# Lab 1 Part 2 -- Digital Signatures
Let us now use these RSA principles to implement RSA digital signatures.  
At this point digital signatures should be pretty straightforward.\
But it is important to follow the protocol.

Digital Signatures are different than encryption.\
You can encrypt if you like, or you can sign.\
These are different functions and are done independently of each other.\

There is no need to ever sign encryption, or encrypt a signature!!!

In [None]:
################
# DATA DATA DATA
################

# Alice data
Pa = 2**107 - 1
Qa = 2**607 - 1
Na = Pa*Qa                    # Alice modulus
phi_Na = (Pa - 1)*(Qa - 1)
Ea = 101                      # Alice encryption exponent
Da = inverse_mod(Ea, phi_Na)  # Alice decryption exponent

# Bob data
Pb = 2**521 - 1
Qb = 2**127 - 1 
Nb = Pb*Qb                    # Bob modulus
phi_Nb = (Pb - 1)*(Qb - 1)
Eb = 173                      # Bob encryption exponent
Db = inverse_mod(Eb, phi_Nb)  # Bob decryption exponent

The protocol for a digital signature:
Step 1:  hash the message
Step 2:  sign the hash

That's it.\
Clearly there are a few details for each of these steps, but that's it.

In practice when we sign a form this is what is done.\
A copy of the message, say an outlook email, is sent.\
The digital signature is a signed copy of the message's hash.\
The recipient can easily hash the received message for themselves.\
They can also retrieve the signed hash from the sender.\
The recipient now compares the signed hash, and their calculated hash.\
If they match! The signature is valid.


**note**. 
Hashes here can be tricky because you need to focus on the datatype.\
A hash will commonly be viewed as a hexadecimal value, meaning a number which uses 0-9 as well as letters a-f.\
If we are comparing hashes, we usually want to print the values out, and printing a hash is done as a hexadecimal number, or sometimes it's convenient to print as a string.\
Just be careful and pay attention to the details.\

Like before, if we are going to encrypt or decrypt, or use `power_mod()` the value needs to be a decimal integer.

In [None]:
##################################################
# The following function is written and functional 
# It is for your use
##################################################


# here is a function called hash_message() which takes as an argument a
# string message and returns a hexadecimal hash

def hash_message(message):
    import hashlib                        # gives us access to sha256()
    hash = hashlib.sha256()               # instantiates a sha256 object
    hash.update(message.encode('UTF-8'))  # creates hash of the message
    return hash.hexdigest()               # returns hexadecimal value

Above is a function for hashing.\
We are importing the hash library from sagemath, and using a sha256 hash.\

It's important for sender and recipient to agree on the type of hash ahead of time.\
sha256 is the current standard, though, so we use that here.\

Like in RSA when I made my simpe encoding scheme, here we need an encoding.\
For the same reasons too, we need to turn the text into an integer somehow.\
That's all any encoding does, it enumerates text and characters in some manner.\
Here we will use the ubiquitous 'UTF-8' or $unicode$ encoding.

Finaly, the hash object is a string.\
There is really no reason for most users to need it to be a number.\
We are not most users.  We still need to compute the signature using `power_mod`\
So the function returns `hexdigest()`, which is a hexadecimal number, not a string

In [None]:
# create a message
message = "THIS IS A MESSAGE, BUT I WANT TO HAVE A DIGITAL SIGNATURE"

message_hash = hash_message(message)
print("This is what the hash of the message looks like: \n\t" + message_hash)
print()

# to create a digital signature we need to apply a private exponent
# so we change this hexadecimal value into a decimal value 
# use int() function, and tell it that the hash is using base 16
hash_int = int(message_hash, 16)
print("hash_int: \n\t" + str(hash_int))
print()

# you can see that you have a long integer now!
# so Alice's the digital signature of this message is
digital_signature = power_mod(hash_int, Da, Na)
print("digital signature: \n\t" + str(digital_signature))

### How can you verify a digital signature?
Well if Bob receives this digital signature from Alice, he will also receive the message from her.  
So Bob can use sha256 to hash the message he receives.  
Finally he can compare that hash to the one he receives from Alice, once he'd decrypted her hash.

In [None]:
################
# DEMO DEMO DEMO
################

# Bob receives the following signed message from Alice
message = "I never finished reading The Lord of the Rings"
signature = 44673142268372414750074900051932624400737057995637552921538902794365231890355714653405730610723410178509662171225177812601573821078605343820846714301391175087750829292837940584651147548158210519372360172132811388254

# Bob will start validating this message now

# Step 1: Bob will calculate the message hash for himself
bob_hashed = hash_message(message)

# Step 2: Bob can decrypt the digital signature from Alice using her public key
decrypted_signature = power_mod(signature, Ea, Na)

# Step 3: Bob needs to convert back to a hexadecimal value from an integer too
# this allows the hash to look like a hash, since they are hex values
message_hash = hex(decrypted_signature)[2:]     # the [2:] is a formatting gimmick

# Step 4: finally Bob wants to validate that the hash he computed, bob_hashed
# matched the hash Alice sent
print(bob_hashed)
print(message_hash)

print("The signature's validity is:  " + str((bob_hashed == message_hash)))

In [None]:
############
# Question 1
############

# hash the following message
message = "I SPY WITH MY LITTLE EYE..."








In [None]:
############
# Question 2
############

# if Alice digitally signed the message, what is the signature?








In [None]:
############
# Question 3
############

# if Bob digitally signed the message, what is the signature?








In [None]:
############
# Question 4
############

# is this a valid signed message from Bob?
message = "MY SPY EYE SPIES LITTLE FLIES!"
signature = 67665320774341585218641903297883881428876591239089016099194084691441062711037119108738886346480794950052976885691696058974752274559706955814164684820708231719676500021836441058627666800277702454512627962111048602283







############
# Question 5
############

# is this a valid signed message from Alice?