Plausible Deniability in Fully Homomorphic Computation
For users who need to outsource computations to untrusted clouds while resisting coercion, this work provides a novel deniability property that fully homomorphic encryption cannot offer.
This paper introduces Plausible Deniability in Fully Homomorphic Computation (PD-FHC), a framework that allows users to outsource Boolean computations to an untrusted cloud while maintaining privacy and plausible deniability against coercive adversaries. The instantiation using RGB images and Fredkin-gate circuits achieves computational privacy with advantage Θ(1/(n-1)!) and negligible existence-hiding advantage, with performance competitive to TFHE.
We introduce \emph{Plausible Deniability in Fully Homomorphic Computation} (PD-FHC), a framework enabling users to outsource Boolean computations to an untrusted cloud while maintaining both computational privacy against honest-but-curious providers and plausible deniability against coercive adversaries. We define the notion of a \emph{Deniable Computation Medium} (DCM) and a \emph{Deniable Computation Scheme} (DCS) as medium-independent abstractions, then instantiate them using RGB images with Fredkin-gate circuits. Multiple computation scenarios (one real, several decoys) are embedded at secret positions within cover images; the cloud applies identical operations to every pixel, processing all scenarios uniformly. Under coercion, the user reveals a decoy computation with verifiable results while the real computation remains hidden. We formalize multi-round coercion games with existence and intent distinguishing advantages, proving computational privacy with advantage $Θ(1/(n-1)!)$ and negligible existence-hiding advantage for the image instantiation. Our Python implementation, benchmarked across circuit sizes (5--289 gates) and image dimensions ($128^2$ to $512^2$), demonstrates competitive performance with TFHE for Boolean circuits while providing deniability that FHE fundamentally cannot offer.