&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[6] The seL4 Microkernel, &lt;a href=&#34;https://sel4.systems/&#34;&gt;https://sel4.systems/&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[7] Certified OS Kernels, &lt;a href=&#34;http://flint.cs.yale.edu/certikos/&#34;&gt;http://flint.cs.yale.edu/certikos/&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[8] Fengwei Xu, Ming Fu, Xinyu Feng, Xiaoran Zhang, Hui Zhang and Zhaohui Li. A Practical Verification Framework for Preemptive OS Kernels. Proc. 28th International Conference on Computer Aided Verification (CAV&#39;16).&lt;/p&gt;
-&lt;p&gt;[9] The science of Deep Specification, 2018, &lt;a href=&#34;https://deepspec.org/main&#34;&gt;https://deepspec.org/main&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[10] Cimatti, A., Corvino, R., Lazzaro, A., Narasamdya, I., Rizzo, T., Roveri, M., Sanseviero, A. and Tchaltsev, A., 2012, July. Formal verification and validation of ERTMS industrial railway train spacing system. In International Conference on Computer Aided Verification (pp. 378-393). Springer, Berlin, Heidelberg.&lt;/p&gt;
-&lt;p&gt;[11] Token Libraries with Proofs, 2018, &lt;a href=&#34;https://github.com/sec-bit/tokenlibs-with-proofs&#34;&gt;https://github.com/sec-bit/tokenlibs-with-proofs&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[12] The Code is Ready, 2018,  &lt;a href=&#34;https://medium.com/makerdao/the-code-is-ready-2aee2aa62e73&#34;&gt;https://medium.com/makerdao/the-code-is-ready-2aee2aa62e73&lt;/a&gt;&lt;/p&gt;
-&lt;p&gt;[13] k-dss, 2018, &lt;a href=&#34;https://github.com/dapphub/k-dss&#34;&gt;https://github.com/dapphub/k-dss&lt;/a&gt;&lt;/p&gt;
 </description>
       
     </item>
diff --git a/page/2/index.html b/page/2/index.html
index c341162..e3952df 100644
--- a/page/2/index.html
+++ b/page/2/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/">
-        从零开始学习 zk-SNARK（二）——多项式的非交互式零知识证明
+      <a class="post-link" href="/blog/2020/01/08/nizk-by-crs/">
+        云中「秘密」：构建非交互式零知识证明
       </a>
     </h1>
     
@@ -381,14 +381,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
+        郭宇
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2020-01-01">
-          2020-01-01
+        <time datetime=" 2020-01-08">
+          2020-01-08
         </time>
       </div>
     </div>
@@ -397,18 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/img/2/photo-1577387197563-bce8f7d18501.jpeg"><br>
+      <img src="/blog/2020/01/08/nizk-by-crs/img/private_eye.png"><br>
     </p>
 
     
     <div class="post-summary">
-      even@安比实验室:
-上一篇文章中，作者介绍了如何利用多项式的性质来证明某个多项式的知识，相信大家已经对构造证明有了一些基本的认识。目前的证明协议仍然存在一些缺陷，本文将会针对这些薄弱项进行改进，进而最终构造出关于多项式的零知识证明协议。本文重点：KEA，交互式零知识证明，非交互式零知识证明和
-Setup。
+      之前我们介绍了如何采用「随机预言机」来扮演一个虚拟的「第三方」角色，实现虚拟的「交互」与「随机挑战」。本文将深入讲述另一种方法实现非交互式零知识证明，即如何通过一段共享的字符串去除「交互」与「隐藏随机性」。这个字符串必须事先由「第三方」来随机产生，这就是传说中的「公共参考串」（Common Reference String，简称 CRS）。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/08/nizk-by-crs/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -423,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/">
-        从零开始学习 zk-SNARK（一）——多项式的性质与证明
+      <a class="post-link" href="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/">
+        零知识证明 Learn by Coding：libsnark 入门篇
       </a>
     </h1>
     
@@ -433,14 +431,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
+        p0n1
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-12-25">
-          2019-12-25
+        <time datetime=" 2020-01-03">
+          2020-01-03
         </time>
       </div>
     </div>
@@ -449,16 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/img/1_5tGItKaiCxwLAjYJaBRffg.png"><br>
+      <img src="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/img/cover.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      当我第一次了解到 zk-SNARK 技术是如何将这些东西完美地融合在一起的时候，就被数学之美震撼到了，并且随着我发现的维度越多，好奇心就越强烈。在这篇文章中，我主要就基于一些实例简洁明了地阐明 zk-SNARK ，并对这里面的很多问题做出了解释，并利用这种方式分享了我的经验，进而让更多人也能够欣赏到这项最先进的技术以及它的创新之处，最终欣赏到数学之美。
+      希望通过本系列文章，所有开发者都能亲自上手实践，在短时间内迅速入门 libsnark，一步步了解 libsnark 的基本概念，学会如何开发 zk-SNARKs 电路，完成证明的生成和验证，最终将零知识证明应用到真实业务中去。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/03/zkp-learn-by-coding-libsnark-101/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -473,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/12/19/onchain-privacy-and-mixer/">
-        链上富人寻「隐私」记（一：Mixer 篇）
+      <a class="post-link" href="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/">
+        从零开始学习 zk-SNARK（二）——多项式的非交互式零知识证明
       </a>
     </h1>
     
@@ -483,14 +481,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        p0n1
+        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-12-19">
-          2019-12-19
+        <time datetime=" 2020-01-01">
+          2020-01-01
         </time>
       </div>
     </div>
@@ -499,16 +497,18 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/12/19/onchain-privacy-and-mixer/img/silicon-valley.jpg"><br>
+      <img src="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/img/2/photo-1577387197563-bce8f7d18501.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      10 月底，在最爱的《橙皮书📙》公众号里看到了自己，心里却不是滋味，背后甚至有些发凉。Bowen 的一篇文章——「Top 10 DeFi 大户的链上人生」让我彻底暴露了。
+      even@安比实验室:
+上一篇文章中，作者介绍了如何利用多项式的性质来证明某个多项式的知识，相信大家已经对构造证明有了一些基本的认识。目前的证明协议仍然存在一些缺陷，本文将会针对这些薄弱项进行改进，进而最终构造出关于多项式的零知识证明协议。本文重点：KEA，交互式零知识证明，非交互式零知识证明和
+Setup。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/12/19/onchain-privacy-and-mixer/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2020/01/01/learn-zk-snark-from-zero-part-two/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -523,8 +523,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/11/07/zkp-learning-resources/">
-        零知识证明学习资源汇总
+      <a class="post-link" href="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/">
+        从零开始学习 zk-SNARK（一）——多项式的性质与证明
       </a>
     </h1>
     
@@ -533,14 +533,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        安比实验室
+        Maksym Petkus，翻译 & 注解：even@安比实验室（even@secbit.io）
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-11-07">
-          2019-11-07
+        <time datetime=" 2019-12-25">
+          2019-12-25
         </time>
       </div>
     </div>
@@ -549,16 +549,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/11/07/zkp-learning-resources/cover.jpeg"><br>
+      <img src="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/img/1_5tGItKaiCxwLAjYJaBRffg.png"><br>
     </p>
 
     
     <div class="post-summary">
-      本文收集了关于零知识证明的一些学习资料（包括科普文章、论文、开源仓库及相关学习网站等），并对这些资源进行了整理分析，希望能对大家有所帮助。
+      当我第一次了解到 zk-SNARK 技术是如何将这些东西完美地融合在一起的时候，就被数学之美震撼到了，并且随着我发现的维度越多，好奇心就越强烈。在这篇文章中，我主要就基于一些实例简洁明了地阐明 zk-SNARK ，并对这里面的很多问题做出了解释，并利用这种方式分享了我的经验，进而让更多人也能够欣赏到这项最先进的技术以及它的创新之处，最终欣赏到数学之美。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/11/07/zkp-learning-resources/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/12/25/learn-zk-snark-from-zero-part-one/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -573,8 +573,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/">
-        亚瑟王的「随机」挑战：从交互到非交互式零知识证明
+      <a class="post-link" href="/blog/2019/12/19/onchain-privacy-and-mixer/">
+        链上富人寻「隐私」记（一：Mixer 篇）
       </a>
     </h1>
     
@@ -583,14 +583,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        郭宇
+        p0n1
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-11-01">
-          2019-11-01
+        <time datetime=" 2019-12-19">
+          2019-12-19
         </time>
       </div>
     </div>
@@ -599,16 +599,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/cover.jpg"><br>
+      <img src="/blog/2019/12/19/onchain-privacy-and-mixer/img/silicon-valley.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      通过随机数挑战是交互式零知识证明的「信任根基」。但，「交互过程」会限制应用场景。如果能将交互式零知识证明变成「非交互」？这会非常非常激动人心。所谓的非交互可以看成是只有「一轮」的证明过程，即Alice 直接发一个证明给 Bob 进行验证。
+      10 月底，在最爱的《橙皮书📙》公众号里看到了自己，心里却不是滋味，背后甚至有些发凉。Bowen 的一篇文章——「Top 10 DeFi 大户的链上人生」让我彻底暴露了。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/12/19/onchain-privacy-and-mixer/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -661,6 +661,10 @@ <h1 class="post-title">
       <a href="/blog/page/5/">5</a>
     </li>
     
+    <li >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
   </ul>
 </nav>
 
diff --git a/page/3/index.html b/page/3/index.html
index ab81dff..312a993 100644
--- a/page/3/index.html
+++ b/page/3/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/">
-        如果量子计算时代到来，我们的比特币安全吗？
+      <a class="post-link" href="/blog/2019/11/07/zkp-learning-resources/">
+        零知识证明学习资源汇总
       </a>
     </h1>
     
@@ -381,14 +381,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        李画、郭宇
+        安比实验室
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-10-28">
-          2019-10-28
+        <time datetime=" 2019-11-07">
+          2019-11-07
         </time>
       </div>
     </div>
@@ -397,16 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/cover.jpg"><br>
+      <img src="/blog/2019/11/07/zkp-learning-resources/cover.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      量子时代的到来不可避免，巨大的变革将会带来无尽的机会，区块链、密码学与数字资产安全无疑是未来十年的焦点，请扔掉包袱，与我们一起前行。
+      本文收集了关于零知识证明的一些学习资料（包括科普文章、论文、开源仓库及相关学习网站等），并对这些资源进行了整理分析，希望能对大家有所帮助。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/11/07/zkp-learning-resources/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -421,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/08/28/extractor-and-proof-of-knowledge/">
-        读心术：从零知识证明中提取「知识」
+      <a class="post-link" href="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/">
+        亚瑟王的「随机」挑战：从交互到非交互式零知识证明
       </a>
     </h1>
     
@@ -437,8 +437,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-08-28">
-          2019-08-28
+        <time datetime=" 2019-11-01">
+          2019-11-01
         </time>
       </div>
     </div>
@@ -447,16 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/08/28/extractor-and-proof-of-knowledge/img/sxsw.jpg"><br>
+      <img src="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/cover.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      只有「知识」在存在的前提下，保证「零知识」才有意义。
+      通过随机数挑战是交互式零知识证明的「信任根基」。但，「交互过程」会限制应用场景。如果能将交互式零知识证明变成「非交互」？这会非常非常激动人心。所谓的非交互可以看成是只有「一轮」的证明过程，即Alice 直接发一个证明给 Bob 进行验证。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/08/28/extractor-and-proof-of-knowledge/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/11/01/from-interactive-zkp-to-non-interactive-zkp/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -471,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/">
-        从「模拟」理解零知识证明：平行宇宙与时光倒流
+      <a class="post-link" href="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/">
+        如果量子计算时代到来，我们的比特币安全吗？
       </a>
     </h1>
     
@@ -481,14 +481,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        郭宇
+        李画、郭宇
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-08-06">
-          2019-08-06
+        <time datetime=" 2019-10-28">
+          2019-10-28
         </time>
       </div>
     </div>
@@ -497,16 +497,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/img/plato-cave.jpeg"><br>
+      <img src="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/cover.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      相信很多人都听说过零知识证明，但是只有极少数人听说过模拟，然而模拟是理解零知识的关键。
+      量子时代的到来不可避免，巨大的变革将会带来无尽的机会，区块链、密码学与数字资产安全无疑是未来十年的焦点，请扔掉包袱，与我们一起前行。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/10/28/bitcoin-safety-in-the-coming-era-of-quantum-computing/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -521,8 +521,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/07/31/zero-knowledge-and-proof/">
-        初识「零知识」与「证明」
+      <a class="post-link" href="/blog/2019/08/28/extractor-and-proof-of-knowledge/">
+        读心术：从零知识证明中提取「知识」
       </a>
     </h1>
     
@@ -537,8 +537,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-31">
-          2019-07-31
+        <time datetime=" 2019-08-28">
+          2019-08-28
         </time>
       </div>
     </div>
@@ -547,16 +547,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/07/31/zero-knowledge-and-proof/img/showmeproof.jpg"><br>
+      <img src="/blog/2019/08/28/extractor-and-proof-of-knowledge/img/sxsw.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      要解释「零知识证明」，我们需要先解释「证明」，然后解释什么是「知识」，最后再解释什么是「零知识」。
+      只有「知识」在存在的前提下，保证「零知识」才有意义。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/07/31/zero-knowledge-and-proof/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/08/28/extractor-and-proof-of-knowledge/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -571,8 +571,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/">
-        zkSNARKs 合约库「输入假名」漏洞致众多零知项目存在安全风险
+      <a class="post-link" href="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/">
+        从「模拟」理解零知识证明：平行宇宙与时光倒流
       </a>
     </h1>
     
@@ -581,14 +581,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        p0n1
+        郭宇
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-29">
-          2019-07-29
+        <time datetime=" 2019-08-06">
+          2019-08-06
         </time>
       </div>
     </div>
@@ -597,16 +597,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/scalar_fix.png"><br>
+      <img src="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/img/plato-cave.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      大量零知识证明项目由于错误地使用了某个 zkSNARKs 合约库，引入「输入假名 (Input Aliasing) 」漏洞，可导致伪造证明、双花、重放等攻击行为发生，且攻击成本极低。众多以太坊社区开源项目受影响，其中包括三大最常用的 zkSNARKs 零知开发库 snarkjs、ethsnarks、ZoKrates，以及近期大热的三个混币（匿名转账）应用 hopper、Heiswap、Miximus。
+      相信很多人都听说过零知识证明，但是只有极少数人听说过模拟，然而模拟是理解零知识的关键。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/08/06/understand-zero-knowledge-proof-by-simulator/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -659,6 +659,10 @@ <h1 class="post-title">
       <a href="/blog/page/5/">5</a>
     </li>
     
+    <li >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
   </ul>
 </nav>
 
diff --git a/page/4/index.html b/page/4/index.html
index be59bdb..207bb3e 100644
--- a/page/4/index.html
+++ b/page/4/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/07/24/zkpod-explained-pod-tiny/">
-        PoD-Tiny——实现零信任交易的最简协议
+      <a class="post-link" href="/blog/2019/07/31/zero-knowledge-and-proof/">
+        初识「零知识」与「证明」
       </a>
     </h1>
     
@@ -387,8 +387,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-24">
-          2019-07-24
+        <time datetime=" 2019-07-31">
+          2019-07-31
         </time>
       </div>
     </div>
@@ -397,16 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/07/24/zkpod-explained-pod-tiny/pod-tiny-5.png"><br>
+      <img src="/blog/2019/07/31/zero-knowledge-and-proof/img/showmeproof.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      zkPoD 是一个全新的实现 ZKCP 目标的方案。目前 zkPoD 已经支持上 GB 的数据，支持低 TPS 公链，也支持高 TPS 联盟链；既支持二进制数据，也支持带有内部丰富类型与结构的表格数据。与传统的「受信第三方」相比，zkPoD 利用区块链来作为一个「Trustless 第三方」，实现了的「零信任公平交易」。本文介绍一个极简的 PoD 协议——PoD-Tiny，这个协议简化了很多问题，并不实用，但是可以帮助读者快速理解 PoD 的原理和面临的挑战。
+      要解释「零知识证明」，我们需要先解释「证明」，然后解释什么是「知识」，最后再解释什么是「零知识」。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/07/24/zkpod-explained-pod-tiny/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/07/31/zero-knowledge-and-proof/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -421,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/07/14/zkpod-short-intro/">
-        zkPoD：区块链，零知识证明与形式化验证，实现无中介、零信任的公平交易
+      <a class="post-link" href="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/">
+        zkSNARKs 合约库「输入假名」漏洞致众多零知项目存在安全风险
       </a>
     </h1>
     
@@ -431,14 +431,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        郭宇
+        p0n1
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-14">
-          2019-07-14
+        <time datetime=" 2019-07-29">
+          2019-07-29
         </time>
       </div>
     </div>
@@ -447,16 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/07/14/zkpod-short-intro/zkPoD.optimize.gif"><br>
+      <img src="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/scalar_fix.png"><br>
     </p>
 
     
     <div class="post-summary">
-      所谓「公平交易」是指买卖双⽅在不相识（不互信）的情况下，能够放⼼进⾏交易⽽⽆需担⼼对⽅作弊。如果交易顺利完成，则买家得到商品，同时卖家得到钱款；若协议中途任何⼀⽅退出，或任何⼀⽅作弊，协议都会保证另⼀⽅的利益不会受损。如何利用零知识证明 (ZKP) 与区块链来实现去中介的公平交易协议？
+      大量零知识证明项目由于错误地使用了某个 zkSNARKs 合约库，引入「输入假名 (Input Aliasing) 」漏洞，可导致伪造证明、双花、重放等攻击行为发生，且攻击成本极低。众多以太坊社区开源项目受影响，其中包括三大最常用的 zkSNARKs 零知开发库 snarkjs、ethsnarks、ZoKrates，以及近期大热的三个混币（匿名转账）应用 hopper、Heiswap、Miximus。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/07/14/zkpod-short-intro/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/07/29/the-input-aliasing-bug-caused-by-a-contract-library-of-zksnarks/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -471,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/">
-        Move语言：我眼中的 Libra 最大亮点
+      <a class="post-link" href="/blog/2019/07/24/zkpod-explained-pod-tiny/">
+        PoD-Tiny——实现零信任交易的最简协议
       </a>
     </h1>
     
@@ -487,8 +487,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-07-10">
-          2019-07-10
+        <time datetime=" 2019-07-24">
+          2019-07-24
         </time>
       </div>
     </div>
@@ -497,16 +497,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/cover1.png"><br>
+      <img src="/blog/2019/07/24/zkpod-explained-pod-tiny/pod-tiny-5.png"><br>
     </p>
 
     
     <div class="post-summary">
-      Libra 的一系列发布中，新的编程语言 Move 尤为吸人眼球。第一时间看了 Move 的白皮书，嗯，这也许才是未来智能合约语言该有的样子。
+      zkPoD 是一个全新的实现 ZKCP 目标的方案。目前 zkPoD 已经支持上 GB 的数据，支持低 TPS 公链，也支持高 TPS 联盟链；既支持二进制数据，也支持带有内部丰富类型与结构的表格数据。与传统的「受信第三方」相比，zkPoD 利用区块链来作为一个「Trustless 第三方」，实现了的「零信任公平交易」。本文介绍一个极简的 PoD 协议——PoD-Tiny，这个协议简化了很多问题，并不实用，但是可以帮助读者快速理解 PoD 的原理和面临的挑战。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/07/24/zkpod-explained-pod-tiny/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -521,8 +521,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/">
-        为什么说区块链是一座全新的博弈竞技场？
+      <a class="post-link" href="/blog/2019/07/14/zkpod-short-intro/">
+        zkPoD：区块链，零知识证明与形式化验证，实现无中介、零信任的公平交易
       </a>
     </h1>
     
@@ -531,14 +531,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        SECBIT Labs
+        郭宇
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2019-06-13">
-          2019-06-13
+        <time datetime=" 2019-07-14">
+          2019-07-14
         </time>
       </div>
     </div>
@@ -547,16 +547,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/cover.png"><br>
+      <img src="/blog/2019/07/14/zkpod-short-intro/zkPoD.optimize.gif"><br>
     </p>
 
     
     <div class="post-summary">
-      区块链到底有什么用？
+      所谓「公平交易」是指买卖双⽅在不相识（不互信）的情况下，能够放⼼进⾏交易⽽⽆需担⼼对⽅作弊。如果交易顺利完成，则买家得到商品，同时卖家得到钱款；若协议中途任何⼀⽅退出，或任何⼀⽅作弊，协议都会保证另⼀⽅的利益不会受损。如何利用零知识证明 (ZKP) 与区块链来实现去中介的公平交易协议？
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/07/14/zkpod-short-intro/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -571,8 +571,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/10/24/formal-verification-background/">
-        Don’t Test, Verify —— 哪个故事真正符合你对形式化验证的想象？
+      <a class="post-link" href="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/">
+        Move语言：我眼中的 Libra 最大亮点
       </a>
     </h1>
     
@@ -581,14 +581,14 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-author">
         
 <svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
-        SECBIT Labs
+        郭宇
         
       </div>
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-10-24">
-          2018-10-24
+        <time datetime=" 2019-07-10">
+          2019-07-10
         </time>
       </div>
     </div>
@@ -597,16 +597,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/10/24/formal-verification-background/2-little-bird.jpg"><br>
+      <img src="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/cover1.png"><br>
     </p>
 
     
     <div class="post-summary">
-      世界上是否有一种技术可以保证计算机程序绝对安全，能够完全抵挡住黑客的进攻？
+      Libra 的一系列发布中，新的编程语言 Move 尤为吸人眼球。第一时间看了 Move 的白皮书，嗯，这也许才是未来智能合约语言该有的样子。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/10/24/formal-verification-background/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/07/10/move-programming-language-the-highlight-of-libra/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -659,6 +659,10 @@ <h1 class="post-title">
       <a href="/blog/page/5/">5</a>
     </li>
     
+    <li >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
   </ul>
 </nav>
 
diff --git a/page/5/index.html b/page/5/index.html
index 4f18814..ec077c7 100644
--- a/page/5/index.html
+++ b/page/5/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="SECBIT Blog">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="SECBIT Blog">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -371,8 +371,8 @@
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/">
-        是谁控制了比特币，是你？还是钱包？BTC地址与交易原理剖析
+      <a class="post-link" href="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/">
+        为什么说区块链是一座全新的博弈竞技场？
       </a>
     </h1>
     
@@ -387,8 +387,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-09-29">
-          2018-09-29
+        <time datetime=" 2019-06-13">
+          2019-06-13
         </time>
       </div>
     </div>
@@ -397,16 +397,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/imgs/cover.jpeg"><br>
+      <img src="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/cover.png"><br>
     </p>
 
     
     <div class="post-summary">
-      安比（SECBIT）实验室在对数字钱包源码审计时，发现一个名为 pywallet 的比特币钱包开源库包含了一个严重缺陷。如果向 pywallet 生成的 OmniLayer 收款地址转账，将导致资产永久丢失。
+      区块链到底有什么用？
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2019/06/13/ethereum-the-unprecedented-arena-for-playing-cooperative-games/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -421,8 +421,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/">
-        Fomo3D 千万大奖获得者“特殊攻击技巧”完全揭露
+      <a class="post-link" href="/blog/2018/10/24/formal-verification-background/">
+        Don’t Test, Verify —— 哪个故事真正符合你对形式化验证的想象？
       </a>
     </h1>
     
@@ -437,8 +437,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-08-23">
-          2018-08-23
+        <time datetime=" 2018-10-24">
+          2018-10-24
         </time>
       </div>
     </div>
@@ -447,17 +447,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/cover.jpeg"><br>
+      <img src="/blog/2018/10/24/formal-verification-background/2-little-bird.jpg"><br>
     </p>
 
     
     <div class="post-summary">
-      Fomo3D 游戏第一轮正式结束，最终大奖由地址 0xa169 获得，奖金额高达 10,469.66 以太币。
-不少人轻易得出结论：获奖者平平无奇。
+      世界上是否有一种技术可以保证计算机程序绝对安全，能够完全抵挡住黑客的进攻？
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2018/10/24/formal-verification-background/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -472,8 +471,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/08/20/last-winner-of-lastwinner/">
-        Last Winner 的最后赢家 - 智能合约超大规模黑客攻击手法曝光
+      <a class="post-link" href="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/">
+        是谁控制了比特币，是你？还是钱包？BTC地址与交易原理剖析
       </a>
     </h1>
     
@@ -488,8 +487,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-08-20">
-          2018-08-20
+        <time datetime=" 2018-09-29">
+          2018-09-29
         </time>
       </div>
     </div>
@@ -498,16 +497,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/08/20/last-winner-of-lastwinner/pwn-v3.png"><br>
+      <img src="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/imgs/cover.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      Last Winner（类 Fomo3D）游戏大火，导致以太坊异常拥堵，Gas 费用暴涨。大量以太币资金入场。Last Winner 游戏合约存在大量非正常交易，并且伴随着大量合约的创建与自毁，与正常人类调用行为特征偏离很大，这引起了我们的高度警惕。
+      安比（SECBIT）实验室在对数字钱包源码审计时，发现一个名为 pywallet 的比特币钱包开源库包含了一个严重缺陷。如果向 pywallet 生成的 OmniLayer 收款地址转账，将导致资产永久丢失。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/08/20/last-winner-of-lastwinner/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2018/09/29/bitcoin-p2pk2-p2sh-addr-pywallet-bug/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -522,8 +521,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/08/03/worldcup-miner-dilemma/">
-        从世界杯小组赛消极比赛，到矿工博弈及共识算法，博弈论解释了一切
+      <a class="post-link" href="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/">
+        Fomo3D 千万大奖获得者“特殊攻击技巧”完全揭露
       </a>
     </h1>
     
@@ -538,8 +537,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-08-03">
-          2018-08-03
+        <time datetime=" 2018-08-23">
+          2018-08-23
         </time>
       </div>
     </div>
@@ -548,16 +547,17 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/08/03/worldcup-miner-dilemma/johnnash.jpg"><br>
+      <img src="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/cover.jpeg"><br>
     </p>
 
     
     <div class="post-summary">
-      诺贝尔经济学奖获得者约翰.纳什(John F. Nash)在他的博士论文中提出的“纳什均衡”概念，完全颠覆了传统经济学家的固有观念，因此“纳什均衡”对经济学的影响被类比为“DNA双螺旋结构对生物科学的影响”。纳什均衡提供了一种分析社会和经济参与者行为的工具，安比(SECBIT)实验室的研究员利用均衡的概念来揭示世界杯比赛中消极比赛、比特币系统中矿工挖矿博弈，以及共识系统所面临的挑战背后所蕴含的均衡模型。
+      Fomo3D 游戏第一轮正式结束，最终大奖由地址 0xa169 获得，奖金额高达 10,469.66 以太币。
+不少人轻易得出结论：获奖者平平无奇。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/08/03/worldcup-miner-dilemma/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2018/08/23/how-the-winner-got-fomo3d-prize-a-detailed-explanation/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -572,8 +572,8 @@ <h1 class="post-title">
 
   <header class="post-header">
     <h1 class="post-title">
-      <a class="post-link" href="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/">
-        ERC223及ERC827实现代码欠缺安全考虑
+      <a class="post-link" href="/blog/2018/08/20/last-winner-of-lastwinner/">
+        Last Winner 的最后赢家 - 智能合约超大规模黑客攻击手法曝光
       </a>
     </h1>
     
@@ -588,8 +588,8 @@ <h1 class="post-title">
       <div class="post-meta-item post-meta-time">
         
 <svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
-        <time datetime=" 2018-06-24">
-          2018-06-24
+        <time datetime=" 2018-08-20">
+          2018-08-20
         </time>
       </div>
     </div>
@@ -598,16 +598,16 @@ <h1 class="post-title">
   <div class="post-content">
 
     <p>
-      <img src="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/1.png"><br>
+      <img src="/blog/2018/08/20/last-winner-of-lastwinner/pwn-v3.png"><br>
     </p>
 
     
     <div class="post-summary">
-      ERC223, ERC827的部分实现代码引入了任意函数调用缺陷，可能会对使用这部分代码的合约带来安全漏洞。如果需要实现上述规范接口，请仔细检查实现代码。这种合约本身允许用户自定义 <code>call()</code> 任意地址上任意函数的设计，十分危险。攻击者可以很容易地借用当前合约的身份来进行<strong>任何操作</strong>，比如盗取Token或者绕开权限检查等。
+      Last Winner（类 Fomo3D）游戏大火，导致以太坊异常拥堵，Gas 费用暴涨。大量以太币资金入场。Last Winner 游戏合约存在大量非正常交易，并且伴随着大量合约的创建与自毁，与正常人类调用行为特征偏离很大，这引起了我们的高度警惕。
     </div>
 
     <div class="read-more">
-      <a role="button" href="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/" class="read-more-link outline">阅读全文</a>
+      <a role="button" href="/blog/2018/08/20/last-winner-of-lastwinner/" class="read-more-link outline">阅读全文</a>
     </div>
     
   </div>
@@ -660,6 +660,10 @@ <h1 class="post-title">
       <a href="/blog/page/5/">5</a>
     </li>
     
+    <li >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
   </ul>
 </nav>
 
diff --git a/page/6/index.html b/page/6/index.html
new file mode 100644
index 0000000..c427a4f
--- /dev/null
+++ b/page/6/index.html
@@ -0,0 +1,652 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/" />
+
+<link href="/blog/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="SECBIT Blog">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="SECBIT Blog">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="SECBIT Blog">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+<div class="home-container">
+  
+  
+  
+  
+  
+  
+  
+
+<section class="jane-card post">
+  
+
+  <header class="post-header">
+    <h1 class="post-title">
+      <a class="post-link" href="/blog/2018/08/03/worldcup-miner-dilemma/">
+        从世界杯小组赛消极比赛，到矿工博弈及共识算法，博弈论解释了一切
+      </a>
+    </h1>
+    
+    
+    <div class="post-meta-list">
+      <div class="post-meta-item post-meta-author">
+        
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+        SECBIT Labs
+        
+      </div>
+      <div class="post-meta-item post-meta-time">
+        
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+        <time datetime=" 2018-08-03">
+          2018-08-03
+        </time>
+      </div>
+    </div>
+  </header>
+  
+  <div class="post-content">
+
+    <p>
+      <img src="/blog/2018/08/03/worldcup-miner-dilemma/johnnash.jpg"><br>
+    </p>
+
+    
+    <div class="post-summary">
+      诺贝尔经济学奖获得者约翰.纳什(John F. Nash)在他的博士论文中提出的“纳什均衡”概念，完全颠覆了传统经济学家的固有观念，因此“纳什均衡”对经济学的影响被类比为“DNA双螺旋结构对生物科学的影响”。纳什均衡提供了一种分析社会和经济参与者行为的工具，安比(SECBIT)实验室的研究员利用均衡的概念来揭示世界杯比赛中消极比赛、比特币系统中矿工挖矿博弈，以及共识系统所面临的挑战背后所蕴含的均衡模型。
+    </div>
+
+    <div class="read-more">
+      <a role="button" href="/blog/2018/08/03/worldcup-miner-dilemma/" class="read-more-link outline">阅读全文</a>
+    </div>
+    
+  </div>
+
+</section>
+
+  
+  
+
+<section class="jane-card post">
+  
+
+  <header class="post-header">
+    <h1 class="post-title">
+      <a class="post-link" href="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/">
+        ERC223及ERC827实现代码欠缺安全考虑
+      </a>
+    </h1>
+    
+    
+    <div class="post-meta-list">
+      <div class="post-meta-item post-meta-author">
+        
+<svg aria-hidden="true" class="lucide lucide-user-round-pen hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M2 21a8 8 0 0 1 10.821-7.487"/><path d="M21.378 16.626a1 1 0 0 0-3.004-3.004l-4.01 4.012a2 2 0 0 0-.506.854l-.837 2.87a.5.5 0 0 0 .62.62l2.87-.837a2 2 0 0 0 .854-.506z"/><circle cx="10" cy="8" r="5"/></svg>
+        SECBIT Labs
+        
+      </div>
+      <div class="post-meta-item post-meta-time">
+        
+<svg aria-hidden="true" class="lucide lucide-calendar-days hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M8 2v4"/><path d="M16 2v4"/><rect width="18" height="18" x="3" y="4" rx="2"/><path d="M3 10h18"/><path d="M8 14h.01"/><path d="M12 14h.01"/><path d="M16 14h.01"/><path d="M8 18h.01"/><path d="M12 18h.01"/><path d="M16 18h.01"/></svg>
+        <time datetime=" 2018-06-24">
+          2018-06-24
+        </time>
+      </div>
+    </div>
+  </header>
+  
+  <div class="post-content">
+
+    <p>
+      <img src="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/1.png"><br>
+    </p>
+
+    
+    <div class="post-summary">
+      ERC223, ERC827的部分实现代码引入了任意函数调用缺陷，可能会对使用这部分代码的合约带来安全漏洞。如果需要实现上述规范接口，请仔细检查实现代码。这种合约本身允许用户自定义 <code>call()</code> 任意地址上任意函数的设计，十分危险。攻击者可以很容易地借用当前合约的身份来进行<strong>任何操作</strong>，比如盗取Token或者绕开权限检查等。
+    </div>
+
+    <div class="read-more">
+      <a role="button" href="/blog/2018/06/24/lacking-insights-in-erc223-erc827-implementation/" class="read-more-link outline">阅读全文</a>
+    </div>
+    
+  </div>
+
+</section>
+
+  
+
+
+  
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+<nav class="pagination">
+  <ul>
+    
+    <li >
+      <a href="/blog/">1</a>
+    </li>
+    
+    <li >
+      <a href="/blog/page/2/">2</a>
+    </li>
+    
+    <li >
+      <a href="/blog/page/3/">3</a>
+    </li>
+    
+    <li >
+      <a href="/blog/page/4/">4</a>
+    </li>
+    
+    <li >
+      <a href="/blog/page/5/">5</a>
+    </li>
+    
+    <li  class="active" >
+      <a href="/blog/page/6/">6</a>
+    </li>
+    
+  </ul>
+</nav>
+
+
+
+
+
+
+</div>
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+  <script src="https://polyfill.io/v3/polyfill.min.js?features=es6"></script>
+<script id="MathJax-script" async src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/post/241031-fri-binius/img/image-1.png b/post/241031-fri-binius/img/image-1.png
new file mode 100644
index 0000000..88321ba
Binary files /dev/null and b/post/241031-fri-binius/img/image-1.png differ
diff --git a/post/241031-fri-binius/img/image-2.png b/post/241031-fri-binius/img/image-2.png
new file mode 100644
index 0000000..72a4127
Binary files /dev/null and b/post/241031-fri-binius/img/image-2.png differ
diff --git a/post/241031-fri-binius/img/image.png b/post/241031-fri-binius/img/image.png
new file mode 100644
index 0000000..3481389
Binary files /dev/null and b/post/241031-fri-binius/img/image.png differ
diff --git a/post/241031-fri-binius/img/subspace-1.png b/post/241031-fri-binius/img/subspace-1.png
new file mode 100644
index 0000000..69fead8
Binary files /dev/null and b/post/241031-fri-binius/img/subspace-1.png differ
diff --git a/post/241031-fri-binius/index.html b/post/241031-fri-binius/index.html
new file mode 100644
index 0000000..ee33bd9
--- /dev/null
+++ b/post/241031-fri-binius/index.html
@@ -0,0 +1,605 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/post/241031-fri-binius/" />
+
+<link href="/blog/post/241031-fri-binius/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/post/241031-fri-binius/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="SECBIT Blog">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="SECBIT Blog">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="SECBIT Blog">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+<div id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  <div class="archive-title">
+    <h1>归档</h1>
+    <span class="archive-post-counter">
+      共计 2 篇文章
+    </span>
+  </div>
+  <section class="archive-group">
+    <div class="archive-group-title">
+      <h2 class="archive-year">2024</h2>
+    </div>
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  </section>
+</div>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/post/241031-fri-binius/index.xml b/post/241031-fri-binius/index.xml
new file mode 100644
index 0000000..f200965
--- /dev/null
+++ b/post/241031-fri-binius/index.xml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/post/241031-fri-binius/</link>
+    <description>Recent content on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <atom:link href="https://sec-bit.github.io/blog/post/241031-fri-binius/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/post/241031-fri-binius/page/1/index.html b/post/241031-fri-binius/page/1/index.html
new file mode 100644
index 0000000..868a29d
--- /dev/null
+++ b/post/241031-fri-binius/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/post/241031-fri-binius/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/post/241031-fri-binius/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/post/241031-fri-binius/">
+  </head>
+</html>
diff --git a/post/index.html b/post/index.html
index bb6f651..1ea96c3 100644
--- a/post/index.html
+++ b/post/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Posts">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Posts">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -387,6 +387,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
@@ -424,7 +428,7 @@
   <div class="archive-title">
     <h1>归档</h1>
     <span class="archive-post-counter">
-      共计 25 篇文章
+      共计 26 篇文章
     </span>
   </div>
   <section class="archive-group">
diff --git a/post/page/2/index.html b/post/page/2/index.html
index 249913f..cc8f660 100644
--- a/post/page/2/index.html
+++ b/post/page/2/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Posts">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Posts">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -387,6 +387,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
@@ -424,7 +428,7 @@
   <div class="archive-title">
     <h1>归档</h1>
     <span class="archive-post-counter">
-      共计 25 篇文章
+      共计 26 篇文章
     </span>
   </div>
   <section class="archive-group">
diff --git a/post/page/3/index.html b/post/page/3/index.html
index 3049455..07b58f2 100644
--- a/post/page/3/index.html
+++ b/post/page/3/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Posts">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Posts">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -387,6 +387,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
@@ -424,7 +428,7 @@
   <div class="archive-title">
     <h1>归档</h1>
     <span class="archive-post-counter">
-      共计 25 篇文章
+      共计 26 篇文章
     </span>
   </div>
   <section class="archive-group">
@@ -482,6 +486,21 @@ <h2 class="archive-year">2018</h2>
       </span>
     </div>
   </section>
+  <section class="archive-group">
+    <div class="archive-group-title">
+      <h2 class="archive-year">0001</h2>
+    </div>
+    <div class="archive-post">
+      <time datetime=" 0001-01-01" class="archive-post-time">
+        0001-01-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/post/241031-fri-binius/" class="archive-post-link">
+          
+        </a>
+      </span>
+    </div>
+  </section>
 </div>
 
 
diff --git a/sitemap.xml b/sitemap.xml
index 7a6de17..327cabe 100644
--- a/sitemap.xml
+++ b/sitemap.xml
@@ -4,14 +4,14 @@
   <sitemap>
     <loc>https://sec-bit.github.io/blog/zh-cn/sitemap.xml</loc>
     
-      <lastmod>2024-11-01T16:58:03+08:00</lastmod>
+      <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     
   </sitemap>
   
   <sitemap>
     <loc>https://sec-bit.github.io/blog/en/sitemap.xml</loc>
     
-      <lastmod>2024-11-01T17:05:24+08:00</lastmod>
+      <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     
   </sitemap>
   
diff --git a/tags/address/index.html b/tags/address/index.html
index 2d3fb28..372846b 100644
--- a/tags/address/index.html
+++ b/tags/address/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/binius/index.html b/tags/binius/index.html
new file mode 100644
index 0000000..711edec
--- /dev/null
+++ b/tags/binius/index.html
@@ -0,0 +1,608 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/tags/binius/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/tags/binius/" />
+
+<link href="/blog/tags/binius/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/tags/binius/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Binius">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Binius">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Binius">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">标签： Binius</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/tags/binius/index.xml b/tags/binius/index.xml
new file mode 100644
index 0000000..4471104
--- /dev/null
+++ b/tags/binius/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Binius on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/tags/binius/</link>
+    <description>Recent content in Binius on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/tags/binius/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/tags/binius/page/1/index.html b/tags/binius/page/1/index.html
new file mode 100644
index 0000000..307e640
--- /dev/null
+++ b/tags/binius/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/tags/binius/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/tags/binius/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/tags/binius/">
+  </head>
+</html>
diff --git a/tags/bitcoin/index.html b/tags/bitcoin/index.html
index e474b5c..32ed411 100644
--- a/tags/bitcoin/index.html
+++ b/tags/bitcoin/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/blockchain/index.html b/tags/blockchain/index.html
index 53de874..6e80fb8 100644
--- a/tags/blockchain/index.html
+++ b/tags/blockchain/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/common-reference-string/index.html b/tags/common-reference-string/index.html
index e84e286..07209a1 100644
--- a/tags/common-reference-string/index.html
+++ b/tags/common-reference-string/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/consensus/index.html b/tags/consensus/index.html
index 79542f3..fcc2ce3 100644
--- a/tags/consensus/index.html
+++ b/tags/consensus/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/cooperative-games/index.html b/tags/cooperative-games/index.html
index 5a3a58c..a9cfa89 100644
--- a/tags/cooperative-games/index.html
+++ b/tags/cooperative-games/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/crypto-wallet/index.html b/tags/crypto-wallet/index.html
index bc84bc8..e36f529 100644
--- a/tags/crypto-wallet/index.html
+++ b/tags/crypto-wallet/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/cryptography/index.html b/tags/cryptography/index.html
new file mode 100644
index 0000000..adcb8ca
--- /dev/null
+++ b/tags/cryptography/index.html
@@ -0,0 +1,608 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/tags/cryptography/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/tags/cryptography/" />
+
+<link href="/blog/tags/cryptography/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/tags/cryptography/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Cryptography">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Cryptography">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Cryptography">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">标签： Cryptography</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/tags/cryptography/index.xml b/tags/cryptography/index.xml
new file mode 100644
index 0000000..54e2ffd
--- /dev/null
+++ b/tags/cryptography/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Cryptography on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/tags/cryptography/</link>
+    <description>Recent content in Cryptography on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/tags/cryptography/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/tags/cryptography/page/1/index.html b/tags/cryptography/page/1/index.html
new file mode 100644
index 0000000..b83ff61
--- /dev/null
+++ b/tags/cryptography/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/tags/cryptography/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/tags/cryptography/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/tags/cryptography/">
+  </head>
+</html>
diff --git a/tags/dapp/index.html b/tags/dapp/index.html
index 4686e50..e0bbb7b 100644
--- a/tags/dapp/index.html
+++ b/tags/dapp/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/erc223/index.html b/tags/erc223/index.html
index 856d529..a57f133 100644
--- a/tags/erc223/index.html
+++ b/tags/erc223/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/erc827/index.html b/tags/erc827/index.html
index 084829d..40ed915 100644
--- a/tags/erc827/index.html
+++ b/tags/erc827/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/ethereum/index.html b/tags/ethereum/index.html
index 8ed7d4a..cbfff8c 100644
--- a/tags/ethereum/index.html
+++ b/tags/ethereum/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/extractor/index.html b/tags/extractor/index.html
index 71956ea..293e42f 100644
--- a/tags/extractor/index.html
+++ b/tags/extractor/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/facebook/index.html b/tags/facebook/index.html
index 5e2b4d3..2fa27db 100644
--- a/tags/facebook/index.html
+++ b/tags/facebook/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/fair-exchange/index.html b/tags/fair-exchange/index.html
index f87bbdd..2062eec 100644
--- a/tags/fair-exchange/index.html
+++ b/tags/fair-exchange/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/fiat-shamir/index.html b/tags/fiat-shamir/index.html
index a648476..264ad18 100644
--- a/tags/fiat-shamir/index.html
+++ b/tags/fiat-shamir/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/finite-fields/index.html b/tags/finite-fields/index.html
new file mode 100644
index 0000000..e385218
--- /dev/null
+++ b/tags/finite-fields/index.html
@@ -0,0 +1,608 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/tags/finite-fields/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/tags/finite-fields/" />
+
+<link href="/blog/tags/finite-fields/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/tags/finite-fields/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="Finite Fields">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="Finite Fields">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="Finite Fields">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">标签： Finite Fields</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/tags/finite-fields/index.xml b/tags/finite-fields/index.xml
new file mode 100644
index 0000000..ea958b4
--- /dev/null
+++ b/tags/finite-fields/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>Finite Fields on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/tags/finite-fields/</link>
+    <description>Recent content in Finite Fields on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/tags/finite-fields/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/tags/finite-fields/page/1/index.html b/tags/finite-fields/page/1/index.html
new file mode 100644
index 0000000..2752e0a
--- /dev/null
+++ b/tags/finite-fields/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/tags/finite-fields/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/tags/finite-fields/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/tags/finite-fields/">
+  </head>
+</html>
diff --git a/tags/fomo3d/index.html b/tags/fomo3d/index.html
index 2402161..80a301d 100644
--- a/tags/fomo3d/index.html
+++ b/tags/fomo3d/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/formal-verification/index.html b/tags/formal-verification/index.html
index c03ad47..b16bf3c 100644
--- a/tags/formal-verification/index.html
+++ b/tags/formal-verification/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/game-theory/index.html b/tags/game-theory/index.html
index 97a2030..ecd30d2 100644
--- a/tags/game-theory/index.html
+++ b/tags/game-theory/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/game/index.html b/tags/game/index.html
index 2162659..1c89fde 100644
--- a/tags/game/index.html
+++ b/tags/game/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/index.html b/tags/index.html
index 048271d..b6190ee 100644
--- a/tags/index.html
+++ b/tags/index.html
@@ -79,8 +79,8 @@
 
   <meta itemprop="name" content="Tags">
   <meta itemprop="description" content="SECBIT THE WORLD">
-  <meta itemprop="datePublished" content="2020-01-22T08:00:00+08:00">
-  <meta itemprop="dateModified" content="2024-11-01T16:58:03+08:00">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
   <meta name="twitter:card" content="summary">
   <meta name="twitter:title" content="Tags">
   <meta name="twitter:description" content="SECBIT THE WORLD">
@@ -375,7 +375,7 @@
     
     <div class="tag-cloud" style="padding: 5px 15px">
       <div class="tag-cloud-title">
-        共计 41 个标签
+        共计 45 个标签
       </div>
       <div class="tag-cloud-tags">
       
@@ -397,6 +397,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/tags/binius/"
+          style="font-size:1.366975813177339rem">binius</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/tags/bitcoin/"
           style="font-size:1.366975813177339rem">bitcoin</a>
         
@@ -463,6 +474,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/tags/cryptography/"
+          style="font-size:1.366975813177339rem">cryptography</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/tags/dapp/"
           style="font-size:1.366975813177339rem">dapp</a>
         
@@ -551,6 +573,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/tags/finite-fields/"
+          style="font-size:1.366975813177339rem">finite fields</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/tags/fomo3d/"
           style="font-size:1.366975813177339rem">fomo3d</a>
         
@@ -760,6 +793,17 @@
         
         
         
+        <a href="https://sec-bit.github.io/blog/tags/snark/"
+          style="font-size:1.366975813177339rem">snark</a>
+        
+      
+        
+        
+        
+        
+        
+        
+        
         <a href="https://sec-bit.github.io/blog/tags/tutorials/"
           style="font-size:2.0302313553994944rem">tutorials</a>
         
diff --git a/tags/index.xml b/tags/index.xml
index 4147e82..1984922 100644
--- a/tags/index.xml
+++ b/tags/index.xml
@@ -6,8 +6,36 @@
     <description>Recent content in Tags on SECBIT Blog</description>
     <generator>Hugo</generator>
     <language>zh-cn</language>
-    <lastBuildDate>Fri, 01 Nov 2024 16:58:03 +0800</lastBuildDate>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
     <atom:link href="https://sec-bit.github.io/blog/tags/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Binius</title>
+      <link>https://sec-bit.github.io/blog/tags/binius/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/tags/binius/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>Cryptography</title>
+      <link>https://sec-bit.github.io/blog/tags/cryptography/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/tags/cryptography/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>Finite Fields</title>
+      <link>https://sec-bit.github.io/blog/tags/finite-fields/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/tags/finite-fields/</guid>
+      <description></description>
+    </item>
+    <item>
+      <title>SNARK</title>
+      <link>https://sec-bit.github.io/blog/tags/snark/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/tags/snark/</guid>
+      <description></description>
+    </item>
     <item>
       <title>Tutorials</title>
       <link>https://sec-bit.github.io/blog/tags/tutorials/</link>
@@ -120,33 +148,5 @@
       <guid>https://sec-bit.github.io/blog/tags/extractor/</guid>
       <description></description>
     </item>
-    <item>
-      <title>Zero Knowledge</title>
-      <link>https://sec-bit.github.io/blog/tags/zero-knowledge/</link>
-      <pubDate>Wed, 28 Aug 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/tags/zero-knowledge/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>Simulator</title>
-      <link>https://sec-bit.github.io/blog/tags/simulator/</link>
-      <pubDate>Tue, 06 Aug 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/tags/simulator/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>Proof</title>
-      <link>https://sec-bit.github.io/blog/tags/proof/</link>
-      <pubDate>Wed, 31 Jul 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/tags/proof/</guid>
-      <description></description>
-    </item>
-    <item>
-      <title>Smart Contract</title>
-      <link>https://sec-bit.github.io/blog/tags/smart-contract/</link>
-      <pubDate>Mon, 29 Jul 2019 08:00:00 +0800</pubDate>
-      <guid>https://sec-bit.github.io/blog/tags/smart-contract/</guid>
-      <description></description>
-    </item>
   </channel>
 </rss>
diff --git a/tags/last-winner/index.html b/tags/last-winner/index.html
index 9223a3f..3a64472 100644
--- a/tags/last-winner/index.html
+++ b/tags/last-winner/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/libra/index.html b/tags/libra/index.html
index 152a326..a246612 100644
--- a/tags/libra/index.html
+++ b/tags/libra/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/libsnark/index.html b/tags/libsnark/index.html
index 34d85a2..8c629f7 100644
--- a/tags/libsnark/index.html
+++ b/tags/libsnark/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/miner/index.html b/tags/miner/index.html
index 250a651..ae4c3e7 100644
--- a/tags/miner/index.html
+++ b/tags/miner/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/mixer/index.html b/tags/mixer/index.html
index 898ad94..e19c315 100644
--- a/tags/mixer/index.html
+++ b/tags/mixer/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/nizk/index.html b/tags/nizk/index.html
index a90b3a5..8a37557 100644
--- a/tags/nizk/index.html
+++ b/tags/nizk/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/privacy/index.html b/tags/privacy/index.html
index f497210..733f5d9 100644
--- a/tags/privacy/index.html
+++ b/tags/privacy/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/programming-language/index.html b/tags/programming-language/index.html
index 1b0804e..704d5f2 100644
--- a/tags/programming-language/index.html
+++ b/tags/programming-language/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/proof/index.html b/tags/proof/index.html
index 2a795ab..e83974b 100644
--- a/tags/proof/index.html
+++ b/tags/proof/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/public-coin/index.html b/tags/public-coin/index.html
index d41328b..40b2aaf 100644
--- a/tags/public-coin/index.html
+++ b/tags/public-coin/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/quantum-computing/index.html b/tags/quantum-computing/index.html
index ca46ac0..456d18d 100644
--- a/tags/quantum-computing/index.html
+++ b/tags/quantum-computing/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/random-oracle-model/index.html b/tags/random-oracle-model/index.html
index cbda687..eb178d0 100644
--- a/tags/random-oracle-model/index.html
+++ b/tags/random-oracle-model/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/security/index.html b/tags/security/index.html
index 4881a90..cc90ef4 100644
--- a/tags/security/index.html
+++ b/tags/security/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/simulator/index.html b/tags/simulator/index.html
index 95fad32..975a9e9 100644
--- a/tags/simulator/index.html
+++ b/tags/simulator/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/smart-contract/index.html b/tags/smart-contract/index.html
index a10965f..f0b9663 100644
--- a/tags/smart-contract/index.html
+++ b/tags/smart-contract/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/snark/index.html b/tags/snark/index.html
new file mode 100644
index 0000000..0eec260
--- /dev/null
+++ b/tags/snark/index.html
@@ -0,0 +1,608 @@
+<!DOCTYPE html>
+<html lang="zh-cn" itemscope itemtype="http://schema.org/WebPage" data-theme="light">
+
+<head>
+  <meta charset="utf-8" />
+<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+<title>
+  SECBIT Blog
+  </title>
+
+
+<link rel="alternate" hreflang="en" href="https://sec-bit.github.io/blog/en/tags/snark/" />
+
+
+<meta name="renderer" content="webkit" />
+<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=yes" />
+
+<meta name="MobileOptimized" content="width" />
+<meta name="HandheldFriendly" content="true" />
+
+
+<meta name="applicable-device" content="pc,mobile">
+
+<meta name="color-scheme" content="light dark" />
+<meta name="msapplication-navbutton-color" content="#f8f5ec">
+<meta name="apple-mobile-web-app-capable" content="yes">
+<meta name="apple-mobile-web-app-status-bar-style" content="#f8f5ec">
+
+<meta name="mobile-web-app-capable" content="yes">
+
+<meta name="author" content="SECBIT Labs" />
+<meta name="description" content="SECBIT THE WORLD" />
+<meta name="keywords"
+  content="Blockchain, Smart Contract, Zero Knowledge Proof" />
+
+
+
+
+<meta name="generator" content="Hugo 0.136.5" />
+
+
+<link rel="canonical" href="https://sec-bit.github.io/blog/tags/snark/" />
+
+<link href="/blog/tags/snark/index.xml" rel="alternate" type="application/rss+xml" title="SECBIT Blog" />
+
+
+
+
+<link rel="icon" href="/blog/favicon.ico" />
+
+
+
+
+
+
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/style.min.5e5bee44735bed010b649d7ef0edd441cf2b54477f8a87d7bb6a056e674b0e54.css" integrity="sha256-XlvuRHNb7QELZJ1&#43;8O3UQc8rVEd/iofXu2oFbmdLDlQ=" media="screen"
+  crossorigin="anonymous">
+
+
+
+
+
+
+<link rel="stylesheet" href="/blog/css/">
+
+
+<meta property="og:url" content="https://sec-bit.github.io/blog/tags/snark/">
+  <meta property="og:site_name" content="SECBIT Blog">
+  <meta property="og:title" content="SNARK">
+  <meta property="og:description" content="SECBIT THE WORLD">
+  <meta property="og:locale" content="zh_cn">
+  <meta property="og:type" content="website">
+
+  <meta itemprop="name" content="SNARK">
+  <meta itemprop="description" content="SECBIT THE WORLD">
+  <meta itemprop="datePublished" content="2024-11-01T08:00:00+08:00">
+  <meta itemprop="dateModified" content="2024-11-01T20:31:26+08:00">
+  <meta name="twitter:card" content="summary">
+  <meta name="twitter:title" content="SNARK">
+  <meta name="twitter:description" content="SECBIT THE WORLD">
+
+<!--[if lte IE 9]>
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/classlist/1.1.20170427/classList.min.js"></script>
+<![endif]-->
+
+<!--[if lt IE 9]>
+  <script src="https://cdn.jsdelivr.net/npm/html5shiv@3.7.3/dist/html5shiv.min.js"></script>
+  <script src="https://cdn.jsdelivr.net/npm/respond.js@1.4.2/dest/respond.min.js"></script>
+<![endif]-->
+
+
+      <script async src="https://www.googletagmanager.com/gtag/js?id=G-CVGF90VYL2"></script>
+      <script>
+        var doNotTrack = false;
+        if ( false ) {
+          var dnt = (navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack);
+          var doNotTrack = (dnt == "1" || dnt == "yes");
+        }
+        if (!doNotTrack) {
+          window.dataLayer = window.dataLayer || [];
+          function gtag(){dataLayer.push(arguments);}
+          gtag('js', new Date());
+          gtag('config', 'G-CVGF90VYL2');
+        }
+      </script>
+
+
+
+<script>
+  (function () {
+    var savedTheme = localStorage.getItem('theme') || 'light';
+    document.documentElement.setAttribute('data-theme', savedTheme);
+  })();
+</script>
+
+</head>
+
+<body>
+  <div id="back-to-top"></div>
+
+  <header>
+    
+<div class="desktop-header">
+  <div class="desktop-header-logo">
+    <a href="/" class="logo">
+      
+      SECBIT Blog
+      
+    </a>
+  </div>
+
+  <nav class="desktop-navbar">
+    <ul id="menu" class="menu">
+      
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+
+        
+
+      </li>
+      
+      <li class="menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+
+        
+
+      </li>
+      
+
+      
+      <li class="menu-item">
+        
+        <a class="menu-item-link menu-parent menu-item-lang" href="#">
+          
+          
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+          中文
+        </a>
+        <ul class="submenu">
+          
+          
+          <li class="submenu-item">
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+          </li>
+          
+          
+          
+          
+        </ul>
+      </li>
+      
+
+      
+      <li class="menu-item">
+        <a id="openSearch" class="menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+    
+
+<div class="mobile-header">
+  <div id="mobile-navbar" class="mobile-navbar">
+    <div id="mobile-navbar-icon" class="mobile-navbar-icon">
+      
+<svg aria-hidden="true" class="lucide lucide-menu hi-svg-inline icon--menu" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><line x1="4" x2="20" y1="12" y2="12"/><line x1="4" x2="20" y1="6" y2="6"/><line x1="4" x2="20" y1="18" y2="18"/></svg>
+    </div>
+    <div class="mobile-navbar-logo">
+      <a href="/blog/%20/" class="logo">SECBIT Blog</a>
+    </div>
+  </div>
+
+  <div id="mobile-menu-close-modal" class="mobile-menu-close-modal"></div>
+  <nav id="mobile-menu" class="mobile-menu">
+    <ul class="mobile-menu-list">
+      <li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/">主页</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/post/">归档</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/tags/">标签</a>
+        
+        
+      </li><li class="mobile-menu-item">
+        
+        
+        
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/categories/">分类</a>
+        
+        
+      </li>
+      <li class="mobile-menu-item">
+        
+        <div class="mobile-menu-parent mobile-menu-item-lang">
+          <span class="mobile-submenu-open"></span>
+          <a href="#">
+            
+            
+<svg aria-hidden="true" class="lucide lucide-languages hi-svg-inline icon--languages" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="m5 8 6 6"/><path d="m4 14 6-6 2-3"/><path d="M2 5h12"/><path d="M7 2h1"/><path d="m22 22-5-10-5 10"/><path d="M14 18h6"/></svg>
+            中文
+            语言
+          </a>
+        </div>
+        <ul class="mobile-submenu-list">
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/en/">English</a>
+            
+          </li>
+          
+          <li>
+            
+            <a href="https://sec-bit.github.io/blog/"><strong>中文</strong></a>
+            
+          </li>
+          
+        </ul>
+      </li>
+
+      
+      <li class="mobile-menu-item">
+        <a id="openSearchMobile" class="mobile-menu-item-link menu-item-search" href="#">
+          
+<svg aria-hidden="true" class="lucide lucide-search hi-svg-inline icon--search" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="11" cy="11" r="8"/><path d="m21 21-4.3-4.3"/></svg>
+        </a>
+      </li>
+      
+
+      <li class="mobile-menu-item">
+        <a class="theme-toggle menu-item-link" href="javascript:void(0);">
+
+            
+<svg aria-hidden="true" class="lucide lucide-sun hi-svg-inline theme-icon-light" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><circle cx="12" cy="12" r="4"/><path d="M12 2v2"/><path d="M12 20v2"/><path d="m4.93 4.93 1.41 1.41"/><path d="m17.66 17.66 1.41 1.41"/><path d="M2 12h2"/><path d="M20 12h2"/><path d="m6.34 17.66-1.41 1.41"/><path d="m19.07 4.93-1.41 1.41"/></svg>
+
+            
+<svg aria-hidden="true" class="lucide lucide-moon hi-svg-inline theme-icon-dark" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M12 3a6 6 0 0 0 9 9 9 9 0 1 1-9-9Z"/></svg>
+
+        </a>
+      </li>
+
+      <li class="mobile-menu-item">
+        <a class="menu-item-link" href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml"
+          title="rss" target="_blank">
+          
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline icon--rss" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+        </a>
+        
+      </li>
+    </ul>
+  </nav>
+</div>
+
+  </header>
+
+  
+
+  
+
+
+
+  <main id="main" class="main pico container">
+    
+
+<section id="archive" class="archive">
+  
+  <div class="archive-categories">
+  <a role="button" href="/blog/post" class="outline archive-categories__link ">All</a>
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/bitcoin/" class="outline archive-categories__link ">bitcoin</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/blockchain/" class="outline archive-categories__link ">blockchain</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/ethereum/" class="outline archive-categories__link ">ethereum</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/formal-verification/" class="outline archive-categories__link ">formal verification</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/game-theory/" class="outline archive-categories__link ">game theory</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/libra/" class="outline archive-categories__link ">libra</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/programming-language/" class="outline archive-categories__link ">programming language</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/quantum-computing/" class="outline archive-categories__link ">quantum computing</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/smart-contract/" class="outline archive-categories__link ">smart contract</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/vulnerability/" class="outline archive-categories__link ">vulnerability</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zero-knowledge-proof/" class="outline archive-categories__link ">zero knowledge proof</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zkpod/" class="outline archive-categories__link ">zkpod</a>
+    
+  
+    
+      <a role="button" href="https://sec-bit.github.io/blog/categories/zksnarks/" class="outline archive-categories__link ">zksnarks</a>
+    
+  
+</div>
+
+
+  
+    
+      <div class="archive-title tag">
+        <h2 class="archive-name">标签： SNARK</h2>
+      </div>
+    
+  
+
+  
+    <div class="archive-post">
+      <time datetime=" 2024-11-01" class="archive-post-time">
+        2024-11-01
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/11/01/binius-02/" class="archive-post-link">
+          Notes on Binius (Part II): Subspace Polynomial
+        </a>
+      </span>
+    </div>
+  
+    <div class="archive-post">
+      <time datetime=" 2024-10-31" class="archive-post-time">
+        2024-10-31
+      </time>
+      <span class="archive-post-title">
+        <a href="/blog/2024/10/31/binius-01/" class="archive-post-link">
+          Notes on FRI-Binius (Part I): Binary Towers
+        </a>
+      </span>
+    </div>
+  
+</section>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  </main>
+
+  <footer id="footer" class="footer">
+    <div class="social-icon-links">
+  
+
+
+<a href="mailto:hi@secbit.io" rel="me noopener" class="social-icon-link" title="email" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1451 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M664.781909 681.472759 0 97.881301C0 3.997201 71.046997 0 71.046997 0L474.477909 0 961.649408 0 1361.641813 0C1361.641813 0 1432.688811 3.997201 1432.688811 97.881301L771.345323 681.472759C771.345323 681.472759 764.482731 685.154773 753.594283 688.65053L753.594283 688.664858C741.602731 693.493018 729.424896 695.068979 718.077952 694.839748 706.731093 695.068979 694.553173 693.493018 682.561621 688.664858L682.561621 688.65053C671.644501 685.140446 664.781909 681.472759 664.781909 681.472759L664.781909 681.472759ZM718.063616 811.603883C693.779541 811.016482 658.879232 802.205449 619.10784 767.734955 542.989056 701.759633 0 212.052267 0 212.052267L0 942.809523C0 942.809523 0 1024 83.726336 1024L682.532949 1024 753.579947 1024 1348.948139 1024C1432.688811 1024 1432.688811 942.809523 1432.688811 942.809523L1432.688811 212.052267C1432.688811 212.052267 893.138176 701.759633 817.019477 767.734955 777.248 802.205449 742.347691 811.03081 718.063616 811.603883L718.063616 811.603883Z"></path>
+</svg>
+
+</a>
+<a href="https://twitter.com/SECBIT_IO" rel="me noopener" class="social-icon-link" title="twitter"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1264 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M1229.8616 18.043658c0 0-117.852626 63.135335-164.151872 67.344358-105.225559-164.151872-505.082682-92.598492-437.738325 223.078185C278.622548 312.675223 89.216542 47.506814 89.216542 47.506814s-117.852626 189.406006 75.762402 345.139833C127.097743 396.85567 55.544363 371.601535 55.544363 371.601535S26.081207 535.753407 253.368414 615.724832c-21.045112 29.463156-113.643603 8.418045-113.643603 8.418045s25.254134 143.10676 231.496229 180.987961c-143.10676 130.479693-387.230056 92.598492-370.393967 105.225559 206.242095 189.406006 1119.599946 231.496229 1128.01799-643.98042C1179.353331 249.539887 1263.533778 123.269217 1263.533778 123.269217s-130.479693 37.881201-138.897738 33.672179C1225.652577 98.015083 1229.8616 18.043658 1229.8616 18.043658"></path>
+</svg>
+
+</a>
+<a href="https://github.com/sec-bit" rel="me noopener" class="social-icon-link" title="github"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M512 12.672c-282.88 0-512 229.248-512 512 0 226.261333 146.688 418.133333 350.08 485.76 25.6 4.821333 34.986667-11.008 34.986667-24.618667 0-12.16-0.426667-44.373333-0.64-87.04-142.421333 30.890667-172.458667-68.693333-172.458667-68.693333C188.672 770.986667 155.008 755.2 155.008 755.2c-46.378667-31.744 3.584-31.104 3.584-31.104 51.413333 3.584 78.421333 52.736 78.421333 52.736 45.653333 78.293333 119.850667 55.68 149.12 42.581333 4.608-33.109333 17.792-55.68 32.426667-68.48-113.706667-12.8-233.216-56.832-233.216-253.013333 0-55.893333 19.84-101.546667 52.693333-137.386667-5.76-12.928-23.04-64.981333 4.48-135.509333 0 0 42.88-13.738667 140.8 52.48 40.96-11.392 84.48-17.024 128-17.28 43.52 0.256 87.04 5.888 128 17.28 97.28-66.218667 140.16-52.48 140.16-52.48 27.52 70.528 10.24 122.581333 5.12 135.509333 32.64 35.84 52.48 81.493333 52.48 137.386667 0 196.693333-119.68 240-233.6 252.586667 17.92 15.36 34.56 46.762667 34.56 94.72 0 68.522667-0.64 123.562667-0.64 140.202666 0 13.44 8.96 29.44 35.2 24.32C877.44 942.592 1024 750.592 1024 524.672c0-282.752-229.248-512-512-512"></path>
+</svg>
+
+</a>
+<a href="https://www.zhihu.com/org/secbit/" rel="me noopener" class="social-icon-link" title="zhihu"  target="_blank" >
+  
+<svg aria-hidden="true" class="icon hi-svg-inline" fill="currentColor" height="1em" version="1.1" viewBox="0 0 1024 1024" width="1em" xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg">
+  <path d="M351.791182 562.469462l192.945407 0c0-45.367257-21.3871-71.939449-21.3871-71.939449L355.897709 490.530013c3.977591-82.182744 7.541767-187.659007 8.816806-226.835262l159.282726 0c0 0-0.86367-67.402109-18.578124-67.402109s-279.979646 0-279.979646 0 16.850783-88.141456 39.318494-127.053698c0 0-83.60514-4.510734-112.121614 106.962104S81.344656 355.077018 76.80834 367.390461c-4.536316 12.313443 24.62791 5.832845 36.941354 0 12.313443-5.832845 68.050885-25.924439 84.252893-103.69571l86.570681 0c1.165546 49.28652 4.596691 200.335724 3.515057 226.835262L109.86113 490.530013c-25.275663 18.147312-33.701566 71.939449-33.701566 71.939449L279.868105 562.469462c-8.497535 56.255235-23.417339 128.763642-44.275389 167.210279-33.05279 60.921511-50.55235 116.65793-169.802314 212.576513 0 0-19.442818 14.257725 40.829917 9.073656 60.273758-5.185093 117.305683-20.739347 156.840094-99.807147 20.553105-41.107233 41.805128-93.250824 58.386782-146.138358l-0.055259 0.185218 167.855986 193.263655c0 0 22.035876-51.847855 5.832845-108.880803L371.045711 650.610918l-42.1244 31.157627-0.045025 0.151449c11.69946-41.020252 20.11206-81.5749 22.726607-116.858498C351.665315 564.212152 351.72876 563.345412 351.791182 562.469462z"></path>
+  <path d="M584.918753 182.033893l0 668.840094 70.318532 0 28.807093 80.512708 121.875768-80.512708 153.600307 0L959.520453 182.033893 584.918753 182.033893zM887.150192 778.934538l-79.837326 0-99.578949 65.782216-23.537066-65.782216-24.855084 0L659.341766 256.673847l227.807403 0L887.149169 778.934538z"></path>
+</svg>
+
+</a>
+
+
+<a href="https://sec-bit.github.io/blog/index.xml" rel="noopener alternate" type="application/rss&#43;xml" class="social-icon-link" title="rss"
+  target="_blank">
+  
+<svg aria-hidden="true" class="lucide lucide-rss hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M4 11a9 9 0 0 1 9 9"/><path d="M4 4a16 16 0 0 1 16 16"/><circle cx="5" cy="19" r="1"/></svg>
+</a>
+
+</div>
+
+<div class="copyright">
+  <span class="power-by">
+    Powered by <a class="hexo-link" href="https://gohugo.io">Hugo</a>
+  </span>
+  <span class="division">|</span>
+  <span class="theme-info">
+    Theme - <a class="theme-link" href="https://github.com/xianmin/hugo-theme-jane">Jane</a>
+  </span>
+
+  <span class="copyright-year">
+    &copy;
+    
+    2018 -
+    2024
+    <span class="heart">
+      
+      <i class="iconfont">
+        
+<svg aria-hidden="true" class="lucide lucide-heart hi-svg-inline" fill="none" height="1em" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round" stroke-width="2" viewBox="0 0 24 24" width="1em" xmlns="http://www.w3.org/2000/svg"><path d="M19 14c1.49-1.46 3-3.21 3-5.5A5.5 5.5 0 0 0 16.5 3c-1.76 0-3 .5-4.5 2-1.5-1.5-2.74-2-4.5-2A5.5 5.5 0 0 0 2 8.5c0 2.3 1.5 4.05 3 5.5l7 7Z"/></svg>
+      </i>
+    </span><span class="author">
+      SECBIT Labs
+      
+    </span></span>
+
+  
+  
+
+  
+</div>
+
+  </footer>
+
+  
+
+
+
+
+<script type="text/javascript" src="/blog/js/main.030d3b354be764fb5e159ae3733f7696508bd3f2bba9dc28ab767fcaccd39230.js" integrity="sha256-Aw07NUvnZPteFZrjcz92llCL0/K7qdwoq3Z/yszTkjA=" crossorigin="anonymous"></script>
+
+
+
+
+
+
+
+
+
+
+
+
+  
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe.min.js"></script>
+    <script type="text/javascript" src="/blog/lib/photoswipe/photoswipe-ui-default.min.js"></script>
+  
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+  <script src="/blog/js/custom.js"></script>
+
+
+</body>
+
+</html>
diff --git a/tags/snark/index.xml b/tags/snark/index.xml
new file mode 100644
index 0000000..0c036ce
--- /dev/null
+++ b/tags/snark/index.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes"?>
+<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
+  <channel>
+    <title>SNARK on SECBIT Blog</title>
+    <link>https://sec-bit.github.io/blog/tags/snark/</link>
+    <description>Recent content in SNARK on SECBIT Blog</description>
+    <generator>Hugo</generator>
+    <language>zh-cn</language>
+    <lastBuildDate>Fri, 01 Nov 2024 20:31:26 +0800</lastBuildDate>
+    <atom:link href="https://sec-bit.github.io/blog/tags/snark/index.xml" rel="self" type="application/rss+xml" />
+    <item>
+      <title>Notes on Binius (Part II): Subspace Polynomial</title>
+      <link>https://sec-bit.github.io/blog/2024/11/01/binius-02/</link>
+      <pubDate>Fri, 01 Nov 2024 08:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/11/01/binius-02/</guid>
+      <description>FRI-Binus 论文 [DP24] 中讨论了基于 Subspace Polynomial 的 Additive FFT 算法，并给出了用奇偶项分解的视角来理解 [LCH14] 中的基于 Novel Polynomial Basis 的 Additive FFT 算法。本文直接介绍子空间多项式 Subspace Polynomial，然后据此介绍奇偶项分解视角的 Additive FFT 算法。本文省去了 Normalized Subspace Polynomial 的定义，方便读者理解。Normalization 只是影响 FFT 算法的性能，和本文介绍的简化版算法并没有本质的区别。</description>
+    </item>
+    <item>
+      <title>Notes on FRI-Binius (Part I): Binary Towers</title>
+      <link>https://sec-bit.github.io/blog/2024/10/31/binius-01/</link>
+      <pubDate>Thu, 31 Oct 2024 11:00:00 +0800</pubDate>
+      <guid>https://sec-bit.github.io/blog/2024/10/31/binius-01/</guid>
+      <description>二进制域拥有优美的内部结构，而 Binius 是意图充分利用这些内部结构，构造高效的 SNARK 证明系统。本文主要讨论 Binius 底层所依赖的 Binary Fields 以及 基于 Binary Fields 的 Extension Tower 的构造方法。Binary Fields 提供了更小的 Fields，并且兼容传统密码学中的各种工具构造，同时也可以充分利用硬件上的特殊指令的优化。选用 Extension Tower 优点主要有两个，一个是递归的 Extension 构造提供了一致的、增量式的 Basis 选择，从而使得 Small Field 可以以非常自然的方式嵌入到一个 Large Field 中，另一个优点是乘法和求逆运算存在高效的递归算法。</description>
+    </item>
+  </channel>
+</rss>
diff --git a/tags/snark/page/1/index.html b/tags/snark/page/1/index.html
new file mode 100644
index 0000000..eab5aca
--- /dev/null
+++ b/tags/snark/page/1/index.html
@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="zh-cn">
+  <head>
+    <title>https://sec-bit.github.io/blog/tags/snark/</title>
+    <link rel="canonical" href="https://sec-bit.github.io/blog/tags/snark/">
+    <meta name="robots" content="noindex">
+    <meta charset="utf-8">
+    <meta http-equiv="refresh" content="0; url=https://sec-bit.github.io/blog/tags/snark/">
+  </head>
+</html>
diff --git a/tags/tutorials/index.html b/tags/tutorials/index.html
index 6e6ddc4..e813df6 100644
--- a/tags/tutorials/index.html
+++ b/tags/tutorials/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/vulnerability/index.html b/tags/vulnerability/index.html
index 0420d31..55aa0e0 100644
--- a/tags/vulnerability/index.html
+++ b/tags/vulnerability/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/world-cup/index.html b/tags/world-cup/index.html
index f9509cd..a3a9f24 100644
--- a/tags/world-cup/index.html
+++ b/tags/world-cup/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/zero-knowledge-proof/index.html b/tags/zero-knowledge-proof/index.html
index 89f29f0..b15ff5f 100644
--- a/tags/zero-knowledge-proof/index.html
+++ b/tags/zero-knowledge-proof/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/zero-knowledge-proof/page/2/index.html b/tags/zero-knowledge-proof/page/2/index.html
index 8ebb55d..cef738c 100644
--- a/tags/zero-knowledge-proof/page/2/index.html
+++ b/tags/zero-knowledge-proof/page/2/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/zero-knowledge/index.html b/tags/zero-knowledge/index.html
index 14be343..c8c31ee 100644
--- a/tags/zero-knowledge/index.html
+++ b/tags/zero-knowledge/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/zkpod/index.html b/tags/zkpod/index.html
index f54fc91..b3f95f1 100644
--- a/tags/zkpod/index.html
+++ b/tags/zkpod/index.html
@@ -386,6 +386,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/tags/zksnarks/index.html b/tags/zksnarks/index.html
index 52a90dc..32f9da6 100644
--- a/tags/zksnarks/index.html
+++ b/tags/zksnarks/index.html
@@ -388,6 +388,10 @@
     
   
     
+      <a role="button" href="https://sec-bit.github.io/blog/categories/mle-pcs/" class="outline archive-categories__link ">mle-pcs</a>
+    
+  
+    
       <a role="button" href="https://sec-bit.github.io/blog/categories/privacy/" class="outline archive-categories__link ">privacy</a>
     
   
diff --git a/zh-cn/sitemap.xml b/zh-cn/sitemap.xml
index a36c356..6586adf 100644
--- a/zh-cn/sitemap.xml
+++ b/zh-cn/sitemap.xml
@@ -1,30 +1,79 @@
 <?xml-stylesheet type="text/xsl" href="https://sec-bit.github.io/sitemap.xsl"?>
 <urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
   
+  <url>
+    <loc>https://sec-bit.github.io/blog/tags/binius/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
   <url>
     <loc>https://sec-bit.github.io/blog/categories/</loc>
-    <lastmod>2024-11-01T16:58:03+08:00</lastmod>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/tags/cryptography/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/tags/finite-fields/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/categories/mle-pcs/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/2024/11/01/binius-02/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
     <loc>https://sec-bit.github.io/blog/post/</loc>
-    <lastmod>2024-11-01T16:58:03+08:00</lastmod>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
     <loc>https://sec-bit.github.io/blog/</loc>
-    <lastmod>2024-11-01T16:58:03+08:00</lastmod>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/tags/snark/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
   
   <url>
     <loc>https://sec-bit.github.io/blog/tags/</loc>
-    <lastmod>2024-11-01T16:58:03+08:00</lastmod>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
+  <url>
+    <loc>https://sec-bit.github.io/blog/2024/10/31/binius-01/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
     <changefreq>weekly</changefreq>
     <priority>0.5</priority>
   </url>
@@ -589,4 +638,11 @@
     <priority>0.5</priority>
   </url>
   
+  <url>
+    <loc>https://sec-bit.github.io/blog/post/241031-fri-binius/</loc>
+    <lastmod>2024-11-01T20:31:26+08:00</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.5</priority>
+  </url>
+  
 </urlset>