Coming soon

fhEVM Coprocessor
on Ethereum

The fhEVM enables smart contracts with Fully Homomorphic Encryption. With the fhEVM Coprocessor, developers can write confidential dapps on any non-FHE enabled chains.

 See the code Get early access

Read Zama fhEVM white paper

Onchain Data is Public by Design, Making it Hard to Build Dapps that Require Confidentiality

Write Confidential Smart Contracts Easily on Ethereum*, Using Zama fhEVM Coprocessor

E2E encryption for inputs
and state

Full composability on
private state

Work with existing
chains

*Coming soon

It Unlocks a Myriad of New Use Cases for Consumers, Businesses, and Regulated Industries

Tokenization

Swap tokens and RWAs onchain without others seeing the amounts.

Stablecoins

Add compliant confidentiality to stablecoin and bridge it to different blockchain networks.

Confidential Networks

Build confidential DApps on Ethereum or build your own FHE-enabled chain.

Onchain Games

Keep moves, selections, cards, or items hidden until ready to reveal.

Confidential Voting

Prevent bribery and blackmailing by keeping votes private.

Blind Auctions

Bid on items without revealing the amount or the winner.

Encrypted DIDs

Store identities onchain and generate attestations without ZK.

Private Transfers

Keep balances and amounts private, without using mixers.

Confidential Supply Chain

Ensure privacy and security in the supply chain and protect businesses.

Develop Your Confidential Applications Faster With Powerful Features Available Out of the Box

High Precision Encrypted Integers

‍Up to 256 bits of precision for integers.

Full Range of Encrypted Operators

All operators available:
+, -, *, /, <, >, ==, ...

Onchain Secure Randomness

‍‍Generate randomness without using oracles.

Threshold Decryption

‍Decryption key is split amongst multiple parties.

Native Support for Tendermint & Avalanche Subnets

‍Deploy a Tendermint or Subnet fhEVM in a few steps.

Build FHE Dapps on Ethereum

Deploy FHE dapps on ETH using fhEVM coprocessors.

Build Confidential Dapps Just as You Would Build Regular Ones

Solidity Integration
FhEVM contracts are simple solidity contracts that are built using traditional solidity toolchains.
‍
‍Simple DevX
‍Developers can use the euint data types to mark which part of their contracts should be private.
‍
Programmable Privacy
‍All the logic for access control of encrypted states is defined by developers in their smart contracts.
‍

Read documentation

function transfer(address to, einput encryptedAmount, bytes calldata inputProof) public {
        euint64 amount = TFHE.asEuint64(encryptedAmount, inputProof);
        // makes sure the owner has enough tokens
        ebool canTransfer = TFHE.le(amount, balances[msg.sender]);
        euint64 transferValue = TFHE.select(canTransfer, amount, TFHE.asEuint64(0));
        // add to the balance of `to`...
        euint64 newBalanceTo = TFHE.add(balances[to], transferValue);
        balances[to] = newBalanceTo;
        TFHE.allow(newBalanceTo, address(this));
        TFHE.allow(newBalanceTo, to);
        //  and substract from the balance of `from`.
        euint64 newBalanceFrom = TFHE.sub(balances[from], transferValue);
        balances[from] = newBalanceFrom;
        TFHE.allow(newBalanceFrom, address(this));
        TFHE.allow(newBalanceFrom, from);
    }

Operational Versatility by Design

Consensus:
■ Proof of Stake (permissionless)
■ Proof of Authority (permissioned)
‍
‍Deployment:
■ L1, L2 or L3 public or enterprise chain
■ App chain
‍■ ZK-fraud-proof rollup (coming 2024)
‍
‍Decryption:
■ PoS or PoA threshold decryption
■ KMS or HSM based centralized decryption

Build and Scale With Cutting-edge Technologies

FHE

Fully homomorphic encryption is used to compute on private state, directly onchain.

MPC

Multi-party computation is used for threshold decryption of FHE ciphertexts.

ZK

‍‍Zero-knowledge proofs are used to ensure encryption and decryption integrity.

The Most Comprehensive Confidential Smart Contract Solution

Zama's fhEVM

Other FHE

Mixers

Operations
supported

Everything

Only additions & multiplications

Everything

None

Privacy model

Hides the data

Hides the identity

Encrypted state composability

Yes

Limited

Developer experience

Easy

Medium

Hard

Compliance

At the application
level

At the user
level

Security

Highest

High

Medium

Choose Between Hosted or Self-Managed Solutions

We make sure to build solutions that fit your needs.

Open source

Features
‍
 Complete fhEVM stack, including consensus, fhEVM libraries, client, and web sdk.

Support
‍
 Community support via a dedicated Discord channel.

‍
License

 Free for personal use, prototyping, evaluation & research.
‍

See on Github

Hosted

Features
‍
 Key generation, decryption and reencryption as a service.
‍
 High level APIs and developer console.
‍
 Fully transparent and auditable.

Support
‍
 24/7 Premium support
‍
 99% uptime guarantee

‍
License

 Transaction fees + Support.
‍

Coming soon

Self-managed

Features
‍
 Deploy a KMS onto your own infrastructure

 Integrate with your own developer console and APIs

 Customize the number of PoA and MPC nodes

 Choose between multiple TEEs

Support
‍
 24/7 Premium support
‍
 99% uptime guarantee

‍
License

 Volume based license + support.
‍

More Resources

Read the latest fhEVM blog posts and learn more with our developer tutorials and presentations.

Get notified at launch

Zama’s fhEVM Coprocessor is coming soon. Register below to receive early access.
‍

Thank you! You'll be notified at launch, follow our latest news on Twitter: @zama_fhe

Oops! Something went wrong while submitting the form.

Privacy is necessary for an open society in the electronic age. Privacy is not secrecy. A private matter is something one doesn't want the whole world to know, but a secret matter is something one doesn't want anybody to know. Privacy is the power to selectively reveal oneself to the world.If two parties have some sort of dealings, then each has a memory of their interaction. Each party can speak about their own memory of this; how could anyone prevent it? One could pass laws against it, but the freedom of speech, even more than privacy, is fundamental to an open society; we seek not to restrict any speech at all. If many parties speak together in the same forum, each can speak to all the others and aggregate together knowledge about individuals and other parties. The power of electronic communications has enabled such group speech, and it will not go away merely because we might want it to.Since we desire privacy, we must ensure that each party to a transaction have knowledge only of that which is directly necessary for that transaction. Since any information can be spoken of, we must ensure that we reveal as little as possible. In most cases personal identity is not salient. When I purchase a magazine at a store and hand cash to the clerk, there is no need to know who I am. When I ask my electronic mail provider to send and receive messages, my provider need not know to whom I am speaking or what I am saying or what others are saying to me; my provider only need know how to get the message there and how much I owe them in fees. When my identity is revealed by the underlying mechanism of the transaction, I have no privacy. I cannot here selectively reveal myself; I must always reveal myself.Therefore, privacy in an open society requires anonymous transaction systems. Until now, cash has been the primary such system. An anonymous transaction system is not a secret transaction system. An anonymous system empowers individuals to reveal their identity when desired and only when desired; this is the essence of privacy.Privacy in an open society also requires cryptography. If I say something, I want it heard only by those for whom I intend it. If the content of my speech is available to the world, I have no privacy. To encrypt is to indicate the desire for privacy, and to encrypt with weak cryptography is to indicate not too much desire for privacy. Furthermore, to reveal one's identity with assurance when the default is anonymity requires the cryptographic signature.We cannot expect governments, corporations, or other large, faceless organizations to grant us privacy out of their beneficence. It is to their advantage to speak of us, and we should expect that they will speak. To try to prevent their speech is to fight against the realities of information. Information does not just want to be free, it longs to be free. Information expands to fill the available storage space. Information is Rumor's younger, stronger cousin; Information is fleeter of foot, has more eyes, knows more, and understands less than Rumor.We must defend our own privacy if we expect to have any. We must come together and create systems which allow anonymous transactions to take place. People have been defending their own privacy for centuries with whispers, darkness, envelopes, closed doors, secret handshakes, and couriers. The technologies of the past did not allow for strong privacy, but electronic technologies do.We the Cypherpunks are dedicated to building anonymous systems. We are defending our privacy with cryptography, with anonymous mail forwarding systems, with digital signatures, and with electronic money.Cypherpunks write code. We know that someone has to write software to defend privacy, and since we can't get privacy unless we all do, we're going to write it. We publish our code so that our fellow Cypherpunks may practice and play with it. Our code is free for all to use, worldwide. We don't much care if you don't approve of the software we write. We know that software can't be destroyed and that a widely dispersed system can't be shut down.Cypherpunks deplore regulations on cryptography, for encryption is fundamentally a private act. The act of encryption, in fact, removes information from the public realm. Even laws against cryptography reach only so far as a nation's border and the arm of its violence. Cryptography will ineluctably spread over the whole globe, and with it the anonymous transactions systems that it makes possible.For privacy to be widespread it must be part of a social contract. People must come and together deploy these systems for the common good. Privacy only extends so far as the cooperation of one's fellows in society. We the Cypherpunks seek your questions and your concerns and hope we may engage you so that we do not deceive ourselves. We will not, however, be moved out of our course because some may disagree with our goals.The Cypherpunks are actively engaged in making the networks safer for privacy. Let us proceed together apace.Onward. By Eric Hughes. 9 March 1993.

fhEVM Coprocessor
on Ethereum

Onchain Data is Public by Design, Making it Hard to Build Dapps that Require Confidentiality