<a href="https://colab.research.google.com/github/Anjasfedo/Code-as-a-Cryptography/blob/main/ecc_lsb.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [1]:
from cryptography.hazmat.primitives.asymmetric import ec
from cryptography.hazmat.primitives import serialization

# Generate a private key
private_key = ec.generate_private_key(ec.SECP256R1())

# Extract the public key from the private key
public_key = private_key.public_key()

# Serialize the private key to PEM format
private_pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.PKCS8,
    encryption_algorithm=serialization.NoEncryption()
)

# Serialize the public key to PEM format
public_pem = public_key.public_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PublicFormat.SubjectPublicKeyInfo
)

# Output the keys
print(private_pem.decode('utf-8'))
print(public_pem.decode('utf-8'))


-----BEGIN PRIVATE KEY-----
MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgMGAAkUbDvz1u4S0p
gKoizcOkGyO7GHS6Yd4L34a9taKhRANCAAR4o87jmyW0oEQUbTSRYLhKGy/P1WH8
fhX4HKQnFqCG3RiI4yfq7PJZ+V+cIkVXhc4tWhObQvurKbjTrbWSiN93
-----END PRIVATE KEY-----

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEeKPO45sltKBEFG00kWC4Shsvz9Vh
/H4V+BykJxaght0YiOMn6uzyWflfnCJFV4XOLVoTm0L7qym40621kojfdw==
-----END PUBLIC KEY-----



In [2]:
from cryptography.hazmat.primitives.asymmetric import ec
from cryptography.hazmat.primitives.kdf.hkdf import HKDF
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
import os

# Fungsi untuk enkripsi dengan AES-GCM
def encrypt_aes_gcm(key, plaintext, associated_data):
    iv = os.urandom(12)  # Inisialisasi vektor (12 byte)
    encryptor = Cipher(
        algorithms.AES(key),
        modes.GCM(iv),
        backend=default_backend()
    ).encryptor()

    encryptor.authenticate_additional_data(associated_data)

    ciphertext = encryptor.update(plaintext) + encryptor.finalize()
    return (iv, ciphertext, encryptor.tag)

# Fungsi untuk dekripsi dengan AES-GCM
def decrypt_aes_gcm(key, associated_data, iv, ciphertext, tag):
    decryptor = Cipher(
        algorithms.AES(key),
        modes.GCM(iv, tag),
        backend=default_backend()
    ).decryptor()

    decryptor.authenticate_additional_data(associated_data)

    return decryptor.update(ciphertext) + decryptor.finalize()

# 1. Membuat key pair ECC (kita akan menggunakan ECDH untuk pertukaran kunci)
private_key = ec.generate_private_key(ec.SECP256R1(), default_backend())
peer_private_key = ec.generate_private_key(ec.SECP256R1(), default_backend())

# 2. Tukar public key untuk membentuk shared key (ECDH)
shared_key = private_key.exchange(ec.ECDH(), peer_private_key.public_key())

# 3. Derivasi shared key dengan HKDF menjadi kunci AES
derived_key = HKDF(
    algorithm=hashes.SHA256(),
    length=32,
    salt=None,
    info=b'handshake data',
    backend=default_backend()
).derive(shared_key)

# Plaintext yang ingin dienkripsi
plaintext = b"3348610401970005#christofer*derian*budianto#tegal#1997-03-04#laki-laki#b#jl.*pala*22*no.*30#005#017#meja sem*tengah#kramat#katholik#belum*kawin#pelajar/mahasiswa#wni#seumur*hidup"

# 4. Enkripsi plaintext
iv, ciphertext, tag = encrypt_aes_gcm(derived_key, plaintext, b'associated_data')

# Cetak hasil enkripsi
print(f"Ciphertext: {ciphertext.hex()}")

# 5. Dekripsi ciphertext kembali ke plaintext
decrypted_text = decrypt_aes_gcm(derived_key, b'associated_data', iv, ciphertext, tag)

# Cetak hasil dekripsi
print(f"Decrypted text: {decrypted_text.decode('utf-8')}")


Ciphertext: 3d051d7cd6e2397d831347c9c759bf7f4acd9c59479fc72fc3c3723a93ecd197045a8697d3bcae744461d04fbdda96e4116a91fc24cbd866e84d364e2ebc7e9bd421a45e64fd99c4d9190514dba188f06eab78769789028fc5ce13be96806bfb44f9ac07660edcf6f6a6ad372b5946c73c29e43c11677d4aa5972d9513b706eb452d5b717b1f24c55195078a900df47387a9dc410b640ebc09c4cdc2a6ee99067b7312ef0343ba33e1e2653d9b9369fedae2
Decrypted text: 3348610401970005#christofer*derian*budianto#tegal#1997-03-04#laki-laki#b#jl.*pala*22*no.*30#005#017#meja sem*tengah#kramat#katholik#belum*kawin#pelajar/mahasiswa#wni#seumur*hidup


In [4]:
import requests
from PIL import Image
import io

# URL to the raw image file
url = "https://raw.githubusercontent.com/mikolalysenko/lena/master/lena.png"

# Download the image
response = requests.get(url)
if response.status_code == 200:
    # Load the image using PIL
    lena_image = Image.open(io.BytesIO(response.content))
    lena_image.show()  # Display the image (optional)
    lena_image.save("lena_downloaded.png")  # Save the image locally
else:
    print("Failed to download the image.")


In [7]:
from PIL import Image
import numpy as np
from cryptography.hazmat.primitives.asymmetric import ec
from cryptography.hazmat.primitives.kdf.hkdf import HKDF
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
import os

# AES-GCM Encryption
def encrypt_aes_gcm(key, plaintext, associated_data):
    iv = os.urandom(12)
    encryptor = Cipher(
        algorithms.AES(key),
        modes.GCM(iv),
        backend=default_backend()
    ).encryptor()

    encryptor.authenticate_additional_data(associated_data)
    ciphertext = encryptor.update(plaintext) + encryptor.finalize()
    return iv, ciphertext, encryptor.tag

# AES-GCM Decryption
def decrypt_aes_gcm(key, associated_data, iv, ciphertext, tag):
    decryptor = Cipher(
        algorithms.AES(key),
        modes.GCM(iv, tag),
        backend=default_backend()
    ).decryptor()

    decryptor.authenticate_additional_data(associated_data)
    return decryptor.update(ciphertext) + decryptor.finalize()

# Generate ECC key pair for ECDH
private_key = ec.generate_private_key(ec.SECP256R1(), default_backend())
peer_private_key = ec.generate_private_key(ec.SECP256R1(), default_backend())

# Exchange public keys to get shared key
shared_key = private_key.exchange(ec.ECDH(), peer_private_key.public_key())

# Derive AES key from shared key
derived_key = HKDF(
    algorithm=hashes.SHA256(),
    length=32,
    salt=None,
    info=b'handshake data',
    backend=default_backend()
).derive(shared_key)

# Plaintext to encrypt
plaintext = b"3348610401970005#christofer*derian*budianto#tegal#1997-03-04#laki-laki#b#jl.*pala*22*no.*30#005#017#meja sem*tengah#kramat#katholik#belum*kawin#pelajar/mahasiswa#wni#seumur*hidup"

# Encrypt the plaintext
iv, ciphertext, tag = encrypt_aes_gcm(derived_key, plaintext, b'associated_data')

# Combine IV, ciphertext, and tag
combined_cipher = iv + ciphertext + tag

# LSB Steganography Embedding
def embed_data_in_image(image_path, data):
    # Open the image
    img = Image.open(image_path)
    img = img.convert("RGB")
    arr = np.array(img)

    # Convert data to bitstream
    bitstream = ''.join(format(byte, '08b') for byte in data)

    # Ensure the image can hold the data
    if len(bitstream) > arr.size * 3:
        raise ValueError("Data is too large to fit in the image.")

    idx = 0
    for i in range(arr.shape[0]):
        for j in range(arr.shape[1]):
            pixel = list(arr[i, j])
            for k in range(3):  # RGB channels
                if idx < len(bitstream):
                    pixel[k] = (pixel[k] & 0xFE) | int(bitstream[idx])  # LSB replacement
                    idx += 1
            arr[i, j] = tuple(pixel)

    # Create and return stego image
    stego_img = Image.fromarray(arr)
    return stego_img

# Save stego image
stego_img = embed_data_in_image("lena_downloaded.png", combined_cipher)
stego_img.save("stego_lena.png")
print("Stego image created and saved as stego_lena.png.")

# LSB Steganography Extraction
def extract_data_from_image(image_path, data_length):
    img = Image.open(image_path)
    img = img.convert("RGB")
    arr = np.array(img)

    bitstream = ""
    for i in range(arr.shape[0]):
        for j in range(arr.shape[1]):
            pixel = list(arr[i, j])
            for k in range(3):  # RGB channels
                bitstream += bin(pixel[k])[-1]
                if len(bitstream) >= data_length * 8:
                    break
            if len(bitstream) >= data_length * 8:
                break

    # Convert bitstream to bytes
    data = bytes(int(bitstream[i:i+8], 2) for i in range(0, len(bitstream), 8))
    return data

# Extract ciphertext from the stego image
extracted_cipher = extract_data_from_image("stego_lena.png", len(combined_cipher))

# Separate IV, ciphertext, and tag
extracted_iv = extracted_cipher[:12]
extracted_ciphertext = extracted_cipher[12:-16]
extracted_tag = extracted_cipher[-16:]

# Decrypt the extracted ciphertext
decrypted_text = decrypt_aes_gcm(derived_key, b'associated_data', extracted_iv, extracted_ciphertext, extracted_tag)

# Print decrypted text
print(f"Decrypted text: {decrypted_text.decode('utf-8')}")


Stego image created and saved as stego_lena.png.


InvalidTag: 

In [8]:
!pip install eciespy

Collecting eciespy
  Downloading eciespy-0.4.2-py3-none-any.whl.metadata (6.6 kB)
Collecting coincurve<20,>=13 (from eciespy)
  Downloading coincurve-19.0.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.7 kB)
Collecting eth-keys<0.6,>=0.4 (from eciespy)
  Downloading eth_keys-0.5.1-py3-none-any.whl.metadata (13 kB)
Collecting pycryptodome<4.0.0,>=3.19.1 (from eciespy)
  Downloading pycryptodome-3.20.0-cp35-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.4 kB)
Collecting asn1crypto (from coincurve<20,>=13->eciespy)
  Downloading asn1crypto-1.5.1-py2.py3-none-any.whl.metadata (13 kB)
Collecting eth-utils>=2 (from eth-keys<0.6,>=0.4->eciespy)
  Downloading eth_utils-5.0.0-py3-none-any.whl.metadata (5.4 kB)
Collecting eth-typing>=3 (from eth-keys<0.6,>=0.4->eciespy)
  Downloading eth_typing-5.0.0-py3-none-any.whl.metadata (5.1 kB)
Collecting eth-hash>=0.3.1 (from eth-utils>=2->eth-keys<0.6,>=0.4->eciespy)
  Downloading eth_hash-0.7.0-py3-none-any.wh

In [10]:
from ecies.utils import generate_eth_key, generate_key
from ecies import encrypt, decrypt

In [11]:
eth_k = generate_eth_key()
sk_hex = eth_k.to_hex()  # hex string
pk_hex = eth_k.public_key.to_hex()  # hex string
data = b'this is a test'
decrypt(sk_hex, encrypt(pk_hex, data))

b'this is a test'

In [12]:
secp_k = generate_key()
sk_bytes = secp_k.secret  # bytes
pk_bytes = secp_k.public_key.format(True)  # bytes
decrypt(sk_bytes, encrypt(pk_bytes, data))

b'this is a test'

In [14]:
#define "Point at Infinity"
PatInf = [0, 0]

#exponentiation by squaring
def fastPow(base, exponent, modulus):
    result = 1
    base = base % modulus
    while (exponent > 0):
        if (exponent % 2 == 1):
            result = (result * base) % modulus
        exponent = int(exponent) >> 2
        base = (base * base) % modulus
    return result

#cofactor of 1 just check if point is a quad res
#p is congruent to 3 mod 4
def isQuadraticResidue(y, p):
    if fastPow(y, (p - 1)/2, p) == p-1:
        return False
    else:
        return True

#Take PT and curve parameters. return point on curve
def pt_to_point(pt, a, b, p):
    num_try_bits = 8
    l = 0
    x = (pt << num_try_bits)
    y = 0
    while (l < (2**num_try_bits - 1)):
        y_sqr = (x**3 + a*x + b) % p
        if isQuadraticResidue(y_sqr, p):
            y = fastPow(y_sqr, (p+1)/4, p)
            break
        else:
            l = l + 1
            x = x | l
    return [x, y]

def encrypt_data(g, random_key, public_key, m, a, p):
    print ("\nENCRYPTING DATA!!\n")
    print ("\nPT point: ")
    print (m)
    C1 = doubleAndAdd(g[0], g[1], random_key, a, p)
    C2 = doubleAndAdd(public_key[0], public_key[1], random_key, a, p)
    print ("\nEncrypting Key point: ")
    print (C2)
    C2 = add_points(C2[0], C2[1], m[0], m[1], a, p)
    print ("\nCipher Point is: ")
    print (C2)
    return [C1,C2]

def decrypt_data(private_key, C, a, p):
    print ('\nDECRYPTING DATA!!\n')
    ay1 = doubleAndAdd(C[0][0], C[0][1], private_key, a, p)
    print ("\nay1 is: ")
    print (ay1)
    decipherAsPoint = add_points(C[1][0], C[1][1], ay1[0], ay1[1]*-1, a, p)
    print ("\nDeciphered point is: ")
    print (decipherAsPoint)
    decipherAsInt = decipherAsPoint[0] >> 8
    return decipherAsInt

def add_points(x0, y0, x1, y1, a, p):
    while y1 < 0:
        y1 = y1 + p

    if x0 == x1 and y0 == y1:
        Lambda = (3*x0*x0 + a) * mod_inv(2*y0, p)
    else:
        if x0 == x1:
            return PatInf
        elif [x0, y0] == PatInf:
            return x1, y1
        elif [x1, y1] == PatInf:
            return x0, y0
        else:
            Lambda = (y1 - y0) * mod_inv(x1 - x0, p)

    x2 = (Lambda * Lambda - x0 - x1) % p
    y2 = ((x0 - x2) * Lambda - y0) % p
    return x2, y2

#double and add method from wikipedia https://en.wikipedia.org/wiki/Elliptic_curve_point_multiplication#Double-and-add
def doubleAndAdd(Gx, Gy, k, a, p):
    res = PatInf
    temp = [Gx, Gy]

    kAsBinary = bin(k) #0b101010101
    kAsBinary = kAsBinary[2:len(kAsBinary)]
    for bit in reversed(kAsBinary):
        if bit == '1':
            res = add_points(res[0], res[1], temp[0], temp[1], a, p)
        temp = add_points(temp[0], temp[1], temp[0], temp[1], a, p)
    return res

def mod_inv(a, m):
    return pow(a, -1, m) #since python 3.8 (demonstrated in last video with extended euclidean in C)

In [15]:

import random

#Helper functions inspired by https://github.com/serengil/crypto/blob/d0520d85951e4c3808d13012bd5fe1b9a70dcf7d/python/EC-ElGamal.py#L6
def PTtoInt(PT):
    PT_encoded = PT.encode('utf-8')
    PT_hex = PT_encoded.hex()
    PT_int = int(PT_hex, 16)
    return PT_int

def intToPT(PTasInt):
    import codecs
    PTasHex = hex(PTasInt)
    PTasHex = PTasHex[2:]
    return codecs.decode(codecs.decode(PTasHex,'hex'),'utf-8')


#pick an eliptic curve
#Using secp160k1 from https://neuromancer.sk/std/secg/secp160k1
#y = x^3 + ax + b
p = 0xfffffffffffffffffffffffffffffffeffffac73
a = 0
b = 7
G = [0x3b4c382ce37aa192a4019e763036f4f5dd4d7ebb, 0x938cf935318fdced6bc28286531733c3f03c4fee] #generator
Ord = 0x0100000000000000000001b8fa16dfab9aca16b6b3

decrypter_private_key = random.getrandbits(160)
while (decrypter_private_key > Ord):
    decrypter_private_key = random.getrandbits(160)
decrypter_public_key = doubleAndAdd(G[0], G[1], decrypter_private_key, a, p)

encrypter_random_key = random.getrandbits(160)
while (encrypter_random_key > Ord):
    encrypter_random_key = random.getrandbits(160)

PT = ""
while PT != "exit":
    PT = input("Enter the plaintext to be encrypted: ")
    PTcharArr = list(PT)
    CT = []
    for i in PTcharArr:
        PTasInt = PTtoInt(i)
        CT.append(encrypt_data(G,
                               encrypter_random_key,
                               decrypter_public_key,
                               pt_to_point(PTasInt, a, b, p),
                               a,
                               p))
    print(CT)
    input("hit enter when ready to decrypt")
    DecipherText = []
    for point in CT:
        Decipher = decrypt_data(decrypter_private_key, point, a, p)
        DecipherText.append(intToPT(Decipher))
    print(DecipherText)

Enter the plaintext to be encrypted: lorem

ENCRYPTING DATA!!


PT point: 
[27648, 449050056220390450045846613214716872480200802581]

Encrypting Key point: 
(1380701988532944510786111973685968146610044980672, 1205113581128137695605706762020971419977199105876)

Cipher Point is: 
(1447779713807408580042867707843639864431858585264, 251937468389303155268623759757973840893761489237)

ENCRYPTING DATA!!


PT point: 
[28416, 1220849634483575126466278058098299074169987220386]

Encrypting Key point: 
(1380701988532944510786111973685968146610044980672, 1205113581128137695605706762020971419977199105876)

Cipher Point is: 
(1267933072421455256203396067800902915056742607215, 304163236873753237284437692383930783457833761295)

ENCRYPTING DATA!!


PT point: 
[29184, 392424491608013911348076579934702901913809691197]

Encrypting Key point: 
(1380701988532944510786111973685968146610044980672, 1205113581128137695605706762020971419977199105876)

Cipher Point is: 
(1167863943773581653399165080334784275368682

KeyboardInterrupt: Interrupted by user

In [2]:
!pip install pycryptodome



In [3]:
from Crypto.PublicKey import ECC
mykey = ECC.generate(curve='p256')

In [4]:
pwd = b'secret'
with open("myprivatekey.pem", "wt") as f:
    data = mykey.export_key(format='PEM',
                                passphrase=pwd,
                                protection='PBKDF2WithHMAC-SHA512AndAES256-CBC',
                                prot_params={'iteration_count':131072})
    f.write(data)

In [None]:
pwd = b'secret'
with open("myprivatekey.pem", "rt") as f:
    data = f.read()
    mykey = ECC.import_key(data, pwd)

In [5]:
with open("mypublickey.pem", "wbt") as f:
  data = mykey.public_key().export_key()

ValueError: can't have text and binary mode at once

In [6]:
from Crypto.PublicKey import ECC
from Crypto.Hash import SHA256
from Crypto.Signature import DSS

# Generate ECC key pair
key = ECC.generate(curve='P-256')

# Export and import keys
private_key = key.export_key(format='PEM')
public_key = key.public_key().export_key(format='PEM')

# Example: Signing and verification
message = b"Example message"
hash_obj = SHA256.new(message)

# Sign the message
signer = DSS.new(key, 'fips-186-3')
signature = signer.sign(hash_obj)

# Verify the signature
verifier = DSS.new(ECC.import_key(public_key), 'fips-186-3')
try:
    verifier.verify(hash_obj, signature)
    print("Signature is valid.")
except ValueError:
    print("Signature is invalid.")


Signature is valid.
