|
"""A local gradio app that filters images using FHE.""" |
|
|
|
import os |
|
import shutil |
|
import subprocess |
|
import time |
|
import gradio as gr |
|
import numpy |
|
import requests |
|
from itertools import chain |
|
|
|
from settings import ( |
|
REPO_DIR, |
|
SERVER_URL, |
|
FHE_KEYS, |
|
CLIENT_FILES, |
|
SERVER_FILES, |
|
) |
|
|
|
|
|
|
|
|
|
subprocess.Popen(["uvicorn", "server:app"], cwd=REPO_DIR) |
|
time.sleep(3) |
|
|
|
|
|
def shorten_bytes_object(bytes_object, limit=500): |
|
"""Shorten the input bytes object to a given length. |
|
|
|
Encrypted data is too large for displaying it in the browser using Gradio. This function |
|
provides a shorten representation of it. |
|
|
|
Args: |
|
bytes_object (bytes): The input to shorten |
|
limit (int): The length to consider. Default to 500. |
|
|
|
Returns: |
|
str: Hexadecimal string shorten representation of the input byte object. |
|
|
|
""" |
|
|
|
shift = 100 |
|
return bytes_object[shift : limit + shift].hex() |
|
|
|
|
|
def get_client(user_id, filter_name): |
|
"""Get the client API. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
filter_name (str): The filter chosen by the user |
|
|
|
Returns: |
|
FHEModelClient: The client API. |
|
""" |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
return None |
|
|
|
|
|
def get_client_file_path(name, user_id, filter_name): |
|
"""Get the correct temporary file path for the client. |
|
|
|
Args: |
|
name (str): The desired file name. |
|
user_id (int): The current user's ID. |
|
filter_name (str): The filter chosen by the user |
|
|
|
Returns: |
|
pathlib.Path: The file path. |
|
""" |
|
return CLIENT_FILES / f"{name}_{filter_name}_{user_id}" |
|
|
|
|
|
def clean_temporary_files(n_keys=20): |
|
"""Clean keys and encrypted images. |
|
|
|
A maximum of n_keys keys and associated temporary files are allowed to be stored. Once this |
|
limit is reached, the oldest files are deleted. |
|
|
|
Args: |
|
n_keys (int): The maximum number of keys and associated files to be stored. Default to 20. |
|
|
|
""" |
|
|
|
key_dirs = sorted(FHE_KEYS.iterdir(), key=os.path.getmtime) |
|
|
|
|
|
user_ids = [] |
|
if len(key_dirs) > n_keys: |
|
n_keys_to_delete = len(key_dirs) - n_keys |
|
for key_dir in key_dirs[:n_keys_to_delete]: |
|
user_ids.append(key_dir.name) |
|
shutil.rmtree(key_dir) |
|
|
|
|
|
client_files = CLIENT_FILES.iterdir() |
|
server_files = SERVER_FILES.iterdir() |
|
|
|
|
|
for file in chain(client_files, server_files): |
|
for user_id in user_ids: |
|
if user_id in file.name: |
|
file.unlink() |
|
|
|
|
|
def keygen(filter_name): |
|
"""Generate the private key associated to a filter. |
|
|
|
Args: |
|
filter_name (str): The current filter to consider. |
|
|
|
Returns: |
|
(user_id, True) (Tuple[int, bool]): The current user's ID and a boolean used for visual display. |
|
|
|
""" |
|
|
|
clean_temporary_files() |
|
|
|
|
|
user_id = numpy.random.randint(0, 2**32) |
|
|
|
|
|
client = get_client(user_id, filter_name) |
|
|
|
|
|
client.generate_private_and_evaluation_keys(force=True) |
|
|
|
|
|
|
|
|
|
evaluation_key = client.get_serialized_evaluation_keys() |
|
|
|
|
|
|
|
evaluation_key_path = get_client_file_path("evaluation_key", user_id, filter_name) |
|
|
|
with evaluation_key_path.open("wb") as evaluation_key_file: |
|
evaluation_key_file.write(evaluation_key) |
|
|
|
return (user_id, True) |
|
|
|
|
|
def encrypt(user_id, input_image, filter_name): |
|
"""Encrypt the given image for a specific user and filter. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
input_image (numpy.ndarray): The image to encrypt. |
|
filter_name (str): The current filter to consider. |
|
|
|
Returns: |
|
(input_image, encrypted_image_short) (Tuple[bytes]): The encrypted image and one of its |
|
representation. |
|
|
|
""" |
|
user_id = keygen |
|
|
|
if user_id == "": |
|
raise gr.Error("Please generate the private key first.") |
|
|
|
if input_image is None: |
|
raise gr.Error("Please choose an image first.") |
|
|
|
|
|
client = get_client(user_id, filter_name) |
|
|
|
|
|
encrypted_image = client.encrypt_serialize(input_image) |
|
|
|
|
|
|
|
encrypted_image_path = get_client_file_path("encrypted_image", user_id, filter_name) |
|
|
|
with encrypted_image_path.open("wb") as encrypted_image_file: |
|
encrypted_image_file.write(encrypted_image) |
|
|
|
|
|
encrypted_image_short = shorten_bytes_object(encrypted_image) |
|
|
|
send_input() |
|
|
|
return (input_image, encrypted_image_short) |
|
|
|
|
|
def send_input(user_id, filter_name): |
|
"""Send the encrypted input image as well as the evaluation key to the server. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
filter_name (str): The current filter to consider. |
|
""" |
|
|
|
evaluation_key_path = get_client_file_path("evaluation_key", user_id, filter_name) |
|
|
|
if user_id == "" or not evaluation_key_path.is_file(): |
|
raise gr.Error("Please generate the private key first.") |
|
|
|
encrypted_input_path = get_client_file_path("encrypted_image", user_id, filter_name) |
|
|
|
if not encrypted_input_path.is_file(): |
|
raise gr.Error("Please generate the private key and then encrypt an image first.") |
|
|
|
|
|
data = { |
|
"user_id": user_id, |
|
"filter": filter_name, |
|
} |
|
|
|
files = [ |
|
("files", open(encrypted_input_path, "rb")), |
|
("files", open(evaluation_key_path, "rb")), |
|
] |
|
|
|
|
|
url = SERVER_URL + "send_input" |
|
with requests.post( |
|
url=url, |
|
data=data, |
|
files=files, |
|
) as response: |
|
return response.ok |
|
|
|
|
|
def run_fhe(user_id, filter_name): |
|
"""Apply the filter on the encrypted image previously sent using FHE. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
filter_name (str): The current filter to consider. |
|
""" |
|
data = { |
|
"user_id": user_id, |
|
"filter": filter_name, |
|
} |
|
|
|
|
|
url = SERVER_URL + "run_fhe" |
|
with requests.post( |
|
url=url, |
|
data=data, |
|
) as response: |
|
if response.ok: |
|
return response.json() |
|
else: |
|
raise gr.Error("Please wait for the input image to be sent to the server.") |
|
|
|
|
|
def get_output(user_id, filter_name): |
|
"""Retrieve the encrypted output image. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
filter_name (str): The current filter to consider. |
|
|
|
Returns: |
|
encrypted_output_image_short (bytes): A representation of the encrypted result. |
|
|
|
""" |
|
data = { |
|
"user_id": user_id, |
|
"filter": filter_name, |
|
} |
|
|
|
|
|
url = SERVER_URL + "get_output" |
|
with requests.post( |
|
url=url, |
|
data=data, |
|
) as response: |
|
if response.ok: |
|
encrypted_output = response.content |
|
|
|
|
|
|
|
encrypted_output_path = get_client_file_path("encrypted_output", user_id, filter_name) |
|
|
|
with encrypted_output_path.open("wb") as encrypted_output_file: |
|
encrypted_output_file.write(encrypted_output) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
return None |
|
else: |
|
raise gr.Error("Please wait for the FHE execution to be completed.") |
|
|
|
|
|
def decrypt_output(user_id, filter_name): |
|
"""Decrypt the result. |
|
|
|
Args: |
|
user_id (int): The current user's ID. |
|
filter_name (str): The current filter to consider. |
|
|
|
Returns: |
|
(output_image, False, False) ((Tuple[numpy.ndarray, bool, bool]): The decrypted output, as |
|
well as two booleans used for resetting Gradio checkboxes |
|
|
|
""" |
|
if user_id == "": |
|
raise gr.Error("Please generate the private key first.") |
|
|
|
|
|
encrypted_output_path = get_client_file_path("encrypted_output", user_id, filter_name) |
|
|
|
if not encrypted_output_path.is_file(): |
|
raise gr.Error("Please run the FHE execution first.") |
|
|
|
|
|
with encrypted_output_path.open("rb") as encrypted_output_file: |
|
encrypted_output_image = encrypted_output_file.read() |
|
|
|
|
|
client = get_client(user_id, filter_name) |
|
|
|
|
|
output_image = client.deserialize_decrypt_post_process(encrypted_output_image) |
|
|
|
return output_image, False, False |
|
|
|
|
|
demo = gr.Blocks() |
|
|
|
|
|
print("Starting the demo...") |
|
with demo: |
|
gr.Markdown( |
|
""" |
|
<h1 align="center">Credit Card Approval Prediction Using Fully Homomorphic Encryption</h1> |
|
""" |
|
) |
|
|
|
gr.Markdown("## Client side") |
|
|
|
gr.Markdown("### Step 1: Infos. ") |
|
with gr.Row(): |
|
with gr.Column(): |
|
gr.Markdown("### Client ") |
|
|
|
choice_1 = gr.Dropdown(choices=["Yes, No"], label="Choose", interactive=True) |
|
slide_1 = gr.Slider(2, 20, value=4, label="Count", info="Choose between 2 and 20") |
|
|
|
with gr.Column(): |
|
gr.Markdown("### Bank ") |
|
|
|
checkbox_1 = gr.CheckboxGroup(["USA", "Japan", "Pakistan"], label="Countries", info="Where are they from?") |
|
|
|
with gr.Column(): |
|
gr.Markdown("### Third Party ") |
|
|
|
radio_1 = gr.Radio(["park", "zoo", "road"], label="Location", info="Where did they go?") |
|
|
|
|
|
gr.Markdown("### Step 2: Keygen, encrypt using FHE and send the inputs to the server.") |
|
with gr.Row(): |
|
with gr.Column(): |
|
gr.Markdown("### Client ") |
|
encrypt_button_1 = gr.Button("Encrypt the inputs and send to server.") |
|
encrypted_input_1 = gr.Textbox( |
|
label="Encrypted input representation:", max_lines=2, interactive=False |
|
) |
|
|
|
client_id = gr.Textbox(label="", max_lines=2, interactive=False, visible=False) |
|
|
|
|
|
with gr.Column(): |
|
gr.Markdown("### Bank ") |
|
encrypt_button_2 = gr.Button("Encrypt the inputs and send to server.") |
|
encrypted_input_2 = gr.Textbox( |
|
label="Encrypted input representation:", max_lines=2, interactive=False |
|
) |
|
|
|
bank_id = gr.Textbox(label="", max_lines=2, interactive=False, visible=False) |
|
|
|
|
|
with gr.Column(): |
|
gr.Markdown("### Third Party ") |
|
encrypt_button_3 = gr.Button("Encrypt the inputs and send to server.") |
|
encrypted_input_3 = gr.Textbox( |
|
label="Encrypted input representation:", max_lines=2, interactive=False |
|
) |
|
|
|
party_id = gr.Textbox(label="", max_lines=2, interactive=False, visible=False) |
|
|
|
gr.Markdown("## Server side") |
|
gr.Markdown( |
|
"The encrypted values are received by the server. The server can then compute the prediction " |
|
"directly over them. Once the computation is finished, the server returns " |
|
"the encrypted result to the client." |
|
) |
|
|
|
gr.Markdown("### Step 6: Run FHE execution.") |
|
execute_fhe_button = gr.Button("Run FHE execution.") |
|
fhe_execution_time = gr.Textbox( |
|
label="Total FHE execution time (in seconds):", max_lines=1, interactive=False |
|
) |
|
|
|
gr.Markdown("## Client side") |
|
gr.Markdown( |
|
"The encrypted output is sent back to the client, who can finally decrypt it with the " |
|
"private key." |
|
) |
|
|
|
gr.Markdown("### Step 7: Receive the encrypted output from the server.") |
|
gr.Markdown( |
|
"The output displayed here is the encrypted result sent by the server, which has been " |
|
"decrypted using a different private key. This is only used to visually represent an " |
|
"encrypted output." |
|
) |
|
get_output_button = gr.Button("Receive the encrypted output from the server.") |
|
|
|
encrypted_output_representation = gr.Textbox( |
|
label="Credit card approval decision: ", max_lines=1, interactive=False |
|
) |
|
|
|
gr.Markdown("### Step 8: Decrypt the output.") |
|
decrypt_button = gr.Button("Decrypt the output") |
|
|
|
prediction_output = gr.Textbox( |
|
label="Credit card approval decision: ", max_lines=1, interactive=False |
|
) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
gr.Markdown( |
|
"The app was built with [Concrete-ML](https://github.com/zama-ai/concrete-ml), a " |
|
"Privacy-Preserving Machine Learning (PPML) open-source set of tools by [Zama](https://zama.ai/). " |
|
"Try it yourself and don't forget to star on Github ⭐." |
|
) |
|
|
|
demo.launch(share=False) |
|
|