crockeea
commented
4 years ago My proposed solution is to tag encrypted objects (Ciphertexts, Matrices, and Row/ColVectors) by an evaluator type. This prevents mixing ciphertexts with an evaluator for which they are not intended.
Ciphertexts are designed to be used with a single evaluator: they are encrypted via an evaluator, which packs the right information into the
CKKSCiphertextobject (either a plaintxt, a ciphertext, both, or neither).This was brought up in a security review (how can we prevent accidentally sending a plaintext to an untrusted party), and it's also a problem in ciphertext deserialization: we don't know when to expect a raw_pt or seal_ct in a serialized object. For example, if we are trying to load a ciphertext for use with the Homomorphic evaluator, but the serialized object doesn't contain a SEAL ciphertext, then that should be an error. Currently, we happily load that ciphertext, and it will result in something horrible at runtime (most likely a SEAL error).