Inferensys

Glossary

Homomorphic Encryption

A cryptographic scheme enabling direct computation on ciphertexts, generating an encrypted result that, when decrypted, matches the output of operations performed on the plaintext.
Operations room with a large monitor wall for system visibility and control.
CRYPTOGRAPHIC COMPUTATION ON ENCRYPTED DATA

What is Homomorphic Encryption?

Homomorphic encryption is a cryptographic paradigm that enables computation directly on ciphertexts, generating an encrypted result that, when decrypted, matches the output of operations performed on the plaintext.

Homomorphic encryption is a cryptographic scheme that allows arbitrary computations to be performed directly on encrypted data without requiring prior decryption. The resulting output remains encrypted, and when decrypted with the corresponding private key, it yields the exact same result as if the operations had been executed on the original plaintext. This eliminates the vulnerable plaintext window during processing.

The three primary classifications are Partially Homomorphic Encryption (PHE), supporting only addition or multiplication; Somewhat Homomorphic Encryption (SHE), allowing limited operations; and Fully Homomorphic Encryption (FHE), which supports unbounded arbitrary computations on ciphertexts. FHE relies on lattice-based cryptography and bootstrapping to manage noise accumulation, enabling secure cloud computation and privacy-preserving machine learning inference.

CRYPTOGRAPHIC PRIMITIVES

Key Properties of Homomorphic Encryption

Homomorphic encryption enables computation on ciphertexts, generating an encrypted result which, when decrypted, matches the output of operations performed on the plaintext. This eliminates the need to expose sensitive data during processing.

01

Partially Homomorphic Encryption (PHE)

Supports a single type of operation—either addition or multiplication—unlimited times on encrypted data.

  • RSA Encryption: Multiplicatively homomorphic; encrypting two messages and multiplying the ciphertexts yields the encryption of the product.
  • Paillier Cryptosystem: Additively homomorphic; the product of two ciphertexts decrypts to the sum of the plaintexts.
  • Use Case: Secure e-voting systems where encrypted votes are tallied without individual decryption.

PHE schemes are computationally efficient and widely deployed in production privacy systems.

1978
RSA Invention Year
1999
Paillier Scheme Published
02

Somewhat Homomorphic Encryption (SHE)

Permits both addition and multiplication but only for circuits of limited depth. Each operation introduces noise that grows until decryption becomes impossible.

  • Noise Budget: A finite resource consumed by each homomorphic operation; once exhausted, the ciphertext is corrupted.
  • Bootstrapping: A technique to refresh the noise budget, enabling deeper computation.
  • Example: Evaluating low-degree polynomials on encrypted genomic data for privacy-preserving diagnostics.

SHE represents the intermediate step between PHE and fully homomorphic encryption, balancing flexibility with performance.

03

Fully Homomorphic Encryption (FHE)

Supports arbitrary computation on encrypted data, enabling any function to be evaluated without ever decrypting the inputs.

  • Gentry's Blueprint (2009): First construction proved FHE possible using ideal lattices and bootstrapping.
  • Modern Schemes: CKKS for approximate arithmetic on real numbers; BGV/BFV for exact integer arithmetic; TFHE for fast boolean gates.
  • Performance: FHE operations are typically 1,000x to 1,000,000x slower than plaintext equivalents, though hardware acceleration is closing this gap.
  • Use Case: Outsourcing ML inference to an untrusted cloud where both the model weights and user query remain encrypted throughout.
2009
First FHE Construction
1Mx
Typical Compute Overhead
04

Leveled Homomorphic Encryption

A variant of FHE that supports circuits up to a pre-determined multiplicative depth without requiring bootstrapping.

  • Parameter Selection: The scheme parameters are chosen based on the known depth of the target computation, avoiding the overhead of bootstrapping.
  • Efficiency: Significantly faster than bootstrapped FHE for computations with bounded depth.
  • Example: Evaluating a fixed-depth neural network where the number of layers is known at encryption time.

Leveled schemes are the practical workhorses in most real-world FHE deployments today.

05

Homomorphic Encryption for ML Inference

Enables privacy-preserving machine learning by encrypting both the user's input query and the model's prediction.

  • Linear Layers: Matrix multiplications and convolutions map naturally to homomorphic additions and multiplications.
  • Non-Linear Activations: ReLU and sigmoid require polynomial approximations (e.g., Chebyshev polynomials) to be evaluated homomorphically.
  • Frameworks: Concrete-ML, HElayers, and TenSEAL provide high-level APIs for compiling neural networks to FHE circuits.
  • Latency: Encrypted inference on a ResNet-20 can run in under 1 second on modern hardware with optimized cryptographic parameters.
< 1 sec
ResNet-20 Encrypted Inference
06

Threshold Homomorphic Encryption

Distributes the decryption key across multiple parties, requiring a quorum to decrypt any result.

  • Key Generation: A distributed protocol generates shares of the secret key without any single party ever holding the full key.
  • Decryption Protocol: Each party computes a partial decryption; combining a threshold number of shares reconstructs the plaintext.
  • Use Case: Multi-institutional medical research where patient data remains encrypted during analysis and only aggregate results are revealed when all hospitals consent.

This combines the confidentiality of FHE with the governance of multi-party computation.

PRIVACY-PRESERVING COMPUTATION COMPARISON

Homomorphic Encryption vs. Other Privacy Technologies

A technical comparison of cryptographic and statistical privacy technologies used to protect data during machine learning inference and computation.

FeatureHomomorphic EncryptionDifferential PrivacyTrusted Execution EnvironmentSecure Multi-Party Computation

Data protection phase

During computation

During output release

During computation

During computation

Computation on encrypted data

Provable mathematical guarantee

Hardware root of trust required

Inference latency overhead

1000-10000x

0-5%

5-15%

10-100x

Protects against infrastructure compromise

Protects against output reconstruction

Typical epsilon privacy budget

0.1-8.0

HOMOMORPHIC ENCRYPTION FAQ

Frequently Asked Questions

Clear, technically precise answers to the most common questions about performing computation on encrypted data without decryption.

Homomorphic encryption (HE) is a cryptographic scheme that allows computation directly on ciphertexts, generating an encrypted result that, when decrypted, matches the output of operations performed on the plaintext. It works by constructing mathematical structures—typically based on lattice cryptography problems like Ring Learning With Errors (RLWE)—that preserve algebraic homomorphisms. When you encrypt plaintext m1 into ciphertext c1 and m2 into c2, a homomorphic addition operation EvalAdd(c1, c2) produces a ciphertext that decrypts to m1 + m2. Similarly, EvalMul(c1, c2) decrypts to m1 * m2. This property enables a third party to process sensitive data without ever seeing the underlying values. The core mechanism relies on adding controlled noise during encryption that grows with each operation; bootstrapping—a technique introduced by Gentry in 2009—refreshes this noise to enable unlimited computation depth, achieving Fully Homomorphic Encryption (FHE).

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.