# Public Key Cryptography

Learn asymmetric encryption using RSA public/private key pairs.

In [1]:
from pathlib import Path

from Crypto.Cipher import PKCS1_OAEP
from Crypto.PublicKey import RSA

# Search for key files starting from current directory and moving up
def find_project_root():
    current = Path.cwd()
    # Try current directory first
    if (current / "my_keypair").exists():
        return current
    # Try parent directory
    if (current.parent / "my_keypair").exists():
        return current.parent
    # Try two levels up (for nested structures)
    if (current.parent.parent / "my_keypair").exists():
        return current.parent.parent
    return current  # Default to current if not found

PROJECT_FOLDER = find_project_root()
print(f"Looking for keypairs in folder: {PROJECT_FOLDER}")

PRIVATE_KEY_FILE = PROJECT_FOLDER / "my_keypair"
PUBLIC_KEY_FILE = PROJECT_FOLDER / "my_keypair.pub"

assert PRIVATE_KEY_FILE.exists(), f"Private key not found at {PRIVATE_KEY_FILE}. CWD: {Path.cwd()}"
assert PUBLIC_KEY_FILE.exists(), f"Public key not found at {PUBLIC_KEY_FILE}"

print(f"✓ Found private key: {PRIVATE_KEY_FILE}")
print(f"✓ Found public key: {PUBLIC_KEY_FILE}")


Looking for keypairs in folder: /workspaces/ECBS-5147-Data-Engineering-Cloud-Computing-Managed-AI-Services
✓ Found private key: /workspaces/ECBS-5147-Data-Engineering-Cloud-Computing-Managed-AI-Services/my_keypair
✓ Found public key: /workspaces/ECBS-5147-Data-Engineering-Cloud-Computing-Managed-AI-Services/my_keypair.pub


Load the private key from file
The private key must be kept secret and secure
Extract the public key from our private key
The public key can be freely shared with anyone


In [2]:
with open(PRIVATE_KEY_FILE, "r", encoding="utf8") as key_file:
    private_key = RSA.import_key(key_file.read())

public_key = private_key.publickey()
print(f"Public key:\n{public_key.export_key().decode('utf-8')}")


Public key:
-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----


Message to be encrypted - must be converted to bytes
Create a cipher object using the public key for encryption
Encrypt our message - only someone with the private key can decrypt it
Save the encrypted message to a file


In [None]:
short_secret_message = "My Secret Message".encode("utf-8")

public_key_cipher = PKCS1_OAEP.new(public_key)

encrypted_message = public_key_cipher.encrypt(short_secret_message)
print("Encrypted message:")
print(encrypted_message.hex())

ENCRYPTED_MESSAGE_FILE = PROJECT_FOLDER / "encrypted_message.bin"
with open(ENCRYPTED_MESSAGE_FILE, "wb") as f:
    f.write(encrypted_message)


Encrypted message:
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


Read the encrypted message from file
Create a cipher object using the private key for decryption
Decrypt the message using the private key
This demonstrates asymmetric encryption where:
1. Messages are encrypted with a public key and can only be decrypted with the matching private key
2. The public key can be freely shared
3. The private key must be kept secret
4. This is more secure than symmetric encryption as the decryption key (private key) is never shared


In [4]:
with open(ENCRYPTED_MESSAGE_FILE, "rb") as f:
    encrypted_message_from_file = f.read()

private_key_cipher = PKCS1_OAEP.new(private_key)

decrypted_message = private_key_cipher.decrypt(encrypted_message_from_file)
print(f"Decrypted message: {decrypted_message.decode('utf-8')}")



Decrypted message: My Secret Message
