# 📓 Practical Activity 3: Public-Key Cryptography

## 🎯 Objectives
- Understand the basics of **public-key cryptography**.
- Implement **RSA** encryption and decryption in Python.
- Explore **key generation** and the number theory behind RSA.
- Solve questions and problems related to RSA’s security.

## 1. Introduction

Symmetric cryptography requires both parties to share the same secret key. This creates key distribution problems.

Public-key cryptography solves this by introducing **key pairs**:
- **Public key** (used for encryption).
- **Private key** (used for decryption).

### RSA (Rivest–Shamir–Adleman, 1977)
- First widely adopted public-key scheme.
- Security is based on the difficulty of **factoring large integers**.


## 2. RSA Algorithm

### 2.1 Number Theory Refresher
- Modular arithmetic.
- Prime numbers.
- Euler’s totient function: $\varphi(n) = (p-1)(q-1)$ for primes $p, q$.
- Modular inverses: finding $d$ such that $ed \equiv 1 \pmod{\varphi(n)}$.

In [6]:
from math import gcd

def mod_inverse(e, phi):
    '''Extended Euclidean Algorithm for modular inverse.'''
    def egcd(a, b):
        if a == 0:
            return (b, 0, 1)
        else:
            g, y, x = egcd(b % a, a)
            return (g, x - (b // a) * y, y)

    g, x, y = egcd(e, phi)
    if g != 1:
        raise Exception('No modular inverse')
    else:
        return x % phi

# Example
phi = 40
e = 3
d = mod_inverse(e, phi)
d

27

### 2.2 RSA Key Generation (Toy Example)

Steps:
1. Choose two primes $p, q$.
2. Compute $n = pq$.
3. Compute $\varphi(n) = (p-1)(q-1)$.
4. Choose public exponent $e$.
5. Compute private exponent $d$ as modular inverse of $e$ mod $\varphi(n)$.

In [7]:
p, q = 61, 53  # small primes for demonstration
n = p * q
phi = (p-1)*(q-1)
e = 17  # public exponent
d = mod_inverse(e, phi)

print(f"Public key: (e={e}, n={n})")
print(f"Private key: (d={d}, n={n})")

Public key: (e=17, n=3233)
Private key: (d=2753, n=3233)


### 2.3 RSA Encryption/Decryption (Toy Example)

- Encryption: $C = M^e \mod n$
- Decryption: $M = C^d \mod n$

In [8]:
M = 65  # message as integer
C = pow(M, e, n)
M_decrypted = pow(C, d, n)

print(f"Original message: {M}")
print(f"Ciphertext: {C}")
print(f"Decrypted message: {M_decrypted}")

Original message: 65
Ciphertext: 2790
Decrypted message: 65


### 2.4 Using Python’s Crypto Library

We use **PyCryptodome** for practical RSA implementation.

In [9]:
from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_OAEP

# Generate RSA key pair
key = RSA.generate(2048)
public_key = key.publickey()

# Encryption
cipher = PKCS1_OAEP.new(public_key)
message = b'Hello RSA!'
ciphertext = cipher.encrypt(message)

# Decryption
decipher = PKCS1_OAEP.new(key)
decrypted = decipher.decrypt(ciphertext)

print("Ciphertext:", ciphertext[:20], "...")
print("Decrypted:", decrypted)

Ciphertext: b'ZuMi:"\x87E\xb1\xdaW\r^\x93H6/\xe6CH' ...
Decrypted: b'Hello RSA!'


## 3. Exercises & Cryptanalysis

1. Implement a **toy RSA example** with small primes by hand.
2. Show that without the private key $d$, decryption requires factoring $n$.
3. Explore why using a small $e$ (e.g., 3) can be insecure.
4. Demonstrate that RSA is **deterministic** without padding.
5. Explain why padding schemes (PKCS#1, OAEP) are essential.

## 4. Questions & Problems

- Why is it infeasible to use RSA directly for large files?
- Why is $e=65537$ commonly used?
- What happens if $p$ and $q$ are too small or too close together?
- Compare RSA’s security with symmetric algorithms (e.g., AES).

## 5. Conclusions

- RSA introduced the concept of **public-key cryptography**.
- Its security relies on the difficulty of factoring.
- In practice, RSA is used in combination with **padding** and symmetric cryptography.
- Modern alternatives include **Elliptic Curve Cryptography (ECC)**.