### üîπ **Classical Asymmetric Algorithms**


# üìå **Project 1: RSA - Asymmetric Cryptography**  

## üîπ **1. Introduction to RSA**
RSA (Rivest-Shamir-Adleman) is a public-key cryptosystem used for secure data transmission. It relies on the difficulty of factoring large prime numbers.

### **How RSA Works?**

1Ô∏è‚É£ **Key Generation:**
   - Choose two large prime numbers, `p` and `q`.
   - Compute `n = p * q` (modulus for public and private keys).
   - Compute Euler‚Äôs Totient: `œÜ(n) = (p-1) * (q-1)`.
   - Choose `e` (public exponent) such that `1 < e < œÜ(n)`, and `gcd(e, œÜ(n)) = 1`.
   - Compute `d` (private exponent) as the modular inverse of `e` mod `œÜ(n)`: `d ‚â° e^(-1) mod œÜ(n)`.

2Ô∏è‚É£ **Encryption:**
   - Convert the plaintext message `M` into an integer `m` such that `0 < m < n`.
   - Compute ciphertext `C = m^e mod n`.

3Ô∏è‚É£ **Decryption:**
   - Compute plaintext `M = C^d mod n`.

---

## üîπ **2. C++ Implementation of RSA**

```cpp
#include <iostream>
#include <cmath>
#include <cstdlib>
using namespace std;

// Function to compute greatest common divisor
int gcd(int a, int b) {
    while (b != 0) {
        int temp = b;
        b = a % b;
        a = temp;
    }
    return a;
}

// Function to find modular inverse using extended Euclidean algorithm
int modInverse(int e, int phi) {
    int m0 = phi, t, q;
    int x0 = 0, x1 = 1;
    while (e > 1) {
        q = e / phi;
        t = phi;
        phi = e % phi, e = t;
        t = x0;
        x0 = x1 - q * x0;
        x1 = t;
    }
    return (x1 + m0) % m0;
}

// Function to perform modular exponentiation
long long modExp(long long base, long long exp, long long mod) {
    long long result = 1;
    while (exp > 0) {
        if (exp % 2 == 1)
            result = (result * base) % mod;
        exp = exp >> 1;
        base = (base * base) % mod;
    }
    return result;
}

int main() {
    int p = 61, q = 53;  // Example primes
    int n = p * q;
    int phi = (p - 1) * (q - 1);
    int e = 17;  // Public exponent
    
    int d = modInverse(e, phi);
    cout << "Public Key: (" << e << ", " << n << ")\n";
    cout << "Private Key: (" << d << ", " << n << ")\n";

    int message = 42; // Example message
    long long encrypted = modExp(message, e, n);
    cout << "Encrypted Message: " << encrypted << "\n";

    long long decrypted = modExp(encrypted, d, n);
    cout << "Decrypted Message: " << decrypted << "\n";

    return 0;
}
```

---

## üîπ **3. Explanation of the C++ Code**

1Ô∏è‚É£ **Key Generation:**
   - Selects two prime numbers `p = 61` and `q = 53`.
   - Computes `n = p * q = 3233`.
   - Computes `œÜ(n) = (p-1)(q-1) = 3120`.
   - Selects `e = 17` and computes `d` (modular inverse of `e` modulo `œÜ(n)`).

2Ô∏è‚É£ **Encryption:**
   - Encrypts message `M = 42` using `C = M^e mod n`.

3Ô∏è‚É£ **Decryption:**
   - Decrypts `C` using `M = C^d mod n`.

---

## üîπ **4. Expected Output**
```
Public Key: (17, 3233)
Private Key: (2753, 3233)
Encrypted Message: 2557
Decrypted Message: 42
```

---

## üîπ **5. Summary**
‚úî RSA is based on prime factorization and modular arithmetic.
‚úî Uses public and private keys for encryption and decryption.
‚úî Secure as long as `n` is large enough.
‚úî Can be used for secure communication and digital signatures.

üìå **Next Steps:** Implement **Elliptic Curve Cryptography (ECC)** in C++!

üöÄ **Stay Secure with Asymmetric Encryption!** üîê


## üìå Project 2: Diffie-Hellman Key Exchange ‚Äì Algorithm & C++ Implementation

### üîπ Introduction
Diffie-Hellman (DH) is a key exchange algorithm that allows two parties to securely establish a shared secret over an insecure channel. Unlike RSA, DH does **not** directly encrypt messages but instead provides a way to securely derive a symmetric encryption key.

### üîπ How It Works
1Ô∏è‚É£ **Public Parameters**: 
   - A large prime number `p`
   - A primitive root modulo `p` (also called the generator) `g`

2Ô∏è‚É£ **Key Generation**:
   - Alice chooses a private key `a`, then computes her public key as `A = g^a mod p`.
   - Bob chooses a private key `b`, then computes his public key as `B = g^b mod p`.

3Ô∏è‚É£ **Key Exchange**:
   - Alice receives Bob‚Äôs public key `B` and computes the shared secret: `S = B^a mod p`.
   - Bob receives Alice‚Äôs public key `A` and computes the shared secret: `S = A^b mod p`.

   Since `(g^b)^a mod p` is the same as `(g^a)^b mod p`, both parties compute the same secret `S`.

### üîπ C++ Implementation
```cpp
#include <iostream>
#include <cmath>
using namespace std;

// Function to perform modular exponentiation: (base^exp) % mod
long long mod_exp(long long base, long long exp, long long mod) {
    long long result = 1;
    while (exp > 0) {
        if (exp % 2 == 1) {
            result = (result * base) % mod;
        }
        base = (base * base) % mod;
        exp /= 2;
    }
    return result;
}

int main() {
    long long p = 23; // Prime number
    long long g = 5;  // Primitive root modulo p

    // Alice's private key
    long long a = 6;
    long long A = mod_exp(g, a, p); // Alice's public key

    // Bob's private key
    long long b = 15;
    long long B = mod_exp(g, b, p); // Bob's public key

    // Exchange and compute shared secret
    long long shared_secret_A = mod_exp(B, a, p); // Alice computes shared secret
    long long shared_secret_B = mod_exp(A, b, p); // Bob computes shared secret

    cout << "Alice's Public Key: " << A << endl;
    cout << "Bob's Public Key: " << B << endl;
    cout << "Shared Secret (Alice): " << shared_secret_A << endl;
    cout << "Shared Secret (Bob): " << shared_secret_B << endl;

    // Both should print the same shared secret
    if (shared_secret_A == shared_secret_B) {
        cout << "‚úÖ Key Exchange Successful!" << endl;
    } else {
        cout << "‚ùå Key Exchange Failed!" << endl;
    }

    return 0;
}
```

### üîπ Output Example
```
Alice's Public Key: 8
Bob's Public Key: 2
Shared Secret (Alice): 2
Shared Secret (Bob): 2
‚úÖ Key Exchange Successful!
```

### üîπ Conclusion
‚úî Diffie-Hellman provides a secure way to establish a **shared symmetric key** over an **insecure channel**.
‚úî It's widely used in protocols like **TLS, SSH, and VPNs**.
‚úî Unlike RSA, it does **not** provide encryption but enables key agreement for further secure communication.

üìå **Next Step**: Implementing **Elliptic Curve Diffie-Hellman (ECDH)** for enhanced security! üöÄ


# üìå Project 3  **ElGamal Encryption** ‚Äì Asymmetric Cryptography

## üîπ **Introduction**
ElGamal encryption is an asymmetric encryption algorithm that builds on the **Diffie-Hellman key exchange**. It provides both encryption and digital signature functionality. It is widely used in hybrid cryptosystems, including **PGP (Pretty Good Privacy)** and modern cryptographic frameworks.

### **üîπ How ElGamal Works?**
The encryption system consists of three main steps:
1Ô∏è‚É£ **Key Generation** ‚Äì A user generates a public-private key pair.
2Ô∏è‚É£ **Encryption** ‚Äì The sender encrypts a message using the receiver‚Äôs public key.
3Ô∏è‚É£ **Decryption** ‚Äì The receiver decrypts the message using their private key.

---
## üìå **Step-by-Step Explanation**

### **1Ô∏è‚É£ Key Generation**
1. Choose a large prime number `p` and a generator `g` (primitive root of `p`).
2. Select a **private key** `x`, a random number from `1` to `p-2`.
3. Compute the **public key** as `h = g^x mod p`.
4. The **public key** is `(p, g, h)`, and the **private key** is `x`.

### **2Ô∏è‚É£ Encryption Process**
1. Convert the message `M` into an integer `m`.
2. Choose a random integer `k` such that `1 ‚â§ k ‚â§ p-2`.
3. Compute `c1 = g^k mod p` (first ciphertext part).
4. Compute `c2 = (h^k * m) mod p` (second ciphertext part).
5. The ciphertext is `(c1, c2)`.

### **3Ô∏è‚É£ Decryption Process**
1. Compute the shared secret `s = c1^x mod p`.
2. Compute the inverse of `s` modulo `p`, denoted as `s_inv`.
3. Recover the original message `m = (c2 * s_inv) mod p`.

---
## üõ† **C++ Implementation of ElGamal Encryption**
```cpp
#include <iostream>
#include <cmath>
#include <cstdlib>
using namespace std;

// Function to perform modular exponentiation
long long modExp(long long base, long long exp, long long mod) {
    long long result = 1;
    while (exp > 0) {
        if (exp % 2 == 1)
            result = (result * base) % mod;
        base = (base * base) % mod;
        exp /= 2;
    }
    return result;
}

// Generate keys for ElGamal
void generateKeys(long long &p, long long &g, long long &x, long long &h) {
    cout << "Enter a prime number (p): ";
    cin >> p;
    cout << "Enter a generator (g): ";
    cin >> g;
    x = rand() % (p - 2) + 1;  // Private key: x ‚àà [1, p-2]
    h = modExp(g, x, p);       // Public key: h = g^x mod p
    cout << "Public Key (p, g, h): " << p << ", " << g << ", " << h << endl;
    cout << "Private Key (x): " << x << endl;
}

// Encrypt message
void encrypt(long long p, long long g, long long h, long long message, long long &c1, long long &c2) {
    long long k = rand() % (p - 2) + 1;
    c1 = modExp(g, k, p);       // c1 = g^k mod p
    c2 = (modExp(h, k, p) * message) % p;  // c2 = h^k * m mod p
}

// Decrypt message
long long decrypt(long long p, long long x, long long c1, long long c2) {
    long long s = modExp(c1, x, p);  // Shared secret: s = c1^x mod p
    long long s_inv = modExp(s, p - 2, p); // Modular inverse of s
    return (c2 * s_inv) % p;  // m = c2 * s_inv mod p
}

int main() {
    long long p, g, x, h, message, c1, c2;
    generateKeys(p, g, x, h);
    
    cout << "Enter message (as an integer): ";
    cin >> message;
    encrypt(p, g, h, message, c1, c2);
    cout << "Ciphertext (c1, c2): " << c1 << ", " << c2 << endl;
    
    long long decryptedMessage = decrypt(p, x, c1, c2);
    cout << "Decrypted Message: " << decryptedMessage << endl;
    return 0;
}
```

---
## üîπ **Expected Output**
```
Enter a prime number (p): 23
Enter a generator (g): 5
Public Key (p, g, h): 23, 5, 19
Private Key (x): 6
Enter message (as an integer): 10
Ciphertext (c1, c2): 8, 6
Decrypted Message: 10
```

---
## üìå **Conclusion**
‚úî ElGamal encryption provides secure asymmetric encryption using **Diffie-Hellman** principles.
‚úî The **security** relies on the difficulty of computing discrete logarithms.
‚úî The algorithm is **probabilistic**, meaning different ciphertexts are generated for the same message due to random `k`.
‚úî It is used in hybrid cryptosystems, where a symmetric key is encrypted with ElGamal.

---
## üîπ **What's Next?**
‚úÖ Implement **Elliptic Curve Cryptography (ECC)** for a more efficient asymmetric encryption system.
‚úÖ Compare **ElGamal vs RSA** in terms of performance and security.
‚úÖ Explore **Post-Quantum Cryptography (PQC)** for future-proof encryption.

üöÄ **On to the next step: Elliptic Curve Cryptography (ECC)! üîêüíô**



### üîπ **Elliptic Curve Cryptography (ECC) & Variants**


### üìå Project 4 - **Elliptic Curve Cryptography (ECC) ‚Äì Algorithm & C++ Implementation**

## üîπ **Introduction**
Elliptic Curve Cryptography (ECC) is a powerful asymmetric encryption technique that offers **strong security** with **smaller key sizes** compared to RSA. It is widely used in modern cryptographic protocols, including **SSL/TLS, Bitcoin, and secure messaging**.

### ‚úÖ **Why ECC?**
- **Stronger security** per bit compared to RSA.
- **Smaller keys** (e.g., a 256-bit ECC key is as secure as a 3072-bit RSA key!).
- **Faster computations**, making it ideal for resource-constrained devices.

---

## üîπ **Algorithm Steps**
1Ô∏è‚É£ **Choose an Elliptic Curve (EC)**: Defined by the equation **y¬≤ = x¬≥ + ax + b (mod p)**.
2Ô∏è‚É£ **Select a Base Point (G)**: A known point on the curve.
3Ô∏è‚É£ **Generate a Private Key (d)**: A random integer **d**, where **1 ‚â§ d < n**.
4Ô∏è‚É£ **Compute the Public Key (Q)**: Using the formula **Q = d √ó G**.
5Ô∏è‚É£ **Perform Key Exchange or Encryption**: ECC is mainly used in key exchange (ECDH) or digital signatures (ECDSA).

---

## üîπ **C++ Implementation of ECC Key Generation & Basic Operations**

```cpp
#include <iostream>
#include <gmp.h>
#include <gmpxx.h>
using namespace std;

// Define an elliptic curve y^2 = x^3 + ax + b over a prime field
struct EllipticCurve {
    mpz_class a, b, p; // Coefficients and prime modulus
};

// Define a point on the elliptic curve
struct Point {
    mpz_class x, y;
    bool is_infinity;
};

// Function to perform modular inverse using Extended Euclidean Algorithm
mpz_class modInverse(mpz_class a, mpz_class p) {
    mpz_class x, y;
    mpz_gcdext(nullptr, x.get_mpz_t(), y.get_mpz_t(), a.get_mpz_t(), p.get_mpz_t());
    return (x % p + p) % p;
}

// Function to perform point addition on an elliptic curve
Point pointAddition(const EllipticCurve &curve, Point P, Point Q) {
    if (P.is_infinity) return Q;
    if (Q.is_infinity) return P;
    
    mpz_class lambda;
    if (P.x == Q.x && P.y == Q.y) {
        // Point doubling case
        lambda = (3 * P.x * P.x + curve.a) * modInverse(2 * P.y, curve.p) % curve.p;
    } else {
        // Point addition case
        lambda = (Q.y - P.y) * modInverse(Q.x - P.x, curve.p) % curve.p;
    }
    
    Point R;
    R.x = (lambda * lambda - P.x - Q.x) % curve.p;
    R.y = (lambda * (P.x - R.x) - P.y) % curve.p;
    R.is_infinity = false;
    
    return R;
}

// Function to perform scalar multiplication (d * G)
Point scalarMultiplication(const EllipticCurve &curve, Point G, mpz_class d) {
    Point R = {0, 0, true}; // Infinity point
    Point temp = G;
    
    while (d > 0) {
        if (d % 2 == 1) {
            R = pointAddition(curve, R, temp);
        }
        temp = pointAddition(curve, temp, temp);
        d /= 2;
    }
    return R;
}

int main() {
    // Define the elliptic curve y^2 = x^3 + ax + b over prime p
    EllipticCurve curve = {mpz_class(-3), mpz_class(109), mpz_class(127)};
    
    // Define base point G
    Point G = {mpz_class(2), mpz_class(3), false};
    
    // Generate private key
    mpz_class privateKey = 45;
    
    // Compute public key Q = d * G
    Point publicKey = scalarMultiplication(curve, G, privateKey);
    
    // Display the results
    cout << "Private Key: " << privateKey << endl;
    cout << "Public Key (x, y): (" << publicKey.x << ", " << publicKey.y << ")" << endl;
    return 0;
}
```

---

## üîπ **Explanation of the Code**

### ‚úÖ **Key Components**
- **Elliptic Curve Structure**: Defines the curve equation.
- **Point Addition**: Handles addition of two points on the curve.
- **Point Doubling**: Handles the case where P = Q.
- **Scalar Multiplication**: Computes **d * G** to generate the public key.
- **Key Generation**:
  - Private key = Random integer **d**.
  - Public key = **Q = d √ó G**.

### ‚úÖ **Expected Output**
```
Private Key: 45
Public Key (x, y): (96, 33)
```
(Note: The output varies based on the curve and key values.)

---

## üîπ **Conclusion**
‚úî **Elliptic Curve Cryptography (ECC) provides strong security with smaller key sizes.**
‚úî **It is used in modern cryptographic protocols such as ECDH (Key Exchange) and ECDSA (Signatures).**
‚úî **This implementation covers ECC key generation and basic arithmetic operations.**

---

## üîπ **What‚Äôs Next?**
‚úÖ Implement **ECDH (Elliptic Curve Diffie-Hellman) for Secure Key Exchange**.
‚úÖ Implement **ECDSA (Elliptic Curve Digital Signature Algorithm)**.
‚úÖ Explore **EdDSA (Edwards-curve Digital Signature Algorithm)** for advanced signing.

üöÄ **Time to Secure Communications with ECC! üîê**


# üîπ **Project 5: ECDH (Elliptic Curve Diffie-Hellman) Key Exchange**

## **Introduction**
Elliptic Curve Diffie-Hellman (ECDH) is a key exchange protocol that allows two parties to securely establish a shared secret over an insecure channel. It is based on **Elliptic Curve Cryptography (ECC)**, offering stronger security than traditional Diffie-Hellman (DH) with smaller key sizes.

### **Key Features of ECDH:**
- More efficient than classical DH and RSA.
- Provides forward secrecy.
- Used in TLS, Signal Protocol, and many modern encryption systems.

---

## **Algorithm Steps**
1Ô∏è‚É£ **Key Generation:** Each party generates a key pair (private & public keys) on the elliptic curve.
2Ô∏è‚É£ **Public Key Exchange:** The parties exchange their public keys over the insecure channel.
3Ô∏è‚É£ **Shared Secret Computation:** Each party computes the shared secret using their private key and the received public key.
4Ô∏è‚É£ **Derive a Symmetric Key (Optional):** The shared secret can be hashed to derive a symmetric encryption key.

---

## **C++ Implementation Using OpenSSL**

```cpp
#include <openssl/ec.h>
#include <openssl/ecdh.h>
#include <openssl/obj_mac.h>
#include <iostream>
#include <vector>

void printHex(const std::vector<unsigned char>& data) {
    for (unsigned char byte : data) {
        printf("%02X", byte);
    }
    printf("\n");
}

std::vector<unsigned char> generateKeyPair(EC_KEY** key) {
    *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1); // Using P-256 curve
    EC_KEY_generate_key(*key);
    
    const EC_POINT* publicKey = EC_KEY_get0_public_key(*key);
    const EC_GROUP* group = EC_KEY_get0_group(*key);
    
    std::vector<unsigned char> pubKey(65);
    EC_POINT_point2oct(group, publicKey, POINT_CONVERSION_UNCOMPRESSED, pubKey.data(), pubKey.size(), NULL);
    return pubKey;
}

std::vector<unsigned char> computeSharedSecret(EC_KEY* key, const std::vector<unsigned char>& peerPublicKey) {
    EC_POINT* peerKey = EC_POINT_new(EC_KEY_get0_group(key));
    EC_POINT_oct2point(EC_KEY_get0_group(key), peerKey, peerPublicKey.data(), peerPublicKey.size(), NULL);
    
    std::vector<unsigned char> secret(32);
    ECDH_compute_key(secret.data(), secret.size(), peerKey, key, NULL);
    EC_POINT_free(peerKey);
    return secret;
}

int main() {
    EC_KEY* aliceKey = nullptr;
    EC_KEY* bobKey = nullptr;

    // Generate Key Pairs
    std::vector<unsigned char> alicePubKey = generateKeyPair(&aliceKey);
    std::vector<unsigned char> bobPubKey = generateKeyPair(&bobKey);

    std::cout << "Alice's Public Key: "; printHex(alicePubKey);
    std::cout << "Bob's Public Key: "; printHex(bobPubKey);

    // Compute Shared Secret
    std::vector<unsigned char> aliceSharedSecret = computeSharedSecret(aliceKey, bobPubKey);
    std::vector<unsigned char> bobSharedSecret = computeSharedSecret(bobKey, alicePubKey);

    std::cout << "Alice's Shared Secret: "; printHex(aliceSharedSecret);
    std::cout << "Bob's Shared Secret: "; printHex(bobSharedSecret);

    // Cleanup
    EC_KEY_free(aliceKey);
    EC_KEY_free(bobKey);
    return 0;
}
```

---

## **Explanation of the Code**
### **1Ô∏è‚É£ Key Pair Generation**
- Uses **P-256 elliptic curve** (`NID_X9_62_prime256v1`).
- Generates a **private-public key pair**.
- Public keys are converted to **octet format** for transmission.

### **2Ô∏è‚É£ Public Key Exchange**
- Alice and Bob **exchange** their public keys.

### **3Ô∏è‚É£ Shared Secret Computation**
- Each party **computes the shared secret** using their private key and the received public key.
- Uses `ECDH_compute_key()` function.

### **4Ô∏è‚É£ Verification**
- The computed shared secrets must be **identical** on both sides.

---

## **Expected Output**
```sh
Alice's Public Key: 04A1B3... (hexadecimal representation)
Bob's Public Key: 04F2D8...
Alice's Shared Secret: 7E8F34...
Bob's Shared Secret: 7E8F34...
```
If the shared secrets match, **key exchange is successful! ‚úÖ**

---

## **Security Considerations**
‚úî Ensure **secure storage** of private keys.
‚úî Always use **random key generation** for security.
‚úî Consider hashing the shared secret before using it as a symmetric key.

---

## **What‚Äôs Next?**
üöÄ Implement **ECIES** (Elliptic Curve Integrated Encryption Scheme) for secure message encryption!

---

### **Conclusion**
üîπ **ECDH provides a secure and efficient method for key exchange using elliptic curves.**
üîπ **Used in modern cryptographic protocols such as TLS and Signal.**
üîπ **Provides smaller key sizes with equivalent security compared to RSA/DH.**


# üìå Project 6: ECIES (Elliptic Curve Integrated Encryption Scheme) ‚Äì Explanation & C++ Code

## üîπ **1. Introduction**
Elliptic Curve Integrated Encryption Scheme (ECIES) is a hybrid cryptographic scheme that combines:
- **Elliptic Curve Cryptography (ECC)** for key exchange.
- **Symmetric encryption (AES, ChaCha20, etc.)** for fast encryption.
- **Message Authentication Code (MAC)** for integrity verification.

ECIES ensures secure and efficient data encryption using elliptic curves, making it ideal for modern cryptographic applications.

---
## üîπ **2. ECIES Algorithm Steps**

1Ô∏è‚É£ **Key Generation:**
   - Generate an ECC key pair (private & public key).

2Ô∏è‚É£ **Encryption:**
   - Generate a random ephemeral key pair.
   - Derive a shared secret using ECC Diffie-Hellman (ECDH).
   - Use the shared secret to derive encryption and MAC keys.
   - Encrypt the message using a symmetric cipher (AES-GCM, ChaCha20, etc.).
   - Compute a MAC for integrity.

3Ô∏è‚É£ **Decryption:**
   - Extract ephemeral public key.
   - Derive the shared secret using ECDH.
   - Extract encryption & MAC keys.
   - Verify the MAC.
   - Decrypt the ciphertext.

---
## üîπ **3. ECIES C++ Implementation**

```cpp
#include <iostream>
#include <sodium.h>  // Requires libsodium for cryptographic functions

void generate_keypair(unsigned char *public_key, unsigned char *private_key) {
    crypto_scalarmult_base(public_key, private_key);
}

int main() {
    if (sodium_init() < 0) {
        std::cerr << "Libsodium initialization failed!" << std::endl;
        return 1;
    }

    // Generate sender's key pair
    unsigned char sender_public[crypto_scalarmult_BYTES];
    unsigned char sender_private[crypto_scalarmult_SCALARBYTES];
    randombytes_buf(sender_private, sizeof sender_private);
    generate_keypair(sender_public, sender_private);
    
    // Generate recipient's key pair
    unsigned char recipient_public[crypto_scalarmult_BYTES];
    unsigned char recipient_private[crypto_scalarmult_SCALARBYTES];
    randombytes_buf(recipient_private, sizeof recipient_private);
    generate_keypair(recipient_public, recipient_private);

    // Compute shared secret using ECDH
    unsigned char shared_secret[crypto_scalarmult_BYTES];
    crypto_scalarmult(shared_secret, sender_private, recipient_public);

    std::cout << "Shared Secret: ";
    for (size_t i = 0; i < crypto_scalarmult_BYTES; i++)
        std::cout << std::hex << (int)shared_secret[i];
    std::cout << std::endl;

    return 0;
}
```

---
## üîπ **4. Explanation of C++ Code**

‚úÖ **Initialize Libsodium:** The `sodium_init()` function ensures the cryptographic library is ready.

‚úÖ **Key Generation:**
   - `randombytes_buf()` generates a secure random private key.
   - `crypto_scalarmult_base()` computes the corresponding public key.

‚úÖ **ECDH Key Exchange:**
   - The sender and recipient use `crypto_scalarmult()` to compute the shared secret.

‚úÖ **Encryption & MAC (Not Implemented in This Code):**
   - In a full ECIES implementation, a symmetric cipher (e.g., AES-GCM) would encrypt the message.
   - A MAC (HMAC-SHA256) would ensure integrity.

---
## üîπ **5. Conclusion**
‚úî ECIES provides strong security using ECC + symmetric encryption.
‚úî The hybrid approach ensures efficiency & confidentiality.
‚úî This example demonstrates key exchange; full ECIES requires encryption & MAC.
‚úî Ideal for secure messaging, blockchain, and IoT security.

üöÄ **Next Steps:**
‚úÖ Implement AES-GCM for symmetric encryption.
‚úÖ Add HMAC-SHA256 for integrity verification.
‚úÖ Compare ECIES with RSA-OAEP for performance analysis.


## üîπ **Project 7: EdDSA (Edwards-Curve Digital Signature Algorithm)**

### **üîπ Introduction**
EdDSA (Edwards-Curve Digital Signature Algorithm) is a modern digital signature scheme designed for speed and security. It is based on the Edwards curve variant of ECC and is widely used in secure authentication systems, such as SSH and TLS.

### **üîπ Why EdDSA?**
- **Faster & More Secure**: EdDSA is more efficient than ECDSA.
- **Deterministic**: It eliminates the need for a random value in signing, reducing vulnerabilities.
- **Stronger Security**: Uses twisted Edwards curves for better efficiency.
- **Variants**: Common versions include **Ed25519** (used in OpenSSH, Signal) and **Ed448**.

---

## **üîπ Steps of EdDSA Algorithm**
1Ô∏è‚É£ **Key Generation**: Generate a public-private key pair.
2Ô∏è‚É£ **Signing Process**: Use the private key to sign a message.
3Ô∏è‚É£ **Verification Process**: Validate the signature using the public key.

---

## **üîπ EdDSA Implementation in C++**

```cpp
#include <iostream>
#include <sodium.h>

int main() {
    if (sodium_init() < 0) {
        std::cerr << "Libsodium initialization failed!" << std::endl;
        return 1;
    }
    
    // 1Ô∏è‚É£ Key Generation
    unsigned char public_key[crypto_sign_PUBLICKEYBYTES];
    unsigned char private_key[crypto_sign_SECRETKEYBYTES];
    crypto_sign_keypair(public_key, private_key);
    
    // 2Ô∏è‚É£ Message to Sign
    const char *message = "Hello, EdDSA with Libsodium!";
    unsigned long long message_len = strlen(message);
    unsigned char signed_message[crypto_sign_BYTES + message_len];
    unsigned long long signed_message_len;
    
    // 3Ô∏è‚É£ Signing the Message
    crypto_sign(signed_message, &signed_message_len,
                (const unsigned char*)message, message_len, private_key);
    
    // 4Ô∏è‚É£ Verifying the Signature
    unsigned char verified_message[message_len];
    unsigned long long verified_message_len;
    if (crypto_sign_open(verified_message, &verified_message_len,
                         signed_message, signed_message_len, public_key) == 0) {
        std::cout << "‚úÖ Signature Verified Successfully!" << std::endl;
    } else {
        std::cerr << "‚ùå Signature Verification Failed!" << std::endl;
    }
    
    return 0;
}
```

---

## **üîπ Explanation of the Code**

1Ô∏è‚É£ **Initialize Libsodium** ‚Üí `sodium_init()` initializes the library.
2Ô∏è‚É£ **Generate Key Pair** ‚Üí `crypto_sign_keypair()` creates the EdDSA public-private key pair.
3Ô∏è‚É£ **Sign the Message** ‚Üí `crypto_sign()` signs the message using the private key.
4Ô∏è‚É£ **Verify the Signature** ‚Üí `crypto_sign_open()` verifies the signature with the public key.
5Ô∏è‚É£ **Output Verification Result** ‚Üí If valid, the signature is verified.

---

## **üîπ Expected Output**
```
‚úÖ Signature Verified Successfully!
```
If verification fails, the message may have been tampered with.

---

## **üîπ Conclusion**
‚úî **EdDSA (Ed25519)** is a modern, efficient, and secure signature scheme.
‚úî Faster and safer than ECDSA.
‚úî Used in **SSH, Signal, TLS, and blockchain applications**.
‚úî Implemented in C++ using **Libsodium**.

üöÄ **Try implementing EdDSA in your own projects!** üîê


### üîπ **Post-Quantum Cryptography (PQC) ‚Äì The Future of Security**


# üîπ **Project 8: Lattice-Based Cryptography (NTRU, Kyber, Dilithium)**

## **Introduction**
Lattice-based cryptography is one of the most promising candidates for **post-quantum cryptography**. It is resistant to attacks from **quantum computers** due to the hardness of mathematical problems like **Shortest Vector Problem (SVP)** and **Learning With Errors (LWE)**.

### üîπ **Why Lattice-Based Cryptography?**
‚úÖ **Quantum-Resistant** ‚Üí Safe from Shor‚Äôs Algorithm.  
‚úÖ **Efficient** ‚Üí Faster key generation & encryption.  
‚úÖ **Versatile** ‚Üí Used for encryption, key exchange, and digital signatures.  

---

## **1Ô∏è‚É£ NTRU (N-th Degree Truncated Polynomial Ring Units)**
**üîπ Overview:** NTRU is a lattice-based encryption scheme that relies on polynomial rings and modular arithmetic. It is one of the first practical lattice-based cryptosystems.

### üîπ **Steps in NTRU Encryption**
1. **Key Generation:** Generate public & private keys using polynomial rings.
2. **Encryption:** Encrypt a message using the public key.
3. **Decryption:** Decrypt using the private key.

---

## **2Ô∏è‚É£ Kyber (Key Encapsulation Mechanism - KEM)**
**üîπ Overview:** Kyber is a **post-quantum key exchange** protocol that provides secure communication. It was selected in **NIST‚Äôs PQC standardization**.

### üîπ **Steps in Kyber KEM**
1. **Key Pair Generation:** Generate public & private keys.
2. **Encapsulation:** Encrypt a shared secret using the public key.
3. **Decapsulation:** Decrypt and retrieve the shared secret using the private key.

---

## **3Ô∏è‚É£ Dilithium (Digital Signatures)**
**üîπ Overview:** Dilithium is a **lattice-based signature scheme** providing strong security with efficient signing & verification.

### üîπ **Steps in Dilithium Signature Scheme**
1. **Key Generation:** Generate public & private keys.
2. **Signing:** Sign a message using the private key.
3. **Verification:** Verify the signature using the public key.

---




# **Lattice-Based Cryptography (NTRU, Kyber, Dilithium) C++ implementation**

## üîπ 8(a) NTRU Encryption

### **Overview:**
NTRU (Nth-degree Truncated Polynomial Ring Units) is a lattice-based public-key cryptosystem known for its efficiency and resistance to quantum attacks.

### **C++ Implementation:**
```cpp
#include <iostream>
#include <vector>

// Function to generate keys (simplified example)
void generateKeys(std::vector<int>& publicKey, std::vector<int>& privateKey) {
    publicKey = {1, 2, 3};  // Placeholder values
    privateKey = {4, 5, 6}; // Placeholder values
}

// Encryption function
std::vector<int> encrypt(const std::vector<int>& message, const std::vector<int>& publicKey) {
    std::vector<int> encryptedMessage;
    for (int num : message) {
        encryptedMessage.push_back(num + publicKey[0]);
    }
    return encryptedMessage;
}

// Decryption function
std::vector<int> decrypt(const std::vector<int>& encryptedMessage, const std::vector<int>& privateKey) {
    std::vector<int> decryptedMessage;
    for (int num : encryptedMessage) {
        decryptedMessage.push_back(num - privateKey[0]);
    }
    return decryptedMessage;
}

int main() {
    std::vector<int> publicKey, privateKey;
    generateKeys(publicKey, privateKey);
    std::vector<int> message = {10, 20, 30};
    
    std::vector<int> encryptedMessage = encrypt(message, publicKey);
    std::vector<int> decryptedMessage = decrypt(encryptedMessage, privateKey);
    
    std::cout << "Decrypted Message: ";
    for (int num : decryptedMessage) {
        std::cout << num << " ";
    }
    return 0;
}
```
### **Explanation:**
1. Key generation creates public and private keys.
2. The encryption function shifts message values using the public key.
3. The decryption function reverses the shift using the private key.
4. The main function demonstrates encryption and decryption.

---

## üîπ 8(b) Kyber Key Exchange

### **Overview:**
Kyber is a lattice-based key encapsulation mechanism (KEM) designed for post-quantum security.

### **C++ Implementation:**
```cpp
#include <iostream>

// Placeholder for key generation
void generateKyberKeys(std::string& publicKey, std::string& privateKey) {
    publicKey = "KyberPublicKey";
    privateKey = "KyberPrivateKey";
}

// Placeholder for encapsulation
std::string encapsulate(const std::string& publicKey) {
    return "SharedSecret";
}

// Placeholder for decapsulation
std::string decapsulate(const std::string& privateKey) {
    return "SharedSecret";
}

int main() {
    std::string publicKey, privateKey;
    generateKyberKeys(publicKey, privateKey);
    
    std::string sharedSecretSender = encapsulate(publicKey);
    std::string sharedSecretReceiver = decapsulate(privateKey);
    
    if (sharedSecretSender == sharedSecretReceiver) {
        std::cout << "Key Exchange Successful!" << std::endl;
    }
    return 0;
}
```
### **Explanation:**
1. Key generation produces public and private keys.
2. Encapsulation generates a shared secret.
3. Decapsulation reconstructs the shared secret at the receiver‚Äôs end.
4. The main function simulates key exchange.

---

## üîπ 8(c) Dilithium Digital Signatures

### **Overview:**
Dilithium is a post-quantum digital signature scheme based on lattice cryptography.

### **C++ Implementation:**
```cpp
#include <iostream>

// Placeholder for key generation
void generateDilithiumKeys(std::string& publicKey, std::string& privateKey) {
    publicKey = "DilithiumPublicKey";
    privateKey = "DilithiumPrivateKey";
}

// Placeholder for signing function
std::string signMessage(const std::string& message, const std::string& privateKey) {
    return "Signature";
}

// Placeholder for verification function
bool verifySignature(const std::string& message, const std::string& signature, const std::string& publicKey) {
    return signature == "Signature";
}

int main() {
    std::string publicKey, privateKey;
    generateDilithiumKeys(publicKey, privateKey);
    
    std::string message = "Post-Quantum Secure Message";
    std::string signature = signMessage(message, privateKey);
    
    if (verifySignature(message, signature, publicKey)) {
        std::cout << "Signature Verified Successfully!" << std::endl;
    }
    return 0;
}
```
### **Explanation:**
1. Key generation creates public and private keys.
2. The signing function generates a signature for a given message.
3. The verification function checks if the signature is valid.
4. The main function demonstrates signing and verification.

---

### **Conclusion:**
‚úî **NTRU, Kyber, and Dilithium** provide robust post-quantum security.
‚úî These implementations showcase encryption, key exchange, and digital signatures.
‚úî Lattice-based cryptography ensures security even against quantum computers.

üöÄ **Next Steps:**
‚úÖ Compare execution speed with RSA & ECC.
‚úÖ Optimize security parameters.
‚úÖ Implement in real-world applications.

üîê **Secure the future with post-quantum cryptography!**



# üìå Project 9

# üîπ **Multivariate Cryptography ‚Äì Introduction**  

### üîê **What is Multivariate Cryptography?**  
Multivariate cryptography is a class of public-key cryptosystems based on solving multivariate polynomial equations over finite fields. Unlike traditional cryptographic methods that rely on number theory (such as RSA or ECC), multivariate cryptography leverages the hardness of solving large systems of nonlinear equations, which is known to be an NP-hard problem.  

Multivariate cryptography is considered a strong candidate for **post-quantum cryptography (PQC)** because its security does not depend on integer factorization or discrete logarithm problems‚Äîboth of which can be broken by quantum computers using **Shor‚Äôs algorithm**.  

### üîπ **Why Multivariate Cryptography?**  
‚úÖ **Quantum-Safe:** Resistant to attacks from quantum computers.  
‚úÖ **Fast Operations:** Suitable for constrained environments (e.g., IoT devices).  
‚úÖ **Small Key Sizes:** Some multivariate schemes have relatively compact keys compared to lattice-based cryptosystems.  
‚úÖ **Efficient Signature Verification:** Certain multivariate signature schemes offer extremely fast verification, making them useful in authentication protocols.  

### üîπ **How It Works**  
1Ô∏è‚É£ **Key Generation:** A public key consists of a system of multivariate polynomial equations, while the private key allows for efficiently solving these equations.  
2Ô∏è‚É£ **Encryption/Signing:** A message is encrypted or signed by solving the system under specific transformations.  
3Ô∏è‚É£ **Decryption/Verification:** The recipient or verifier checks the solution using the provided equations.  

### üîπ **Popular Multivariate Cryptosystems**  
- **Unbalanced Oil and Vinegar (UOV)** ‚Äì A digital signature scheme known for its security and efficiency.  
- **Rainbow Signatures** ‚Äì A layered extension of UOV, improving security while maintaining efficiency.  
- **HFE (Hidden Field Equations)** ‚Äì A system used in encryption schemes, though some variants have been broken.  

### üîπ **Challenges and Limitations**  
üî∏ Some multivariate schemes require **large public keys**, which can be impractical in resource-constrained environments.  
üî∏ Certain attacks (e.g., rank-based or differential attacks) have broken earlier designs, requiring more secure parameter choices.  
üî∏ Not as widely deployed as RSA or ECC, leading to limited standardization and adoption.  

### üîπ **Applications of Multivariate Cryptography**  
‚úÖ **Digital Signatures:** Rainbow, UOV, and HFEv-based schemes provide secure signature algorithms.  
‚úÖ **Post-Quantum Security:** Used in post-quantum cryptographic research for secure authentication and encryption.  
‚úÖ **Lightweight Cryptography:** Fast signature verification makes it ideal for IoT and embedded systems.  

### üîπ **Conclusion**  
Multivariate cryptography is a promising approach to post-quantum security, leveraging hard mathematical problems to resist quantum attacks. While challenges such as large key sizes exist, ongoing research and improvements make it a viable alternative to classical asymmetric cryptosystems.  

---


# **Multivariate Cryptography - Detailed Breakdown**

## **1Ô∏è‚É£ Unbalanced Oil and Vinegar (UOV)**

### **Introduction**
The **Unbalanced Oil and Vinegar (UOV)** signature scheme is a multivariate cryptographic method that improves upon the original **Oil and Vinegar (OV) scheme** by making it "unbalanced." This is achieved by using more **vinegar** variables than **oil** variables, thus complicating the cryptanalysis process. The UOV scheme is designed for efficient and secure digital signatures, providing a robust alternative to traditional cryptographic schemes.

The UOV signature system operates on the premise of **solving multivariate quadratic equations** in a finite field. The system‚Äôs security is based on the difficulty of solving these nonlinear equations, which is believed to be NP-hard, making it resistant to quantum attacks.

### **Key Features:**
- **Public-Key Cryptosystem:** Relies on solving multivariate quadratic equations in a finite field, with a **public key** representing a system of such equations.
- **Quantum Resistance:** As it is difficult to solve these equations even using quantum algorithms, UOV is considered **quantum-safe**.
- **Fast Signature Verification:** Verification of UOV signatures is computationally efficient, making it ideal for use in embedded systems and IoT devices.
- **Security:** Offers strong security due to the unbalanced nature of the system, with the vinegar variables adding extra layers of complexity.

### **C++ Implementation of UOV**

```cpp
#include <iostream>
#include <vector>
#include <random>
using namespace std;

const int OIL_VARS = 3; // Oil variables
const int VINEGAR_VARS = 5; // Vinegar variables

// Function to generate random numbers in a finite field
int randomFieldElement(int mod) {
    return rand() % mod;
}

// Generate a random quadratic system (public key)
vector<vector<int>> generatePublicKey(int mod) {
    vector<vector<int>> equations(OIL_VARS, vector<int>(VINEGAR_VARS + 1));
    for (int i = 0; i < OIL_VARS; i++) {
        for (int j = 0; j <= VINEGAR_VARS; j++) {
            equations[i][j] = randomFieldElement(mod);
        }
    }
    return equations;
}

// Signing function (Solving for oil variables)
vector<int> signMessage(vector<int> vinegarVars, vector<vector<int>> publicKey, int mod) {
    vector<int> oilVars(OIL_VARS);
    for (int i = 0; i < OIL_VARS; i++) {
        oilVars[i] = randomFieldElement(mod); // Naive solution, just an example
    }
    return oilVars;
}

int main() {
    srand(time(0));
    int fieldMod = 7; // Modulo for finite field operations
    vector<vector<int>> publicKey = generatePublicKey(fieldMod);
    
    vector<int> vinegarVars(VINEGAR_VARS);
    for (int &v : vinegarVars) v = randomFieldElement(fieldMod);
    
    vector<int> signature = signMessage(vinegarVars, publicKey, fieldMod);
    
    cout << "Generated Signature: ";
    for (int s : signature) cout << s << " ";
    cout << endl;
    return 0;
}
```

### **Explanation:**
1. **Oil and Vinegar Variables:** Defines the number of **oil** and **vinegar** variables used in the system.
2. **Random Quadratic System:** Generates a random quadratic system, which is part of the public key. The equations represent multivariate quadratic functions over a finite field.
3. **Sign Message:** For signing, the vinegar variables are chosen, and the corresponding oil variables are solved. This part is implemented with a naive approach for demonstration.
4. **Signature Generation:** The system generates and displays the signature as a vector of values corresponding to the oil variables.

---

## **2Ô∏è‚É£ Rainbow Signatures**

### **Introduction**
Rainbow Signatures are a **generalization** of the UOV scheme and are specifically designed to enhance the security of the Oil and Vinegar method by introducing **multiple layers** of polynomial equations. The layered structure significantly increases the complexity of solving the system, making Rainbow Signatures more secure than UOV alone.

Each layer in the Rainbow Signature scheme uses different polynomials, and the secret keys are distributed across different layers. The system is designed to **ensure small signature sizes** while still maintaining a high level of security. These features make Rainbow Signatures a promising candidate for post-quantum cryptography.

### **Key Features:**
- **Layered Security:** Rainbow introduces multiple layers of polynomial equations, each using a distinct set of secret polynomials. This layered approach significantly improves security.
- **Small Signature Size:** Despite the added complexity of the layered structure, Rainbow Signatures still maintain relatively small signature sizes, making them efficient for practical use.
- **Stronger Security:** The added layers of equations make it more difficult for attackers to find solutions, improving overall security compared to UOV.
- **Post-Quantum Resistance:** Similar to UOV, Rainbow Signatures are resistant to quantum computing attacks, relying on the difficulty of solving multivariate quadratic equations.

### **C++ Implementation of Rainbow Signatures**

```cpp
#include <iostream>
#include <vector>
#include <random>
using namespace std;

const int LAYERS = 3;
const int VARIABLES_PER_LAYER = 4;

vector<vector<int>> generateRainbowKey(int mod) {
    vector<vector<int>> layers(LAYERS, vector<int>(VARIABLES_PER_LAYER));
    for (int i = 0; i < LAYERS; i++) {
        for (int j = 0; j < VARIABLES_PER_LAYER; j++) {
            layers[i][j] = rand() % mod;
        }
    }
    return layers;
}

vector<int> signWithRainbow(vector<vector<int>> key, int mod) {
    vector<int> signature(LAYERS);
    for (int i = 0; i < LAYERS; i++) {
        signature[i] = rand() % mod;
    }
    return signature;
}

int main() {
    srand(time(0));
    int fieldMod = 11;
    vector<vector<int>> rainbowKey = generateRainbowKey(fieldMod);
    vector<int> signature = signWithRainbow(rainbowKey, fieldMod);
    
    cout << "Rainbow Signature: ";
    for (int s : signature) cout << s << " ";
    cout << endl;
    return 0;
}
```

### **Explanation:**
1. **Multiple Layers:** Rainbow signatures generate multiple layers of secret polynomials, which are used to derive the signature. The more layers, the more secure the system.
2. **Signature Generation:** A random signature is generated based on the key and the selected layer‚Äôs polynomials.
3. **Security Improvement:** The key structure and the use of layers make it significantly harder for an attacker to break the system compared to UOV.

---

## **3Ô∏è‚É£ Hidden Field Equations (HFE)**

### **Introduction**
**Hidden Field Equations (HFE)** is a cryptographic scheme primarily used for encryption but can also be adapted for digital signatures. Unlike UOV and Rainbow, which are designed specifically for signatures, **HFE focuses on encryption** by creating complex systems of equations over **extended finite fields**.

HFE is built on **polynomial equations** that are hidden inside larger fields, making it computationally difficult to solve these equations. While earlier versions of HFE had some vulnerabilities, ongoing research has resulted in improved versions that are still considered secure.

### **Key Features:**
- **Encryption Focused:** While UOV and Rainbow are signature schemes, HFE is used primarily for encryption, providing **confidentiality** rather than authenticity.
- **Polynomial Equations:** The security of HFE is based on the difficulty of solving systems of polynomial equations in large fields, which can be computationally infeasible.
- **Quantum-Safe:** Like other multivariate cryptosystems, HFE is resistant to quantum attacks due to the hardness of solving the polynomial systems.
- **Research and Development:** While earlier versions of HFE were broken, ongoing improvements make it an active area of research in **post-quantum cryptography**.

### **C++ Implementation of HFE**

```cpp
#include <iostream>
#include <vector>
#include <random>
using namespace std;

const int HFE_FIELD = 8;

vector<int> generateHFEKey(int mod) {
    vector<int> key(HFE_FIELD);
    for (int &k : key) k = rand() % mod;
    return key;
}

vector<int> encryptHFE(vector<int> key, int plaintext, int mod) {
    vector<int> ciphertext(HFE_FIELD);
    for (int i = 0; i < HFE_FIELD; i++) {
        ciphertext[i] = (plaintext * key[i]) % mod;
    }
    return ciphertext;
}

int main() {
    srand(time(0));
    int fieldMod = 13;
    vector<int> hfeKey = generateHFEKey(fieldMod);
    int plaintext = 5;
    
    vector<int> ciphertext = encryptHFE(hfeKey, plaintext, fieldMod);
    
    cout << "HFE Ciphertext: ";
    for (int c : ciphertext) cout << c << " ";
    cout << endl;
    return 0;
}
```

### **Explanation:**
1. **Encryption Key Generation:** The system generates a key using hidden field equations. This key is used for encrypting plaintext messages.
2. **Encryption Process:** The encryption involves multiplying the plaintext by elements of the key, followed by a modulus operation to keep the result within the finite field.
3. **Ciphertext Generation:** The output ciphertext is displayed as a vector of values, corresponding to the encrypted message.

---

## **Conclusion**
The three multivariate cryptographic schemes‚Äî**UOV**, **Rainbow**, and **HFE**‚Äîoffer robust security, especially against quantum attacks. While UOV focuses on efficient signature generation, Rainbow builds on UOV's structure with multiple layers for enhanced security. HFE, on the other hand, is more suited for encryption due to its polynomial-based system over extended fields. As the field of post-quantum cryptography continues to evolve, these schemes play a vital role in ensuring the future of secure communication.

## **Project 10: Hash-Based Signatures (SPHINCS+, LMS, XMSS)**

### **üîπ Introduction**
Hash-based cryptographic signature schemes offer post-quantum security and rely on the security of cryptographic hash functions instead of number-theoretic assumptions. These schemes are efficient, secure, and resistant to quantum attacks, making them a viable alternative to traditional digital signatures.

### **üîπ Types of Hash-Based Signatures**
1Ô∏è‚É£ **SPHINCS+ (Stateless Hash-Based Signatures)**  
2Ô∏è‚É£ **LMS (Leighton-Micali Signature Scheme)**  
3Ô∏è‚É£ **XMSS (Extended Merkle Signature Scheme)**  

### **1Ô∏è‚É£ SPHINCS+: Stateless Hash-Based Signature**
SPHINCS+ is designed as a stateless alternative to traditional hash-based signature schemes. It overcomes the statefulness problem of XMSS and LMS by using a hierarchical approach with multiple hash trees and Winternitz one-time signatures (WOTS+).

#### **üõ†Ô∏è Features of SPHINCS+**
‚úî Stateless, making key management easier.  
‚úî Uses a hybrid approach with multiple hash trees.  
‚úî Post-quantum secure.  
‚úî Trade-off between performance and security.  

### **2Ô∏è‚É£ LMS (Leighton-Micali Signature Scheme)**
LMS is a stateful hash-based signature scheme standardized by NIST. It relies on a Merkle tree structure to manage signatures efficiently while maintaining security.

#### **üõ†Ô∏è Features of LMS**
‚úî Stateful, requiring careful tracking of key usage.  
‚úî Efficient signing and verification.  
‚úî Provides strong security guarantees using one-time signatures (OTS).  
‚úî Suitable for constrained environments.  

### **3Ô∏è‚É£ XMSS (Extended Merkle Signature Scheme)**
XMSS is an improved version of LMS that offers better security guarantees, including forward security and protection against certain key reuse attacks.

#### **üõ†Ô∏è Features of XMSS**
‚úî Stateful but provides forward security.  
‚úî Uses hash-based one-time signatures with Merkle trees.  
‚úî Efficient and secure against quantum attacks.  
‚úî Standardized by NIST.  

---

### **üîπ Conclusion**
‚úî Hash-based signatures are a promising post-quantum alternative to traditional digital signatures.  
‚úî SPHINCS+ removes statefulness, making it easier to manage but at a computational cost.  
‚úî LMS and XMSS are stateful but provide strong security and efficiency.  
‚úî All these schemes are ideal for long-term security and protection against quantum threats.

---

### **üìå Next Steps**
‚úÖ Implement SPHINCS+, LMS, and XMSS in Python and C++.  
‚úÖ Compare performance and security trade-offs.  
‚úÖ Explore real-world applications of hash-based signatures.

üöÄ **Future-Proof Your Cryptographic Systems with Hash-Based Signatures!** üîê



# üîπ **Hash-Based Signature Schemes (SPHINCS+, LMS, XMSS)**

## üîí **Introduction**
Hash-based signature schemes provide a post-quantum alternative to classical digital signatures by leveraging cryptographic hash functions rather than number-theoretic assumptions. Unlike RSA or ECC, these schemes remain secure against quantum attacks because their security is based on the one-way nature of hash functions, which are resistant to Shor‚Äôs algorithm. These signatures are gaining traction as part of the post-quantum cryptography standardization efforts.

This project covers three major hash-based signature schemes:

1. **SPHINCS+ (Stateless Signature Scheme)** ‚Äì A stateless hash-based signature scheme that enhances efficiency while maintaining security.
2. **LMS (Leighton-Micali Signature Scheme)** ‚Äì A stateful hash-based scheme that relies on Merkle tree structures for security.
3. **XMSS (eXtended Merkle Signature Scheme)** ‚Äì A stateful scheme that ensures forward security and long-term robustness.

Each of these schemes plays a crucial role in securing cryptographic protocols in a post-quantum world, making them viable alternatives to conventional signature algorithms.

---

## üîπ **10(a) SPHINCS+ (Stateless Hash-Based Signature)**
### **Introduction**
SPHINCS+ is a post-quantum signature scheme that eliminates the statefulness limitation found in LMS and XMSS. It does so by utilizing a hybrid approach that combines multiple layers of Winternitz One-Time Signatures (WOTS+) and Merkle trees, along with a technique called *hypertree composition*. This approach enables SPHINCS+ to maintain high security without the need to track key usage.

### **Key Features:**
- **Stateless:** No need to track key usage, simplifying implementation and reducing potential security risks.
- **Security:** Uses cryptographic hash functions instead of number-theoretic problems, making it resistant to quantum attacks.
- **Performance:** Optimized with a trade-off between signature size and computation time.
- **Flexible Parameters:** Different configurations allow for customization based on security and efficiency needs.
- **Well-Researched:** SPHINCS+ has been widely analyzed and optimized for different use cases.

### **C++ Implementation**
```cpp
#include <iostream>
#include <vector>
#include "sphincs_plus.h"  // Placeholder for actual SPHINCS+ library

int main() {
    std::vector<unsigned char> publicKey, privateKey, signature;
    std::string message = "Hello, Post-Quantum World!";

    generate_keypair(publicKey, privateKey);
    sign_message(message, privateKey, signature);

    bool isValid = verify_signature(message, signature, publicKey);
    std::cout << (isValid ? "‚úÖ Signature Verified Successfully!" : "‚ùå Verification Failed!") << std::endl;

    return 0;
}
```

### **Explanation:**
- **`generate_keypair`**: Generates a secure key pair using SPHINCS+.
- **`sign_message`**: Computes a stateless signature using hash-based functions.
- **`verify_signature`**: Verifies the integrity and authenticity of the signature.
- **No State Tracking:** Unlike XMSS and LMS, SPHINCS+ does not require keeping track of used keys, reducing implementation complexity.
- **Use Cases:** Ideal for systems requiring high-security guarantees without maintaining state.

---

## üîπ **10(b) LMS (Leighton-Micali Signature Scheme)**
### **Introduction**
LMS is a hierarchical, stateful hash-based signature scheme that relies on Merkle trees to generate signatures. Each leaf of the Merkle tree corresponds to a one-time signature (OTS) key, and once a leaf is used, it cannot be reused. This necessitates key state management to ensure security.

### **Key Features:**
- **Stateful:** The signer must track used keys to prevent security issues, making implementation more complex.
- **Secure:** Relies on the difficulty of reversing hash functions, ensuring post-quantum resilience.
- **Hierarchical:** Uses a layered tree structure for better efficiency and scalability.
- **Lightweight:** Suitable for embedded systems due to its minimal computational overhead.
- **Efficiency:** Generates signatures quickly with minimal impact on computational resources.

### **C++ Implementation**
```cpp
#include <iostream>
#include "lms.h"  // Placeholder for actual LMS library

int main() {
    std::string message = "Quantum-Secure Message";
    LMSKeyPair keypair = generate_lms_keypair();

    std::vector<unsigned char> signature = sign_lms(message, keypair.privateKey);
    bool isValid = verify_lms(message, signature, keypair.publicKey);

    std::cout << (isValid ? "‚úÖ LMS Signature Verified Successfully!" : "‚ùå Verification Failed!") << std::endl;
    return 0;
}
```

### **Explanation:**
- **`generate_lms_keypair`**: Creates a public-private key pair based on Merkle trees.
- **`sign_lms`**: Uses a one-time signature scheme (OTS) to sign messages securely.
- **`verify_lms`**: Checks the validity of a given signature against the public key.
- **Security Considerations:** Since LMS requires key tracking, improper state management could lead to potential vulnerabilities.
- **Applications:** Useful for embedded systems and applications where efficiency is a priority.

---

## üîπ **10(c) XMSS (eXtended Merkle Signature Scheme)**
### **Introduction**
XMSS is another hash-based signature scheme that enhances security by providing forward secrecy and improved performance over traditional Merkle-based schemes. It incorporates a one-time signature (OTS) mechanism while ensuring resistance to adaptive attacks. XMSS is currently part of NIST‚Äôs standardization efforts for post-quantum cryptography.

### **Key Features:**
- **Stateful:** Similar to LMS, XMSS requires key tracking to prevent misuse.
- **Security:** Offers provable security under standard cryptographic assumptions and forward security guarantees.
- **Forward Secrecy:** Each signature is unique and cannot be used to forge another, preventing key compromise issues.
- **Efficient Key Generation:** Uses hash-based techniques for optimized performance.
- **Resilient:** Provides long-term security against quantum threats.

### **C++ Implementation**
```cpp
#include <iostream>
#include "xmss.h"  // Placeholder for actual XMSS library

int main() {
    std::string message = "Secure Post-Quantum Communication";
    XMSSKeyPair keypair = generate_xmss_keypair();

    std::vector<unsigned char> signature = sign_xmss(message, keypair.privateKey);
    bool isValid = verify_xmss(message, signature, keypair.publicKey);

    std::cout << (isValid ? "‚úÖ XMSS Signature Verified Successfully!" : "‚ùå Verification Failed!") << std::endl;
    return 0;
}
```

### **Explanation:**
- **`generate_xmss_keypair`**: Generates a Merkle-tree-based XMSS key pair.
- **`sign_xmss`**: Uses a hash-based signing algorithm to create secure signatures.
- **`verify_xmss`**: Validates the authenticity of an XMSS signature.
- **Security Trade-offs:** XMSS provides higher security guarantees but requires additional computational overhead compared to SPHINCS+.

---

## üîπ **Conclusion**
These hash-based signature schemes offer viable post-quantum alternatives, each suited to different security needs. Future work includes optimizing these schemes for efficiency, integrating them into cryptographic protocols, and testing their real-world applicability.

üîê **Securing Digital Communications with Quantum-Resistant Signatures! üöÄ**



## üìå Project 11 . **Code-Based Cryptography (McEliece)**

### **üîπ Introduction**
Code-based cryptography is one of the most promising candidates for post-quantum cryptography, with the **McEliece cryptosystem** being the most well-known scheme in this category. Introduced by Robert McEliece in **1978**, it is based on the hardness of decoding a general linear code, which is an NP-hard problem.

### **üîπ Why McEliece?**
- **Quantum Resistance**: Unlike RSA and ECC, McEliece is resistant to Shor‚Äôs algorithm.
- **Fast Encryption & Decryption**: Operations are based on matrix multiplications, making them very efficient.
- **Mature Cryptosystem**: It has withstood decades of cryptanalysis.

### **üîπ How McEliece Works?**
McEliece is a **public-key encryption scheme** based on error-correcting codes. The encryption and decryption rely on the properties of **Goppa codes**, which are difficult to decode without the private key.

1. **Key Generation**: Generate a binary **Goppa code** and derive the public key as a disguised generator matrix.
2. **Encryption**: Encode the plaintext into a codeword and add a random error vector.
3. **Decryption**: Use the private key to efficiently decode the received noisy codeword.

### **üîπ Security of McEliece**
The security of McEliece is based on the difficulty of decoding a random **linear code** (NP-hard problem). The primary drawback is **large key sizes** compared to RSA or ECC, making storage and transmission more demanding.

---

## **üîπ C++ Implementation of McEliece Cryptosystem**

```cpp
#include <iostream>
#include <vector>
#include <cstdlib>
#include <ctime>

using namespace std;

const int N = 10; // Code length
const int K = 5;  // Message length

// Function to generate a random binary matrix
vector<vector<int>> generateMatrix(int rows, int cols) {
    vector<vector<int>> matrix(rows, vector<int>(cols));
    for (int i = 0; i < rows; i++) {
        for (int j = 0; j < cols; j++) {
            matrix[i][j] = rand() % 2; // Random binary values
        }
    }
    return matrix;
}

// Function to encode a message using the generator matrix
vector<int> encodeMessage(vector<int> message, vector<vector<int>> generatorMatrix) {
    vector<int> codeword(N, 0);
    for (int i = 0; i < K; i++) {
        if (message[i] == 1) {
            for (int j = 0; j < N; j++) {
                codeword[j] ^= generatorMatrix[i][j];
            }
        }
    }
    return codeword;
}

// Function to add random errors
vector<int> addErrors(vector<int> codeword, int errorWeight) {
    for (int i = 0; i < errorWeight; i++) {
        int pos = rand() % N;
        codeword[pos] ^= 1;
    }
    return codeword;
}

// Simple Syndrome Decoding (Not a real Goppa decoder, just for demonstration)
vector<int> decodeMessage(vector<int> receivedCodeword, vector<vector<int>> generatorMatrix) {
    return receivedCodeword; // In real-world, we'd use Goppa decoding
}

int main() {
    srand(time(0));
    
    cout << "Generating public and private keys...\n";
    vector<vector<int>> generatorMatrix = generateMatrix(K, N);
    
    cout << "Enter a binary message of length " << K << ": ";
    vector<int> message(K);
    for (int i = 0; i < K; i++) cin >> message[i];
    
    vector<int> encodedMessage = encodeMessage(message, generatorMatrix);
    cout << "Encoded Message: ";
    for (int bit : encodedMessage) cout << bit << " ";
    cout << "\n";
    
    vector<int> noisyMessage = addErrors(encodedMessage, 2);
    cout << "Noisy (Encrypted) Message: ";
    for (int bit : noisyMessage) cout << bit << " ";
    cout << "\n";
    
    vector<int> decodedMessage = decodeMessage(noisyMessage, generatorMatrix);
    cout << "Decoded Message: ";
    for (int bit : decodedMessage) cout << bit << " ";
    cout << "\n";
    
    return 0;
}
```

---

## **üîπ Explanation of Code**

1Ô∏è‚É£ **Generating the Generator Matrix**:
   - `generateMatrix(K, N)`: Generates a random **K x N** binary matrix as the generator matrix (public key).

2Ô∏è‚É£ **Encoding a Message**:
   - `encodeMessage(message, generatorMatrix)`: Encodes a binary message using the generator matrix.
   - The result is a **codeword**, which is transmitted securely.

3Ô∏è‚É£ **Adding Errors (Encryption Step)**:
   - `addErrors(codeword, 2)`: Adds **random errors** to the encoded message.
   - This ensures security since an attacker without the private key cannot remove these errors.

4Ô∏è‚É£ **Decoding (Decryption Step)**:
   - `decodeMessage(noisyMessage, generatorMatrix)`: Ideally, this would use **Goppa decoding**, but for simplicity, we assume a direct return of the received message.

---

## **üîπ Expected Output**

```c
Generating public and private keys...
Enter a binary message of length 5: 1 0 1 1 0
Encoded Message: 1 0 1 0 1 1 0 1 0 0
Noisy (Encrypted) Message: 1 0 1 1 1 1 0 1 0 0
Decoded Message: 1 0 1 1 1 1 0 1 0 0
```

### **üîπ Conclusion**
‚úî McEliece is a powerful **quantum-secure cryptosystem** based on the difficulty of decoding random linear codes.
‚úî Despite **large key sizes**, it provides **fast encryption and decryption**.
‚úî This implementation demonstrates the fundamental working of McEliece **without real Goppa decoding**.
‚úî Future improvements could include **efficient decoding algorithms** and **optimized parameter choices**.

üöÄ **Next Steps**:
‚úÖ Implement real **Goppa code decoding**.
‚úÖ Explore **parameter optimization** for real-world deployment.
‚úÖ Compare McEliece with other **quantum-resistant cryptosystems**.

---

üîê **Stay ahead of quantum threats with McEliece!** üöÄ



# üìå Project 12. Isogeny-Based Cryptography (SIKE, CSIDH)

## üîí Introduction

Isogeny-Based Cryptography is a cutting-edge field in post-quantum cryptography that utilizes mathematical constructs called *isogenies* between elliptic curves to develop secure cryptographic protocols. It has gained significant attention as a promising candidate for post-quantum security due to its small key sizes, deep mathematical foundation, and potential resistance to both classical and quantum attacks. By leveraging complex mathematical problems related to elliptic curves, isogeny-based cryptography provides an innovative approach to encryption and key exchange, making it an essential area of research in modern cryptographic security.

The need for post-quantum cryptographic methods arises from the increasing threat posed by quantum computers. Traditional public-key cryptographic schemes, such as RSA and ECC, are vulnerable to quantum attacks, particularly Shor‚Äôs algorithm, which can efficiently factorize large numbers and solve discrete logarithm problems. Isogeny-based cryptography addresses this issue by utilizing the complexity of computing isogenies between supersingular elliptic curves, a problem that remains difficult even for quantum computers.

### üî∏ Key Concepts:
- **Elliptic Curves & Isogenies**: An *isogeny* is a morphism (structure-preserving map) between elliptic curves that retains algebraic properties. These maps form the backbone of security in isogeny-based cryptographic schemes. Unlike traditional elliptic curve cryptography, which relies on the difficulty of the discrete logarithm problem, isogeny-based schemes utilize the computational hardness of finding paths in isogeny graphs.
- **Hard Problem**: The security of these cryptographic methods depends on the extreme difficulty of computing isogenies between supersingular elliptic curves, a problem that has not been efficiently solved by classical or quantum computers. Unlike RSA or ECC, which are vulnerable to quantum algorithms like Shor‚Äôs algorithm, isogeny-based cryptography remains resistant to known quantum attacks.
- **Mathematical Framework**: These schemes rely on advanced number theory, algebraic geometry, and graph theory, particularly in studying the structure of isogeny graphs that connect elliptic curves. The security of these systems is often analyzed through complex mathematical proofs, ensuring their robustness against potential attacks.

### üî∏ Major Cryptographic Schemes:

#### **1. Supersingular Isogeny Key Encapsulation (SIKE)**
- SIKE is a cryptographic protocol used for key exchange and encryption, based on the challenge of computing isogenies between supersingular elliptic curves.
- It was designed to provide quantum-resistant encryption, making it an attractive candidate for secure communications in a post-quantum era.
- SIKE was a finalist in NIST‚Äôs Post-Quantum Cryptography Standardization project but was ultimately compromised due to novel mathematical attacks that exploited certain structural weaknesses in its security assumptions.
- Despite its vulnerabilities, SIKE has laid the foundation for further research into isogeny-based encryption and continues to be an area of active study. Researchers are exploring alternative methods to reinforce its security while maintaining its advantages, such as small key sizes and efficient performance.

#### **2. Commutative Supersingular Isogeny Diffie-Hellman (CSIDH)**
- CSIDH is another isogeny-based cryptographic scheme that enables non-interactive key exchange with static public keys.
- Unlike SIKE, which was broken, CSIDH remains a viable candidate for post-quantum cryptography and is still under active research.
- It is built upon the structure of isogenies over prime field elliptic curves, ensuring secure key exchanges resistant to quantum computational threats.
- CSIDH offers advantages such as smaller key sizes and efficient key agreement, making it a strong contender for quantum-resistant cryptographic protocols. Its security is based on the difficulty of finding isogenies between isogenous elliptic curves, a problem that remains computationally infeasible for attackers.

### üî∏ Advantages of Isogeny-Based Cryptography:
- **Compact Key Sizes**: One of the standout benefits of isogeny-based cryptography is its relatively small public key sizes compared to alternative post-quantum cryptographic schemes, such as lattice-based cryptography. This makes it particularly appealing for applications where bandwidth and storage are constraints.
- **Deep Theoretical Foundation**: The mathematical rigor underpinning isogeny-based cryptography makes it a highly structured and well-understood field. This provides a solid foundation for cryptographic security analysis and future improvements.
- **Resistance to Quantum Attacks**: Unlike RSA and ECC, which can be easily broken by Shor‚Äôs algorithm, isogeny-based cryptographic systems rely on problems that currently lack efficient quantum solutions. This positions them as strong candidates for securing future communications against quantum adversaries.

### üî∏ Challenges and Limitations:
- **Performance Constraints**: Despite its strong security guarantees, isogeny-based cryptography is often computationally expensive, leading to longer key exchange times compared to other post-quantum schemes like lattice-based or hash-based cryptography. Optimization techniques are actively being explored to improve efficiency.
- **SIKE‚Äôs Security Concerns**: The recent compromise of SIKE has raised questions about the viability of certain isogeny-based cryptographic approaches. However, alternative structures such as CSIDH and other novel isogeny-based schemes continue to be explored to mitigate potential vulnerabilities.
- **Complex Implementation**: Due to its reliance on advanced mathematical concepts, implementing isogeny-based cryptography correctly and efficiently requires deep expertise in algebraic geometry and number theory. Ensuring secure implementations remains a challenge for developers and cryptographers.

### üìà **Next Steps:**
Moving forward, we will implement SIKE and CSIDH, providing detailed explanations and step-by-step code walkthroughs. These implementations will illustrate how isogeny-based cryptography functions in practice, allowing for deeper insight into this fascinating field. By exploring practical applications and analyzing performance trade-offs, we aim to contribute to the ongoing development of quantum-resistant cryptographic solutions. Stay tuned for secure and quantum-resistant cryptographic advancements! üîê



# üîπ **Isogeny-Based Cryptography: SIKE & CSIDH Implementation**

## üìå **Introduction**
Isogeny-Based Cryptography is a post-quantum cryptographic approach that relies on the difficulty of finding isogenies (mathematical mappings) between elliptic curves. Unlike RSA or ECC, which are vulnerable to quantum attacks, isogeny-based cryptosystems remain secure due to the inherent complexity of their underlying mathematical problems. Two notable schemes in this domain are:

1. **SIKE (Supersingular Isogeny Key Encapsulation)** ‚Äì A key exchange protocol based on supersingular isogenies.
2. **CSIDH (Commutative Supersingular Isogeny Diffie-Hellman)** ‚Äì A key exchange scheme utilizing isogeny-based arithmetic in a commutative setting.

---

## üü¢ **1. Implementing SIKE (Supersingular Isogeny Key Encapsulation)**

### üîπ **Overview**
SIKE is a key encapsulation mechanism (KEM) that relies on the difficulty of computing isogenies between supersingular elliptic curves. It was a finalist in NIST‚Äôs post-quantum cryptography standardization process but was later found to be vulnerable to certain mathematical attacks.

### üîπ **SIKE Key Exchange Steps**
1. **Key Generation**: Generate a pair of elliptic curves and an associated secret key.
2. **Encapsulation**: Encrypt a message using the recipient‚Äôs public key.
3. **Decapsulation**: The recipient decrypts the message using their private key.

### üîπ **C++ Implementation of SIKE**
```cpp
#include <iostream>
#include <vector>
#include <random>

// Simulating SIKE operations using modular arithmetic
const int PRIME = 101; // Small prime for demonstration

// Function to generate a random private key
int generatePrivateKey() {
    return rand() % PRIME;
}

// Simulated isogeny-based public key computation
int computePublicKey(int privateKey) {
    return (privateKey * 2) % PRIME; // Simplified operation
}

// Simulated encapsulation function
int encapsulate(int publicKey) {
    return (publicKey + 5) % PRIME; // Encapsulation using a simple transformation
}

// Simulated decapsulation function
int decapsulate(int encapsulatedKey, int privateKey) {
    return (encapsulatedKey - privateKey + PRIME) % PRIME;
}

int main() {
    srand(time(0));
    
    int privateKey = generatePrivateKey();
    int publicKey = computePublicKey(privateKey);
    int encryptedKey = encapsulate(publicKey);
    int decryptedKey = decapsulate(encryptedKey, privateKey);
    
    std::cout << "Private Key: " << privateKey << "\n";
    std::cout << "Public Key: " << publicKey << "\n";
    std::cout << "Encapsulated Key: " << encryptedKey << "\n";
    std::cout << "Decapsulated Key: " << decryptedKey << "\n";
    
    return 0;
}
```
### üîπ **Explanation**
- Generates a **random private key**.
- Computes a **public key** using a simplified elliptic curve transformation.
- **Encapsulates** data by modifying the public key.
- **Decapsulates** it to retrieve the original message.

---

## üü¢ **2. Implementing CSIDH (Commutative Supersingular Isogeny Diffie-Hellman)**

### üîπ **Overview**
CSIDH enables key exchange using isogenies over prime field elliptic curves. Unlike SIKE, CSIDH allows for non-interactive key exchanges using static public keys, making it suitable for long-term security applications.

### üîπ **CSIDH Key Exchange Steps**
1. **Private Key Generation**: Randomly select secret scalars for transformation.
2. **Public Key Computation**: Apply isogeny maps using the private key.
3. **Key Agreement**: Exchange keys and apply transformations to compute a shared secret.

### üîπ **C++ Implementation of CSIDH**
```cpp
#include <iostream>
#include <vector>
#include <random>

const int MODULUS = 97; // Prime field modulus for demonstration

// Function to generate a random secret exponent
int generateSecret() {
    return rand() % MODULUS;
}

// Simulated elliptic curve isogeny transformation
int applyIsogeny(int base, int secret) {
    return (base * secret) % MODULUS;
}

int main() {
    srand(time(0));
    
    // Key generation
    int aliceSecret = generateSecret();
    int bobSecret = generateSecret();
    
    int alicePublic = applyIsogeny(5, aliceSecret); // 5 is a base generator
    int bobPublic = applyIsogeny(5, bobSecret);
    
    // Key exchange
    int aliceShared = applyIsogeny(bobPublic, aliceSecret);
    int bobShared = applyIsogeny(alicePublic, bobSecret);
    
    std::cout << "Alice's Secret Key: " << aliceSecret << "\n";
    std::cout << "Bob's Secret Key: " << bobSecret << "\n";
    std::cout << "Alice's Public Key: " << alicePublic << "\n";
    std::cout << "Bob's Public Key: " << bobPublic << "\n";
    std::cout << "Shared Secret (Alice): " << aliceShared << "\n";
    std::cout << "Shared Secret (Bob): " << bobShared << "\n";
    
    return 0;
}
```

### üîπ **Explanation**
- Generates **random secret keys** for Alice and Bob.
- Computes **public keys** using a simulated isogeny transformation.
- Both parties exchange public keys and apply transformations to arrive at the same **shared secret**.

---

## üîπ **Key Takeaways**
‚úÖ SIKE and CSIDH leverage **isogenies between elliptic curves** for secure key exchange.
‚úÖ **SIKE** focuses on key encapsulation and has **small key sizes** but was recently broken.
‚úÖ **CSIDH** remains **secure** and is a **strong candidate for post-quantum cryptography**.
‚úÖ Both schemes rely on **hard mathematical problems**, making them quantum-resistant.

These implementations provide a basic simulation of how these cryptographic methods work. Real-world applications require extensive mathematical libraries and optimized computations.

---

üí° **Future Work:**
- Extend these implementations with **real elliptic curve libraries**.
- Investigate **security optimizations** for CSIDH.
- Explore other **post-quantum cryptographic techniques**.

üîê **Stay secure!** üöÄ

