# Simulation of TLS handshake

Name: Anthony Ibrahim

ID: 49-10849

Tutorial: T2

---

Name: Mohamad Usama

ID: 49-8386

Tutorial: T5

---

In [37]:
""" # Please remove the triple quotes in this line if the pip installation of the libraries is needed
import warnings
warnings.filterwarnings('ignore')
warnings.simplefilter('ignore')
%pip install pycryptodome
%pip install cryptography
%pip install requests --disable-pip-version-check """;

**Client side**

The client generates a nonce of size 32 bytes. The client sends the nonce to the server along with a flag that is set to 1 if RSA will be used for key exchange, and set to zero if Diffie-Hellman will be used

In [38]:
import random
from Crypto.Random import get_random_bytes

def getClientNonce():
    # generate random nonce, size 32 bytes → 256-bit
    global nonce_client 
    nonce_client= get_random_bytes(32)    #RB
    # specify exchange method → 0=Diffie-Hellman / 1=RSA
    exchange_method_client=random.randint(0,1)
    print('__________________'*6,'\n'+"Nonce-client: ",'\n',nonce_client,'\n')
    print("Exchange method-client:",exchange_method_client,'__________________'*6)

**Server side**

The server responds with another nonce of size 32 bytes and a flag indicating the choice of key exchange algorithm.

In [39]:
def getServerNonce():
    # generate random nonce, size 32 bytes → 256-bit
    global nonce_server 
    nonce_server= get_random_bytes(32)     #RS
    # specify exchange method → 0=Diffie-Hellman / 1=RSA
    global exchange_method_server
    exchange_method_server=random.randint(0,1)
    print("Nonce-server: ",'\n',nonce_server,'\n')
    if exchange_method_server==1:
        print("Exchange method-server that was chosen: RSA",'\n'+'__________________'*6)
    else:
        print("Exchange method-server that was chosen: Diffie-Hellman",'\n'+'__________________'*6)

**Generate RSA KEY pair**

The server randomly generates a pair of RSA public/private keys and sends to the client {public key, hash(public key)}. This constitutes the certificate.

In [40]:
from Crypto.PublicKey import RSA
def generateRSA_key():
    # generate RSA key pair
    global key 
    key= RSA.generate(2048)
    global publickey
    publickey = key.publickey()     # for later use (public key)
    pu_key=key.publickey().exportKey()
    # private key
    priv_key=key.exportKey()
    # print("Generated Public Key: ",'\n',pu_key.decode(),'\n'+'__________________'*6)
    # print(priv_key.decode())  #private key

**Key hashing-server side**

In [41]:
import hashlib
from hashlib import sha256

def hashKey_server(key):
    # Hash key 
    global pk_client
    pk_client=key.public_key().export_key()
    my_sha = hashlib.sha256(pk_client)
    global hash_client 
    hash_client= int.from_bytes(my_sha.digest(),byteorder='big')
    print("Sent to client: {public key, hash(public key)} ",'\n'+'↓↓↓↓↓↓↓↓↓↓↓↓','\n')
    print("Public key :",'\n',pk_client.decode(),'\n')
    print("Generated hash :",hash_client,'\n'+'__________________'*6)

**Key re-hashing-client**

Client re-hashes the public key and and compares with the hash that is sent. If they match the client proceeds to Step 5. Otherwise, the process ends here with an error message.

In [42]:
def keyReHash_client_check(pk_client,hash_client):
    # re-Hash key
    global out
    out=False
    my_sha = hashlib.sha256(pk_client)
    hash_server = int.from_bytes(my_sha.digest(),byteorder='big')
    if (hash_client==hash_server):
        out=True
        print("The client re-hashed the public key and Hashes match, process continues → ",'\n'+'__________________'*6)
    else:
        print("Hashes missmatch !",'\n'+'__________________'*6)

# RSA-TLS

In case RSA was chosen, then the client will generate a pre-master secret and encrypt it with the public key of the server that was already sent over by the server.

In RSA key exchange the public key is used in the client to encrypt the pre-master secret and the private key is used in the server to decrypt it.

# RSA - generate Pre-master-secret (PS) and encrypt it 

In [43]:
from Crypto.Cipher import PKCS1_OAEP
def PS_encrypt_RS(publickey):
    # encrypt the Pre-master secret with the public key of the server
    encryptor = PKCS1_OAEP.new(publickey)
    # generate pre-master secret
    global pre_masterSecret_client 
    pre_masterSecret_client= get_random_bytes(32)     #PS generated from the client 
    global pre_masterSecret_server 
    pre_masterSecret_server= get_random_bytes(32)     #PS generated from the server 
    encrypted = encryptor.encrypt(pre_masterSecret_client) # encrypt the PS
    print("Pre-master secret - Client: ",pre_masterSecret_client,'\n'+'__________________'*6)
    print("Pre-master secret - Server: ",pre_masterSecret_server,'\n'+'__________________'*6)
    print("Encrypted Pre-master secret with server public key: ",encrypted,'\n'+'__________________'*6)

The server will decrypt it using his private key and validate the results

# RSA - generate communication keys (CC,CS,IC,IS)

In [44]:
import hmac
import os
def gen_communicationKeys(pre_masterSecret_client,pre_masterSecret_server,nonce_client,nonce_server):
    # master secret generated at the client side (CC -Cipher client)
    def prf(secret,seed,numblocks):
        seed=seed
        output = b''
        a=hmac.new(secret,msg=seed,digestmod=hashlib.sha256).digest()
        for j in range(numblocks):
            output += hmac.new(secret,msg=a+seed,digestmod=hashlib.sha256).digest()
            a=hmac.new(secret,msg=a,digestmod=hashlib.sha256).digest()
        return output

    def master_secret(pms,client_random,server_random):
        out=prf(pms,client_random+server_random,2)
        return out[:48]

    global cipher_client
    cipher_client=prf(pre_masterSecret_client,nonce_client+nonce_server,1)
    global cipher_server
    cipher_server=prf(pre_masterSecret_server,nonce_client+nonce_server,1)
    global IC 
    IC= os.urandom(32) 
    global IS 
    IS= os.urandom(32) 
    print("Cipher Client - CC: ",'\n',cipher_client,'\n'+'__________________'*6)
    print("Cipher Server - CS: ",'\n',cipher_server,'\n'+'__________________'*6)
    print("Integral Key Client - IC: ",'\n',IC,'\n'+'__________________'*6)
    print("Integral Key Server - IS: ",'\n',IS,'\n'+'__________________'*6)

# Diffie-Hellman TLS

Calculate Pre-master secret for client / server

In [45]:
import random
def gen_PS_DH():
    p = random.randint(1, 100)
    g = random.randint(1, 100)
    a = random.randint(1, 100)
    b = random.randint(1, 100)
    A = ((pow(g, a)) % p)           
    B = ((pow(g, b)) % p)
    global pre_master_client 
    pre_master_client= ((pow(B, a)) % p)
    global pre_master_server 
    pre_master_server= ((pow(A, b)) % p)
    print("Pre-master secret - Client: ", str(pre_master_client),'\n'+'__________________'*6)
    print("Pre-master secret - Server: ",str(pre_master_server),'\n'+'__________________'*6)

# DH - generate communication keys (CC,CS,IC,IS)

In [46]:
def DH_exchange():
    gen_PS_DH()
    global MC_str
    MC_str=str(pre_master_client).encode()
    global MS_str
    MS_str=str(pre_master_server).encode()
    def gen_communicationKeys_DH(MC_str,MS_str,nonce_client,nonce_server):
            # master secret generated at the client side (CC -Cipher client)
        def prf(secret,seed,numblocks):
            seed=seed
            output = b''
            a=hmac.new(secret,msg=seed,digestmod=hashlib.sha256).digest()
            for j in range(numblocks):
                output += hmac.new(secret,msg=a+seed,digestmod=hashlib.sha256).digest()
                a=hmac.new(secret,msg=a,digestmod=hashlib.sha256).digest()
            return output

        def master_secret(pms,client_random,server_random):
            out=prf(pms,client_random+server_random,2)
            return out[:48]

        global cipher_client_DH
        cipher_client_DH=prf(MC_str,nonce_client+nonce_server,1)
        global cipher_server_DH
        cipher_server_DH=prf(MS_str,nonce_client+nonce_server,1)
        global IC_DH 
        IC_DH= os.urandom(32) 
        global IS_DH 
        IS_DH= os.urandom(32) 
        print("Cipher Client - CC: ",'\n',cipher_client_DH,'\n'+'__________________'*6)
        print("Cipher Server - CS: ",'\n',cipher_server_DH,'\n'+'__________________'*6)
        print("Integral Key Client - IC: ",'\n',IC_DH,'\n'+'__________________'*6)
        print("Integral Key Server - IS: ",'\n',IS_DH,'\n'+'__________________'*6)
    gen_communicationKeys_DH(MC_str,MS_str,nonce_client,nonce_server)

The client the sends the server hash(nonce_client, nonce_server, premaster secret, CC, IC). The server sends to the client hash(nonce_client, nonce_server, premaster secret, CS, IS). Each side will verify the values they received and print either a success or failure message


In [47]:
def verify_values_hash():
    sha_client = hashlib.sha256()
    sha_server = hashlib.sha256()
    if exchange_method_server==1: #RSA
        # client → server
        sha_client.update(pre_masterSecret_client)
        sha_client.update(nonce_client)
        sha_client.update(nonce_server)
        sha_client.update(cipher_client)
        sha_client.update(IC)   
        # server → client
        sha_server.update(pre_masterSecret_server)
        sha_server.update(nonce_client)
        sha_server.update(nonce_server)
        sha_server.update(cipher_server)
        sha_server.update(IS)
        print("Client hash: ",'\n',sha_client.digest(),'\n'+'__________________'*6)
        print("Server hash: ",'\n',sha_server.digest(),'\n'+'__________________'*6)
    else: #DH
        # client → server
        sha_client.update(MC_str)
        sha_client.update(nonce_client)
        sha_client.update(nonce_server)
        sha_client.update(cipher_client_DH)
        sha_client.update(IC_DH) 
        # server → client 
        sha_server.update(MS_str)
        sha_server.update(nonce_client)
        sha_server.update(nonce_server)
        sha_server.update(cipher_server_DH)
        sha_server.update(IS_DH)
        print("Client hash: ",'\n',sha_client.digest(),'\n'+'__________________'*6)
        print("Server hash: ",'\n',sha_server.digest(),'\n'+'__________________'*6)
    if sha_client==sha_server:
        print("SUCCESS !!!!")
    else:
        print("FAILURE !!!!")

**Main method to print the results**

In [48]:
def TLS_handshake():
    getClientNonce()
    getServerNonce()
    generateRSA_key()
    hashKey_server(key)
    keyReHash_client_check(pk_client,hash_client)
    if out==True:
        if exchange_method_server==1:
            PS_encrypt_RS(publickey)
            gen_communicationKeys(pre_masterSecret_client,pre_masterSecret_server,nonce_client,nonce_server)
        else:
            DH_exchange()
        verify_values_hash()
    else:
        print('The hashes missmatch, process stopped !')
TLS_handshake()

____________________________________________________________________________________________________________ 
Nonce-client:  
 b'Qk\xd4\xa4Us\x08\x01\x95\xba\x8a~\x83\xdc\xfa\xa1Qf8\x90S\x0f.\x1f%\x17\xc2x\xd9\xcb\xb0R' 

Exchange method-client: 1 ____________________________________________________________________________________________________________
Nonce-server:  
 b'e\x02\x84{\xf1\x12\x10\xaf(\xb2\x1b\xa0\xfe\xb9\xa1?q\xb3,\xeb\xfa\x1ct\x84;\x84YMas\x96\xff' 

Exchange method-server that was chosen: RSA 
____________________________________________________________________________________________________________
Sent to client: {public key, hash(public key)}  
↓↓↓↓↓↓↓↓↓↓↓↓ 

Public key : 
 -----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuH2prYt9MNvyAAtL2FNF
opaswSGAQ5YOH9y1vHz1rf3mWaG7UjBO9phHYd52viMSZ9ySAH4iqd5qDeDL+D6t
TL9kQYjdbYLmmkpXjMhJYlIVc/vfkGqghSd9WgzsRwH+JBKclGQLiymDx8ux9xsd
wao8qptinDfD0elcmBdFwSnemCu38EsEDpW5zTXUK7F4TamGOnnXMeHNs0wsW8xO
sb36ZVem