# **Task 1: Implement Cryptographic Hash Functions**
Use Python&#39;s hashlib to implement hash functions like SHA-256 and SHA-512.
- Hash a given message and observe the output digest.
- Compare outputs for different hash functions and message lengths.
- Analyze execution time and digest size.

In [None]:
import hashlib
import time

def hash_message(message, hash_function):
  start_time = time.time()
  hasher = hashlib.new(hash_function)
  hasher.update(message.encode('utf-8'))
  digest = hasher.hexdigest()
  end_time = time.time()
  execution_time = end_time - start_time
  return digest, execution_time

messages = [
    "This is a short message.",
    "This is a slightly longer message to hash and compare.",
    "This is a much longer message that will be used to test the hash functions. " * 10
]
hash_functions = ["sha256", "sha512"]

for message in messages:
  for hash_function in hash_functions:
    digest, execution_time = hash_message(message, hash_function)
    print(f"Message: {message[:50]}...")
    print(f"Hash Function: {hash_function.upper()}")
    print(f"Digest: {digest}")
    print(f"Digest Size: {len(digest)} bytes")
    print(f"Execution Time: {execution_time:.6f} seconds")
    print("-" * 40)


Message: This is a short message....
Hash Function: SHA256
Digest: baaef1e5bda8f22bb23ae4f9ec7b740ad160c3ca075c0a01168794b7247a9791
Digest Size: 64 bytes
Execution Time: 0.000022 seconds
----------------------------------------
Message: This is a short message....
Hash Function: SHA512
Digest: f79856fa4e31e351fd7e53e101128b1fa6fbb7aab85ffba6ea8b626a8df12eb9aa4f46bd169273b8798259113629cf06fbe0c39ba88acc68e20ada1d62f5fb75
Digest Size: 128 bytes
Execution Time: 0.000077 seconds
----------------------------------------
Message: This is a slightly longer message to hash and comp...
Hash Function: SHA256
Digest: e0289c2210d5dcdb9b65be25d7b790d7b1d2e99ecc15ad9e26d0b2b7b2db5bb7
Digest Size: 64 bytes
Execution Time: 0.000009 seconds
----------------------------------------
Message: This is a slightly longer message to hash and comp...
Hash Function: SHA512
Digest: 602f239b3370fe16b08594ce8d494bab991686542c352a1d1b552d8a11da4c30182362c85e905915cb4ef9bb4d4b93e102443bb4894899cb024daa44dae3d1d0
Dig

# **Task 2: Input Sensitivity and Avalanche Effect**
- Modify one bit in the input message and observe how much the output hash changes.
- Measure the bitwise difference between the original and modified hash outputs.
- Analyze how small changes in input cause large changes in output (avalanche effect).

In [None]:
import hashlib
import time

def hash_message(message, hash_function):
  start_time = time.time()
  hasher = hashlib.new(hash_function)
  hasher.update(message.encode('utf-8'))
  digest = hasher.hexdigest()
  end_time = time.time()
  execution_time = end_time - start_time
  return digest, execution_time

def bitwise_difference(hash1, hash2):
  diff = 0
  for i in range(min(len(hash1), len(hash2))):
    if hash1[i] != hash2[i]:
      diff += 1
  return diff

message = "This is a test message."
modified_message = "This is a test message!" # Modify one bit

hash_function = "sha256"

original_digest, _ = hash_message(message, hash_function)
modified_digest, _ = hash_message(modified_message, hash_function)


difference = bitwise_difference(original_digest, modified_digest)

print(f"Original Message: {message}")
print(f"Original Digest: {original_digest}")
print(f"Modified Message: {modified_message}")
print(f"Modified Digest: {modified_digest}")
print(f"Bitwise Difference: {difference}")
print(f"Percentage Change: {(difference / len(original_digest)) * 100:.2f}%")


Original Message: This is a test message.
Original Digest: 0668b515bfc41b90b6a90a6ae8600256e1c76a67d17c78a26127ddeb9b324435
Modified Message: This is a test message!
Modified Digest: 44931e7d3b8fd4ff93f7388a6bd21034cad72780c19f5076b71b34445db9fb6d
Bitwise Difference: 61
Percentage Change: 95.31%


# **Task 3: Implement and Analyze MAC**
- Implement a simple MAC using a keyed hash (e.g., MAC = Hash(key || message)).

- Authenticate a message using your MAC function and verify its integrity.
- Demonstrate message tampering and detection using MAC comparison.

In [None]:
import hashlib

def generate_mac(key, message):
  """Generates a Message Authentication Code (MAC) using SHA-256."""
  combined = key + message
  mac = hashlib.sha256(combined.encode('utf-8')).hexdigest()
  return mac

def verify_mac(key, message, mac):
  """Verifies the integrity of a message using its MAC."""
  return generate_mac(key, message) == mac

# Example usage
key = "secret_key"
message = "This is a confidential message."

# Generate MAC for the message
mac = generate_mac(key, message)
print(f"Original Message: {message}")
print(f"Generated MAC: {mac}")


# Verify the MAC
is_valid = verify_mac(key, message, mac)
print(f"Is MAC valid?: {is_valid}")  # Output: True

# Tamper with the message
tampered_message = "This is a slightly different message."

# Verify the MAC with the tampered message
is_valid = verify_mac(key, tampered_message, mac)
print(f"Is MAC valid after tampering?: {is_valid}")  # Output: False


#Demonstrate a successful verification
mac2 = generate_mac(key, tampered_message)
is_valid = verify_mac(key, tampered_message, mac2)
print(f"Is MAC valid after generating correct MAC for tampered message?: {is_valid}") # Output: True


Original Message: This is a confidential message.
Generated MAC: 9614ca81544feed8692e7798ad6189a1e90b59c46e1c4710d506bdffef63faea
Is MAC valid?: True
Is MAC valid after tampering?: False
Is MAC valid after generating correct MAC for tampered message?: True


# **Task 4: Implement HMAC Using SHA-256**
- Implement HMAC manually as per the HMAC standard.
- Verify your implementation using Python’s built-in hmac module.
- Compare the outputs and execution time.
- Evaluate HMAC for various key and message lengths.

In [None]:
import hashlib
import hmac
import time

def my_hmac(key, message, hash_function="sha256"):
    block_size = 64  # Block size for SHA-256
    key = key.encode('utf-8')
    message = message.encode('utf-8')

    if len(key) > block_size:
        key = hashlib.new(hash_function, key).digest()
    elif len(key) < block_size:
        key = key + b'\x00' * (block_size - len(key))

    o_key_pad = bytes([x ^ 0x5c for x in key])
    i_key_pad = bytes([x ^ 0x36 for x in key])

    intermediate_hash = hashlib.new(hash_function, i_key_pad + message).digest()
    hmac_result = hashlib.new(hash_function, o_key_pad + intermediate_hash).hexdigest()
    return hmac_result

# Test cases
keys = ["secret_key", "a" * 100, "a" * 1000]
messages = ["This is a message.", "a" * 100, "a" * 1000]

for key in keys:
    for message in messages:
        # Manual HMAC
        start_time = time.time()
        my_hmac_result = my_hmac(key, message)
        manual_time = time.time() - start_time

        # Python's hmac module
        start_time = time.time()
        python_hmac_result = hmac.new(key.encode('utf-8'), message.encode('utf-8'), hashlib.sha256).hexdigest()
        python_time = time.time() - start_time

        print(f"Key length: {len(key)}, Message length: {len(message)}")
        print(f"Manual HMAC: {my_hmac_result}")
        print(f"Python HMAC: {python_hmac_result}")
        print(f"HMAC Match: {my_hmac_result == python_hmac_result}")
        print(f"Manual Time: {manual_time:.6f} seconds")
        print(f"Python Time: {python_time:.6f} seconds")
        print("-" * 40)


Key length: 10, Message length: 18
Manual HMAC: 29b474b2f91da6581649e9462fb115ac4ae8a0e8fc14eb4a7765410e6c367645
Python HMAC: 29b474b2f91da6581649e9462fb115ac4ae8a0e8fc14eb4a7765410e6c367645
HMAC Match: True
Manual Time: 0.000041 seconds
Python Time: 0.000063 seconds
----------------------------------------
Key length: 10, Message length: 100
Manual HMAC: e1b96cb5b79d530add0fc74ebb487c5301b28849bb1ace3a847f2420cd6bb33d
Python HMAC: e1b96cb5b79d530add0fc74ebb487c5301b28849bb1ace3a847f2420cd6bb33d
HMAC Match: True
Manual Time: 0.000021 seconds
Python Time: 0.000013 seconds
----------------------------------------
Key length: 10, Message length: 1000
Manual HMAC: 0231ce08cb6c6acc04fe8fc46a9ef639edc3b4a078a76b8d2904ba7e4c16b691
Python HMAC: 0231ce08cb6c6acc04fe8fc46a9ef639edc3b4a078a76b8d2904ba7e4c16b691
HMAC Match: True
Manual Time: 0.000018 seconds
Python Time: 0.000010 seconds
----------------------------------------
Key length: 100, Message length: 18
Manual HMAC: 531e368d61a37ee1cb080

# **Task 5: Security and Performance Analysis**
- Compare security properties of SHA-1, SHA-256, and SHA-512 (briefly explain weaknesses
if any).
- Compare MAC vs. HMAC in terms of resistance to brute force or collision attacks.
- Plot hash computation and HMAC execution times for different input sizes.
- Discuss use cases of HMAC in protocols (e.g., TLS, IPsec).

1. Security Comparison: SHA-1, SHA-256, SHA-512

SHA-1 (160-bit): Broken, practical collision attacks since 2017 (e.g., SHAttered attack). Deprecated in secure systems.

SHA-256 (256-bit): Secure, no known practical collisions. Widely used in modern cryptography.

SHA-512 (512-bit): Secure, larger output and faster on 64-bit CPUs due to optimization.

2. MAC vs. HMAC

MAC (Message Authentication Code): Ensures message integrity using symmetric keys but depends on the algorithm's strength.

HMAC (Hashed MAC): Uses inner and outer hash functions with a key, resistant to collision and length extension attacks.

HMAC remains secure even if the underlying hash has minor weaknesses (e.g., HMAC-SHA1 stayed safe longer).

3. Performance Analysis

SHA-1 is fastest but insecure.

SHA-256 is slightly slower but much stronger.

SHA-512 can be faster than SHA-256 on 64-bit systems.

HMAC is about 2× slower than plain hash because it computes two hashes (inner + outer).

4. Execution Time Trend

Increases linearly with input size.

Hashing is lighter; HMAC adds computation for better security.

5. Use Cases of HMAC

TLS (HTTPS): Ensures message integrity and authentication.

IPsec: Authenticates IP packets (AH and ESP modes).

SSH: Verifies message integrity in secure remote access.

JWT tokens: Signed using HMAC (e.g., HMAC-SHA256) to prevent tampering.