Skip to content

phantomzone-org/phantom

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

260 Commits
compiler-tests
compiler-tests
 
 
compiler
compiler
 
 
doc
doc
 
 
fhevm
fhevm
 
 
macros
macros
 
 
runtime
runtime
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Phantom

Phantom is a fully encrypted RISC-V virtual machine that executes encrypted RISC-V binaries on encrypted inputs.

It enables black-box execution of any RISC-V program, allowing developers to write code with hidden instructions, constants, states, and make its encrypted version public. The encrypted version can then be executed on any arbitrary encrypted inputs using the Phantom VM.

Phantom Overview

Building Phantom

We provide a setup script at setup.sh to build Phantom and required dependencies from scratch on a fresh Debian/Ubuntu machine.

How to use Phantom

Developers write their programs in Rust, which are then compiled into RISC-V binaries. These binaries are transformed into a polynomial representation, optimized for execution within the plaintext space of RLWE-based FHE. These polynomials are then encrypted, producing the encrypted program, which can then be executed by the Phantom VM on arbitrary encrypted and/or plaintext inputs.

To use, we recommend to look at full end to end examples in compiler-tests directory. In particular, the template example to start programming in Phantom, and otc for a more advanced example.

Architecture

Phantom VM is a collection of FHE circuits that collectively simulate a RISC-V virtual machine. The Phantom VM is implemented in the fhevm directory. The architecture of the Phantom VM is described in doc/spec.png. It consists of 6 major components:

  • Reading the instruction components from the ROM
  • Reading the registers
  • Reading the RAM
  • Updating the registers
  • Updating the RAM
  • Updating the PC

The dependency graph of the operations performed in these components is described in doc/costs.md, which shows how Phantom can be further parallelized.

Benchmark

We benchmark Phantom on a AWS r6i.metal, with support for AVX2 and FMA instructions, parallelized across 32 cores, and measure the runtime of a single cycle and all 6 components.

Average Cycle Time: 655.711279ms

  1. Read and prepare instruction components: 128.463434ms
    • Read instruction components: 28.019331ms
    • Prepare instruction components: 100.443453ms
  2. Read and prepare registers: 106.049704ms
    • Read registers: 7.524631ms
    • Prepare registers: 98.524193ms
  3. Read ram: 71.201851ms
  4. Update registers: 203.944757ms
    • Evaluate rd ops: 133.086641ms
    • Blind selection: 1.544176ms
    • Write rd: 69.312716ms
  5. Update ram: 72.566678ms
  6. Update pc: 73.433935ms
    • PC update BDD: 18.872475ms
    • PC prepare: 54.560689ms

To reproduce benchmarks for a single cycle, set the number of threads and run:

# Without AVX2 and FMA support
PHANTOM_THREADS=[# of threads] cargo bench --package fhevm --bench cycle

# With AVX2 and FMA support
RUSTFLAGS="-C target-feature=+avx2,+fma" PHANTOM_THREADS=[# of threads] cargo bench --package fhevm --bench cycle

Acknowledgement

Development of Phantom is primarily supported by the Ethereum foundation.

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

23 stars

Watchers

1 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages