Cypherpunk exploration of Fully Homomorphic Encryption that compares dev experience on Inco and Fhenix.
ETHGlobal project from Bangkok 2024. Hacking solo so no UI, only onchain logic and JS tests.
There are 4 encrypted bytes on a fully homomorphically encrypted blockchain, which can be decrypted and viewed only by spy address. Each byte can be independently and privately set or updated by a corresponding police checkpoint address.
It's night in unnamed cypherpunk city and an undercover spy meets an informant in the corp district. Police checkpoints are on high alert as usual, but they will let the spy go through.
Each policeman chooses a predefined condition for a spy to satisfy to pass, their decisions are private and completly independent. Checkpoint can decide to let everybody in red jackets to pass (but not green), or only let motorcyclists by. Policemen are free to update their requirements at any moment. Only the spy knows all conditions set at checkpoints so he can find his way in unnamed cypherpunk city.
I programmed a smart contract and verified the correctness by running tests with deployments on corresponding testnets.
| Component | Implementation on Inco | Implementation on Fhenix |
|---|---|---|
| Smart contract | Spy.sol | Spy.sol |
| Testing script | Spy.ts | Spy.ts |
- Encrypted
uint32 secretRequirementsencodes 4 bytes. - Array of 4 addresses
checkpointAddressescan modify the corresponding byte of secret requirements (starting from least significant). - Address
spyAddresscan viewsecretRequirementsoffchain.
- Constructor sets all address from parameters and initializes secret state to zero.
- Function
setSecretRequirementallows checkpoint address to set their byte to any value. It checks that the value fits in a byte and updates the encrypted state using bit operations. - Function
getSecretRequirementsallows spy to view the encrypted state.
- Check that not a checkpoint address can not set an encrypted byte.
- Check that only spy address can decrypt the private state.
- Check that 0th checkpoint address can set an encrypted byte and it is correctly viewed by the spy address.
- Check that 3rd checkpoint address can set an encrypted byte and it is correctly viewed by the spy address.
- Check that if the encrypted byte is bigger than 255, it is truncated to fit in a byte.
- Check that all checkpoint address separately set their encrypted bytes and the total result is correctly viewed by the spy address.
You can see test transactions that went through on corresponding testnet explorers.
| Entity | Address on Inco Rivest | Address on Fhenix Nitrogen |
|---|---|---|
| Spy / Deployer | 0xabadc4402C14844431fC7521613b6922c7bdde80 | 0xabadc4402C14844431fC7521613b6922c7bdde80 |
| Checkpoint 1 | 0x70C3f7fd4c9bECA84c5e3Ff117e41c7219f7a84D | 0x70C3f7fd4c9bECA84c5e3Ff117e41c7219f7a84D |
| Checkpoint 2 | 0xe900053491381d51c343Cc799f177A7c7CEA5BE3 | 0xe900053491381d51c343Cc799f177A7c7CEA5BE3 |
| Checkpoint 3 | 0xcABEabea42780204dCB3E399CE9226f589Db3E4C | 0xcABEabea42780204dCB3E399CE9226f589Db3E4C |
| Checkpoint 4 | 0x98Ede4324cB3A413b620A0B0d3267Ee68202e581 | 0x98Ede4324cB3A413b620A0B0d3267Ee68202e581 |
Things that were very good for both Inco and Fhenix developer experience:
- Template repo with contract and test examples: was super easy to grab the template and start working.
- Docs explaining FHE usage: I had no previous experience with FHE however the material was very thorough and clear to use.
- FHE just worked without any problems: no unexpected deep technical caveats, smart contracts were surprisingly simple to develop.
Things that could be improved for both Inco and Fhenix developer experience:
- Testnet RPC stability: deploying and testing contracts on the testnets was very challenging because of slow internet and technical problems with RPCs (see video for some highlights).
- No foundry support: I had to learn not only FHE but also hardhat and JS testing. Not too bad, but it would be nice to support foundy framework.
Things where I appreciated Inco over Fhenix.
- Local network testing: using docker and GH codespaces I was able to test Inco deployments locally without spending testnet tokens and waiting for RPC responses. I was not able to do the same for Fhenix (maybe because they just released Nitrogen?).
- Support on site: Inco had devs the whole event, they were extremely helpful. Although Fhenix team also supported me in setting up.
- Testnet faucet: Inco faucet was super easy to use (I had to fund 5 accounts). For Fenix I had to manually transfer testnet tokens from a single account.
- Sleeker syntax: Fhenix tests were simpler to write because of simpler encrypted
transaction construction. Also, the smart contracts
didn't require calling
TFHE.allowall the time. - More stable testnet: Even though Fhenix deployed Nitrogen couple of days before the hack, it was a more responsive, faster and stable.
Inco and Fhenix are comparable in devEx. I was positively surprised by the simplicity of both. Each had their own annoying details but ultimately worked well.