Search

US-20260128856-A1 - Homomorphic Task Management Method, Key Management Method, Ciphertext Storage Management Method, and Apparatus

US20260128856A1US 20260128856 A1US20260128856 A1US 20260128856A1US-20260128856-A1

Abstract

A homomorphic task management method includes: receiving a homomorphic task request, where the homomorphic task request includes a homomorphic task output type; and sending one or more pieces of homomorphic task configuration information to N homomorphic enabling units based on the homomorphic task request, where each piece of task configuration information includes one or more homomorphic task participant types of at least one of the N homomorphic enabling units; the homomorphic task participant type includes any one of a homomorphic encryption party, a homomorphic computation party, or a homomorphic decryption party.

Inventors

  • Wenhui Wang
  • Fei Liu
  • Yurong Song

Assignees

  • HUAWEI TECHNOLOGIES CO., LTD.

Dates

Publication Date
20260507
Application Date
20251229

Claims (20)

  1. 1 . A method, comprising: receiving a homomorphic task request comprising a homomorphic task output type; and sending, based on the homomorphic task request and to N homomorphic enabling units, one or more pieces of first task configuration information, wherein each of the one or more pieces of first task configuration information comprises one or more homomorphic task participant types of at least one of the N homomorphic enabling units, wherein the one or more homomorphic task participant types comprise any one of a homomorphic encryption party, a homomorphic computation party, or a homomorphic decryption party, and wherein N is an integer greater than or equal to 1.
  2. 2 . The method of claim 1 , wherein sending the one or more pieces of first task configuration information comprises sending, to at least one of the N homomorphic enabling units serving as the homomorphic computation party, second task configuration information comprising a homomorphic computation algorithm identifier and a homomorphic encryption algorithm identifier, and wherein the homomorphic computing algorithm identifier is based on the homomorphic task output type.
  3. 3 . The method of claim 1 , wherein before sending the one or more pieces of first task configuration information, the method further comprises selecting, based on first homomorphic capability information of M homomorphic enabling units and the homomorphic task request, the N homomorphic enabling units from the M homomorphic enabling units, wherein M is an integer greater than or equal to N, and wherein second homomorphic capability information of any one of the M homomorphic enabling units comprises one or more of a homomorphic encryption algorithm identifier or a homomorphic computation algorithm identifier supported by the one of the M homomorphic enabling units.
  4. 4 . The method of claim 3 , wherein the M homomorphic enabling units comprise a first homomorphic enabling unit, and wherein the method further comprises: receiving, from the first homomorphic enabling unit, homomorphic capability information; and generating, based on the homomorphic capability information, a homomorphic capability profile of the first homomorphic enabling unit.
  5. 5 . The method of claim 4 , wherein before receiving the homomorphic capability information, the method further comprises sending, to the first homomorphic enabling unit, a homomorphic capability information reporting request requesting the homomorphic capability information.
  6. 6 . The method of claim 3 , wherein the second homomorphic capability information further comprises one or more of an identifier, a type, a homomorphic encryption capability level, a homomorphic encryption security level, a homomorphic encryption enabling identifier, a homomorphic decryption enabling identifier, or a homomorphic computation enabling identifier of the one of the M homomorphic enabling units.
  7. 7 . The method of claim 1 , wherein the homomorphic task request further comprises one or more of a homomorphic task type, a homomorphic task quality requirement, a data user parameter, a first quantity of data users, a second quantity of data providers, or a data provider parameter.
  8. 8 . The method of claim 1 , further comprising generating, based on the homomorphic task request and the one or more pieces of first task configuration information, a homomorphic task profile.
  9. 9 . The method of claim 1 , further comprising forwarding or broadcasting, to at least one second homomorphic task management unit, the homomorphic task request.
  10. 10 . The method of claim 1 , further comprising sending, to a key management unit, a homomorphic task key request requesting to deliver a homomorphic task key to at least one of the N homomorphic enabling units, and wherein the homomorphic task key request comprises the one or more homomorphic task participant types of each of the N homomorphic enabling units and a homomorphic encryption algorithm identifier used in the homomorphic task.
  11. 11 . The method of claim 1 , further comprising sending, to a ciphertext data storage management unit, ciphertext sending task configuration information comprising a ciphertext data identifier and an identifier of one of the N homomorphic enabling units serving as the homomorphic computation party, wherein the ciphertext data identifier identifies a ciphertext needed by the homomorphic task.
  12. 12 . A method, comprising: receiving, from a homomorphic task management unit, a homomorphic task key request for requesting to deliver a homomorphic task key to at least one of N homomorphic enabling units participating in a homomorphic task, wherein the homomorphic task key request comprises one or more homomorphic task participant types of each of the N homomorphic enabling units and a homomorphic encryption algorithm identifier used in the homomorphic task, wherein the one or more homomorphic task participant types comprise any one of a homomorphic encryption party, a homomorphic computation party, or a homomorphic decryption party, and wherein N is an integer greater than or equal to 1; sending, to at least a first one of the N homomorphic enabling units serving as the homomorphic encryption party, a homomorphic encryption key; sending, to at least a second one of the N homomorphic enabling units serving as the homomorphic computation party, a homomorphic computation key; and sending, to at least a third one of the N homomorphic enabling units serving as the homomorphic decryption party, a homomorphic decryption key, wherein the homomorphic encryption key, the homomorphic computation key, and the homomorphic decryption key are based on a key generator corresponding to the homomorphic encryption algorithm identifier.
  13. 13 . The method of claim 12 , further comprising: sending, to a key exchange party, a homomorphic task key derivation request comprising an identifier of at least one of the N homomorphic enabling units, a public parameter used for deriving a homomorphic task key, and the homomorphic encryption algorithm identifier; and receiving, from the key exchange party, the homomorphic task key comprising the homomorphic encryption key, the homomorphic computation key, and the homomorphic decryption key, wherein the homomorphic task key is based on a key material associated with the at least one of the N homomorphic enabling units, the public parameter, and the key generator.
  14. 14 . The method of claim 12 , further comprising: sending, to a key exchange party, a key information obtaining request comprising an identifier of at least one of the N homomorphic enabling units; receiving, from the key exchange party, key information comprising key material of the at least one of the homomorphic enabling units; and deriving, based on the key information, a public parameter for deriving the homomorphic task key, and the key generator, the homomorphic task key, wherein the homomorphic task key comprises the homomorphic encryption key, the homomorphic computation key, and the homomorphic decryption key.
  15. 15 . An apparatus, comprising: a memory configured to store instructions; and a processor coupled to the memory and configured to execute the instructions to cause the apparatus to: receive a homomorphic task request comprising a homomorphic task output type; and send, based on the homomorphic task request and to N homomorphic enabling units, one or more pieces of first task configuration information, wherein each of the one or more pieces of first task configuration information comprises one or more homomorphic task participant types of at least one of the N homomorphic enabling units, wherein the one or more homomorphic task participant types comprise any one of a homomorphic encryption party, a homomorphic computation party, or a homomorphic decryption party, and wherein N is an integer greater than or equal to 1.
  16. 16 . The apparatus of claim 15 , wherein the processor is further configured to execute the instructions to cause the apparatus to further send the one or more pieces of first task configuration information by sending, to at least one of the N homomorphic enabling units serving as the homomorphic computation party, second task configuration information comprising a homomorphic computation algorithm identifier and a homomorphic encryption algorithm identifier, and wherein the homomorphic computing algorithm identifier is based on the homomorphic task output type.
  17. 17 . The apparatus of claim 15 , wherein before sending the one or more pieces of first task configuration information, the processor is further configured to execute the instructions to cause the apparatus to select, based on first homomorphic capability information of M homomorphic enabling units and the homomorphic task request, the N homomorphic enabling units from the M homomorphic enabling units, wherein M is an integer greater than or equal to N, and wherein second homomorphic capability information of any one of the M homomorphic enabling units comprises one or more of a homomorphic encryption algorithm identifier or a homomorphic computation algorithm identifier supported by the one of the M homomorphic enabling units.
  18. 18 . The apparatus of claim 17 , wherein the M homomorphic enabling units comprise a first homomorphic enabling unit, and wherein the processor is further configured to execute the instructions to cause the apparatus to: receive, from the first homomorphic enabling unit, homomorphic capability information; and generate, based on the homomorphic capability information, a homomorphic capability profile of the first homomorphic enabling unit.
  19. 19 . The apparatus of claim 18 , wherein before receiving the homomorphic capability information, the processor is further configured to execute the instructions to cause the apparatus to send, to the first homomorphic enabling unit, a homomorphic capability information reporting request requesting the homomorphic capability information.
  20. 20 . An apparatus, comprising: a memory configured to store instructions; and a processor coupled to the memory and configured to execute the instructions to cause the apparatus to: receive, from a homomorphic task management unit, a homomorphic task key request for requesting to deliver a homomorphic task key to at least one of N homomorphic enabling units participating in a homomorphic task, wherein the homomorphic task key request comprises one or more homomorphic task participant types of each of the N homomorphic enabling units and a homomorphic encryption algorithm identifier used in the homomorphic task, wherein the one or more homomorphic task participant types comprise any one of a homomorphic encryption party, a homomorphic computation party, or a homomorphic decryption party, and wherein N is an integer greater than or equal to 1; send, to at least a first one of the N homomorphic enabling units serving as the homomorphic encryption party, a homomorphic encryption key; send, to at least a second one of the N homomorphic enabling units serving as the homomorphic computation party, a homomorphic computation key; and send, to at least a third one of the N homomorphic enabling units serving as the homomorphic decryption party, a homomorphic decryption key, wherein the homomorphic encryption key, the homomorphic computation key, and the homomorphic decryption key are based on a key generator corresponding to the homomorphic encryption algorithm identifier.

Description

CROSS-REFERENCE TO RELATED APPLICATIONS This is a continuation of International Patent Application No. PCT/CN2023/105428 filed on Jun. 30, 2023, which is hereby incorporated by reference in its entirety. TECHNICAL FIELD This disclosure relates to the field of communication technologies, and in particular, to a homomorphic task management method, a key management method, a ciphertext storage management method, and an apparatus. BACKGROUND With convergence of communication, perception, and artificial intelligence (AI), perception has emerged as an inherent capability of future communication networks, providing a large amount of data for intelligent applications. The network serves as both a data producer and provider, delivering trusted data services for various intelligent applications. Additionally, the network also acts as a network data consumer, leveraging the data-driven intelligent applications to improve network performance and operation efficiency. In addition, with social progress and increasing awareness of data ownership, requirements on data privacy protection have become increasingly stringent. How to fully explore and realize data value and efficiently utilize communication resources and computation resources in communication networks while meeting high security and privacy requirements, and how to provide end-to-end data privacy and security protection technologies while implementing various new network capabilities (such as endogenous intelligence and ubiquitous perception) and new services (such as immersive extended reality (XR), digital twins, meta universe, and the like) are problems to be urgently resolved. SUMMARY This disclosure provides a homomorphic task management method, a key management method, a ciphertext storage management method, and an apparatus, to apply homomorphic encryption (HE) to a communication network, support management of a homomorphic task in the communication network, and provide a privacy computation capability for the communication network. According to a first aspect, an embodiment of this disclosure provides a homomorphic task management method. The homomorphic task management method may be performed by a homomorphic task management unit. The method includes: receiving a homomorphic task request, where the homomorphic task request includes a homomorphic task output type; and sending one or more pieces of task configuration information to N homomorphic enabling units based on the homomorphic task request, where each piece of task configuration information includes one or more homomorphic task participant types of at least one of the N homomorphic enabling units; the homomorphic task participant type includes any one of an HE party, a homomorphic computation party, and a homomorphic decryption party; and the N homomorphic enabling units are configured to implement a homomorphic task corresponding to the homomorphic task output type, where N is an integer greater than or equal to 1. The homomorphic enabling unit may be a terminal device, an access network device, a core network (CN) element, an independent node, an application layer function node, or the like; or a chip, a circuit, a software module, or the like corresponding to the devices (or network elements, or the like). The homomorphic task management unit may be separately deployed as a node in a communication network, or a function of the homomorphic task management unit may be deployed on an existing node in the communication network. This is not limited in this disclosure. According to the foregoing method, the homomorphic task management unit may manage a terminal device, an access network device, a CN element, an independent node, an application layer function node, or another node serving as a homomorphic enabling unit in the communication network; and allocate, based on the homomorphic task request, a homomorphic task participant type to the terminal device, the access network device, the CN element, the independent node, the application layer function node, or the other node serving as a homomorphic enabling unit in the communication network, to apply the HE to the communication network, and support implementing the HE in the communication network. In a possible design, task configuration information sent to at least one of the N homomorphic enabling units serving as a homomorphic computation party further includes a homomorphic computation algorithm identifier and an HE algorithm identifier, and the homomorphic computation algorithm identifier may be determined based on the homomorphic task output type, or may be determined based on the homomorphic computation algorithm identifier carried in the homomorphic task request when the homomorphic task request carries the homomorphic computation algorithm identifier. According to the foregoing design, the homomorphic computation algorithm identifier and the HE algorithm identifier may be configured for the homomorphic computation party, so that the homom