Proof-Carrying Data (PCD) is a cryptographic primitive that enables a network of mutually distrustful parties to perform a distributed computation where the final output is accompanied by a succinct, incrementally verifiable proof of its entire computational history. Unlike a single verifiable computation, PCD allows each participant to receive inputs and proofs from predecessors, perform their local computation, and produce a new output with an updated proof that attests to the correctness of all prior steps without re-executing them.
Glossary
Proof-Carrying Data (PCD)

What is Proof-Carrying Data (PCD)?
A cryptographic primitive enabling mutually distrustful parties to perform distributed computations where each step produces an output accompanied by a proof of correctness that can be incrementally updated and verified by downstream participants.
PCD is fundamentally built on recursive proof composition, where a zero-knowledge proof attests to the validity of one or more previous proofs alongside the current computation step. This creates a chain of cryptographic evidence that travels with the data, allowing any verifier to check the integrity of the entire distributed computation by verifying only the final, constant-size proof. PCD is foundational to zk-rollups, decentralized oracle networks, and cross-chain interoperability protocols where computational integrity must be maintained across asynchronous, untrusted participants.
Key Properties of PCD
Proof-Carrying Data (PCD) is a cryptographic primitive that enables mutually distrustful parties to perform distributed computations where each step produces an output accompanied by a proof of correctness that can be incrementally updated and verified by subsequent participants.
Incremental Proof Composition
PCD enables recursive proof composition where each new computation step generates a proof that attests to both the correctness of the current step and the validity of all prior steps. This creates a chain of verifiable computation where the final proof is constant-size regardless of the total computation length.
- Each participant adds their computation and generates a new proof
- The proof size remains O(1) regardless of computation depth
- Enables unbounded distributed computation chains
Distributed Trust Model
PCD operates in a mutually distrustful setting where no participant needs to trust any other. Each party verifies the incoming proof before performing their computation and generating an updated proof. This eliminates the need for a central coordinator or trusted third party.
- Participants only need to trust the cryptographic assumptions
- No single party can forge or alter previous computation results
- Enables permissionless participation in computation pipelines
Succinct Verification
The final proof in a PCD chain can be verified in polylogarithmic time relative to the total computation, making verification extremely efficient. A verifier only needs to check a single, constant-size proof rather than re-executing the entire distributed computation.
- Verification time: O(log n) or better
- Proof size: typically a few hundred bytes
- No need to replay the entire computation history
Compliance Predicates
PCD uses compliance predicates—boolean functions that define what constitutes a valid state transition. Each participant must prove that their computation satisfies the predicate before the proof is accepted. This enforces protocol-level rules without relying on honest behavior.
- Predicates encode application-specific rules
- Invalid transitions are cryptographically rejected
- Enables complex multi-party protocols with guaranteed correctness
Privacy-Preserving Computation
PCD leverages zero-knowledge properties to allow participants to prove correct computation without revealing their private inputs or intermediate states. Each party sees only the public outputs and the validity proof, not the sensitive data of previous participants.
- Private inputs remain confidential throughout the chain
- Only designated public outputs are revealed
- Compatible with zk-SNARK and zk-STARK backends
Unbounded Recursion
Unlike simple recursive proof systems that may have depth limitations, PCD supports unbounded recursion through its incremental update mechanism. The proof can be extended indefinitely without degradation in security or increase in verification cost.
- No fixed limit on computation chain length
- Security remains constant regardless of depth
- Enables long-running distributed systems and payment channels
Frequently Asked Questions
Clear, technically precise answers to the most common questions about Proof-Carrying Data (PCD), its cryptographic foundations, and its role in enabling trustless, distributed computation.
Proof-Carrying Data (PCD) is a cryptographic primitive that enables mutually distrustful parties to perform a distributed computation where the final output is accompanied by a succinct, incrementally verifiable proof of its correctness. PCD works by wrapping both the output of a computation and a proof of that output's validity into a single object—the "proof-carrying data" itself—which can then be ingested as an input to the next step in the computation. Each new participant verifies the incoming PCD, performs their local computation, and generates a new PCD that attests to the correctness of their step and all prior steps. This recursive structure is built on recursive proof composition, where a zero-knowledge proof (typically a zk-SNARK) attests to the validity of one or more previous proofs. The result is a constant-size proof that a long, distributed computation was executed correctly from genesis to final output, without requiring any party to re-execute the entire history.
PCD vs. Related Cryptographic Primitives
Distinguishing Proof-Carrying Data from other verifiable computation and zero-knowledge paradigms based on structural and functional properties.
| Feature | Proof-Carrying Data | ZK-SNARK | Verifiable Computation |
|---|---|---|---|
Primary Purpose | Incrementally verifiable distributed computation | Prove knowledge of a witness for a specific NP statement | Outsource computation with verifiable results |
Proof Recursion Support | |||
Distributed Provers | |||
Incremental Updates | |||
Trusted Setup Required | Depends on underlying scheme | Typically yes (Groth16) | Depends on scheme |
Proof Size | Constant or logarithmic (via accumulation) | Constant (~200 bytes) | Varies |
Verification Complexity | Logarithmic or constant | Constant (3 pairings) | Polylogarithmic |
Post-Quantum Security | Depends on underlying scheme | Possible with STARK-based VC |
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Real-World Applications of PCD
Proof-Carrying Data (PCD) moves beyond theoretical cryptography to power scalable, trustless systems. These applications demonstrate how incrementally verifiable computation enables recursive proof composition across distributed, mutually distrustful participants.
Blockchain Scalability via Recursive Rollups
PCD is the cryptographic engine behind recursive ZK-rollups, where a single proof attests to the validity of an entire chain of state transitions. Instead of verifying every transaction, a validity proof is generated for a batch, and a subsequent proof verifies that proof, compressing an infinite number of computations into a constant-size proof. This enables horizontal scaling by parallelizing proof generation across many provers, each proving a slice of the execution trace, which are then recursively aggregated into one final proof posted to the Layer 1 chain.
Verifiable MapReduce for Distributed Computing
PCD enables verifiable distributed computing frameworks where the correctness of a massive parallelized computation can be proven without re-executing the entire job. In a MapReduce paradigm, each mapper produces a result with an attached proof of correct execution on its data shard. Reducers then combine these results and generate a new proof that attests to the validity of the aggregation step and all underlying mapper proofs. The final output is a single proof verifying the entire distributed pipeline, allowing a weak client to outsource computation to an untrusted server farm and verify the result in milliseconds.
Compliance in Private Financial Settlements
In interbank settlement networks, PCD reconciles the conflict between transaction privacy and regulatory compliance. Each bank in a payment chain can apply its proprietary compliance rules (e.g., sanctions screening) to a transaction locally, producing a proof that the check passed without revealing the sensitive customer data that was screened. This proof is carried forward with the payment. A downstream bank or regulator can verify the incremental proof chain to confirm that every institution in the flow executed the required compliance checks correctly, without ever seeing the underlying transaction details or the internal rule sets of other banks.
Autonomous Agent Swarms with Verifiable History
Multi-agent systems require agents to make decisions based on the actions of other agents they do not trust. PCD provides a verifiable execution lineage for agent swarms. When Agent A performs an action (e.g., executing a trade or bidding in an auction), it generates a proof of correct execution according to its public policy. Agent B, before acting on this information, verifies Agent A's proof and folds it into its own proof for its subsequent action. This creates an unforgeable, incrementally verifiable audit trail of the entire swarm's decision graph, enabling trustless coordination without a central arbiter.
zkML: Verifiable AI Inference Pipelines
PCD enables verifiable machine learning (zkML) pipelines where a complex, multi-stage inference can be proven correct without revealing the model weights or the input data. Consider a medical diagnosis pipeline: a scan is processed by a proprietary tumor detection model, then a classification model, then a report generator. Using PCD, each stage produces a proof of correct execution. These are recursively composed into a single proof that verifies the entire pipeline ran correctly on the given input, allowing a patient to receive a cryptographically verified diagnosis without the hospital exposing its proprietary AI models or the patient revealing their medical images.
Censorship-Resistant Content Propagation
In decentralized social networks, PCD enables verifiable moderation without a central censor. A content post carries a proof that it complies with a published community moderation policy. As the post propagates through relay nodes, each node verifies the incoming proof and generates a new proof attesting that it performed its own moderation check (e.g., spam filtering) before forwarding. A user receiving the post can verify the chain of compliance proofs to confirm it passed all community rules without trusting any single relay. This decouples moderation from centralized platforms, making content propagation censorship-resistant while maintaining community standards.

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us