Intel Demos Chip to Compute with Encrypted Data

https://spectrum.ieee.org/fhe-intel

84•sohkamyung•2h ago

Comments

esseph•1h ago

Everything about this in my head screams "bad idea".

If you need to trust the encryption and trust the hardware itself, it may not be suitable for your environment/ threat model.

gruez•45m ago

>If you need to trust the encryption and trust the hardware itself, it may not be suitable for your environment/ threat model.

Are we reading the same article? It's talking about homorphic encryption, ie. doing mathematical operations on already encrypted data, without being aware of its cleartext contents. It's not related to SGX or other trusted computing technologies.

cwmma•44m ago

In theory you only need to trust the hardware to be correct, since it doesn't have the decryption key the worst it can do is give you a wrong answer. In theory.

u1hcw9nx•40m ago

In FHE the hardware running it don't know the secrets. That's the point.

First you encrypt the data. Then you send it to hardware to compute, get result back and decrypt it.

zvqcMMV6Zcr•59m ago

> Heracles, which sped up FHE computing tasks as much as 5,000-fold compared to a top-of the-line Intel server CPU.

That is nice speed-up compared to generic hardware but everyone probably wants to know how much slower it is than performing same operations on plain text data? I am sure 50% penalty is acceptable, 95% is probably not.

corysama•45m ago

There are applications that are currently doing this without hardware support and accepting much worse than 95% performance loss to do so.

This hardware won’t make the technique attractive for ALL computation. But, it could dramatically increase the range of applications.

patchnull•5m ago

Current FHE on general CPUs is typically 10,000x to 100,000x slower than plaintext, depending on the scheme and operation. So even with a 5,000x ASIC speedup you are still looking at roughly 20-100x overhead vs unencrypted compute.

That rules out anything latency-sensitive, but for batch workloads like aggregating encrypted medical records or running simple ML inference on private data it starts to become practical. The real unlock is not raw speed parity but getting FHE fast enough that you can justify the privacy tradeoff for specific regulated workloads.

freedomben•43m ago

Perhaps it's a cynical way to look at it, but in the days of the war on general purpose computing, and locked-down devices, I have to consider the news in terms of how it could be used against the users and device owners. I don't know enough to provide useful analysis so I won't try, but instead pose as questions to the much smarter people who might have some interesting thoughts to share.

There are two, non-exclusive paths I'm thinking at the moment:

1. DRM: Might this enable a next level of DRM?

2. Hardware attestation: Might this enable a deeper level of hardware attestation?

gruez•39m ago

See: https://news.ycombinator.com/item?id=47323743

It's not related to DRM or trusted computing.

inetknght•30m ago

Not yet.

gruez•19m ago

What does that even mean?

A: "Intel/AMD is adding instructions to accelerate AES"

B: "Might this enable a next level of DRM? Might this enable a deeper level of hardware attestation?"

A: "wtf are you talking about? It's just instructions to make certain types of computations faster, it has nothing to do with DRM or hardware attestation."

B: "Not yet."

I'm sure in some way it probably helps DRM or hardware attestation to some extent, but not any more than say, 3nm process node helps DRM or hardware attestation by making it faster.

egorfine•38m ago

> how it could be used against the users and device owners

Same here.

Can't wait to KYC myself in order to use a CPU.

Frieren•27m ago

> how it could be used against the users

We are not anymore their clients, we are just another product to sell. So, they do not design chips for us but for the benefit of other corporations.

3. Unskippable ads with data gathering at the CPU level.

youknownothing•26m ago

I don't think it's applicable to DRM because you eventually need the decrypted content: DRM is typically used for books, music, video, etc., you can't enjoy an encrypted video.

I think eGovernment is the main use case: not super high traffic (we're not voting every day), but very high privacy expectations.

mmaunder•33m ago

Someone explain how you'd create a vector embedding using homomorphically encrypted data, without decrypting it. Seems like a catch 22. You don't get to know the semantic meaning, but need the semantic meaning to position it in high dimensional space. I guess the point I'm making is that sure, you can sell compute for FHE, but you quickly run up against a hard limit on any value added SaaS you can provide the customer. This feels like a solution that's being shoehorned in because cloud providers really really really want to have a customer use their data center, when in truth the best solution would be a secure facility for the customer so that applications can actually understand the data they're working with.

Chance-Device•28m ago

FHE is the future of AI. I predict local models with encrypted weights will become the norm. Both privacy preserving (insofar as anything on our devices can be) and locked down to prevent misuse. It may not be pretty but I think this is where we will end up.

boramalper•3m ago

If you're interested in "private AI", see Confer [0] by Moxie Marlinspike, the founder of Signal private messaging app. They go into more detail in their blog. [1]

[0] https://confer.to/

[1] https://confer.to/blog/2025/12/confessions-to-a-data-lake/

JanoMartinez•20m ago

One thing I'm curious about is whether this could change how cloud providers handle sensitive workloads.

If computation can happen directly on encrypted data, does that reduce the need for trusted environments like SGX/TEE, or does it mostly complement them?

Emacs and Vim in the Age of AI

Launch HN: Didit (YC W26) – Stripe for Identity Verification

Parameter Variation for Powder-Bed Arc Additive Manufacturing

Tools I found that make using Claude Code easier on your phone

Show HN: Svglib a SVG parser and renderer for Windows

The ugly history of regime change

What software knowledge will stay relevant?

Show HN: Base Layer – Open-source behavioral compression from any text

Para-biathlete wins silver using ChatGPT as his coach

Amazon is holding a mandatory meeting about AI breaking its systems

Show HN: Claude Tuner – Monitor your Claude usage and find the right plan

CragCLI – a new calculator for the command line

Show HN: Jottit – Reviving the Original from 2007

Stripe: Billing for LLM Tokens

Unlocked SaaS, file source as truth?

Understanding OBD2 codes (past, present, future)

Ask HN: What Happened to Llama Models?

Meta to Acquire Moltbook

Disorder Drives One of Nature's Most Complex Machines

Spacecraft's impact changed asteroid's orbit in a save-the-Earth test

Volkswagen to cut 50k jobs as profits drop

Microsoft 365 confirms new premium tier, stuffed with AI and few discounts

Smol AI WorldCup: What Small LLMs Can Do

Debian decides not to decide on AI-generated contributions

License Laundering and the Death of Clean Room (The Chardet Saga)

We are building data breach machines and nobody cares

Turing Award winner and former Oxford professor Tony Hoare passed away

Non-blocking SQLite for Node.js. Ported 100% of better-sqlite3 tests

AI Agent hacked McKinsey's chatbot and gained full read-write access in 2 hours

Forward to Hell?