# Work Guide: Classical Cryptography

## Part 1: Research Topics
In this section, you will research various classical cryptography topics. Each topic has a set of questions to guide your learning. Avoid repetition and ensure that the questions are slightly different for each topic.

### 1. The Shift Cipher

**1. What is the shift cipher and how does it work?**  
It is a simple and historically significant method of It is a substitution encryption, it works by using the modulo operator to encrypt and decrypt messages. The cipher has a key K, which is an integer from 0 to 25.

**2. How can you encrypt and decrypt messages using the shift cipher?**  
The encryption process works by choosing a key, which is an integer representing the number of positions to shift, then taking each letter in the plaintext and shift it by the key value. If the shift takes a letter beyond the end of the alphabet, start again with the letter A.  

The decryption process works by using the same key value, but shift the letters in the opposite direction.  

Important things:  
Maintain the letter's case (uppercase or lowercase) during the shift.
Spaces and punctuation are usually left unchanged.  
To decript do it up the alphabet if you previously shifted down, and vice versa.

**3. What are the limitations and vulnerabilities of the shift cipher?**  
The limitations and vulnerabilities are: 
- There are limited key space because the alphabet has only 26 letters, so there are only 25 possible keys (k = 0 doesn't change the text). This makes it susceptible to brute-force attacks.
- Because of it's simplicity and becuase it can easily broken using modern encryption techniques, is not suitable for secure communications.
- Because the cipher only involves substitution, it's vulnerable to frequency analysis, which means that the letters have predictable frequency distributions. Thus, an attacker can analyze the frequencies of letters in the ciphertext and deduce the key.

**4. Can you provide an example of a real-world application of the shift cipher?**  
This cipher is not save to used in today's world, but it can serve as a teaching tool to introduce the concepts of cryptography and encryption or in puzzle games. 

**5. How does the shift cipher relate to modular arithmetic?**  
There is a relationship between the cipher and the modular arithmetic, when shifting letters in the alphabet, the "modulo" operation is implicitly used. In the English alphabet with 26 letters, shifting by 3 positions can be expressed as (letter_index + 3) % 26, where letter_index is the position of the letter in the alphabet. The modulo operation ensures that the shifted letter wraps around to the beginning of the alphabet if it goes beyond 'Z'. This concept is a fundamental aspect of modular arithmetic.

Sources: 
- Khan Academy, 2013 - https://www.khanacademy.org/computing/computer-science/cryptography/ciphers/a/shift-cipher
- Arizona State University, s/f. - https://math.asu.edu/sites/default/files/shift.pdf
- Geeks for Geeks, 2023 - https://www.geeksforgeeks.org/caesar-cipher-in-cryptography/
- Stony Brook University, 2005 - https://www.math.stonybrook.edu/~scott/papers/MSTP/crypto/3Caesar_Cipher.html

### 2. The Substitution Cipher

**1. What is the substitution cipher and how does it differ from the shift cipher?**  
Is a type of encryption technique in which each letter in the plaintext is replaced with another letter, symbol, or number. For example, 'A' might be replaced with 'X,' 'B' with 'Q,' and so on. Substitution ciphers can be more complex than simple letter-for-letter replacements. So the main difference between these cifers is that in one (shift) each letter in the plaintext is shifted a fixed number of positions down or up the alphabet, and in the other (substitution) the letter are replace with any character. 

**2. How can you create a substitution cipher using a keyword or a random permutation?**  
Keyword or phrase:    
Create a unique mapping of each letter in the alphabet to a letter in the keyword or phrase. Repeated letters are omitted, and the remaining letters are added to the end. For example, if the keyword is "KEYWORD," the mapping might look like this:

- Plain: ABCDEFGHIJKLMNOPQRSTUVWXYZ
- Cipher: KEYWORDABCFGHIJLMNPQSTUVXZ

Random Permutation:  
Shuffle the letters of the alphabet to create a one-to-one mapping, this will be your encyption key. The recipient of the message would need the same key to decrypt the message.

**3. What are the advantages and disadvantages of the substitution cipher?**  
Advantages:
- Easy to understand and implement.
- Can provide a basic level of security for casual communication.
- Different keys can be used for different messages.
- Has a lot of combinations to choose from to encrypt.

Disadvantages:
- Vulnerable to frequency analysis, making it relatively easy to break.
- Limited key space, especially for smaller alphabets.
- Not suitable for securing sensitive or important data.

**4. How can frequency analysis be used to break a substitution cipher?**  
It can break it by analyzing the frequency at which letters or symbols appear in the cipher text. By identifying patterns in the cipher text, such as the most frequently occurring symbol, guesses can be made about the substitutions used and eventually decode the message. In most natural languages, certain letters occur more frequently than others. For examples in english 'E' is the most common letter. 

**5. Can you provide an example of a historical use of the substitution cipher?**  
The nomenclator chifer is an example. It was named after the public official who announced the titles of visiting dignitaries, this cipher uses a small code sheet containing letter, syllable and word substitution tables, sometimes homophonic, that typically converted symbols into numbers. Nomenclators were the standard fare of diplomatic correspondence, espionage, and advanced political conspiracy from the early fifteenth century to the late eighteenth century. 

Sources:
- Perdue University, s/f - https://www.cs.purdue.edu/homes/ninghui/courses/Fall05/lectures/355_Fall05_lect02.pdf
- Quora, s/f - https://www.quora.com/What-are-some-examples-of-substitution-ciphers-that-use-a-key-word
- Tumblr, s/f - https://www.tumblr.com/spookiestbook/186205190003/substitution-ciphers-strengths-and-weaknesses
- 101 Computing, s/f - https://www.101computing.net/frequency-analysis/#:~:text=When%20trying%20to%20decrypt%20a,the%20letters%20in%20the%20text.
- Wikipedia, s/f - https://en.wikipedia.org/wiki/Substitution_cipher

### 3. The Affine Cipher

**1. What is the affine cipher and how does it combine the shift and substitution ciphers?**  
Is a type of monoalphabetic substitution cipher that combines elements of both the shift cipher and substitution cipher. In the affine cipher, each letter in the plaintext is mapped to a new letter based on a mathematical formula.  
  
It uses two main components, a key pair (a, b), where:
- 'a' is a multiplicative factor
- 'b' is an additive factor

**2. How can you encrypt and decrypt messages using the affine cipher?**  
Encryption:
1. Choose two numbers, "a" and "b," where "a" must be coprime with 26 (i.e., the greatest common divisor of "a" and 26 should be 1). "b" is any integer.
2. Convert the plaintext message to numbers, typically using a simple scheme like the alphabet, where 'A' is 0, 'B' is 1, 'C' is 2, and so on.
3. Encrypt each letter (represented as a number) using the following formula:
    - Encrypted letter (ciphertext) = (a * plaintext letter + b) % 26
4. Convert the ciphertext numbers back to letters using the same alphabet scheme.

Decryption:
1. To decrypt the ciphertext, you need to find the modular multiplicative inverse of "a" (if it exists). This is a number "a^(-1)" such that (a * a^(-1)) % 26 = 1.
2. Calculate "a^(-1)" using various methods like the Extended Euclidean Algorithm.
3. Convert the ciphertext letter to a number.
4. Decrypt each letter (represented as a number) using the following formula:
    - Decrypted letter (plaintext) = (a^(-1) * (ciphertext letter - b)) % 26
5. Convert the plaintext numbers back to letters using the same alphabet scheme.

**3. What are the advantages and vulnerabilities of the affine cipher?**  
Advantages:
- It offers a larger key space compared to simple substitution ciphers, making it more secure.
- It combines multiplication and addition, which adds complexity and resistance to frequency analysis.
- The key (a, b) allows for various encryption configurations, making it adaptable.

Vulnerabilities:
- It is still susceptible to known-plaintext attacks and other cryptanalysis techniques.
- The security depends on the choice of 'a' and 'b,' and if they are not carefully chosen, the cipher may be weak.
- The affine cipher is not as strong as more modern encryption methods, like block ciphers.

**4. How can you break the affine cipher using known plaintext attacks?**  


**5. Can you provide an example of a practical use of the affine cipher?**  
I cound find any practical uses on the internet that mentioned specificly this cypher, but I imagine that it could have been used in military communication during early periods when stronger encryption methods were not available.

Sources:
- Geeks for Geeks, 2023 - https://www.geeksforgeeks.org/implementation-affine-cipher/#:~:text=The%20Affine%20cipher%20is%20a,converted%20back%20to%20a%20letter.
- Practical Cryptography, 2013 - http://practicalcryptography.com/ciphers/affine-cipher/
- YouTube, 2015 - https://www.youtube.com/watch?v=ry3g0xN8QKU
- Stack Exchange, 2017 - https://crypto.stackexchange.com/questions/43399/have-affine-ciphers-actually-been-used-in-practice

### 4. The Hill Cipher

**1. What is the Hill cipher and how does it differ from previous ciphers?**    
It is named after its inventor, Lester S. Hill, and it is a polygraphic substitution cipher that operates on groups of letters (usually pairs or triplets) rather than individual letters. Instead of substituting letters one by one, this cipher uses linear algebra and matrix operations to encrypt and decrypt messages.

**2. How can you encrypt and decrypt messages using the Hill cipher?**  
Encryption:
1. Choose a key matrix, typically a square matrix of a specific size (e.g., 2x2, 3x3, 4x4). The size of the matrix should match the number of letters in each group you want to encrypt. For example, if you want to encrypt in groups of 2 letters, you'd use a 2x2 matrix.
2. Assign numerical values to the letters of the alphabet (e.g., A=0, B=1, C=2, ... Z=25).
3. If the message length is not a multiple of the matrix size, pad the message with additional letters.
4. Group the letters of your message according to the matrix size.
5. Multiply the key matrix by each group of letters. To do this, convert the letter groups into column vectors (a column of numbers) and multiply them by the key matrix. This can be done using matrix multiplication.
6. Apply modular arithmetic to the resulting matrix to ensure that the values stay within the range of the alphabet (usually modulo 26).
7. Convert the resulting matrix back into letters using the same alphabet mapping as in step 2.

Decryption:
1. Calculate the inverse of the key matrix. This can be a bit complex, especially for larger matrices, and requires knowledge of linear algebra.
2. Convert the ciphertext back into a matrix using the same alphabet mapping used during encryption.
3. Multiply the inverse key matrix by the ciphertext matrix.
4. Apply modular arithmetic to the resulting matrix to obtain values within the range of the alphabet (usually modulo 26).
5. Convert the resulting matrix back into letters using the same alphabet mapping as in the encryption step.

**3. What are the advantages and limitations of the Hill cipher?**  
Advantages:  
- It is more secure than simple substitution ciphers.
- The security of this cipher depends on the size of the matrix, making it adaptable for different levels of security.
- It can encrypt and decrypt blocks of text, which provides better security.  

Limitations:  
- The encryption matrix must be invertible, which means the determinant of the matrix must be coprime with the length of the alphabet.
- Key management can be challenging for larger matrices.
- It is vulnerable to attacks if the attacker can obtain enough known plaintext-ciphertext pairs.

**4. How does the Hill cipher utilize matrix operations?**  


**5. Can you provide an example of a real-world application of the Hill cipher?**  
It was used in early secure communication systems, particularly during World War II. For example, it was used for secure telegraphy. While it is not commonly used today for modern encryption, it played a role in the development of more advanced cryptographic techniques and helped pave the way for more secure encryption methods like the RSA and AES algorithms.

Sources:
- Geeks for Geeks, 2021 - https://www.geeksforgeeks.org/hill-cipher/
- Medium, 2023 - https://cyberw1ng.medium.com/understanding-hill-cipher-a-comprehensive-guide-2023-f048e82ce30e#:~:text=Although%20it%20has%20several%20strengths,measures%20to%20mitigate%20its%20vulnerabilities.
- Educative, s/f - https://www.educative.io/answers/what-is-the-hill-cipher#:~:text=Encrypting%20with%20the%20Hill%20cipher,terms%20produces%20the%20encrypted%20ciphertext.
- ResearchGate, 2018 - https://www.researchgate.net/publication/328693056_Application_of_Hill_Cipher_Algorithm_in_Securing_Text_Messages

### 5. The Permutation Cipher

**1. What is the permutation cipher and how does it work?**  
It is also known as the transposition cipher, and is a type of encryption method that rearranges the positions of characters in the plaintext without altering the characters themselves. It operates by applying a specific permutation or rearrangement to the letters of the plaintext. This ciphers change the order of letters to achieve encryption.

**2. How can you encrypt and decrypt messages using the permutation cipher?**  
Encryption:
1. Choose a key or rule for rearranging the characters. This key could be a keyword, a numerical pattern, or any specific rule you decide.
2. Write the plaintext message in rows of a fixed length, depending on your chosen rule.
3. Rearrange the rows according to your key.
4. Read the rows from left to right to obtain the ciphertext.

Decryption:
1. You must know the key and ciphertext.
2. Write the ciphertext in rows of the same length as used during encryption.
3. Rearrange the rows in the original order according to your key.
4. Read the rows from left to right to obtain the original plaintext message.

**3. What are the strengths and weaknesses of the permutation cipher?**  
Strengths:
- It is relatively simple to understand and implement.
- It can provide some level of security against casual attackers.
- It do not change the characters themselves, making it suitable for preserving character frequencies in the plaintext.

Weaknesses:
- Is vulnerable to frequency analysis when applied to long texts, as the character frequencies remain the same.
- The security mainly relies on the choice and secrecy of the permutation key, which can be weak if not carefully selected.
- It is generally considered less secure than modern encryption methods like block ciphers.

**4. How can you break the permutation cipher using brute force or frequency analysis?**  
Brute Force:  
Breaking this cipher using brute force involves trying every possible permutation of characters until the correct one is found. This method can be time-consuming, but it is effective if the key space is small.

Frequency analysis:  
This can also be applied if the length of the ciphertext is long enough. The frequency of letters and letter pairs can still reveal patterns, making it possible to guess the key or parts of it.

**5. Can you provide an example of a historical use of the permutation cipher?**
The British intelligence agency MI6 used a variation of the permutation cipher known as the "Playfair cipher" during World War I and World War II. The Playfair cipher rearranged letter pairs in the plaintext to create the ciphertext, making it more resistant to frequency analysis. It was used for secure communication between agents and military personnel during these conflicts.  

Sources:
- Geek for Geeks, 2019 - https://www.geeksforgeeks.org/columnar-transposition-cipher/
- Crypto Corney, s/f- https://crypto.interactive-maths.com/permutation-cipher.html
- Northen Kentucky University, 2015 - https://www.nku.edu/~christensen/1402%20permutation%20ciphers.pdf
- YouTube, 2022 - https://www.youtube.com/watch?v=1Qw7KlN_G6w

### 6. LFSR Stream Cipher

**1. What is an LFSR stream cipher and how does it generate a keystream?**  
Is a type of symmetric key encryption system that generates a pseudorandom keystream using a linear feedback shift register. An LFSR is a shift register where bits are shifted in a linear fashion, and the next bit's value is determined by a linear combination of the previous bits. The keystream is generated by tapping specific bits of the LFSR and combining them using a linear feedback function. As the LFSR shifts, it produces a sequence of pseudorandom bits known as the keystream, which is XORed with the plaintext to produce the ciphertext.

**2. How can you encrypt and decrypt messages using an LFSR stream cipher?** 
Encryption:

1. Key Generation:
    - Choose an initial state (seed) for the LFSR. The state should be a binary string of length equal to the degree of the LFSR (e.g., 8, 16, or 32 bits).
    - Select a feedback polynomial, which defines the bit positions to be XORed in the LFSR's state update process. This polynomial is usually represented as a binary number.
    - The length of the LFSR, the seed, and the feedback polynomial determine the key.
2. LFSR Operation:
    - Initialize the LFSR with the chosen seed.
    - For each bit in the plaintext, clock the LFSR to generate a pseudorandom bit.
    - XOR the pseudorandom bit with the corresponding bit in the plaintext to obtain the ciphertext.
3. Repeat: Continue clocking the LFSR and XORing the pseudorandom bits with the plaintext bits until the entire message is encrypted.

Decryption:
1. Key and Ciphertext:
    - You must know the key, which includes the seed and feedback polynomial.
    - You also need the ciphertext to decrypt.
2. LFSR Initialization: Initialize the LFSR with the same seed used during encryption.
3. FSR Operation: Clock the LFSR in sync with the ciphertext. This will generate the same pseudorandom bit sequence used during encryption.
4. XOR Operation: XOR each pseudorandom bit with the corresponding bit in the ciphertext to obtain the plaintext.
5. Repeat: Continue clocking the LFSR and XORing the pseudorandom bits with the ciphertext bits until the entire message is decrypted. 

**3. What are the advantages and vulnerabilities of an LFSR stream cipher?**  
Advantages:  
- They are computationally efficient and can be implemented with minimal hardware or software resources.
- They are suitable for encrypting data in real-time streams, such as communication over a secure channel.
- When used with long key sequences and complex feedback functions, they can provide reasonable security.

Vulnerabilities:  
- LFSR stream ciphers are vulnerable to known-plaintext attacks if an attacker can observe enough plaintext-ciphertext pairs.
- The security of LFSR stream ciphers strongly depends on the choice of the initial key and the feedback function.
- Short key lengths can lead to predictable keystream patterns and cryptanalysis.
- Modern cryptographic standards tend to favor more secure encryption methods, such as block ciphers and stream ciphers with larger key sizes.

**4. How can you break an LFSR stream cipher using known plaintext attacks?**  
To break this cipher using known plaintext attacks, the attacker needs access to both the plaintext and corresponding ciphertext generated with the same keystream. Once this information is obtained, the attacker can XOR the known plaintext with the corresponding ciphertext to recover the keystream. Then analyze the keystream to determine the feedback function and the initial state of the LFSR. With knowledge of the LFSR configuration, the attacker can decrypt other ciphertexts encrypted with the same LFSR.

**5. Can you provide an example of a modern use of an LFSR stream cipher?**  
It have been used in the past for certain applications like wireless communication and RFID (Radio-Frequency Identification) systems due to their efficiency and simplicity. However, modern cryptography tends to favor more advanced encryption techniques, such as block ciphers and stream ciphers with stronger security properties. LFSR stream ciphers are not commonly used for modern encryption in highly secure applications.

Sources:
- Geeks for Geeks, 2020 - https://www.geeksforgeeks.org/stream-ciphers/
- Inria, s/f- https://www.rocq.inria.fr/secret/Anne.Canteaut/MPRI/chapter3.pdf
- San Jose State University, s/f - http://www.cs.sjsu.edu/~stamp/crypto/PowerPoint_PDF/5_StreamCiphers.pdf
- YouTube, 2022 - https://www.youtube.com/watch?v=eFMWzP223VI 

## Part 2: Cryptanalysis Research
In this section, you will research various cryptanalysis techniques for classical ciphers. Each topic has a set of questions to guide your learning.

### 1. Introduction to Cryptanalysis

**1. What is cryptanalysis and why is it important in cybersecurity?**
- **Security Evaluation:** Cryptanalysis helps identify weaknesses and vulnerabilities in cryptographic algorithms and systems, allowing for security improvements.
- **Risk Mitigation:** By revealing vulnerabilities, cryptanalysis helps organizations reduce the risk of data breaches and unauthorized access.
- **Adversarial Perspective:** It allows cybersecurity experts to think like attackers, anticipating how cryptographic systems may be exploited.
- **Algorithm Selection:** Cryptanalysis informs the choice of appropriate cryptographic algorithms for specific use cases.
- **Standardization and Certification:** It's crucial in certifying cryptographic algorithms to meet security standards.
- **Real-World Testing:** Cryptanalysis helps verify the actual security of cryptographic systems in practical situations.  

**2. What are the different types of cryptanalysis techniques?**
- **Brute Force:** Trying all possible keys until the correct one is found.
- **Frequency Analysis:** Analyzing patterns in ciphertext, especially useful for simple ciphers.
- **Known-Plaintext and Chosen-Plaintext Attacks:** Using knowledge of some plaintext-ciphertext pairs to deduce the key.
- **Differential Cryptanalysis:** Analyzing the differences between pairs of plaintext-ciphertext pairs.
- **Linear Cryptanalysis:** Finding linear approximations of the cryptographic function.
- **Side-Channel Attacks:** Exploiting information leaked during the encryption/decryption process (e.g., timing, power consumption).
- **Meet-in-the-Middle Attacks:** Searching for a common key by encrypting with all possible keys in one direction and decrypting with all possible keys in the other direction.
- **Rainbow Tables:** Precomputed tables of plaintext-ciphertext pairs for faster key recovery.
- **Fault Analysis:** Exploiting errors or faults in the cryptographic system.
- **Social Engineering:** Exploiting human psychology to obtain cryptographic information.  

**3. How does cryptanalysis differ from cryptography?**  
- Cryptography is the science and practice of designing secure communication and data protection systems. It's about creating codes and ciphers to protect information.
- Cryptanalysis is the science of analyzing and breaking cryptographic systems. It's about understanding, discovering weaknesses, and potentially decrypting data.
- Cryptography and cryptanalysis often involve a cat-and-mouse game. 
- Cryptographers create secure systems, and cryptanalysts try to break them. 
- Both fields are essential for the development of robust security measures.  

**4. Can you provide an example of a famous cryptanalysis success story?**  
One of the most famous cryptanalysis success stories is the breaking of the German Enigma machine during World War II by British codebreakers at Bletchley Park, notably led by Alan Turing. They were able to decipher encrypted messages, which provided critical intelligence to the Allies. This breakthrough is often credited with shortening the war and has been the subject of books, movies, and documentaries.

**5. What are the ethical considerations in cryptanalysis?**
- **Legal Compliance:** Ensuring that cryptanalysis activities comply with relevant laws and regulations.
- **Privacy:** Respecting individuals' privacy and not engaging in unauthorized decryption of personal data.
- **Responsible Disclosure:** If a cryptanalyst discovers a vulnerability in a cryptographic system, responsible disclosure to the system's owner or developer is essential to protect users and improve security.
- **Integrity:** Maintaining the integrity of the field by not using cryptanalysis skills for malicious purposes, such as hacking or cybercrime.
- **Professionalism:** Cryptanalysts should adhere to professional and ethical standards, including honesty, integrity, and transparency in their work.  

Sources:
- Simp!learn, 2023 - https://www.simplilearn.com/cryptography-a-detailed-insight-rar217-article#:~:text=Cryptanalysis%20is%20the%20study%20of,codebreaking%20or%20cracking%20the%20code.
- Simp!learn, 2023 - https://www.simplilearn.com/what-is-cryptanalysis-article
- Difference Between | Descriptive Analysis and Comparisons, 2014 - https://www.differencebetween.info/difference-between-cryptography-and-cryptanalysis
- Wikipedia, s/f - https://en.wikipedia.org/wiki/Cryptanalysis_of_the_Enigma
- University of Calicut, 2003 - http://ir.inflibnet.ac.in:8080/ir/bitstream/1944/212/3/03cali_43.pdf

### 2. The Shift Cipher

**1. How can you break the shift cipher using brute force?**  
1. Start with the ciphertext you want to decrypt.
2. Attempt decryption with a shift of 1, where each letter is shifted one position backward in the alphabet (e.g., A -> Z, B -> A, C -> B, and so on).
3. Examine the result. If it doesn't produce meaningful text, try the next shift value (2, 3, 4, and so on).
4. Repeat the process for all possible shift values (usually 25 in the case of a Caesar cipher, which uses a 1 to 25 shift).
5. When you find a shift value that results in a message that makes sense, you've likely found the correct decryption key.  

**2. What is the vulnerability of the shift cipher to frequency analysis?**
The vulnerability of the shift cipher to frequency analysis is due to the fact that it only involves simple letter substitution without altering the frequency distribution of letters in the text. In most natural languages, certain letters are used more frequently than others. For example, in English, 'E' is the most common letter.  

Frequency analysis takes advantage of these patterns by examining the frequency of letters in the ciphertext. By identifying the most common letter in the ciphertext, it can be assumed to represent the letter 'E' in English. This analysis can reveal the shift value, as the difference between the actual letter in the plaintext and the observed letter in the ciphertext is usually the shift value.  

**3. How can you improve the security of the shift cipher?**
- **Use a larger alphabet:** Instead of shifting letters in a 26-letter English alphabet, use a larger character set or multiple alphabets to make brute force attacks more difficult.
- **Randomize the shift value:** Use a different shift value for each character, making frequency analysis less effective.
- **Combine with other ciphers:** Use the shift cipher as one step in a more complex encryption process, such as a Vigenère cipher or a modern encryption algorithm.  

**4. Can you provide an example of a real-world attack on the shift cipher?**  
One example of a real-world attack on the shift cipher involves the discovery of the "Bekkoame" monument in Japan. The monument contained a message encoded using a Caesar cipher (a type of shift cipher). The text, when decrypted, revealed a message related to a famous samurai, Kunitomo, and led to renewed interest in his history.  

**5. What are the limitations of cryptanalysis on the shift cipher?**
- It is highly vulnerable to brute force attacks due to the limited number of possible keys (25 for a Caesar cipher).
- Frequency analysis can be very effective in breaking shift ciphers, but it may not work as well for very short or specialized texts.
- Cryptanalysis of the shift cipher is less relevant for modern cryptographic purposes due to its simplicity and well-known vulnerabilities. It's mainly used as an educational example rather than for secure communication.

Sources:
- Invent with Python, s/f - https://inventwithpython.com/hacking/chapter7.html
- Purdue University, 2005 - https://www.cs.purdue.edu/homes/ninghui/courses/Fall05/lectures/355_Fall05_lect02.pdf
- Stony Brook, 2002 - https://www.math.stonybrook.edu/~scott/Book331/Improved_Caesar_like_cipher.html

### 3. The Affine Cipher

**1. How can you break the affine cipher using known plaintext attacks?**  
1. Obtain a known plaintext-ciphertext pair (P, C).  
2. Write down the encryption formula for the affine cipher: C ≡ (aP + b) mod 26, where "a" and "b" are the key parameters.  
3. Substitute the known values from the pair (P, C) into the formula.  
4. Solve for "a" and "b" by rearranging the equation. To find "a," you'll need the modular multiplicative inverse of the plaintext value "P" modulo 26.  
5. Once "a" and "b" are determined, you've recovered the key, and you can decrypt other ciphertexts encrypted with the same key.  

**2. What is the vulnerability of the affine cipher to modular inverses?**  
The vulnerability of the affine cipher to modular inverses is a crucial point in cryptanalysis. The "a" parameter in the encryption formula (C ≡ (aP + b) mod 26) must be relatively prime to 26, which means its modular inverse exists. If "a" is not relatively prime to 26, it won't have a modular inverse, making the cipher impossible to use.  

However, this property can also be exploited by attackers. If they can determine that "a" is not relatively prime to 26, they know that a modular inverse doesn't exist, which means they can't compute "a^(-1)." This vulnerability significantly reduces the number of possible keys and simplifies the process of cryptanalysis.  

**3. How can you improve the security of the affine cipher?**
- Use larger modulo values: Instead of 26, use a larger prime number as the modulo value, which increases the number of possible keys and makes cryptanalysis more challenging.
- Randomize the key parameters: Choose key parameters "a" and "b" randomly, making it harder for attackers to determine the key.
- Combine with other ciphers: Use the affine cipher as part of a multi-layer encryption process, such as a combination with a substitution cipher or a modern encryption algorithm.

**4. Can you provide an example of a real-world attack on the affine cipher?**  
An example of a real-world attack on an affine cipher might involve breaking a simple substitution cipher with knowledge of the language and letter frequencies. If the substitution cipher can be identified as an affine cipher, it could be attacked using known plaintext or frequency analysis techniques.  

**5. What are the limitations of cryptanalysis on the affine cipher?**
- The vulnerability to known plaintext attacks, which can reveal the key.
- The requirement for the "a" parameter to be relatively prime to the modulo value, which simplifies the key space.
- The limited complexity of the affine cipher compared to modern encryption methods, making it less suitable for securing sensitive information in contemporary contexts.
- The ease with which it can be broken using frequency analysis and other basic cryptanalysis techniques.

Sources:
- StackExchange, 2017 - https://math.stackexchange.com/questions/2404274/chosen-plaintext-attack-on-affine-cipher-numerous-questions
- Practical Cryptography, 2012 - http://practicalcryptography.com/ciphers/affine-cipher/
- Northern Kentucky University, 2002 - https://www.nku.edu/~christensen/092mat483%20section%207%20affine%20ciphers.pdf
- StackExchange, 2017 - https://crypto.stackexchange.com/questions/50991/affine-cipher-cryptanalysis

### 4. The Substitution Cipher

**1. How can you break the substitution cipher using frequency analysis?**
1. Collect a sufficiently long piece of ciphertext in the substitution cipher.
2. Count the frequency of each letter in the ciphertext.
3. Compare the frequency distribution of letters in the ciphertext to the expected frequency distribution of letters in the target language (e.g., English).
4. Identify the most frequently occurring letter in the ciphertext and assume it corresponds to the most frequently occurring letter in the language (usually 'E' in English).
5. Continue this process, working from the most frequent letters to the least frequent ones, until you've deciphered the entire message.

**2. What is the vulnerability of the substitution cipher to known plaintext attacks?**  
The vulnerability of the substitution cipher to known plaintext attacks arises from its deterministic nature. If an attacker has access to a known plaintext-ciphertext pair, they can easily create a mapping from the plaintext to the ciphertext, revealing the entire substitution key. This known plaintext can be as short as a single character or word, making the cipher highly susceptible to this type of attack.  

**3. How can you improve the security of the substitution cipher?**
1. Use a larger and more complex alphabet: Instead of simple letter-to-letter substitutions, employ a larger character set that includes numbers, symbols, and a mix of upper and lower case letters.
2. Randomize the substitution: Create a random mapping from the plaintext alphabet to the ciphertext alphabet, ensuring that each character in the plaintext has a unique counterpart in the ciphertext. This would be a random permutation of the alphabet.
3. Combine with other ciphers: Use the substitution cipher as part of a multi-layer encryption process, such as combining it with a transposition cipher or a modern encryption algorithm.

**4. Can you provide an example of a real-world attack on the substitution cipher?**  
A well-known historical example of a real-world attack on the substitution cipher is the decipherment of the Rosetta Stone. The Rosetta Stone is an ancient Egyptian artifact that contains inscriptions in three scripts: Greek, demotic, and hieroglyphic. Since the Greek text was known and decipherable, it served as the key to unlocking the hieroglyphic script, which had remained a mystery for centuries. By comparing the known Greek text to the hieroglyphic inscriptions, scholars were able to decipher the hieroglyphs, leading to a significant breakthrough in the study of ancient Egyptian history.  

**5. What are the limitations of cryptanalysis on the substitution cipher?**  
- Its vulnerability to frequency analysis, which can be highly effective when analyzing a sufficiently long ciphertext.
- Known plaintext attacks can break the cipher very easily with even minimal knowledge of the plaintext.
- Modern computers can perform exhaustive searches of possible keys in a very short time, especially if the key space is small.
- The substitution cipher is straightforward to break with the right techniques, and it's not suitable for protecting sensitive or critical information in modern contexts. It is mainly used for educational purposes.

Sources:
- YouTube, 2017 - https://www.youtube.com/watch?v=aOFd5yf7yq4
- Research, 2015 - https://www.researchgate.net/publication/284160169_Enhancing_the_Security_of_Caesar_Cipher_Substitution_Method_using_a_Randomized_Approach_for_more_Secure_Communication
- IEEE, 2023 - https://ieeexplore.ieee.org/document/10214337



### 5. The Hill Cipher

**1. How can you break the Hill cipher using matrix algebra?**  
1. Obtain a known plaintext-ciphertext pair.
2. Represent the known plaintext and ciphertext as column vectors (e.g., using a mapping of the alphabet to numbers).
3. Set up a system of linear equations based on the known plaintext-ciphertext pair using the key matrix. This system looks like C = KP, where C is the ciphertext vector, K is the key matrix, and P is the plaintext vector.
4. Invert the key matrix, which may require the use of modular arithmetic.
5. Multiply the inverted key matrix by the ciphertext vector to obtain the plaintext vector.
6. Convert the plaintext vector back into letters using the same alphabet mapping used in step 2.
7. The obtained plaintext is the decrypted message.  

**2. What is the vulnerability of the Hill cipher to key length?**  
The vulnerability of the Hill cipher to key length is significant. When the key matrix is too short, it becomes easier to perform cryptanalysis. Specifically, if the key matrix is not sufficiently large, an attacker can use known plaintext-ciphertext pairs to deduce the elements of the key matrix, and consequently, the entire key.  

For example, in a 2x2 key matrix, if an attacker knows the plaintext and ciphertext of two corresponding characters, they can set up a system of equations to find the four elements of the matrix. Longer key matrices (e.g., 3x3, 4x4) increase the complexity of this process and make it more resistant to attacks.  

**3. How can you improve the security of the Hill cipher?**
- Use a larger key matrix: Longer key matrices (e.g., 3x3, 4x4) increase the complexity and resistance to key recovery attacks.
- Use modular arithmetic: Apply modular arithmetic to the elements of the key matrix and the plaintext/ciphertext vectors. This ensures that the calculations stay within the bounds of the alphabet (usually modulo 26).
- Mix with other ciphers: Use the Hill cipher as part of a multi-layer encryption process, combining it with other cryptographic techniques.  

**4. Can you provide an example of a real-world attack on the Hill cipher?**  
One of the well-known real-world attacks on the Hill cipher is the work of the American mathematician William F. Friedman. In the early 20th century, he successfully cryptanalyzed a version of the Hill cipher that was used by a U.S. bootlegger named George Johnson during the Prohibition era. By using known plaintext-ciphertext pairs and performing matrix algebra, Friedman was able to decipher messages sent by Johnson and played a significant role in his capture and conviction.  

**5. What are the limitations of cryptanalysis on the Hill cipher?**
- The need for known plaintext-ciphertext pairs, which can be difficult to obtain in practice.
- The requirement for the key matrix to be invertible, meaning it must have a modular multiplicative inverse.
- Longer key matrices significantly increase the complexity of cryptanalysis, making it more resistant to attack.
- The Hill cipher is not widely used for modern cryptographic purposes due to its susceptibility to known plaintext attacks and the availability of more secure encryption methods. It is mainly used for educational purposes.

Sources:
- University of Utah, s/f - https://www.math.utah.edu/~gustafso/s2017/2270/projects-2017/alexHawksMatthewWestberg/CrackingTheHillCypher.pdf
- International Journal of Nonlinear Analysis and Application, 2021 - https://ijnaa.semnan.ac.ir/article_5176_b9a2fab810d9bc150ad6e5924234ac9d.pdf
- University of Connecticut, 2016 - https://eprint.iacr.org/2016/806.pdf
- Wikipedia, s/f - https://en.wikipedia.org/wiki/Hill_cipher
- Elizabethtown College, 2016 - https://jayscholar.etown.edu/cgi/viewcontent.cgi?article=1001&context=mathstu

### 6. The Permutation Cipher

**1. How can you break the permutation cipher using brute force or frequency analysis?**
1. Brute Force: Try all possible permutations of the alphabet to decrypt the message. For a simple permutation cipher, this would involve generating and testing all n! (n factorial) permutations, where n is the number of characters in the alphabet. While this becomes impractical for larger alphabets, it's possible for small alphabets.
2. Frequency Analysis: If the permutation cipher is applied to a language with recognizable letter frequency patterns (e.g., English), frequency analysis can be used. It involves analyzing the frequency of characters in the ciphertext and matching them to known frequency patterns in the language. The most common character in the ciphertext may correspond to the most frequent letter in the language, such as 'E' in English. Repeatedly applying this logic can help deduce the permutation.  

**2. What is the vulnerability of the permutation cipher to known plaintext attacks?**  
The permutation cipher is highly vulnerable to known plaintext attacks. If an attacker knows a portion of the plaintext and its corresponding ciphertext (a known plaintext-ciphertext pair), they can determine the permutation for that part of the alphabet. Once part of the permutation is known, it's possible to extend the analysis to decrypt the rest of the message.  

**3. How can you improve the security of the permutation cipher?**  
1. Increase the key length: Use longer permutations by extending the alphabet or using more complex permutation techniques.
2. Use multiple permutation layers: Apply permutation multiple times with different keys, creating a multi-layered permutation.
3. Combine with other ciphers: Use the permutation cipher as one part of a multi-layer encryption process, combining it with other cryptographic techniques.

**4. Can you provide an example of a real-world attack on the permutation cipher?**  
While the permutation cipher is not commonly used in modern cryptography, it has historical significance. One notable example is the Playfair cipher, which is a type of digraphic substitution cipher that involves permutation. The Playfair cipher was used during World War I and World War II. Cryptanalysts were able to break it using a combination of known plaintext attacks, frequency analysis, and pattern recognition. The development of more advanced cryptanalysis techniques eventually rendered the Playfair cipher ineffective for secure communication.  

**5. What are the limitations of cryptanalysis on the permutation cipher?**
- For larger alphabets, the number of possible permutations grows factorially, making exhaustive search and brute force attacks infeasible.
- The permutation cipher's vulnerability to known plaintext attacks can compromise its security.
- While the permutation cipher may provide some security for specific applications, it is not as secure as modern encryption methods and is mainly used for educational purposes and simple transposition techniques.  

Sources:
- Science Research, 2021 - https://www.scirp.org/html/3-9701503_17997.htm
- Science Direct, 2018 - https://www.sciencedirect.com/science/article/abs/pii/S0020025517300592#:~:text=For%20instance%2C%20it%20is%20well,of%20elements%20to%20be%20permuted.
- ACM Digital Library, 2021 - https://dl.acm.org/doi/abs/10.1145/3508072.3512287
- NIST Computer Security Resource Center, s/f - https://csrc.nist.gov/CSRC/media/Events/lightweight-cryptography-workshop-2020/documents/papers/cryptanalysis-of-SpoC-lwc2020.pdf

### 7. LFSR Stream Cipher

**1. How can you break an LFSR stream cipher using known plaintext attacks?**
1. Collect a set of known plaintext-ciphertext pairs.
2. Determine the length of the LFSR, which is the number of bits in the register. This is essential for constructing the LFSR feedback polynomial.
3. Create a system of linear equations that relates the known plaintext and ciphertext bits using the LFSR's feedback polynomial.
4. Solve this system of equations to recover the LFSR's internal state.
5. Once the internal state is known, you can predict the keystream generated by the LFSR and decrypt the entire message.

**2. What is the vulnerability of an LFSR stream cipher to key length?**  
The vulnerability of an LFSR stream cipher is directly related to the length of the LFSR, and it's often vulnerable to attacks when the LFSR length is relatively short. Shorter LFSRs have a limited number of possible states, making it easier for an attacker to perform exhaustive searches or known plaintext attacks to recover the key. Longer LFSRs with a larger number of states increase the complexity and security of the cipher.  

**3. How can you improve the security of an LFSR stream cipher?**
- Use a longer LFSR: Increase the length of the LFSR to provide more possible states and make exhaustive searches or known plaintext attacks more challenging.
- Combine with other ciphers: Implement the LFSR stream cipher as part of a multi-layer encryption process, combining it with other cryptographic techniques for additional security.
- Use secure feedback polynomials: Carefully select feedback polynomials for the LFSR to ensure they have good cryptographic properties and don't exhibit predictable patterns.  

**4. Can you provide an example of a real-world attack on an LFSR stream cipher?**  
A real-world example of an LFSR stream cipher attack is the cryptanalysis of the A5/1 stream cipher, used in the Global System for Mobile Communications (GSM) standard for mobile phone communication. Researchers discovered weaknesses in A5/1, which is based on a combination of three LFSRs. These vulnerabilities allowed attackers to recover the secret key and decrypt GSM communications.  

**5. What are the limitations of cryptanalysis on an LFSR stream cipher?**
- Known plaintext attacks are highly effective when the LFSR length is relatively short.
- Longer LFSRs can significantly increase the complexity of cryptanalysis.
- Attacks may be more challenging if the LFSR is combined with other cryptographic techniques.
- Advanced cryptanalysis methods and computational resources can sometimes overcome the limitations of LFSR-based ciphers, making them less secure for modern applications.

Sources:
- StackExchange, 2019 - https://crypto.stackexchange.com/questions/68246/how-to-crack-lfsr-with-known-plain-text-attack
- Wikipedia, s/f - https://en.wikipedia.org/wiki/Stream_cipher
- Chegg, s/f- https://www.chegg.com/homework-help/questions-and-answers/improve-security-lfsr-based-stream-cipher-suggested-use-two-lfsrs-combine-outputs-using-no-q107161906
- University of Bergen, 2022 - https://bora.uib.no/bora-xmlui/bitstream/handle/11250/2983504/archive.pdf?sequence=1&isAllowed=y

# Lab Guide: Cryptography Programming Exercises
## Classic Cryptography Topics

### 1. Shift Cipher
#### Exercise:
Write a Python function `shift_cipher_encrypt(plaintext, shift)` that takes a plaintext string and a shift value as input and returns the corresponding ciphertext using the shift cipher.

#### Example:
> - Plaintext: "HELLO"
> - Shift: 3
> - Ciphertext: "KHOOR"

> - Plaintext: "WORLD"
> - Shift: 5
> - Ciphertext: "BTWQI"

In [8]:
def shift_cipher_encrypt(plaintext, shift):
    ciphertext = ""
    
    for char in plaintext:
        #isalpha() is a method to checking if a string or char contains only letters
        if char.isalpha():
            #ord() return the unicode, islower() checks if this lowercase
            base = ord('a') if char.islower() else ord('A')
            shifted_char = chr((ord(char) - base + shift) % 26 + base)
        else:
            shifted_char = char
        
        ciphertext += shifted_char
    
    return ciphertext

plaintext = "HELLO"
plaintext1 = "WORLD"

shift = 3
shift1 = 5

encrypted_text = shift_cipher_encrypt(plaintext, shift)
encrypted_text1 = shift_cipher_encrypt(plaintext1, shift1)

print("Encrypted 1:", encrypted_text)
print("Encrypted 2:", encrypted_text1)

Encrypted 1: KHOOR
Encrypted 2: BTWQI


### 2. Substitution Cipher

#### Exercise:
Write a Python function `substitution_cipher_encrypt(plaintext, key)` that takes a plaintext string and a substitution key as input and returns the corresponding ciphertext using the substitution cipher.

#### Example:
> - Plaintext: "HELLO"
> - Key: {'H': 'X', 'E': 'Y', 'L': 'Z', 'O': 'A'}
> - Ciphertext: "XYZZA"

> - Plaintext: "WORLD"
> - Key: {'W': 'Q', 'O': 'P', 'R': 'S', 'L': 'T', 'D': 'U'}
> - Ciphertext: "QPSUT"

In [40]:
def substitution_cipher_encrypt(plaintext, key):
    ciphertext = ""
    
    for char in plaintext:
        #isalpha() is a method to checking if a string or char contains only letters
        if char.isalpha():
            shifted_char = key[char]
        else:
            shifted_char = char
        
        ciphertext += shifted_char
    
    return ciphertext

plaintext = 'HELLO'
plaintext1 = 'WORLD'

key = {'H': 'X', 'E': 'Y', 'L': 'Z', 'O': 'A'}
key1 = {'W': 'Q', 'O': 'P', 'R': 'S', 'L': 'T', 'D': 'U'}

encrypted_text = substitution_cipher_encrypt(plaintext, key)
encrypted_text1 = substitution_cipher_encrypt(plaintext1, key1)

print("Encrypted 1:", encrypted_text)
print("Encrypted 2:", encrypted_text1)

Encrypted 1: XYZZA
Encrypted 2: QPSTU


### 3. Affine Cipher

#### Exercise:
Write a Python function `affine_cipher_encrypt(plaintext, a, b)` that takes a plaintext string and two integer values a and b as input and returns the corresponding ciphertext using the affine cipher.

#### Example:
> - Plaintext: "HELLO"
> - a: 5
> - b: 8
> - Ciphertext: "RCLLA"

> - Plaintext: "WORLD"
> - a: 3
> - b: 7
> - Ciphertext: "VXGOQ"

In [39]:
def affine_cipher_encrypt(plaintext, a, b):
    alphabet = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
    alphabet_length = len(alphabet)
    ciphertext = ''

    for char in plaintext:
        if char.isalpha():
            # Calculate the numerical value of the character (0-25)
            char_value = ord(char) - ord('A')
            # Apply the affine cipher encryption formula
            encrypted_value = (a * char_value + b) % alphabet_length
            encrypted_char = alphabet[encrypted_value]
            ciphertext += encrypted_char
        else:
            ciphertext += char

    return ciphertext


plaintext = 'HELLO'
plaintext1 = 'WORLD'

encrypted_text = affine_cipher_encrypt(plaintext, 5, 8)
encrypted_text1 = affine_cipher_encrypt(plaintext1, 3, 7)

print("Encrypted 1:", encrypted_text)
print("Encrypted 2:", encrypted_text1)

Encrypted 1: RCLLA
Encrypted 2: VXGOQ


### 4. Hill Cipher

#### Exercise:
Write a Python function `hill_cipher_encrypt(plaintext, key)` that takes a plaintext string and a 2x2 matrix key as input and returns the corresponding ciphertext using the Hill cipher.

#### Example:
> - Plaintext: "HELLOWORLD"
> - Key: [[2, 3], [1, 4]]
> - Ciphertext: "AXDDQYBEFX"

In [38]:
import numpy as np

def hill_cipher_encrypt(plaintext, key):
    alphabet = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
    ciphertext = ''
    
    # Pad the plaintext with 'X' if its length is not even
    if len(plaintext) % 2 != 0:
        plaintext += 'X'

    # Iterate over the plaintext in blocks of 2 characters
    for i in range(0, len(plaintext), 2):
        block = plaintext[i:i+2]
        # Convert the block into numerical values
        numerical_block = [alphabet.index(char) for char in block]
        # Multiply the key matrix by the numerical block
        encrypted_block = np.dot(key, numerical_block) % 26
        # Convert the numerical values back to characters
        encrypted_text = ''.join([alphabet[val] for val in encrypted_block])
        ciphertext += encrypted_text

    return ciphertext

plaintext = 'HELLOWORLD'
key = np.array([[2, 3], [1, 4]])
encrypted_text = hill_cipher_encrypt(plaintext, key)
print("Encrypted:", encrypted_text)

Encrypted: AXDDQYBEFX


### 5. Permutation Cipher

#### Exercise:
Write a Python function `permutation_cipher_encrypt(plaintext, key)` that takes a plaintext string and a permutation key as input and returns the corresponding ciphertext using the permutation cipher.

#### Example:
> - Plaintext: "HELLO"
> - Key: [3, 1, 4, 2, 5]
> - Ciphertext: "LHLEO"

> - Plaintext: "WORLD"
> - Key: [2, 4, 1, 5, 3]
> - Ciphertext: "OLWDR"

In [37]:
def permutation_cipher_encrypt(plaintext, key):
    ciphertext = ''
    
    for position in key:
        ciphertext += plaintext[position-1]

    return ciphertext

plaintext = 'HELLO'
plaintext1 = 'WORLD'

key = [3, 1, 4, 2, 5] # Replace with your permutation key
key1 = [2, 4, 1, 5, 3]  # Replace with your permutation key

encrypted_text = permutation_cipher_encrypt(plaintext, key)
encrypted_text1 = permutation_cipher_encrypt(plaintext1, key1)

print("Encrypted 1:", encrypted_text)
print("Encrypted 2:", encrypted_text1)


Encrypted 1: LHLEO
Encrypted 2: OLWDR


## Cryptanalysis Topics

### 1. Affine Cipher

Write a Python function `break_affine_cipher(ciphertext)` that takes a string `ciphertext` as input and attempts to break the affine cipher by trying all possible combinations of `a` and `b` values. The function should return the most likely plaintext obtained by decrypting the ciphertext using the correct `a` and `b` values.

Example:
```python
ciphertext = "Czggj, Tqxxa!"
plaintext = break_affine_cipher(ciphertext)
print(plaintext)
```
Output:
```
Hello, World!
```

In [57]:
def break_affine_cipher(ciphertext):
    alphabet = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
    best_plaintext = ""
    best_score = -float("inf")
    best_params = None

    # Brute force through all possible values of a and b
    for a in range(1, 26):
        for b in range(26):
            plaintext = ""
            for char in ciphertext:
                if char.isalpha():
                    # Decrypt the character using the current a and b values
                        char_value = ord(char) - ord('A')
                        decrypted_value = (a * char_value - b) % 26
                        decrypted_char = alphabet[decrypted_value]
                        plaintext += decrypted_char
                else:
                        plaintext += char
            
            # Calculate a score for the plaintext using a simple frequency analysis
            # This score can be improved with a language model
            score = sum(plaintext.count(letter) for letter in 'ETAOIN SHRDLU')

            # Update the best plaintext if this one has a higher score
            if score > best_score:
                best_score = score
                best_plaintext = plaintext
                best_params = (a, b)

    return best_plaintext, best_params

ciphertext = "CZGGJ, TQXXA!"
best_plaintext, best_params = break_affine_cipher(ciphertext)
print("Best Plaintext:", best_plaintext)
print("Best a and b values:", best_params)

Best Plaintext: ANAAN, NANNA!
Best a and b values: (13, 0)


### 2. Substitution Cipher

Write a Python function `break_substitution_cipher(ciphertext)` that takes a string `ciphertext` as input and attempts to break the substitution cipher by performing frequency analysis on the letters in the ciphertext. The function should return the most likely plaintext obtained by decrypting the ciphertext using the correct key.

Example:
```python
ciphertext = "XYZZA, CDCFA!"
plaintext = break_substitution_cipher(ciphertext)
print(plaintext)
```
Output:
```
Hello, World!
```

In [60]:
import string
from collections import Counter

def break_substitution_cipher(ciphertext):
    alphabet = string.ascii_uppercase
    key = {}
    
    # Extract only the alphabet characters from the ciphertext for analysis
    ciphertext_alpha = ''.join(char for char in ciphertext if char.isalpha())
    
    # Calculate the frequency of each letter in the ciphertext
    letter_frequency = Counter(ciphertext_alpha)

    # Sort the letters by frequency in descending order
    sorted_letters = [item[0] for item in letter_frequency.most_common()]

    for i in range(len(sorted_letters)):
        if i < len(alphabet):
            key[sorted_letters[i]] = alphabet[i]

    # Decrypt the ciphertext using the key, while preserving non-alphabet characters
    plaintext = ''.join(key.get(char, char) for char in ciphertext)

    return plaintext, key

ciphertext = "XYZZA, CDCFA!"
plaintext, key = break_substitution_cipher(ciphertext)
print("Plaintext:", plaintext)
print("Key:", key)


Plaintext: DEAAB, CFCGB!
Key: {'Z': 'A', 'A': 'B', 'C': 'C', 'X': 'D', 'Y': 'E', 'D': 'F', 'F': 'G'}


### 3. Hill Cipher

Write a Python function `break_hill_cipher(ciphertext, n)` that takes a string `ciphertext` and an integer `n` as input and attempts to break the Hill cipher by performing frequency analysis on the letters in the ciphertext and using matrix algebra. The function should return the most likely plaintext obtained by decrypting the ciphertext using the correct key.

Example:
```python
ciphertext = "XZGZJ, ZJGFA!"
n = 2
plaintext = break_hill_cipher(ciphertext, n)
print(plaintext)
```
Output:
```
Hello, World!
```

In [64]:
import numpy as np

def break_hill_cipher(ciphertext, n):
    # Define the English alphabet
    alphabet = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'
    
    # Create a function to calculate the modular inverse
    def mod_inverse(a, m):
        for i in range(1, m):
            if (a * i) % m == 1:
                return i
        return None
    
    # Decrypt a 2x2 Hill cipher with the given key
    def decrypt_2x2_hill(ciphertext, key):
        decrypted_text = ""
        
        # Calculate the determinant of the key matrix
        det = key[0, 0] * key[1, 1] - key[0, 1] * key[1, 0]
        
        # Check if the determinant has a modular inverse
        det_inverse = mod_inverse(det, n)
        
        if det_inverse is not None:
            # Calculate the inverse of the key matrix
            key_inverse = np.array([[key[1, 1], -key[0, 1]], [-key[1, 0], key[0, 0]]])
            key_inverse = (key_inverse * det_inverse) % n
            
            for char in ciphertext:
                if char.isalpha():
                    char_vec = np.array([alphabet.index(char), alphabet.index(char.upper())])
                    decrypted_vec = np.dot(key_inverse, char_vec) % n
                    decrypted_char = alphabet[decrypted_vec[0]]
                    decrypted_text += decrypted_char
                else:
                    decrypted_text += char
        else:
            decrypted_text = "Cannot find a modular inverse for the key determinant."
        
        return decrypted_text

    # Initialize variables to store the best result
    best_plaintext = ""
    best_key = None
    best_score = -float("inf")

    # Brute force through all possible keys
    for a in range(n):
        for b in range(n):
            for c in range(n):
                for d in range(n):
                    key_matrix = np.array([[a, b], [c, d]])
                    plaintext = decrypt_2x2_hill(ciphertext, key_matrix)

                    # Score the plaintext using a simple frequency analysis
                    score = sum(plaintext.count(letter) for letter in 'ETAOIN SHRDLU')

                    if score > best_score:
                        best_score = score
                        best_plaintext = plaintext
                        best_key = key_matrix

    return best_plaintext, best_key

# Example usage:
ciphertext = "XZGZJ, ZJGFA!"
plaintext, key = break_hill_cipher(ciphertext, 2)
print("Plaintext:", plaintext)
print("Key matrix:", key)


Plaintext: AAAAA, AAAAA!
Key matrix: [[0 1]
 [1 1]]
