<h1 align='center'> COMP2420/COMP6420 - Introduction to Data Management, Analysis and Security</h1>

<h2 align='center'> Lab 9 - Security I</h2>

*****

## Aim

Our aims in this lab are:
1. Become exposed to various symmetric key cryptography approaches including: Ceasar Cipher, One-Time Pad and DES.
2. Understand the RSA asymmetric key cryptography approach and its potential weaknesses.
3. Model a key exchange method. In this instance, the Diffie-Hellman algorithm.

## Learning Outcomes
- L10: Explain key security concepts and the use of cryptographic techniques, digital signatures and PKI in security

## Preparation

Before starting this lab, we suggest you complete the following:
- Watch the Security Lectures from this course
- Make sure you're familar with the following ideas
    - [Symmetric Key Cryptography](https://www.hypr.com/symmetric-key-cryptography/)
    - [Asymmetric (Public) Key Cryptography](https://searchsecurity.techtarget.com/definition/asymmetric-cryptography)


The following functions/documentation may be useful for this lab:

| Function                     | Description |
| ---------------------------: | :---------- |
| [class definitions](https://docs.python.org/3.7/tutorial/classes.html) | General documentation for class implementations. This is the next evolution above using functions and methods, etc |

***

In [1]:
# Code Imports
import numpy as np
import pandas as pd
import random

## Topic 1 - **Secret (Symmetric) Key Cryptography**
In the first topic, you will be working with symmetric key cryptography methods. A number of these algorithms are well known, such as AES, DES. While this is covered in detail in the lectures, the following graphic should be a good reminder of how symmetric key cryptography works.

<img src="./img/symmEnc.png" alt="Symm Example" style="width: 400px;"/>

<sub>Source: [Symmetric vs Asymmetric](https://www.ssl2buy.com/wiki/symmetric-vs-asymmetric-encryption-what-are-differences)</sub>

Within Symmetric Key Cryptography, there are two major types of [ciphers](https://en.wikipedia.org/wiki/Cipher) that are used: Stream Ciphers and Block Ciphers. For a quick introduction to both, read the [following article](https://www.jscape.com/blog/stream-cipher-vs-block-cipher). The following should jog your memory otherwise:

<img src="./img/blockandstream.png" alt="blockandstream Example" style="width: 400px;"/>

If you don't understand the above image, you should read the above article and ask your tutor.

Lets get started!

## Question 1: **Stream Cipher**

In Question 1, you will be dealing with some stream ciphers examples. The word 'stream' indicates that characters are processed individually during encryption/decryption stage. In this qustion the inputs will be a string containing <b>ONLY</b> lower-case letters. We have created below the conversion functions for your convenience. For example, a string 'apple' may be converted to a list of numbers [0,15,15,11,4] according to the alphabetical order of the letters.

In [2]:
# string and number conversion functions
def to_number(message):
    """Convert a string to a list of numbers"""
    return [ord(char) - 97 for char in message]

def to_string(nums):
    """Convert a list of numbers to a string"""
    return ''.join([chr(num +97) for num in nums])


### Q1.1: **Ceasar Cipher**

Let's start with something simple. Ceasar Cipher is the most simple and well know encryption method in the cryptography world, and you implemented this in an early lab. To encrypt a given message, Ceasar Cipher simply applies a fixed shifts on all letters in the message. In the next code block, we want you to implement this simple encryption method in a class format. This is designed to introduce you to python classes, and familarise yourself with the Ceaser Cipher system. You need to complete the `encrypt()` and `decrypt()` functions. Suppose your message is `attackatdawn` and your selected key is `c`, your encrypted message should be `cvvcemcvfcyp`, which is derived by shifting each letter in the original message by 2<sup>*</sup> letters forward.

<sup>*</sup> c is ordered as 2 in the alphabet

In [3]:
# Code here
class CeasarCipher:
    def __init__(self, key):
        self.key = key
    
    def set_key(self, key):
        self.key = key
        
    def encrypt(self, message):
        """Encrypt the message with the given key."""
        assert message.isalpha(), 'Message can only contain letters.'
        # TODO: encrypt the given message with key and return the encrypted message as a string.
        

    def decrypt(self, message):
        """Decrypt the message with the given key"""
        assert message.isalpha(), 'Message can only contain lowletters.'
        # TODO: decrypt the given message with key and return the decrypted message as a string.

Once finished, run the below code block to see your results!

In [4]:
# Test cases
message = 'attackatdawn'
key = 'c'
ceasar_cipher = CeasarCipher(key)
print (ceasar_cipher.encrypt(message))
assert message == ceasar_cipher.decrypt(ceasar_cipher.encrypt(message))

None


AttributeError: 'NoneType' object has no attribute 'isalpha'

### Q1.2: **One-Time Pad**
[One-time Pad](https://www.cryptomuseum.com/crypto/otp/index.htm) is believed to be the safest encryption method available. A one-time pad is uncrackable ([Terms and Conditions apply](https://medium.com/@canuteson/cracking-a-one-time-pad-a716a804d5bd)<sup>*</sup>). In the one-time pad encryption method , we need a key that is as long as the original message and each character in the original message is encrypted according to the character at the same position of the key. For example, for the same message 'attackatdawn' and given key 'sdifbsnoqwef', the first letter 'a' becomes 's' ('a' + 's' -> 's'), the second letter 't' becomes 'w' ('t' + 'd' -> 'w'), and so on. Similar to Question 1.1, complete encrypt() and decrypt() methods for our OneTimePad class.

<sup>*</sup> Talk to your tutor further about this if you are interested. Long story short, only use it once. (hence "One-Time")

In [None]:
# More code here
class OneTimePad:
    def __init__(self, key):
        self.key = key
    
    def set_key(self, key):
        self.key = key
        
    def encrypt(self, message):
        """Encrypt the message with the given key"""
        assert message.isalpha(), 'Message can only contain letters.' 
        # TODO: encrypt the given message with key and return the encrypted message as a string.


    def decrypt(self, message):
        """Decrypt the message with the given key"""
        assert message.isalpha(), 'Message can only contain lowletters.'
        # TODO: decrypt the given message with key and return the decrypted message as a string.
        


Once finished, run the below code block to see your results!

In [None]:

message = 'attackatdawn'
key = 'sdifbsnoqwef'
one_time_pad = OneTimePad(key)
print (one_time_pad.encrypt(message))
assert message == one_time_pad.decrypt(one_time_pad.encrypt(message))

*****
## Topic 2 - Asymmetric Key Cryptography 
In the second topic, you will be working with an asymmetric (public) key cryptography method. RSA, TLS/SSL, and homomorphic encrpytion (such as [Microsoft's SEAL](https://github.com/microsoft/SEAL)) protocols make use of public key cryptography architecture. Once again, this is covered in detail in the lectures, however the following graphic should be a good reminder of how asymmetric key cryptography works.

<img src="./img/asymmEnc.png" alt="Asymm Example" style="width: 400px;"/>

<sub>Source: [Symmetric vs Asymmetric](https://www.ssl2buy.com/wiki/symmetric-vs-asymmetric-encryption-what-are-differences)</sub>

While multiple methods as mentioned above, we will only be focusing on RSA in this lab to showcase how the public-key/private-key system works.

Lets get started!

## Question 2: **Public (Asymmetric) Key Cryptography -  RSA**
In this question, you will be implementing a simplified RSA algorithm. RSA has been available for over 25 years, to varying key lengths. The algorithm is designed such that varying keys can be used, and larger keys generally mean larger security (as the factorisation becomes more computationally intensive). For many years, RSA Laboratories ran a competition to determine whether people can factorise (read: break) the RSA algorithm at varying key lengths. Although the competition is now withdrawn, many loyal researchers still continue to determine new and faster ways to break the algorithm. Most recently, [RSA-240 (a 795-bit key) was broken](https://www.johndcook.com/blog/2019/12/03/new-rsa-factoring/). At this stage, while RSA-1024 is currently considered the most popular, RSA-2048 or RSA-4096 are considered safe (for now). 

Side note: When people discuss quantum computing breaking encryption, they are referring to RSA. [Further Reading](https://www.technologyreview.com/s/613596/how-a-quantum-computer-could-break-2048-bit-rsa-encryption-in-8-hours/).

*****

### Q2.1: **Implementing RSA**
Recall the foundations of RSA algorithm:
1. Choose two large prime numbers `p` and `q`, compute `N = p * q`. Any message to be encrypted cannot be longer than `N`.
2. Calculate `r = (p-1)(q-1)`
3. Choose a random number `e`, such that `e < N` and `e` does not share any common factors with `r`.
4. Cauculate number `d`, such that `e*d mod(r) = 1`. `d` is guaranteed to exist.
5. Generate `public key = (N,e)` and `private key (N,d)`
6. Encryption: `c = m^e mod N`, where `m` is the original message and `c` is the encrypted message.
7. Decryption: `m = c^d mod N`, where `m` is the decrypted message and `c` is the encrypted message.

In this question, complete the generate_key_pair(), encrypt() and decrypt() functions to implement the simple RSA algorithm. 

Hint: You can use the provided are_relatively_prime() function to determine if two numbers share common factors.

In [None]:

def are_relatively_prime(a, b):
    """Return ``True`` if ``a`` and ``b`` are two relatively prime numbers.

    Two numbers are relatively prime if they share no common factors,
    i.e. there is no integer (except 1) that divides both.
    """
    for n in range(2, min(a, b) + 1):
        if a % n == b % n == 0:
            return False
    return True

def generate_key_pair(p,q):
    
    # TODO: Calculate N = p*q and r = (p-1)(q-1)
 
    
    # TODO: choose a random number e such that e < N and e and r share no common factors.

            
    # TODO:calculate number d, such that ed mod (r) = 1
 
    
    # return public key and private key pairs.
    public_key = (N,e)
    private_key = (N,d)
    return public_key, private_key

def encrypt(public_key, message):
    # TODO: encrypt the given message with the public key 
    

def decrypt(private_key, message):
    # TODO: retrieve the original message from the encryoted message with your private key 


Once finished, run the below code block to see your results!

In [None]:
# test cases
p = 5
q = 11
msg = random.randint(1,p*q)
public_key, private_key = generate_key_pair(5,11)
print ('public key is {}, private key is {}'.format(public_key, private_key) )
print ('message: {}'.format(msg))
print ('encrypted message: {}'.format(encrypt(public_key,msg)))
print ('decrypted message: {}'.format(decrypt(private_key,encrypt(public_key,msg) )))

### Q2.2: **Cracking RSA**
Back to what we discussed in the topic piece before.

Is RSA 100% safe? The answer is obviously not. However, do you know how to crack the algorithm even if you know its crackable? Let's move the first step towards being a cryptography pro. The problem can be described as follow:

Given the public key pair (N,e) and the encrypted message c, can you find the original message m?

To solve this problem, we still need to work from the fundamental math. 
- We know that large number `N` is the product of two primes. 
- If you can factorize `N`, that means you can get `p` and `q` such that `p*q = N`
- you can also know `r` since `r = (p-1)(q-1)`. 
- With the same equation we used to calculate `d` in our RSA implementation, that is, `e*d mod(r) = 1`, we can retrieve `d` and form the `private key pair(N, d)`. 
- The last and easist step will be decrypt the message `c` with our fresh private key.  

To verify our plan, implement crack_rsa() in the below code block. 

Hint: Feel free to use provided factorization() function for finding the factors of a number!

In [None]:
def factorization(num):
    print ('factorizing given number...')
    factor = []
    while num > 1:
        for i in range(num - 1):
            k = i + 2
            if num % k == 0:
                factor.append(k)
                num = int(num / k)
                break
    return factor


def crack_rsa(encrypted_message, public_key):
    # TODO: find the factors of the given prime number N.
    factors = factorization(public_key[0])
    
    # TODO: calculate r with the result of factorization

    # TODO: calculate d with e*d mod(r) = 1

    # TODO:decrypt the given message with private key pair (N, d)
    
    return decrypted_message
    
        

Once finished, run the below code block to see your results!

In [None]:
# test cases
def get_primes(start, stop):
    """Return a list of prime numbers in ``range(start, stop)``."""
    if start >= stop:
        return []

    primes = [2]

    for n in range(3, stop + 1, 2):
        for p in primes:
            if n % p == 0:
                break
        else:
            primes.append(n)

    while primes and primes[0] < start:
        del primes[0]

    return primes

primes_candidates = get_primes(100,999)
p = random.choice(primes_candidates)
q = random.choice(primes_candidates)
public_key, private_key = generate_key_pair(p,q)
message = random.randint(0,100)
encrypted = encrypt(public_key,message)
print ('You know: encrypted message = {}, public key = {}, can you get the original message?'.format(encrypted, public_key))

decrypted_message = crack_rsa(encrypted, public_key)

if decrypted_message == message:
    print ('You found the original message {} !!!'.format(message))
else:
    print ('You never gonna know what I said!' )

*****
## Topic 3 - Key Exchanges
To finish off, we will be looking at the Diffie-Hellman Key Exchange as an example of Key Exchange algorithms. Recall a key exchange algorithm is required to securely communicate a secret key between two parties. This is used in Symmetric Key Cryptography, as the same key is required to encrypt and decrypt data. With Asymmetric Key Cryptography now so popular, key exchanges are now less common due to smaller uses of symmetric keys, although they are still used in some cases. 

So how do you transfer a key? Rather than posting a USB with the key, or transmitting the key over an unencrypted connection, you need a way to determine a secure connection to then transmit information. That is how the Diffie-Hellman Key Exchange became so popular.

Enough history, lets implement it.

## Question 3: **Diffie-Hellman Key Exchange**
Your task here is to complete the below code in the class to allow a person to interact in a key exchange. Recall the key exchange method: 

![Diffee-Hellman Example](./img/diffieHellman.png)

Complete the class and example to enact the key exchange.

In [None]:

class Person:
    def __init__(self,p,g):
        self.p = p
        self.g = g
        self.my_secrete_number = random.randint(1,10)
        self.others_secrete_number = 0
        
    def tell(self, person):
        person.others_secrete_number = self.compute_number_to_share()
    
    def compute_number_to_share(self):
        # TODO: calculate the number to share, as defined by A in the above image
        return 
    
    def get_common_key(self):
        # TODO: calculate the value K as defined in the above image
        return
         

In [None]:
prime_number = 23
generator = 11

Alice = Person(prime_number,generator)
Bob = Person(prime_number,generator)

Alice.tell(Bob)
Bob.tell(Alice)

print("Alice's key is: {}".format(Alice.get_common_key()))
print("Bob's key is: {}".format(Bob.get_common_key()))

*****

## Homework & Extension Questions
You've gotten this far, so additional questions for this week. Finish your assignments.

*****
## Resources
All the resources you need have been linked in the particular topics, so find the hyperlinks and talk to your tutors.