Zero-knowledge proof (ZKP) generation incurs substantial computational overhead, necessitating efficient outsourcing mechanisms for applications such as ZK-Rollups; however, existing markets lack formal modeling and incentive guarantees. Method: We propose the first formal ZKP market model characterizing the interaction between users submitting proof tasks and provers bidding to generate proofs. We design $Proovarphi$, an incentive-compatible and budget-balanced auction mechanism inspired by the Vickrey–Clarke–Groves (VCG) framework and integrated with cryptographic protocols. To enhance robustness, we systematically incorporate defenses against Sybil attacks, capacity overbidding, and collusion. Contribution/Results: We formally prove $Proovarphi$’s incentive compatibility and budget balance. Analysis demonstrates its effectiveness in mitigating multiple real-world security threats. Our work establishes the first deployable, robust market infrastructure for ZKP outsourcing, bridging a critical gap between theory and practice in verifiable computation markets.

Zero-knowledge proofs (ZKPs) are computationally demanding to generate. Their importance for applications like ZK-Rollups has prompted some to outsource ZKP generation to a market of specialized provers. However, existing market designs either do not fit the ZKP setting or lack formal description and analysis. In this work, we propose a formal ZKP market model that captures the interactions between users submitting ZKP tasks and provers competing to generate proofs. Building on this model, we introduce $Proovarphi$, an auction-based ZKP market mechanism. We prove that $Proovarphi$ is incentive compatible for users and provers, and budget balanced. We augment $Proovarphi$ with system-level designs to address the practical challenges of our setting, such as Sybil attacks, misreporting of prover capacity, and collusion. We analyze our system-level designs and show how they can mitigate the various security concerns.