Skip to main content

Homomorphic encryption using the threshold variant of the Damgard-Jurik cryptosystem.

Project description


An implementation of the threshold variant of the Damgard-Jurik homomorphic encryption cryptosystem.

Table of Contents


Requires Python 3.6+.

pip install damgard-jurik

Alternatively, the code can be cloned and installed locally as follows.

git clone
cd damgard-jurik
pip install -e .

Note that the -e flag will instruct pip to install the package as "editable". That is, when changes are made to any part of the package during development, those changes will immediately be available system-wide on the activated python environment.

All requirements for this package should be added to

Public and Private Keys

In the threshold variant of Damgard-Jurik implemented in this repository, a key pair consists of single public key along with a private key that has been split into multiple components using Shamir's secret sharing. The public key encrypts messages while the shares of the private key all contribute a portion of the decryption without ever requiring reconstruction of the private key. Thus, trust is distributed among the holders of the private key shares.

In this implementation, the public key is a PublicKey object with an encrypt function while the private key shares are PrivateKeyShare objects with a decrypt function that performs a partial decryption using that share of the private key. A PrivateKeyRing object holds a set of PrivateKeyShares and contains a decrypt function that calls each PrivateKeyShare's decrypt function and combines the results to obtain the final decryption.

Key Generation

To generate a PublicKey and corresponding PrivateKeyRing, run the following commands:

from damgard_jurik import keygen

public_key, private_key_ring = keygen(

The parameters to keygen are as follows:

  • n_bits: The number of bits of encryption used in the public key and private key shares.
  • s: The exponent to which the public key parameter n is raised (where n = p * q is the product of two n_bits-bit primes p and q.). Plaintexts live in the space Z_n^s.
  • threshold: The minimum number of private key shares needed to decrypt an encrypted message.
  • n_shares: The number of private key shares to generate.

Encryption and Decryption

To encrypt an integer m, run public_key.encrypt(m). This will return an EncryptedNumber containing the encryption of m.

To decrypt an EncryptedNumber c, run private_key_ring.decrypt(c). This will return an integer containing the decryption of c.

For example:

m = 42
c = public_key.encrypt(m)
m_prime = private_key_ring.decrypt(c)
# m_prime = 42

Additionally, PublicKeys and PrivateKingRings have a convenience method for encrypting and decrypting lists of integers, as shown below.

m_list = [42, 33, 100]
c_list = public_key.encrypt(m_list)
m_prime_list = private_key_ring.decrypt(c_list)
# m_prime_list = [42, 33, 100]

Homomorphic Operations

Due to the additively homomorphic nature of the Damgard-Jurik cryptosystem, encrypted numbers can be combined in such a way as to obtain an encryption of the sum of the associated plaintexts. Futhermore, encrypted numbers can be combined with un-encrypted integers in such a way as to obtain the product of the associated plaintext and the un-encrypted integer. For convenience, the +, -, *, and / operators have been overridden for EncryptedNumbers to implement these combinations.

For example:

m_1, m_2 = 42, 33
c_1, c_2 = public_key.encrypt(m_1), public_key.encrypt(m_2)
c = c_1 + c_2
m_prime = private_key_ring.decrypt(c)
# m_prime = 75 = 42 + 33
m, s = 42, 2
c = public_key.encrypt(m)
c_prime = c * s
m_prime = private_key_ring.decrypt(c_prime)
# m_prime = 84 = 42 * 2

Project details

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for damgard-jurik, version 0.0.2
Filename, size File type Python version Upload date Hashes
Filename, size damgard_jurik-0.0.2-py3-none-any.whl (11.2 kB) File type Wheel Python version py3 Upload date Hashes View hashes

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page