github/zk-fhe
1
1
Fork 0
mirror of https://github.com/enricobottazzi/zk-fhe.git synced 2026-01-09 13:18:04 -05:00
Code Issues Packages Projects Releases Wiki Activity
28 Commits 3 Branches 0 Tags
242d4ef9d87d7900b8bdc8867a2852108ac9cd69
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Enrico Bottazzi 242d4ef9d8 chore: update rust-toolchain
2023-11-14 12:26:16 +03:00
configs
Add constraints on m (#9)
2023-11-08 18:27:21 +09:00
data
fix: bug on range of coefficients of pk0_u and pk1_u
2023-10-05 17:39:54 +02:00
examples
Add constraints on m (#9)
2023-11-08 18:27:21 +09:00
src
Add constraints on m (#9)
2023-11-08 18:27:21 +09:00
.gitignore
Add constraints on m (#9)
2023-11-08 18:27:21 +09:00
Cargo.toml
Feature/init (#1)
2023-10-01 21:13:50 +09:00
LICENSE
Initial commit
2023-09-25 08:43:29 +02:00
README.md
Add constraints on m (#9)
2023-11-08 18:27:21 +09:00
rust-toolchain
chore: update rust-toolchain
2023-11-14 12:26:16 +03:00

README.md

zk-fhe

Zk proving the correct execution of encryption operation under BFV Fully Homomorphic Encryption scheme

Implementation based on Revisiting Homomorphic Encryption Schemes for Finite Fields

The application is not production ready and is only meant to be used for educational purposes.

Quick Start

Mock Prover

LOOKUP_BITS=8 cargo run --example bfv -- --name bfv -k 9 --input bfv.in mock

The MockProver does not run the cryptographic prover on your circuit, but instead directly checks if constraints are satisfied. This is useful for testing purposes, and runs faster than the actual prover.

  • LOOKUP_BITS, in the backend build a lookup table filled with value in the range [0, 2**LOOKUP_BITS)
  • bfv is the name of the circuit located in examples/bfv.rs
  • bfv.in is the input file for the circuit located in data/bfv.in. This test vector file can be generated for different encryption using bfv-py
  • -k is the DEGREE of the circuit as you specify to set the circuit to have 2^k number of rows. The number of rows is determined by the number of constraints in the circuit. Working with larger data inputs will require a larger degree.

Key Generation

LOOKUP_BITS=8 cargo run --example bfv -- --name bfv -k 9 --input bfv.in keygen

To generate a random universal trusted setup (for testing only!) and the proving and verifying keys for your circuit.

For technical reasons (related to axiom Halo2-scaffold), keygen still requires an input file of the correct format. You can use the same input file as for the prover. But be aware that the actual input data are not encoded in the key generation.

This will generate a proving key data/bfv.pk and a verifying key data/bfv.vk. It will also generate a file configs/bfv.json which describes (and pins down) the configuration of the circuit. This configuration file is later read by the prover.

Proof Generation

LOOKUP_BITS=8 cargo run --example bfv -- --name bfv -k 9 --input bfv.in prove

This creates a SNARK proof, stored as a binary file data/bfv.snark, using the inputs read (by default) from data/halbfvo2_lib.in``. You can specify a different input file with the option --input filename.in, which would look for a file at data/filename.in``.

Using the same proving key, you can generate proofs for the same ZK circuit on different inputs using this command.

Proof Verification

LOOKUP_BITS=8 cargo run --example bfv -- --name bfv -k 9 verify

Verify the proof generated above

Chips

  • check_poly_coefficients_in_range - Enforces polynomial coefficients to be within a specified range
  • check_poly_from_distribution_chi_key - Enforces polynomial to be sampled from the chi key
  • poly_add - Enforces polynomial addition
  • poly_mul_equal_deg - Enforces polynomial multiplication between polynomials of equal degree
  • poly_mul_diff_deg - Enforces polynomial multiplication between polynomials of different degree
  • poly_scalar_mul - Enforces scalar multiplication of a polynomial
  • poly_reduce - Enforces reduction of polynomial coefficients by a modulus
  • poly_divide_by_cyclo - Enforces the reduction of a polynomial by a cyclotomic polynomial
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme MIT 421 KiB
Languages
Rust 100%