<a href="https://colab.research.google.com/github/KarmaticNeutral/cse380-notebooks/blob/master/08_1_About_Encryption_Resembling_Scrambling.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# About Encryption Resembling Scrambling
## Divide Pair Conquer
### Due: Monday, 22 February 2021, 11:59 pm

## Introduction

### Encryption is Like Scrambling

#### Perfect Shuffling

In [None]:
def shuffle(deck):
  mid = len(deck) // 2
  tuples = list(zip(deck[:mid], deck[mid:]))
  return [i for sub in tuples for i in sub]

deck0 = ['As', '2s', '3s', '4s', '5s', '6s', '7s', '8s', '9s', '10s', 'Js', 'Qs', 'Ks',
         'Ah', '2h', '3h', '4h', '5h', '6h', '7h', '8h', '9h', '10h', 'Jh', 'Qh', 'Kh',
         'Ac', '2c', '3c', '4c', '5c', '6c', '7c', '8c', '9c', '10c', 'Jc', 'Qc', 'Kc',
         'Ad', '2d', '3d', '4d', '5d', '6d', '7d', '8d', '9d', '10d', 'Jd', 'Qd', 'Kd']

deck1 = shuffle(deck0)
deck2 = shuffle(deck1)
deck3 = shuffle(deck2)
deck4 = shuffle(deck3)
deck5 = shuffle(deck4)
deck6 = shuffle(deck5)
deck7 = shuffle(deck6)
deck8 = shuffle(deck7)

In [None]:
deck0 == deck8

In [None]:
deck5

### What is the PCS Cryptosystem?
(Perfect Card Shuffling)

1. Get a new deck of cards.
2. Choose a number, say 5 (this is your encryption key).
3. Write a message, one character per card on your original deck.
4. Perfect shuffle the deck 5 times.
5. Send the shuffled deck to your friend.
6. Your friend does (8 - 5 = 3) perfect shuffles to get the original order back.

### How Does RSA Scramble?

Look at how RSA encryption shuffles/scrambles numbers (say the number 10) with some (very) small primes (say 2 and 11) and the smallest possible encryption exponent (3).

In [None]:
pow(10, 3, 2 * 11)

### Alternatively

What about with 3 and 11?

In [None]:
pow(10, 3, 33)

### Save Typing

In [None]:
for m in range(22):
  c = pow(m, 3, 22)
  print(m, c, m == c)

In [None]:
for m in range(33):
  c = pow(m, 3, 33)
  print(m, c, m == c)

### Tabulate

Count how many scramblings are **not** derangements.

#### Definition

A *derangement* is a permutation where no element is left in its original position.

In [None]:
from math import gcd
from sympy import prime

def find_first_e(n, t):
  for e in range(3, n):
    if gcd(e, t) == 1:
      return e
  return None

headers = '| p | q | n | t | e | # |/| n |=|   %  |\n'\
          '|---|---|---|---|---|---|-|---|-|------|'

print(headers)

for i in range(1, 9):
  for j in range(i + 1, 9):
    p, q = prime(i), prime(j)
    n = p * q
    t = (p - 1) * (q - 1)
    e = find_first_e(n, t)
    num = sum(map(lambda m: m == pow(m, e, n), range(0, n)))
    print(f'|{p}|{q}|{n}|{t}|{e}|{num}|/|{n}|=|{num/n/.01:.2f}|')

## Your DPC Tasks

### DONE Investigate

Why is 65537 ($2^{16} + 1$) typically used as **e**, the encryption exponent?

65537 is the largest known prime of a form derived from Fermat's Theorem. ($F_n = 2^{2^n}+1$ ; $F_4 = 65537$)
- https://en.wikipedia.org/wiki/65,537

"e=65537 is a common compromise between being high, and increasing the cost of raising to the e-th power: any higher odd e cost at least one more multiplication (or squaring), which is true for odd exponents of the form 2k+1."
- https://crypto.stackexchange.com/questions/3110/impacts-of-not-using-rsa-exponent-of-65537

In [2]:
e = 2 ** 16 + 1
(e, bin(e))

(65537, '0b10000000000000001')

### DONE Explore

The book gives some very vague constraints on **p** and **q**, the two primes used in RSA.

Research the criteria the security community uses to judge the goodness (suitability) of these two primes, that in practice are randomly chosen.

What is bad about the choice of **p** and **q** in this next cell?

In [None]:
p = 5179195214309
q = 5179195214311
n = p * q
t = (p - 1) * (q - 1)
e = 65537
d = 17826498662743824930707633
m = 5179195214304
c = pow(m, e, n)
m_again = pow(c, d, n)
(c, m_again, m == m_again)

https://crypto.stackexchange.com/questions/35087/should-rsa-primes-p-and-q-differ-in-length-by-a-few-digits

One thing that matters is that p and q differ in length by at least a few digits.

This is one reason why the p and q values in the cell above are bad as they are the same length.

### Bonus

From Wikipedia:



> The earliest known statement of the [Chinese Remainder Theorem], as a problem with specific numbers, appears in the 3rd-century book *Sun-tzu Suan-ching* by the Chinese mathematician Sun-tzu:

> There are certain things whose number is unknown. If we count them by threes,we have two left over; by fives, we have three left over; and by sevens, two are left over. How many things are there?

Find all solutions, if any, to the system of congruences:

$x \equiv_{3} 2$

$x \equiv_{5} 3$

$x \equiv_{7} 2$



Can you solve this by hand?
  
That is, with just pencil and paper?

### Answer

I spent a lot of time trying to figure this out systematically on paper and could not. I am interested now though so I am going to try to do it by code.

In [8]:
for x in range(3 * 5 * 7):
  mod3 = x % 3
  mod5 = x % 5
  mod7 = x % 7
  if (mod3 == 2 and mod5 == 3 and mod7 == 2):
    lowest_answer = x

for n in range(lowest_answer, 10000, 3 * 5 * 7):
  mod3 = n % 3
  mod5 = n % 5
  mod7 = n % 7
  print(mod3, mod5, mod7, n, mod3 == 2 and mod5 == 3 and mod7 == 2)

2 3 2 23 True
2 3 2 128 True
2 3 2 233 True
2 3 2 338 True
2 3 2 443 True
2 3 2 548 True
2 3 2 653 True
2 3 2 758 True
2 3 2 863 True
2 3 2 968 True
2 3 2 1073 True
2 3 2 1178 True
2 3 2 1283 True
2 3 2 1388 True
2 3 2 1493 True
2 3 2 1598 True
2 3 2 1703 True
2 3 2 1808 True
2 3 2 1913 True
2 3 2 2018 True
2 3 2 2123 True
2 3 2 2228 True
2 3 2 2333 True
2 3 2 2438 True
2 3 2 2543 True
2 3 2 2648 True
2 3 2 2753 True
2 3 2 2858 True
2 3 2 2963 True
2 3 2 3068 True
2 3 2 3173 True
2 3 2 3278 True
2 3 2 3383 True
2 3 2 3488 True
2 3 2 3593 True
2 3 2 3698 True
2 3 2 3803 True
2 3 2 3908 True
2 3 2 4013 True
2 3 2 4118 True
2 3 2 4223 True
2 3 2 4328 True
2 3 2 4433 True
2 3 2 4538 True
2 3 2 4643 True
2 3 2 4748 True
2 3 2 4853 True
2 3 2 4958 True
2 3 2 5063 True
2 3 2 5168 True
2 3 2 5273 True
2 3 2 5378 True
2 3 2 5483 True
2 3 2 5588 True
2 3 2 5693 True
2 3 2 5798 True
2 3 2 5903 True
2 3 2 6008 True
2 3 2 6113 True
2 3 2 6218 True
2 3 2 6323 True
2 3 2 6428 True
2 3 2 6533 True
2 3

How about this one?

Find all solutions, if any, to the system of congruences:

$x \equiv_{6} 5$

$x \equiv_{10} 3$

$x \equiv_{15} 8$


In [13]:
got_answers = False
for x in range(6 * 10 * 15):
  mod6 = x % 6
  mod10 = x % 10
  mod15 = x % 15
  if (mod3 == 5 and mod10 == 3 and mod15 == 8):
    got_answers = print_answers(x)
if (not got_answers):
  print("There are no answers")

def print_answers(lowest_answer):
  all_true = True
  for n in range(lowest_answer, 10000, 6 * 10 * 15):
   mod6 = n % 6
   mod10 = x % 10
   mod15 = x % 15
   all_true = all_true and mod6 == 5 and mod10 == 3 and mod15 == 8
   print(mod6, mod10, mod15, n, mod6 == 5 and mod10 == 3 and mod15 == 8)
  return all_true

There are no answers


Challenge yourselves to figure this out without using a computer.

(You can use a calculator, but not its programmability, if it has it!)

#### Hint

You cannot apply the Chinese Remainder Theorem directly, because the moduli are not pairwise coprime. Try using that consequence of the CRT that you used last week to translate these congruences into a set of congruences that together are equivalent to the given ones.