# Diffie–Hellman (DH) Key Exchange

## What it is
- Lets two parties (Alice and Bob) agree on a shared secret over an **insecure channel**.
- The secret itself is never sent; only public-looking values are exchanged.
- The shared secret can be turned into encryption keys.

## How it works
1. Agree on a large prime `p` and a generator `g`.
2. Alice picks a private `a`, sends `A = g^a mod p`.
3. Bob picks a private `b`, sends `B = g^b mod p`.
4. Alice computes `S = B^a mod p`.
5. Bob computes `S = A^b mod p`.
6. Both obtain the same `S` (the shared secret).

## Parameters
- `p`: large prime number
- `g`: generator modulo `p`
- `a`, `b`: random private exponents
- `A`, `B`: public values shared with the other side
- `S`: final shared secret (must match)

## DH-Problem
Even Eve can intercept A and B, but cannot compute S without knowing a or b, as calculation of a and b is based on the discrete logarithm problem, which is computationally hard and for large bits number nearly impossible to determine.

## Where it’s used
- HTTPS (TLS)
- SSH
- Messaging apps (Signal, WhatsApp)

> Note: DH alone does not authenticate peers; add authentication to prevent MITM attacks.

In [1]:
import secrets

p = 23   # small toy example (not secure in real life)
g = 5

# Alice's private and public keys
a = secrets.randbelow(p-2) + 2
print(f"Alice's private key: {a}")
A = pow(g, a, p)

# Bob's private and public keys
b = secrets.randbelow(p-2) + 2
print(f"Bob's private key: {b}")
B = pow(g, b, p)

# Shared secret (must match)
S_alice = pow(B, a, p)
S_bob   = pow(A, b, p)

print("Alice's secret:", S_alice)
print("Bob's secret:  ", S_bob)


Alice's private key: 12
Bob's private key: 8
Alice's secret: 16
Bob's secret:   16
