In [1]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric import rsa

private_key = rsa.generate_private_key(
     public_exponent=65537,
     key_size=2048,
     backend=default_backend()
)

print(private_key)

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x106ddc5f8>


In [2]:
from cryptography.hazmat.primitives import serialization
 
pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.PKCS8,
    encryption_algorithm=serialization.BestAvailableEncryption(b'mypassword')
 )
pem.splitlines()[0]

b'-----BEGIN ENCRYPTED PRIVATE KEY-----'

In [3]:
from cryptography.hazmat.primitives import serialization

public_key = private_key.public_key()
pem = public_key.public_bytes(
encoding=serialization.Encoding.PEM,
format=serialization.PublicFormat.SubjectPublicKeyInfo
 )
pem.splitlines()[0]

b'-----BEGIN PUBLIC KEY-----'

In [4]:
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding

message = b"A message I want to sign"
signature = private_key.sign(
     message,
     padding.PSS(
         mgf=padding.MGF1(hashes.SHA256()),
         salt_length=padding.PSS.MAX_LENGTH
     ),
    hashes.SHA256()
)

print(signature)

b'\x1b\x8e\x88\xf2\xea\x0c`\xd2E*\xbf3\x19"R\x85R\x1e\x927\x0cr\xce\x00\xb51V\xf19;\xb3\xab5vY\xbbp\xe9\xd1\x82\xa4i\xdaO\x85\x9c\x1f\xd49\xe6\x92)\x12\xf07\xcb4\xebf\xa1$\x10@\x84E\xffP`\xd3\xc9/\xa3h\xbbabR\xe8\xebi\xa3\x1a\xf5`F0\xb9Z\x16+mX\x87\x86U\x1a+\xa2\xfd\xb7\x1e\x0e\x88\x9f\x8dCS\x0e\x92B#\xf5\xd3i\x9d\xf9\xf8R)9\xe6e|\x81\x1b(\x92\xfb"\xf9\x8f\x0bK\x8dHL\xa5x\xba\xa7\x80\xd9h\x8b_C\xc8\x94\xdfV\\:v\xc4\xf1\t\xec\xef\xce~\'\xc76K\xb5 \xc7\xf7A\xab\xae\x8f\t\xc4\xe8^V40\x1d1\x82\xe0\xcfk\xef\x1a\xbe\xe2\x8cl\xe8\x88Zx\x05x\xec\x0ey\x91\x8e\x90\xa9f\xceQ\x1ba~\xbc\x05\xb9\xaek\x85\xc2\xca-\x8f\x95\x0eIX\x0fd\x94\xd5\xa1\x8d\x95\xe18\xa7\x84As&\x07\xd1\xfdS*+\x07N\xc2\xdf\xa7\xb3\x8e\xb5)\x9ah\xa1'


In [5]:
public_key = private_key.public_key()
public_key.verify(
     signature,
     message,
     padding.PSS(
         mgf=padding.MGF1(hashes.SHA256()),
         salt_length=padding.PSS.MAX_LENGTH
     ),
     hashes.SHA256()
)

print(public_key)

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x107456be0>


In [7]:
#encription
message = b"encrypted data"
ciphertext = public_key.encrypt(
    message,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA1()),
        algorithm=hashes.SHA1(),
        label=None
    )
)

In [8]:
#decription
pt = private_key.decrypt(
    ciphertext,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA1()),
        algorithm=hashes.SHA1(),
        label=None
    )
)

In [9]:
pt==message

True