Inferensys

Glossary

Homomorphic Encryption (HE)

A cryptographic scheme enabling computation directly on encrypted data, producing an encrypted result that, when decrypted, matches the result of operations performed on the plaintext.
Data scientist building training data pipeline on laptop, data preprocessing visible, technical workspace.
Privacy-Preserving Computation

What is Homomorphic Encryption (HE)?

Homomorphic encryption is a cryptographic scheme that enables computation directly on encrypted data, producing an encrypted result that, when decrypted, matches the result of the operations as if they were performed on the plaintext.

Homomorphic Encryption (HE) is a cryptographic primitive that allows arbitrary computations to be performed on ciphertexts, generating an encrypted result that decrypts to the correct output. Unlike traditional encryption, which requires decryption before processing, HE preserves data confidentiality throughout the entire computation lifecycle, ensuring that the processing party never accesses the underlying plaintext.

HE schemes are categorized by their operational depth: Partially Homomorphic Encryption (PHE) supports only one operation type, while Fully Homomorphic Encryption (FHE) enables unbounded additions and multiplications on encrypted data. This capability is critical for privacy-preserving machine learning, enabling secure inference on sensitive data without exposing model weights or user inputs to the compute provider.

PRIVACY-PRESERVING COMPUTATION

Key Features of Homomorphic Encryption

Homomorphic Encryption (HE) enables computation directly on ciphertexts, generating an encrypted result that, when decrypted, matches the result of operations performed on the plaintext. This eliminates the need to decrypt sensitive data before processing, a critical capability for secure cloud computing and privacy-preserving machine learning.

01

Partially Homomorphic Encryption (PHE)

Supports unlimited operations of a single type—either addition or multiplication, but not both. RSA encryption is a classic example, exhibiting multiplicative homomorphism. Paillier cryptosystem provides additive homomorphism and is widely used in privacy-preserving federated learning for secure gradient aggregation. PHE schemes are computationally efficient and practical for production systems requiring only one type of arithmetic operation on encrypted data.

Paillier
Dominant Additive PHE Scheme
02

Somewhat Homomorphic Encryption (SHE)

Supports both addition and multiplication but only for circuits of limited multiplicative depth. Each ciphertext contains a noise component that grows with every operation, especially multiplication. Once noise exceeds a threshold, decryption fails. SHE is the conceptual bridge between PHE and FHE, often used as a building block in leveled FHE constructions like BGV and BFV schemes.

Noise Budget
Limiting Factor for SHE
03

Fully Homomorphic Encryption (FHE)

Supports arbitrary computation on encrypted data with unlimited additions and multiplications. Achieved through bootstrapping, a technique introduced by Craig Gentry in 2009 that homomorphically evaluates the decryption circuit to refresh ciphertext noise. Modern FHE schemes include:

  • CKKS: Optimized for approximate arithmetic on real numbers, ideal for neural network inference
  • TFHE: Optimized for fast bootstrapping of individual gates, suitable for low-latency decision trees
  • BGV/BFV: Integer arithmetic schemes for exact computation
2009
First FHE Construction (Gentry)
04

Bootstrapping

The critical innovation enabling Fully Homomorphic Encryption. Bootstrapping homomorphically evaluates the decryption circuit on a ciphertext, producing a new ciphertext encrypting the same plaintext but with reset noise levels. This process breaks the limitation of multiplicative depth, allowing unbounded computation. The computational cost is significant—bootstrapping can dominate runtime—making it the primary target for hardware acceleration using FPGAs and ASICs.

Dominant Cost
Bootstrapping in FHE Pipelines
05

HE for Machine Learning

Enables private inference as a service, where a client sends encrypted input to a cloud-hosted model and receives an encrypted prediction without the server ever seeing the raw data or the result. Key applications include:

  • Encrypted neural network inference using CKKS for approximate activations
  • Private information retrieval from vector databases
  • Secure multi-party model evaluation where neither the data owner nor the model owner exposes their assets Frameworks like OpenFHE, Microsoft SEAL, and Concrete ML provide abstractions for compiling ML models into HE-compatible circuits.
CKKS
Primary Scheme for ML Inference
06

Lattice-Based Security

Modern HE schemes derive their security from hard problems on mathematical lattices, specifically the Ring Learning With Errors (RLWE) problem. RLWE is believed to be resistant to attacks by both classical and quantum computers, making HE a post-quantum cryptographic primitive. The security parameter determines the polynomial modulus degree and ciphertext modulus, directly impacting performance and noise growth. NIST's post-quantum standardization process has validated lattice-based cryptography as a foundation for future-proof encryption.

Post-Quantum
Security Classification
SCHEME TAXONOMY

Types of Homomorphic Encryption

A comparison of the three primary classes of homomorphic encryption schemes based on computational capability, performance, and practical applicability.

FeaturePartially Homomorphic (PHE)Somewhat Homomorphic (SHE)Fully Homomorphic (FHE)

Supported Operations

Single operation type (addition OR multiplication)

Both addition and multiplication

Unlimited additions and multiplications

Computational Depth

Unlimited for one operation

Limited, predetermined circuit depth

Arbitrary depth circuits

Ciphertext Size Overhead

1-2x plaintext size

10-100x plaintext size

10,000-1,000,000x plaintext size

Typical Latency per Operation

< 1 ms

1-100 ms

100 ms - 10 sec

Bootstrapping Required

Production Readiness

Mature, widely deployed

Emerging, limited use cases

Active research, early production

Example Scheme

Paillier, ElGamal, RSA

BGV, BFV, CKKS

TFHE, FHEW, BGV with bootstrapping

Primary Use Case

Encrypted sums, private voting, e-cash

Private inference, encrypted database queries

Arbitrary computation on encrypted data, private cloud processing

APPLICATIONS

Real-World Use Cases

Homomorphic Encryption transitions from theoretical cryptography to practical deployment in sectors where data privacy is non-negotiable. These use cases demonstrate how computation on encrypted data solves critical regulatory and security challenges.

01

Confidential Cloud Inference

Enables organizations to send encrypted queries to a proprietary AI model hosted in the cloud without exposing the raw input data. The cloud provider processes the encrypted data and returns an encrypted result, which only the client can decrypt.

  • Privacy-preserving SaaS: A healthcare startup uses a diagnostic model without the cloud provider ever seeing patient symptoms.
  • Secure code analysis: Developers submit encrypted proprietary source code to an AI vulnerability scanner.
  • Financial fraud detection: Banks query a shared fraud model with encrypted transaction details, preventing leakage to the model host.
02

Federated Analytics with Encrypted Aggregation

Combines Federated Learning with HE to allow a central server to compute aggregate statistics or model updates from multiple data owners without decrypting individual contributions. This protects against gradient leakage attacks.

  • Cross-institution medical research: Hospitals jointly compute the average effectiveness of a treatment across their encrypted patient records without sharing raw data.
  • Anti-money laundering consortium: Banks compute encrypted risk scores across shared transaction graphs without revealing customer details to competitors.
  • Secure voting systems: Tally encrypted ballots to produce a final count while preserving individual vote secrecy.
03

Encrypted Database Querying

Allows a client to execute private information retrieval and complex SQL-like queries on a remote database without the database server learning the query parameters or the results.

  • Genomic sequence matching: A researcher queries a proprietary genomic database for a specific marker without revealing the marker to the database owner.
  • Private location-based services: A user queries a map service for nearby restaurants without disclosing their exact location.
  • Regulatory compliance checks: An auditor scans encrypted financial records for anomalies without exposing the underlying transactions.
04

Secure Multi-Party Training

Multiple parties collaboratively train a machine learning model on their combined, encrypted datasets without any party revealing its raw data to the others. HE ensures that intermediate computations during training remain confidential.

  • Supply chain optimization: Manufacturers and logistics providers jointly train a demand forecasting model on encrypted inventory and shipment data.
  • Competitive intelligence pooling: Retailers train a shared recommendation model on encrypted customer preference data without exposing proprietary sales figures.
  • Pharmaceutical R&D consortia: Drug companies combine encrypted assay results to build more robust toxicity prediction models.
05

Blockchain Confidentiality Layer

Addresses the inherent transparency of public blockchains by executing smart contracts on encrypted state. Transaction logic and values remain hidden from validators while still being verifiably correct.

  • Sealed-bid auctions: Bids are encrypted on-chain, and the auction contract computes the winner homomorphically without revealing losing bids.
  • Private decentralized finance (DeFi): Lending protocols process encrypted collateral ratios, preventing front-running and liquidation sniping.
  • Confidential identity verification: On-chain credentials are verified against encrypted attributes without exposing the underlying personal data.
06

Regulatory Technology (RegTech)

Enables financial institutions to comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) regulations by performing checks on encrypted customer data across institutional boundaries.

  • Cross-border KYC: Banks in different jurisdictions check a client's encrypted identity attributes against a shared sanctions list without exposing the client's full profile.
  • Transaction monitoring: An encrypted transaction stream is analyzed for suspicious patterns by a third-party compliance service that never sees the raw transactions.
  • Capital adequacy reporting: A holding company computes its consolidated risk exposure across encrypted subsidiary balance sheets.
HOMOMORPHIC ENCRYPTION

Frequently Asked Questions

Clear, technical answers to the most common questions about performing computation on encrypted data without ever decrypting it.

Homomorphic Encryption (HE) is a cryptographic scheme that allows computation directly on ciphertexts, generating an encrypted result that, when decrypted, matches the result of operations performed on the plaintext. It works by constructing mathematical structures—typically based on lattice-based cryptography like the Ring Learning With Errors (RLWE) problem—that preserve algebraic homomorphisms. In a Partially Homomorphic Encryption (PHE) scheme, such as unpadded RSA or ElGamal, only one operation type (addition or multiplication) is preserved. Somewhat Homomorphic Encryption (SHE) supports both operations but only up to a limited circuit depth before noise corrupts the ciphertext. Fully Homomorphic Encryption (FHE) overcomes this limitation through a technique called bootstrapping, which evaluates the decryption circuit homomorphically to refresh the ciphertext noise, enabling arbitrary computation on encrypted data indefinitely.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.