How Does Aztec Network Work?

L2|Risk C+|7 mechanisms|5 interactions

Aztec Network is a privacy-focused Ethereum Layer 2 ZK rollup where all transactions are encrypted using zkSNARKs. Backed by $119M in funding from a16z and Paradigm, with Vitalik Buterin as a supporter, it launched its Ignition Chain in November 2025 as the first decentralized L2 with 3,400+ sequencers from day one. Its C+ grade reflects the high novelty of its privacy-preserving architecture (Noir programming language, encrypted execution, privacy bridge) which creates a wider attack surface than standard rollups, combined with regulatory uncertainty given the Tornado Cash precedent. The network has strong documentation and active development, but the combination of novel cryptography, a new programming language, and regulatory risk drive the elevated assessment.

TVL

Sector

L2

Risk Grade

C+

Value Grade

D-

Core Mechanisms

7.4 ZK Rollup

Novel

Privacy-preserving ZK rollup — all transactions encoded as zkSNARKs with encrypted state, batched into rollup proofs posted to Ethereum

Fundamentally novel: combines ZK rollup scaling with full transaction encryption. Each transaction is a zkSNARK; batches are compressed into a further 'rollup' zkSNARK. No other production L2 provides this level of privacy.

7.2 Sequencer

Decentralized sequencer set with 3,400+ nodes across 185+ operators, hardcoded into the base protocol

Decentralized sequencing from day one is uncommon but the mechanism (committee-based sequencing) is not novel per se. The integration with privacy-preserving execution is the novel aspect.

8.4 Private Execution Environment

Novel

Noir-based private smart contract execution — contracts have both private and public state, with private state shielded by ZK proofs

Novel private execution model. Contracts can have encrypted state that is only visible to authorized parties. Noir is a purpose-built ZK programming language. No equivalent exists at production scale.

6.1 Bridge / Lock-and-Mint

Novel

Privacy-preserving bridge between Ethereum and Aztec — deposits and withdrawals maintain privacy guarantees

Bridge design must handle both the rollup proof verification and privacy guarantees. Previous Aztec Connect (sunset 2024) had $17M TVL with 100K+ wallets, demonstrating demand.

5.1 Governance Token

AZTEC token for sequencer staking, governance voting, and network participation. 10.35B max supply.

Standard governance token. Unique: sequencers are the sole actors permitted to deposit into the Governance contract, giving them a central governance role.

5.4 Sequencer Governance

Sequencer-led governance — sequencers vote on and implement protocol upgrades independently, with configurable upgrade delay windows

Sequencer-centric governance is somewhat unusual but not fundamentally novel. Configurable delay windows flagged as medium centralization risk.

7.6 ZK Proving System

PLONK-based proving system with recursive proof composition for batching individual transaction proofs into rollup proofs

PLONK is an established ZK proving scheme. Recursive proof composition for rollup batching is the standard approach for ZK rollups.

How the Pieces Interact

Privacy-Preserving ZK ExecutionPrivacy BridgeHigh

Bugs in the ZK proving system could allow creation of invalid proofs that pass verification, potentially enabling unauthorized fund extraction through the bridge. The encrypted state makes it harder to detect such exploits through standard monitoring.

Noir Private Smart ContractsPrivacy-Preserving ZK ExecutionHigh

Noir is a new programming language with limited battle-testing. Smart contract vulnerabilities in Noir contracts are harder to detect because the execution is private — standard EVM security auditing tools and monitoring infrastructure do not apply.

Sequencer-Led GovernanceAZTEC Token StakingMedium

Sequencers have unique governance powers (sole actors who can deposit into the Governance contract). If sequencer stake concentrates among a small number of operators, governance could become captured by a minority of large stakers.

Privacy FeaturesRegulatory EnvironmentMedium

Privacy-preserving transactions create regulatory uncertainty. If regulators classify Aztec similarly to Tornado Cash, the network could face sanctions, exchange delistings, or restrictions that limit adoption and token liquidity.

Configurable Upgrade Delay WindowsDecentralized Sequencer SetMedium

Configurable upgrade delays could allow rapid protocol changes if the sequencer governance agrees. While decentralized, the ability to quickly upgrade software could be exploited if sequencer governance is captured.

What Could Go Wrong

  1. Aztec uses a novel privacy-preserving ZK rollup architecture where all transactions are encrypted as zkSNARKs. While this provides strong privacy guarantees, the cryptographic complexity introduces a wider attack surface compared to standard rollups — bugs in the proving system could compromise both privacy and fund safety.
  2. The Noir programming language and Aztec's private execution environment are novel systems with limited production history. Smart contracts on Aztec operate fundamentally differently from EVM contracts, meaning the existing DeFi security tooling (auditors, formal verification tools, monitoring) has limited coverage.
  3. Aztec's privacy features may create regulatory challenges. Privacy-preserving L2s face increased scrutiny from regulators concerned about money laundering and sanctions evasion, as demonstrated by the Tornado Cash enforcement action. This regulatory uncertainty could affect the network's ability to attract institutional users and exchange listings.
  4. The network launched with decentralized sequencing from day one (185+ operators, 3,400+ sequencers), but the governance and upgrade mechanisms are still maturing. Configurable upgrade delay windows have been flagged as a medium centralization risk by L2BEAT.

ZK Proving System Soundness Failure

Moderate

Trigger: A soundness bug is discovered in Aztec's PLONK-based proving system that allows creation of valid-looking proofs for invalid state transitions, enabling unauthorized fund extraction through the privacy bridge

  1. 1.Attacker discovers a soundness vulnerability in the ZK proving system that allows forging valid proofs for invalid state transitions Can create proofs that pass on-chain verification but represent fabricated balances or unauthorized transfers
  2. 2.Attacker generates forged proofs to withdraw funds from the Aztec bridge that exceed their actual balance Bridge reserves on Ethereum are drained; the encrypted state makes the attack harder to detect through standard monitoring
  3. 3.Community discovers the exploit through bridge reserve depletion; encrypted state makes it difficult to determine exactly which balances are affected Panic withdrawal attempts; remaining bridge reserves insufficient to cover all legitimate users
  4. 4.AZTEC token price collapses; 3,400+ sequencers face slashing risk or economic losses; regulatory scrutiny intensifies Privacy L2 narrative damaged across the industry; Aztec faces potential years of recovery to rebuild cryptographic trust
See all 2 collapse scenarios in the full risk report →

Risk Profile at a Glance

Mechanism Novelty9/15
Interaction Severity6/20
Oracle Surface0/10
Documentation Gaps2/10
Track Record6/15
Scale Exposure5/10
Regulatory Risk6/10
Vitality Risk6/10
C+

Overall: C+ (40/100)

Lower score = safer

More on Aztec Network

Is Aztec Network Safe?

Safety analysis

Is Aztec Network a Good Investment?

Value analysis

Full Risk Report

All mechanisms & interactions

Related L2 Explainers

How Does MegaETH Work?CHow Does BOB (Build on Bitcoin) Work?CHow Does Fuel Network Work?CHow Does Blast Work?CHow Does Movement Work?C