<!--![pythonLogo.png](https://www.python.org/static/community_logos/python-powered-w-200x80.png) -->

# 10 Cryptography and Hashing #


## Plan for the lecture 

* Recap on Hashing and collision resolution 

* Encryption 

* Cryptographic hashing algorithms - SHA256

## Recap on Hashing

* Hash Maps allow users to search a data structure via characters instead of integer index positions. The characters (string) are converted to integers by a process of 'hashing'.

* This hashing function will look up the ASCII value of each character. Each integer value is then multiplied by its position in the string to achieve a unique number. These are added together to create a large number. 

* To prevent having to allocate a large number of elements, the modulo sign (%) calculates a smaller number to reduce the size of elements.



![hash](https://d18l82el6cdm1i.cloudfront.net/uploads/34EvJ7agjl-hash_table.gif)

## Recap on Collision resolution

With a reduced number of spaces available, hashing methods will return the same remainder for some modulus operations. This means that two (or more) items will be competing for the same element in the data structure.

There are regarded to be two approaches to resolving collisions: 

* <b>Open Addressing</b> - e.g. An alternate address within the structure

* <b>Separate Chaining</b> - e.g. A Linked List that extends out of an element with colliding values.

## Cryptography and Hashing

## Python's hash library and SHA256

Secure Hash Algorithm 256 bits (32 bytes) is a cryptographic hash function that produces a fixed-size 256-bit (32-byte) hash value from an input of any size. It is part of the SHA-2 family, which was designed by the National Security Agency (NSA) and published by the National Institute of Standards and Technology (NIST) in 2001.

## Secure Hashing Algorithm (SHA)

* Secure Hashing Algorithm is a family of Hashing functions (one way), whereas encryption will need to be two-way (encrypt and decrypt)

* SHA-1 can produce a hash up to 160 bits in length (20 bytes)

* SHA-256 can produce a hash up to 256 bits in length (32 bytes)

* SHA-256 provides significantly more combinations than SHA-1, approximately  $2^{96}$  times more possibilities, or about  $10^{29}$  times more.

* This difference makes SHA-256 much more secure, as it provides a vastly larger space of possible outputs, reducing the risk of collisions (two different inputs producing the same hash). This is why SHA-256 is preferred for modern cryptographic applications

<img src="https://nordvpn.com/wp-content/uploads/blog-infographic-sha-256-1.svg" alt="sha256nordvpn" width="650"> 

In [22]:
import hashlib
import json
import time

SHA-1

In [60]:
message = "Hello, World!"
hash_object = hashlib.sha1(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: Hello, World!
Hashed value: 0a0a9f2a6772942557ab5355d76af442f8f65e01


In [61]:
l = []
l = str(hash_hex)
len(l) / 2  # divide by 2 due to hex codes '0a' is one hex

20.0

In [12]:
import math
math.pow(2, 160)

1.461501637330903e+48

In [8]:
import math

for i in range (0,161):
    print("2^", i, "=", str(math.pow(2, i)))

2^ 0 = 1.0
2^ 1 = 2.0
2^ 2 = 4.0
2^ 3 = 8.0
2^ 4 = 16.0
2^ 5 = 32.0
2^ 6 = 64.0
2^ 7 = 128.0
2^ 8 = 256.0
2^ 9 = 512.0
2^ 10 = 1024.0
2^ 11 = 2048.0
2^ 12 = 4096.0
2^ 13 = 8192.0
2^ 14 = 16384.0
2^ 15 = 32768.0
2^ 16 = 65536.0
2^ 17 = 131072.0
2^ 18 = 262144.0
2^ 19 = 524288.0
2^ 20 = 1048576.0
2^ 21 = 2097152.0
2^ 22 = 4194304.0
2^ 23 = 8388608.0
2^ 24 = 16777216.0
2^ 25 = 33554432.0
2^ 26 = 67108864.0
2^ 27 = 134217728.0
2^ 28 = 268435456.0
2^ 29 = 536870912.0
2^ 30 = 1073741824.0
2^ 31 = 2147483648.0
2^ 32 = 4294967296.0
2^ 33 = 8589934592.0
2^ 34 = 17179869184.0
2^ 35 = 34359738368.0
2^ 36 = 68719476736.0
2^ 37 = 137438953472.0
2^ 38 = 274877906944.0
2^ 39 = 549755813888.0
2^ 40 = 1099511627776.0
2^ 41 = 2199023255552.0
2^ 42 = 4398046511104.0
2^ 43 = 8796093022208.0
2^ 44 = 17592186044416.0
2^ 45 = 35184372088832.0
2^ 46 = 70368744177664.0
2^ 47 = 140737488355328.0
2^ 48 = 281474976710656.0
2^ 49 = 562949953421312.0
2^ 50 = 1125899906842624.0
2^ 51 = 2251799813685248.0
2^ 52 = 450

SHA-256

In [62]:
message = "Hello, World!"
hash_object = hashlib.sha256(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: Hello, World!
Hashed value: dffd6021bb2bd5b0af676290809ec3a53191dd81c7f70a4b28688a362182986f


In [63]:
l = []
l = str(hash_hex)
len(l) / 2 # divide by 2 due to hex codes 'df' is one hex

32.0

In [10]:
math.pow(2, 256)

1.157920892373162e+77

In [9]:
import math

for i in range (0,257):
    print("2^", i, "=", str(math.pow(2, i)))

2^ 0 = 1.0
2^ 1 = 2.0
2^ 2 = 4.0
2^ 3 = 8.0
2^ 4 = 16.0
2^ 5 = 32.0
2^ 6 = 64.0
2^ 7 = 128.0
2^ 8 = 256.0
2^ 9 = 512.0
2^ 10 = 1024.0
2^ 11 = 2048.0
2^ 12 = 4096.0
2^ 13 = 8192.0
2^ 14 = 16384.0
2^ 15 = 32768.0
2^ 16 = 65536.0
2^ 17 = 131072.0
2^ 18 = 262144.0
2^ 19 = 524288.0
2^ 20 = 1048576.0
2^ 21 = 2097152.0
2^ 22 = 4194304.0
2^ 23 = 8388608.0
2^ 24 = 16777216.0
2^ 25 = 33554432.0
2^ 26 = 67108864.0
2^ 27 = 134217728.0
2^ 28 = 268435456.0
2^ 29 = 536870912.0
2^ 30 = 1073741824.0
2^ 31 = 2147483648.0
2^ 32 = 4294967296.0
2^ 33 = 8589934592.0
2^ 34 = 17179869184.0
2^ 35 = 34359738368.0
2^ 36 = 68719476736.0
2^ 37 = 137438953472.0
2^ 38 = 274877906944.0
2^ 39 = 549755813888.0
2^ 40 = 1099511627776.0
2^ 41 = 2199023255552.0
2^ 42 = 4398046511104.0
2^ 43 = 8796093022208.0
2^ 44 = 17592186044416.0
2^ 45 = 35184372088832.0
2^ 46 = 70368744177664.0
2^ 47 = 140737488355328.0
2^ 48 = 281474976710656.0
2^ 49 = 562949953421312.0
2^ 50 = 1125899906842624.0
2^ 51 = 2251799813685248.0
2^ 52 = 450

## Blockchain and Cryptocurrency uses SHA-256

* Each block contains a cryptographic hash of the previous block, a timestamp, and transaction data.

* These blocks are 'linked' ('chained') together by cryptography (hash codes). 

* Each block has a hash of the previous block, creating a secure and verifiable chain of data.

* Unlike a linked list though, you're not able to delete blocks in the blockchain, otherwise this would violate the integrity of the ledger of transactions. 

![blockchain1](https://miro.medium.com/v2/resize:fit:977/1*mNdCyhj2WRSzmgTOVztaUg.png)

In [14]:

transaction = {
    'sender': "Alice",
    'receiver': "Bob",
    'amount': 50
}
transaction_string = json.dumps(transaction, sort_keys=True).encode()
transaction_hash = hashlib.sha256(transaction_string).hexdigest()

print("transaction string:",transaction_string)
print("transaction hash:",transaction_hash)

transaction string: b'{"amount": 50, "receiver": "Bob", "sender": "Alice"}'
transaction hash: fd2aff1bbd25dca7091cbc385ccd82fc933a0f775d359ad067f46d4371bac73f


## Blockchain of transactions

In [24]:
class Block:
    def __init__(self, index, previous_hash, timestamp, data, nonce=0):
        self.index = index
        self.previous_hash = previous_hash
        self.timestamp = timestamp
        self.data = data
        self.nonce = nonce
        self.hash = self.calculate_hash()

    def calculate_hash(self):
        block_string = f"{self.index}{self.previous_hash}{self.timestamp}{self.data}{self.nonce}"
        return hashlib.sha256(block_string.encode()).hexdigest()

In [25]:
class Blockchain:
    def __init__(self):
        self.chain = [self.create_genesis_block()]
        self.difficulty = 4

    def create_genesis_block(self):
        return Block(0, "0", int(time.time()), "Genesis Block")

    def get_latest_block(self):
        return self.chain[-1]

    def add_block(self, new_block):
        new_block.previous_hash = self.get_latest_block().hash
        new_block.hash = new_block.calculate_hash()
        self.mine_block(new_block)
        self.chain.append(new_block)

    def mine_block(self, block):
        target = "0" * self.difficulty
        while block.hash[:self.difficulty] != target:
            block.nonce += 1
            block.hash = block.calculate_hash()
        print(f"Block mined: {block.hash}")

    def is_chain_valid(self):
        for i in range(1, len(self.chain)):
            current_block = self.chain[i]
            previous_block = self.chain[i-1]

            if current_block.hash != current_block.calculate_hash():
                return False

            if current_block.previous_hash != previous_block.hash:
                return False

        return True

In [26]:
# Usage example
blockchain = Blockchain()

print("Mining block 1...")
blockchain.add_block(Block(1, "", int(time.time()), {"amount": 4}))

print("Mining block 2...")
blockchain.add_block(Block(2, "", int(time.time()), {"amount": 10}))

print(f"Is blockchain valid? {blockchain.is_chain_valid()}")

# Tamper with the blockchain
blockchain.chain[1].data = {"amount": 100}
print(f"Is blockchain valid after tampering? {blockchain.is_chain_valid()}")

Mining block 1...
Block mined: 000079aed2f4915b195b241ead3265a2ee762791b7d0047f060b9e530a167ba4
Mining block 2...
Block mined: 00004e987cc3d0d974d9b3cb00e1d4b000d88940760e6315fa0e3018771f72e0
Is blockchain valid? True
Is blockchain valid after tampering? False


In [14]:
import hashlib

def hash_block(transactions, previous_hash, nonce):
    block_content = f"{transactions}-{previous_hash}-{nonce}"
    return hashlib.sha256(block_content.encode()).hexdigest()

transactions = "Alice pays Bob 10 BTC"
previous_hash = "0000000000000000"
nonce = 0
current_hash = hash_block(transactions, previous_hash, nonce)
print(current_hash)

e559fcdcaf32a8778ee5811a131c563c3fbb1459805e78a6401c8b15a6f93875


In [15]:
import hashlib
from typing import List

class MerkleTree:
    def __init__(self, data: List[str]):
        # Initial list of hashed leaves (each data element hashed)
        self.leaves = [self.hash_data(item) for item in data]
        self.root = self.build_merkle_tree(self.leaves)

    def hash_data(self, data: str) -> str:
        # Hashes the data using SHA-256
        return hashlib.sha256(data.encode()).hexdigest()

    def build_merkle_tree(self, leaves: List[str]) -> str:
        # Recursively builds the Merkle tree and returns the root
        if len(leaves) == 1:
            return leaves[0]

        # If odd number of leaves, duplicate the last leaf to make pairs
        if len(leaves) % 2 == 1:
            leaves.append(leaves[-1])

        # Hash pairs of leaves to create parent nodes
        parent_nodes = []
        for i in range(0, len(leaves), 2):
            combined_hash = self.hash_data(leaves[i] + leaves[i+1])
            parent_nodes.append(combined_hash)

        # Recursively build tree until one root remains
        return self.build_merkle_tree(parent_nodes)

    def get_root(self) -> str:
        return self.root

In [16]:
data = ["transaction1", "transaction2", "transaction3", "transaction4"]
merkle_tree = MerkleTree(data)
print("Merkle Root:", merkle_tree.get_root())

Merkle Root: 0cf77e26eb4a27047852cf39e3868c7a69ff1109acb9e799ba422d3ac350fb97


## Passwords

* We don't want to store user's passwords as text below, as this is vulnerable to interception:


In [1]:
password = "mypassword123"

if (password == "mypassword123"):
    print("You've logged in")

You've logged in


* But we do need to compare the entered data with something, to tell whether the password has been entered correctly! 

* Therefore we would store the hash of the password - which is much longer in length 

In [7]:
password = "mypassword123"
hashed_password = hashlib.sha256(password.encode()).hexdigest()
print("Stored hash:", hashed_password)

Stored hash: 6e659deaa85842cdabb5c6305fcc40033ba43772ec00d45c2a3c921741a5e377


* Hashing is <b>one way</b> - we can create a hash of a password for storage in a database and for comparison, but we can't then get back to the string password from this unique hash. 

## This looks impressive, but... 

* Attackers can leverage the speed of SHA-256 to try billions of password guesses per second in a brute-force or dictionary attack.

* SHA-256 does not natively include salting, a technique where a random value (the salt) is added to the password before hashing to make the hash unique for each user. Without salt, two users with the same password will have the same hash, making attacks easier.

* SHA-256 does not support key stretching, which is a method to make the hashing process slower and more resistant to brute-force attacks. For password hashing, you want a function that intentionally takes time to compute (e.g., several milliseconds per hash) to slow down attackers.


` pip install bcrypt `

`python3 -m pip install -U bcrypt --user`

In [10]:
import bcrypt

In [11]:

# Step 1: Generate a salt and hash the password
password = "mypassword123".encode()  # Convert password to bytes
salt = bcrypt.gensalt()  # Generate a random salt
hashed_password = bcrypt.hashpw(password, salt)  # Hash the password with the salt

# Step 2: Store the hashed password (and salt is embedded in the hash)
print(f"Hashed password: {hashed_password}")

# Step 3: To verify a password during login
entered_password = "mypassword123".encode()
if bcrypt.checkpw(entered_password, hashed_password):
    print("Password is correct!")
else:
    print("Password is incorrect.")

Hashed password: b'$2b$12$QEX0gKMfmI1JJb5KMND3WOqdriS62T1hdX6KkXUfjYe8YoUV0lfue'
Password is correct!


In [13]:
import hashlib
import os

def hash_password(password):
    salt = os.urandom(16)  # generate a random salt
    hashed = hashlib.sha256(salt + password.encode()).hexdigest()
    return salt, hashed

## Hashing with a key (HMAC)

HMAC (Hash-based Message Authentication Code):

In [8]:
import hmac

key = b'secret_key'
message = b'Hello, World!'

hmac_hash = hmac.new(key, message, hashlib.sha256).hexdigest()
print("HMAC:", hmac_hash)

HMAC: d0e72e3ebca850380c42bc96009638375860cb5c330048588d3298f02e740065


## Encryption

* <b>Symmetric Encryption</b> (AES): To encrypt the actual messages using a secret key that only the sender and recipient know.

* <b>Asymmetric Encryption</b> (RSA): To securely exchange the secret keys between the sender and recipient.

## Prime numbers as building blocks for Cryptography

* Mathematical definition: a prime number is a number greater than one (1), which is only divisable by itself and 1. 

* e.g. $15 = 5 \times 3$ - NOT prime

* e.g. $7 = 7 \times 1$ - prime

* Applied in cryptography to disguise the original data.

<img src="https://media.geeksforgeeks.org/wp-content/uploads/20240912153108/Prime-Numbers.png" alt="prime_numbers" width="650"> 

In [3]:
def is_prime(n):
    """Check if a number is prime."""
    if n <= 1:
        return False
    if n <= 3:
        return True
    if n % 2 == 0 or n % 3 == 0:
        return False
    i = 5
    while i * i <= n:
        if n % i == 0 or n % (i + 2) == 0:
            return False
        i += 6
    return True

In [4]:
def generate_primes(limit):
    """Generate prime numbers up to a given limit."""
    primes = []
    for num in range(2, limit + 1):
        if is_prime(num):
            primes.append(num)
    return primes

In [5]:
prime_numbers = generate_primes(50)
print("Prime numbers up to 50:", prime_numbers)

Prime numbers up to 50: [2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47]


## So what do prime numbers mean for cryptography? 

* Ancient greek mathemeticians proposed that every whole number greater than one can be written as a product of primes: 

    * e.g. $135 = 3 \times 3 \times 3 \times 5$

    * e.g. $250 = 3 \times 5 \times 5 \times 5$

* Therefore, the end result (the hashed value) is knowable if we know the constitute parts (primes).

* As we saw with password encryption and credit card encryption, the original data is hashed, so that the original data can be disguised, and the disguised value can still be compared. 

* Therefore, it is possible to decrypt a hashed value, by understanding the prime factors. 


Let's scale this up - 

* Question: what are the prime factors that can be multiplied together to get `449623`?

In [1]:
449623

449623

I'm sure you can work this out in your heads, but let's write a Python script that can identify prime factors that multiply together. 

In [15]:
def prime_factors(n):
    factors = []
    # Divide by 2 until n is odd
    while n % 2 == 0:
        factors.append(2)
        n //= 2

    # Now n is odd, we can start from 3 and go up by 2 (checking only odd divisors)
    factor = 3
    while factor * factor <= n:
        while n % factor == 0:
            factors.append(factor)
            n //= factor
        factor += 2

    # If n is still greater than 2, it must be prime
    if n > 2:
        factors.append(n)

    return factors

In [16]:
number = 449623
print("Prime factors of", number, "are:", prime_factors(number))

Prime factors of 449623 are: [521, 863]


In [17]:
521 * 863

449623

* Now, this is harder for us as humans to work out in our heads, but for computers, it's much easier given modern compute power.

* Therefore, this is why encrypted values are seriously large! To make it much harder for brute force attacks to work. 

* We saw 160 bits and 256 bit lengths earlier, but modern day RSA values are 2048 bit to 4096 bit values! 

* 2^4096 creates some large hash values!

In [18]:
from cryptography.hazmat.primitives.asymmetric import rsa, padding
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.backends import default_backend
import binascii

def generate_rsa_keys():
    # Generate a 4096-bit RSA private key
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=4096,
        backend=default_backend()
    )
    public_key = private_key.public_key()
    return private_key, public_key

def encrypt_message(public_key, message):
    # Encrypt the message using the public key and OAEP padding
    ciphertext = public_key.encrypt(
        message.encode(),
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
    )
    # Convert to hexadecimal for easy readability
    return binascii.hexlify(ciphertext).decode()

# Generate the RSA keys
private_key, public_key = generate_rsa_keys()

# Encrypt a sample message
message = "This is a secret message"
encrypted_hex = encrypt_message(public_key, message)

print("4096-bit Encrypted Hexadecimal Value:", encrypted_hex)

4096-bit Encrypted Hexadecimal Value: 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

And with new lines...

In [19]:
inp = encrypted_hex
new_input = ""
for i, letter in enumerate(inp):
    if i % 80 == 0:
        new_input += '\n'
    new_input += letter

# this is just because at the beginning too a `\n` character gets added
new_input = new_input[1:] 

In [20]:
print(new_input)

07b1d14e81c592c5397d2e092454ce348c6a4310dcf6a033565de1a4b386fb425a616df2a373e9bf
fbe8f51d70b459c6deaf7bf444d030ddd2038027f3a0eefbbee215f5bf47ed3beeb8dc03f462c1a7
f6ae37fccaffa55007f0d32a0dfe7e8165685627abcdc21024dd915c938fc2765feae3fd5d2b996c
12f0485cc6125603385f7825261e62eae9a6fd9d4da70491b0c0fd86a8cba8915dca18ad9bd9f88d
c7905892c55128d5c9fef6458422328223d00bb97b7d7386614ce82b49678cff41fcca79e0b33b8d
a1e4ce74248f7339fcd3b3ffefc8806aa4470e3d78fe353ef03e4e96070ad19f1682317b71ab4a58
c70090996f799f7418c5eb45b0758e6406701df90083d4fdcd0a7311a183fed2e6a3421e551d4f4e
4c0903e4d941bc061bf8c29a0582c5943b5a602541e7542e4c3bb2a9b4c3665af17029bd8770e892
457fd9c6b86a6483268b84ec7dba4d7980ce3114c9054be6d8d769359a24362d59bac8362d1d2e19
b24c3aab83a0fb5f8955f2955411db4343166d479ae845d8a39dcb72ceff70ccecde1b961b198cea
6a80b1cf07d9d08f9cb8574f63e4ddc3fc69e458fb4544be65e76e4b57272199f1409110f4dcfe14
3b3e09f2e9c34423b09e066416a8998f3aff845c89ca95b8885324bd4b3f6aacf94c9637d4494828
6524cf8d7b9b2a45f83c92d0cc88

...yeah... this is a long string (encrypted value)...

## RSA (Rivest–Shamir–Adleman) 

* RSA was proposed by MIT professors Ron Rivest, Adi Shamir and Leonard Adleman, who publicly described the algorithm in 1977.

* RSA (Rivest–Shamir–Adleman) is a widely used asymmetric encryption algorithm that relies heavily on the properties of prime numbers for its security. The role of primes in RSA can be understood through the following stages:

1. RSA begins by selecting two large, distinct prime numbers, typically denoted as $p$ and $q$.

2. Euler’s Totient Function

3. Selecting the Public and Private Keys

	* A public exponent $e$ is chosen such that  1 < $e$ < $\phi(n)$  and  $e$  is coprime with  $\phi(n)$ . This ensures that  $e$  has an inverse modulo  $\phi(n)$ , which is crucial for decryption.
	* The private key  $d$  is calculated as the modular multiplicative inverse of  e  mod  $\phi(n)$ . In other words,  d  is the number that satisfies the equation \( $e \cdot d \equiv 1 \pmod{\phi(n)}$ \).

4. Encryption and Decryption

	* The message (or plaintext) is encrypted using the formula: \( \text{ciphertext} = \text{message}^e \mod n \).
	* Decryption is achieved by reversing this operation: \( \text{message} = \text{ciphertext}^d \mod n \).
	* The use of the prime-generated values  $p$  and  $q$  ensures that only someone with knowledge of $\phi(n)$  can calculate  $d$  and thus decrypt the message, as knowing  $\phi(n)$  requires knowing the factorization of $n$ into $p$ and $q$.



`pip install sympy`

`python3 -m pip install -U sympy --user`

In [8]:
import random
from sympy import isprime, mod_inverse

ModuleNotFoundError: No module named 'sympy'

In [9]:
from sympy import *

ModuleNotFoundError: No module named 'sympy'

In [None]:
def generate_large_prime(bits=512):
    """Generate a large prime number with the specified bit length."""
    prime_candidate = random.getrandbits(bits)
    while not isprime(prime_candidate):
        prime_candidate = random.getrandbits(bits)
    return prime_candidate

def generate_rsa_keys(bits=512):
    """Generate RSA public and private keys."""
    # Step 1: Generate two large prime numbers
    p = generate_large_prime(bits)
    q = generate_large_prime(bits)
    while p == q:  # Ensure p and q are different
        q = generate_large_prime(bits)
    
    # Step 2: Calculate n and φ(n)
    n = p * q
    phi_n = (p - 1) * (q - 1)
    
    # Step 3: Choose a public exponent e
    e = 65537  # Commonly used public exponent
    if not (1 < e < phi_n and isprime(e) and phi_n % e != 0):
        raise ValueError("Invalid exponent 'e'. Choose a different e.")
    
    # Step 4: Compute private exponent d
    d = mod_inverse(e, phi_n)
    
    # The public key is (n, e) and the private key is (n, d)
    return (n, e), (n, d)

In [None]:
public_key, private_key = generate_rsa_keys(512)
print("Public Key:", public_key)
print("Private Key:", private_key)

WhatsApp uses end-to-end encryption, which is different from HMAC. Specifically, it relies on the Signal Protocol, which employs a combination of:

* Symmetric Encryption (AES): To encrypt the actual messages using a secret key that only the sender and recipient know.

* Asymmetric Encryption (RSA, Curve25519): To securely exchange the secret keys between the sender and recipient.

* Message Authentication Codes (MAC): Used for verifying the integrity and authenticity of messages, but this is separate from encryption.

## AES (Advanced Encryption Standard)

* Advanced Encryption Standard (AES) is a symmetric block cipher that the U.S. government selects to protect classified data. AES-256 encryption uses the 256-bit key length to encrypt as well as decrypt a block of messages.

* As we've seen, hashing for one-way - for storing data in a unique position within a structure. We have to match hash codes to get to the right data. 

* Encryption is two-way (encrypt and decrypt), as messages need to be encrypted before they are sent, and then decrypted (only) by the receiver.

` pip install cryptography `

`python3 -m pip install -U cryptography --user`


In [18]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import padding
import os

In [19]:
# Function to encrypt plaintext using AES
def encrypt_aes(key, plaintext):
    # Generate a random 16-byte IV (Initialization Vector)
    iv = os.urandom(16)
    
    # Create the cipher using AES and CBC mode with the IV
    cipher = Cipher(algorithms.AES(key), modes.CBC(iv), backend=default_backend())
    
    # Encryptor object
    encryptor = cipher.encryptor()
    
    # Padding the plaintext to be a multiple of block size (16 bytes)
    padder = padding.PKCS7(algorithms.AES.block_size).padder()
    padded_data = padder.update(plaintext) + padder.finalize()
    
    # Encrypt the padded plaintext
    ciphertext = encryptor.update(padded_data) + encryptor.finalize()
    
    # Return both the IV and ciphertext (IV is needed for decryption)
    return iv, ciphertext


In [20]:
# Function to decrypt ciphertext using AES
def decrypt_aes(key, iv, ciphertext):
    # Create the cipher using AES and CBC mode with the provided IV
    cipher = Cipher(algorithms.AES(key), modes.CBC(iv), backend=default_backend())
    
    # Decryptor object
    decryptor = cipher.decryptor()
    
    # Decrypt the ciphertext
    padded_plaintext = decryptor.update(ciphertext) + decryptor.finalize()
    
    # Unpad the plaintext
    unpadder = padding.PKCS7(algorithms.AES.block_size).unpadder()
    plaintext = unpadder.update(padded_plaintext) + unpadder.finalize()
    
    return plaintext

In [21]:
# Demo: Encrypt and decrypt a message using AES-256
def demo_aes():
    # Key must be either 16, 24, or 32 bytes long (AES-128, AES-192, AES-256 respectively)
    key = os.urandom(32)  # AES-256 key (32 bytes)
    
    # Example plaintext message
    plaintext = b"Hello, this is a secret message!"
    print(f"Original plaintext: {plaintext}")
    
    # Encrypt the message
    iv, ciphertext = encrypt_aes(key, plaintext)
    print(f"Encrypted ciphertext: {ciphertext.hex()}")
    print(f"Initialization Vector (IV): {iv.hex()}")
    
    # Decrypt the message
    decrypted_plaintext = decrypt_aes(key, iv, ciphertext)
    print(f"Decrypted plaintext: {decrypted_plaintext}")

# Run the AES encryption/decryption demo
demo_aes()

Original plaintext: b'Hello, this is a secret message!'
Encrypted ciphertext: 622ed0e6a9d572368e68b2d4453d152b8667e6e01f8d59db8158c26a1d8c77df264cb492c1986f4ca2687093610c6ec1
Initialization Vector (IV): e3a96a5ee014529f1ba62e8d9395fb3d
Decrypted plaintext: b'Hello, this is a secret message!'


1.	Initialization Vector (IV): Each encryption operation generates a new 16-byte IV, which is prepended to the ciphertext.

2.	Padding: The plaintext is padded to be compatible with AES’s block size.

3.	Encryption and Decryption: AES-CBC mode encrypts with the key and IV, and decrypts using the same parameters.

In [17]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import padding
import os

class AESCipher:
    def __init__(self, key: bytes):
        self.key = key
        self.backend = default_backend()

    def encrypt(self, plaintext: str) -> bytes:
        # Generate a random 16-byte IV for AES-CBC mode
        iv = os.urandom(16)
        cipher = Cipher(algorithms.AES(self.key), modes.CBC(iv), backend=self.backend)
        encryptor = cipher.encryptor()

        # Pad plaintext to be a multiple of AES block size (128 bits)
        padder = padding.PKCS7(algorithms.AES.block_size).padder()
        padded_data = padder.update(plaintext.encode()) + padder.finalize()

        # Encrypt the padded plaintext
        ciphertext = encryptor.update(padded_data) + encryptor.finalize()

        # Return the IV and ciphertext (IV is needed for decryption)
        return iv + ciphertext

    def decrypt(self, iv_and_ciphertext: bytes) -> str:
        # Extract the IV from the first 16 bytes
        iv = iv_and_ciphertext[:16]
        ciphertext = iv_and_ciphertext[16:]

        cipher = Cipher(algorithms.AES(self.key), modes.CBC(iv), backend=self.backend)
        decryptor = cipher.decryptor()

        # Decrypt the ciphertext
        padded_plaintext = decryptor.update(ciphertext) + decryptor.finalize()

        # Remove padding from plaintext
        unpadder = padding.PKCS7(algorithms.AES.block_size).unpadder()
        plaintext = unpadder.update(padded_plaintext) + unpadder.finalize()

        return plaintext.decode()


In [18]:
key = os.urandom(32)  # AES-256 key (32 bytes)
aes_cipher = AESCipher(key)
plaintext = "Hello, this is a secret message!"

# Encrypt
encrypted_data = aes_cipher.encrypt(plaintext)
print("Encrypted:", encrypted_data)

# Decrypt
decrypted_data = aes_cipher.decrypt(encrypted_data)
print("Decrypted:", decrypted_data)

Encrypted: b'\x1b\xe4\xe0\xf3\xf8\xe5\xcb\r\x99u\xf9<\x90>\xa0x\xa1F\xaa\x02\xaem\x03\x9d\xc7\xf1\xfd4\ta6\xd5\xf4$\x0f\xf0\x1c\r\xcd\xfd\xd2\x142\x03\xe4\xfbX\x82\xfe\xbbF\xb7\xec!\xa4\x9c\x9c\xfe"m1\xfew\x83'
Decrypted: Hello, this is a secret message!


WhatsApp uses both encryption (for confidentiality) and message authentication (for integrity and authenticity):

* The actual content of your messages is encrypted using symmetric encryption (AES-256).

* After encryption, an HMAC or similar message authentication method is used to ensure that the encrypted message hasn’t been altered during transmission.

## PBKDF2 (Password-Based Key Derivation Function 2):

* An older but still widely used algorithm.

* Uses a combination of a salt and key stretching (by iterating the hash many times) to make brute-force attacks more difficult.

* Typically slower than SHA-256, which is good for password hashing.

## Public key vs private key

## Application of Cryptography

In [1]:
def simple_substitution_encrypt(plaintext, key):
    ciphertext = ""
    for char in plaintext:
        if char.isalpha():
            shift = ord(key.upper()) - ord('A')
            if char.isupper():
                ciphertext += chr((ord(char) - ord('A') + shift) % 26 + ord('A'))
            else:
                ciphertext += chr((ord(char) - ord('a') + shift) % 26 + ord('a'))
        else:
            ciphertext += char
    return ciphertext

def simple_substitution_decrypt(ciphertext, key):
    plaintext = ""
    for char in ciphertext:
        if char.isalpha():
            shift = ord(key.upper()) - ord('A')
            if char.isupper():
                plaintext += chr((ord(char) - ord('A') - shift) % 26 + ord('A'))
            else:
                plaintext += chr((ord(char) - ord('a') - shift) % 26 + ord('a'))
        else:
            plaintext += char
    return plaintext

# Usage
message = "Hello, World!"
key = "D"
encrypted = simple_substitution_encrypt(message, key)
decrypted = simple_substitution_decrypt(encrypted, key)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: Hello, World!
Encrypted: Khoor, Zruog!
Decrypted: Hello, World!


In [2]:
def xor_cipher(data, key):
    return bytes([b ^ ord(key[i % len(key)]) for i, b in enumerate(data)])

# Usage
message = b"Hello, World!"
key = "SECRET"
encrypted = xor_cipher(message, key)
decrypted = xor_cipher(encrypted, key)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: b'Hello, World!'
Encrypted: b'\x1b />*xs\x12, )0r'
Decrypted: b'Hello, World!'


## Python's Cryptography library 

You may need to install Python's cryptography library via the installer if you haven't already... 
Copy and paste one of the following into a VSC terminal or your OS terminal/command line

` python3 -m pip install cryptography `

` pip install cryptography `


In [6]:
from cryptography.fernet import Fernet

# Generate a random key
key = Fernet.generate_key()
f = Fernet(key)

# Encrypt a message
message = b"Hello, World!"
encrypted = f.encrypt(message)

# Decrypt the message
decrypted = f.decrypt(encrypted)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: b'Hello, World!'
Encrypted: b'gAAAAABmwbADb7KI98b7A3W5q_d_YTv_Gm9veKn2HYYu7PZfEamhiy00SZ1ci4P8hEU3zUDHOVH3CRvOVzPWtBcWY_xb-opwEw=='
Decrypted: b'Hello, World!'


## Formative Exercises ##

Insert a 'code' cell below. In this do the following:

* Exercise 1: 
* Exercise 2: 
* Exercise 3: How would you implement end to end encryption for sending messages between devices? 
* Exercise 4: Create a simple Blockchain example that enables two terminals to encrypt and decrypt transactions 
* Exercise 5:


## Exercise 1: 

In [None]:
# Write your solution here.

## Exercise 2: 

In [None]:
# Write your solution here. 

## Exercise 3: 

In [None]:
# Write your solution here. 

## Exercise 4:

In [None]:
# Write your solution here.

## Exercise 5:

In [None]:
# Write your solution here. 