Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The story yesterday said you support addition, multiplication, and enough for Turing completeness.

Surely, that means you also support equality tests. With that, it’s easy to build a lookup table, and the whole thing devolves to a glorified Caesar cipher. (With a permutation function instead of a rotation.)

What security guarantees does this library provide? What’s the attacker model? I see nothing about this on the front page of your github repo, or in the press releases.

Edit: For instance, can it tolerate chosen plaintext attacks? In a naive scheme:

If an attacker can get the cipher text for “1”, then they can compute 1+1=2, giving them the ciphertext for 2, and then, inductively, all the natural numbers.



Not the author but hopefully I can shed some light on security aspects based on my current understanding.

The premise of FHE is that you send both data and code encrypted to a 3rd party system for execution and you can assume that an attacker has control of it. The attacker will see a series of seemingly random steps that mutate seemingly random data and send an encrypted response that can only be verified by the client. You don't have the answer in advance but you have a way of validating that the calculation was performed correctly as asked and the answer can be trusted. A statistical attack can be avoided since the client has the option to rotate the encryption keys without the 3rd party's knowledge although I'm not an expert so any mathematical comment is welcome.

My knowledge here is limited, but the short summary is that if done correctly FHE just looks like random execution on random data and that's what eliminates most attacks.


Encryptions are randomized, not deterministic.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: