# FTGP Week 1: Cryptographic primitives

This week, we will see the basic cryptographic primitives (hash functions, digital signatures, encryption/decryption) that are needed in blockchain systems. We will then use these next week to build our own blockchain!

These primitives are not only useful when building a blockchain, but are also extremely useful when building financial applications.

We will be using Python, but you might need to install the following packages: `hashlib, web3py, ecdsa` and `eciespy` (https://docs.python.org/3/library/hashlib.html, https://web3py.readthedocs.io/en/latest/web3.main.html#encoding-and-decoding-helpers, https://github.com/tlsfuzzer/python-ecdsa, https://github.com/ecies/py).


### Question 1: Hashing

Get the hash value of `"Blockchain"` using SHA2-256, SHA2-512, SHA3-256, and SHA3-512. 

**Hint:** These hashing functions are available in the `hashlib` package.

In [1]:
import binascii
import hashlib

print("Sha2_256 is ", hashlib.sha256(b"Blockchain").hexdigest())
print("Sha2_512 is ", hashlib.sha512(b"Blockchain").hexdigest())
print("Sha3_256 is ", hashlib.sha3_256(b"Blockchain").hexdigest())
print("Sha3_512 is ", hashlib.sha3_512(b"Blockchain").hexdigest())

Sha2_256 is  625da44e4eaf58d61cf048d168aa6f5e492dea166d8bb54ec06c30de07db57e1
Sha2_512 is  3a45809488fe624d1f8d5c6120079fb3e04b0bb04af938c380af64128b45ab0fb28c9e280590f5aaa78c8e419dbd6de04c150dd5b7238dbff93d8e4f1f1ff4de
Sha3_256 is  94074fd5892e84da500a78e4c02ff986c38815ad4063441a1caad310e89cf709
Sha3_512 is  57fb5951e6be7075d3b848c38b08deb6a88ab88619a0d1805301e1d1056e68cc76b026360b8050ec59dcfe3f8932b27c1235e393cf340d0008328b224a32ccf2


Now let's do the same using Keccak-256. Keccak-256 is the primary hash function used in the Ethereum blockchain, and so will be our hash function of choice for the rest of this unit. 

**Note:** Ethereum uses a non-standard format, so the easiest way to get the same results in Python is to use the Keccak-256 function as provided by the `web3py` library.

In [2]:
from web3 import Web3

Web3.keccak(text="Blockchain")

HexBytes('0xfa8871e962875d078135f1c5b27b0f184ab6f4dff8641dd81032226ea0ae9e8c')

### Question 2: Collisions

Define a hash function `H(n, msg)` that returns the first `n` bytes of the hash of the variable `msg`.

**Hint:** The method `str.encode()` might be useful.

In [3]:
def H(n, msg):
    msg = msg.encode()
    hash = hashlib.sha3_256(msg).hexdigest()
    return hash[:n]


def H2(n, msg):
    hash = Web3.keccak(text=msg)
    return hash[:n]


H(3, "helloaa")

'6a2'

Find a collision of `H(1, msg)`, `H(2, msg)`, `H(3, msg)`, `H(4, msg)`, and `H(5, msg)`. Count the number of hashes you perform before finding a collision.

**Hint:** Using a `set` data structure might be a good idea.

In [4]:
import random
import string

def find_collision(n):

    num = 0
    begin = str(string.digits)
    hash_set = set()
    hash = H(n, begin)

    while (hash not in hash_set):
        hash_set.add(H(n,str(num+1)))
        num += 1
    return len(hash_set)


for i in range(1, 6):
    print(find_collision(i))

4
7
2681
37882
54853


For `H(1, msg)`, `H(2, msg)`, `H(3, msg)` find a preimage of the corresponding hashes: `b"\x00"`, `b"\x00"*2` and `b"\x00"*3`. Essentially, this is the same as finding a bitstring that when hashed produces a hash that starts with a certain number of zeros. Count the number of hashes you perform before finding each preimage.

In [None]:
def find_preimage(n, pre):

    num = 0
    begin = str(string.digits)
    hash_set = set()
    hash = H2(n, begin)

    while (pre not in hash_set):
        hash_set.add(H2(n, str(num+1)))
        num += 1
    return len(hash_set)


for i in range(1, 4):
    print(find_preimage(i, i*'\x00'))

As you can see, finding a bitstring that results in a hash with a certain property (e.g. a number of leading zeros) can be very difficult. This is the basis of the proof-of-work (PoW) algorithm that's essential for blockchains. We will explore this further next week.

### Question 3: Signatures

Generate key pairs for ECDSA and sign the string `"Blockchain"` using this signature scheme with the generated key. Then verify the obtained signature.

**Hint:** These functions are available in the `ecdsa` package.

### Question 4: Encryption/Decryption

Generate key pairs for ECIES and encrypt the string `"Blockchain"` to obtain a ciphertext. Then decrypt the obtained ciphertext.

**Hint:** These functions are available in the `eciespy` package.

### Bonus Question 5: Merkle Tree

Merkle trees are a really important data structure that is fundamental for blockchain systems. You can find more details about Merkle trees here: https://en.wikipedia.org/wiki/Merkle_tree

Implement your own Merkle tree. Make sure you distinguish leaf nodes from non-leaf node. The code below might be helpful.

**Note:** this is hard, treat is as a software challenge to improve your programming skills rather than an essential exercise you need to complete. If you are struggling with the implementation, then it might be worthwhile to study the properties and uses of Merkle trees instead. 

**Note 2:** this will be useful later on, so make sure you build it in a way that can be adapted and reused in the future.

Verify that your implementation produces the correct root.

Write a function that verifies proofs. Verify that the proofs produced by your implementation are correct