<!--![pythonLogo.png](https://www.python.org/static/community_logos/python-powered-w-200x80.png) -->

# 10 Cryptographic Hashing


## Plan for the lecture 

* Recap on Hashing and collision resolution 

* Cryptographic Hashing Algorithms 

* Encryption and Decryption 


## Recap on Hashing

* Hash Maps allow users to search a data structure via characters instead of integer index positions. The characters (string) are converted to integers by a process of 'hashing'.

* This hashing function will look up the ASCII value of each character. Each integer value is then multiplied by its position in the string to achieve a unique number. These are added together to create a large number. 

* To prevent having to allocate a large number of elements, the modulo sign (%) calculates a smaller number to reduce the size of elements.



![hash](https://d18l82el6cdm1i.cloudfront.net/uploads/34EvJ7agjl-hash_table.gif)

## Recap on Collision resolution

With a reduced number of spaces available, hashing methods will return the same remainder for some modulus operations. This means that two (or more) items will be competing for the same element in the data structure.

There are regarded to be two approaches to resolving collisions: 

* <b>Separate Chaining</b> - e.g. A Linked List that extends out of an element with colliding values.

* <b>Open Addressing</b> - e.g. An alternate address within the structure

    * Linear Probing 
    * Quadratic Probing 
    * Double Hashing 



## Secure Hashing Algorithm (SHA)

* SHA designed by the National Security Agency (NSA) and published by the National Institute of Standards and Technology (NIST) in 2001.

* SHA-1 can produce a hash up to 160 bits in length (20 bytes)

* SHA-256 can produce a hash up to 256 bits in length (32 bytes)

* SHA-256 provides significantly more combinations than SHA-1, approximately  $2^{96}$  times more possibilities, or about  $10^{29}$  times more.

* This difference makes SHA-256 much more secure, as it provides a vastly larger space of possible outputs, reducing the risk of collisions (two different inputs producing the same hash). This is why SHA-256 is preferred for modern cryptographic applications

* SHA is a family of Hashing functions (one way), whereas encryption will need to be two-way (encrypt and decrypt)



![nordvpn](https://nordvpn.com/wp-content/uploads/blog-infographic-sha-256-1.svg)
<!--
<img src="https://nordvpn.com/wp-content/uploads/blog-infographic-sha-256-1.svg" alt="sha256nordvpn" width="650"> 
-->

In [1]:
import hashlib
import json
import time

In [2]:
message = 'Hello, World'
sum = 0
for char in message: 
    print(char, ":", ord(char))
    sum += ord(char)
print("ASCII sum for", message, "=", sum)

H : 72
e : 101
l : 108
l : 108
o : 111
, : 44
  : 32
W : 87
o : 111
r : 114
l : 108
d : 100
ASCII sum for Hello, World = 1096


SHA-1

In [5]:
message = "Hello, World!"
hash_object = hashlib.sha1(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: Hello, World!
Hashed value: 0a0a9f2a6772942557ab5355d76af442f8f65e01


* Deterministic - always gives the same hash

In [11]:
message = "password"
hash_object = hashlib.sha1(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: password
Hashed value: 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8


In [12]:
l = []
l = str(hash_hex)
len(l) / 2  # divide by 2 due to hex codes '0a' is one hex

20.0

In [9]:
import math
math.pow(2, 160)

1.461501637330903e+48

In [13]:
2**160

1461501637330902918203684832716283019655932542976

In [14]:
import math

for i in range (0,161):
    print("2^", i, "=", str(math.pow(2, i)))

2^ 0 = 1.0
2^ 1 = 2.0
2^ 2 = 4.0
2^ 3 = 8.0
2^ 4 = 16.0
2^ 5 = 32.0
2^ 6 = 64.0
2^ 7 = 128.0
2^ 8 = 256.0
2^ 9 = 512.0
2^ 10 = 1024.0
2^ 11 = 2048.0
2^ 12 = 4096.0
2^ 13 = 8192.0
2^ 14 = 16384.0
2^ 15 = 32768.0
2^ 16 = 65536.0
2^ 17 = 131072.0
2^ 18 = 262144.0
2^ 19 = 524288.0
2^ 20 = 1048576.0
2^ 21 = 2097152.0
2^ 22 = 4194304.0
2^ 23 = 8388608.0
2^ 24 = 16777216.0
2^ 25 = 33554432.0
2^ 26 = 67108864.0
2^ 27 = 134217728.0
2^ 28 = 268435456.0
2^ 29 = 536870912.0
2^ 30 = 1073741824.0
2^ 31 = 2147483648.0
2^ 32 = 4294967296.0
2^ 33 = 8589934592.0
2^ 34 = 17179869184.0
2^ 35 = 34359738368.0
2^ 36 = 68719476736.0
2^ 37 = 137438953472.0
2^ 38 = 274877906944.0
2^ 39 = 549755813888.0
2^ 40 = 1099511627776.0
2^ 41 = 2199023255552.0
2^ 42 = 4398046511104.0
2^ 43 = 8796093022208.0
2^ 44 = 17592186044416.0
2^ 45 = 35184372088832.0
2^ 46 = 70368744177664.0
2^ 47 = 140737488355328.0
2^ 48 = 281474976710656.0
2^ 49 = 562949953421312.0
2^ 50 = 1125899906842624.0
2^ 51 = 2251799813685248.0
2^ 52 = 450

SHA-256

In [15]:
message = "Hello, World!"
hash_object = hashlib.sha256(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: Hello, World!
Hashed value: dffd6021bb2bd5b0af676290809ec3a53191dd81c7f70a4b28688a362182986f


In [16]:
message = "password"
hash_object = hashlib.sha256(message.encode())
hash_hex = hash_object.hexdigest()

print("Original message:", message)
print("Hashed value:", hash_hex)

Original message: password
Hashed value: 5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8


In [19]:
l = []
l = str(hash_hex)
len(l) / 2 # divide by 2 due to hex codes 'df' is one hex

32.0

In [20]:
str(math.pow(2, 256))

'1.157920892373162e+77'

In [17]:
2**256

115792089237316195423570985008687907853269984665640564039457584007913129639936

## Passwords

* We don't want to store user's passwords as text below, as this is vulnerable to interception:


In [18]:
password = "mypassword123"

if (password == "mypassword123"):
    print("You've logged in")

You've logged in


* But we do need to compare the entered data with something, to tell whether the password has been entered correctly! 

* Therefore we would store the hash of the password - which is much longer in length 

In [19]:
password = "mypassword123"
hashed_password = hashlib.sha256(password.encode()).hexdigest()
print("Stored hash:", hashed_password)

Stored hash: 6e659deaa85842cdabb5c6305fcc40033ba43772ec00d45c2a3c921741a5e377


* Hashing is <b>one way</b> - we can create a hash of a password for storage in a database and for comparison, but we can't then get back to the string password from this unique hash. 

## This looks impressive, but... 

* Attackers can leverage the speed of SHA-256 to try billions of password guesses per second in a brute-force or dictionary attack.

* SHA-256 does not natively include salting, a technique where a random value (the salt) is added to the password before hashing to make the hash unique for each user. Without salt, two users with the same password will have the same hash, making attacks easier.

* SHA-256 does not support key stretching, which is a method to make the hashing process slower and more resistant to brute-force attacks. For password hashing, you want a function that intentionally takes time to compute (e.g., several milliseconds per hash) to slow down attackers.


` pip install bcrypt `

`python3 -m pip install -U bcrypt --user`

In [20]:
import bcrypt

In [21]:

# Step 1: Generate a salt and hash the password
password = "mypassword123".encode()  # Convert password to bytes
salt = bcrypt.gensalt()  # Generate a random salt
print("salt:", salt)
hashed_password = bcrypt.hashpw(password, salt)  # Hash the password with the salt

# Step 2: Store the hashed password (and salt is embedded in the hash)
print(f"Hashed password: {hashed_password}")

# Step 3: To verify a password during login
entered_password = "mypassword123".encode()
if bcrypt.checkpw(entered_password, hashed_password):
    print("Password is correct!")
else:
    print("Password is incorrect.")

salt: b'$2b$12$vdD9WqDFE8Bs7qjjHDrYy.'
Hashed password: b'$2b$12$vdD9WqDFE8Bs7qjjHDrYy..vCZO0XnQx50yaGZezo./hFx.IlEzfC'
Password is correct!


In [76]:
import hashlib
import os

def hash_password(password):
    salt = os.urandom(16)  # generate a random salt
    hashed = hashlib.sha256(salt + password.encode()).hexdigest()
    print(salt)
    print(password)
    print(hashed)
    return salt, hashed

In [85]:
hash_password("mypassword123")

b'o\xe1\xa8\xa9\xe7\xaa\r3\xefD\x94u\x9ep\xb84'
mypassword123
2f44560fa5614c550acef6247f48cadbcc7d684026975ed2df38b5d8b7e73cca


(b'o\xe1\xa8\xa9\xe7\xaa\r3\xefD\x94u\x9ep\xb84',
 '2f44560fa5614c550acef6247f48cadbcc7d684026975ed2df38b5d8b7e73cca')

## Blockchain and Cryptocurrency uses SHA-256

* Each block contains a cryptographic hash of the previous block, a timestamp, and transaction data.

* These blocks are 'linked' ('chained') together by cryptography (hash codes). 

* Each block has a hash of the previous block, creating a secure and verifiable chain of data.

* Unlike a linked list though, you're not able to delete blocks in the blockchain, otherwise this would violate the integrity of the ledger of transactions. 

![blockchain1](https://miro.medium.com/v2/resize:fit:977/1*mNdCyhj2WRSzmgTOVztaUg.png)

In [72]:

transaction = {
    'sender': "Alice",
    'receiver': "Bob",
    'amount': 50
}
transaction_string = json.dumps(transaction, sort_keys=True).encode()
transaction_hash = hashlib.sha256(transaction_string).hexdigest()

print("transaction string:",transaction_string)
print("transaction hash:",transaction_hash)

transaction string: b'{"amount": 50, "receiver": "Bob", "sender": "Alice"}'
transaction hash: fd2aff1bbd25dca7091cbc385ccd82fc933a0f775d359ad067f46d4371bac73f


## Blockchain of transactions

In [65]:
class Block:
    def __init__(self, index, previous_hash, timestamp, data, nonce=0):
        self.index = index
        self.previous_hash = previous_hash
        self.timestamp = timestamp
        self.data = data
        self.nonce = nonce
        self.hash = self.calculate_hash()

    def calculate_hash(self):
        block_string = f"{self.index}{self.previous_hash}{self.timestamp}{self.data}{self.nonce}"
        return hashlib.sha256(block_string.encode()).hexdigest()

In [66]:
class Blockchain:
    def __init__(self):
        self.chain = [self.create_genesis_block()]
        self.difficulty = 4

    def create_genesis_block(self):
        return Block(0, "0", int(time.time()), "Genesis Block")

    def get_latest_block(self):
        return self.chain[-1]

    def add_block(self, new_block):
        new_block.previous_hash = self.get_latest_block().hash
        new_block.hash = new_block.calculate_hash()
        self.mine_block(new_block)
        self.chain.append(new_block)

    def mine_block(self, block):
        target = "0" * self.difficulty
        while block.hash[:self.difficulty] != target:
            block.nonce += 1
            block.hash = block.calculate_hash()
        print(f"Block mined: {block.hash}")

    def is_chain_valid(self):
        for i in range(1, len(self.chain)):
            current_block = self.chain[i]
            previous_block = self.chain[i-1]

            if current_block.hash != current_block.calculate_hash():
                return False

            if current_block.previous_hash != previous_block.hash:
                return False

        return True

In [73]:
blockchain = Blockchain()

print("Mining block 1...")
blockchain.add_block(Block(1, "", int(time.time()), {"amount": 4}))

print("Mining block 2...")
blockchain.add_block(Block(2, "", int(time.time()), {"amount": 10}))

print(f"Is blockchain valid? {blockchain.is_chain_valid()}")

# Tamper with the blockchain
blockchain.chain[1].data = {"amount": 100}
print(f"Is blockchain valid after tampering? {blockchain.is_chain_valid()}")

Mining block 1...
Block mined: 0000f2ad02b527aa860a03fc1012fded03abd8bab88f870b14c188c311142146
Mining block 2...
Block mined: 0000f688d3b585508c8f47e7b11e1f07601136608656b0ac4264f88faf6a2ffd
Is blockchain valid? True
Is blockchain valid after tampering? False


In [75]:
import hashlib

def hash_block(transactions, previous_hash, nonce):
    block_content = f"{transactions}-{previous_hash}-{nonce}"
    return hashlib.sha256(block_content.encode()).hexdigest()

transactions = "Alice pays Bob 10 BTC"
previous_hash = "0000000000000000"
nonce = 0
current_hash = hash_block(transactions, previous_hash, nonce)
print(current_hash)

e559fcdcaf32a8778ee5811a131c563c3fbb1459805e78a6401c8b15a6f93875


In [34]:
import hashlib
from typing import List

class MerkleTree:
    def __init__(self, data: List[str]):
        # Initial list of hashed leaves (each data element hashed)
        self.leaves = [self.hash_data(item) for item in data]
        self.root = self.build_merkle_tree(self.leaves)

    def hash_data(self, data: str) -> str:
        # Hashes the data using SHA-256
        return hashlib.sha256(data.encode()).hexdigest()

    def build_merkle_tree(self, leaves: List[str]) -> str:
        # Recursively builds the Merkle tree and returns the root
        if len(leaves) == 1:
            return leaves[0]

        # If odd number of leaves, duplicate the last leaf to make pairs
        if len(leaves) % 2 == 1:
            leaves.append(leaves[-1])

        # Hash pairs of leaves to create parent nodes
        parent_nodes = []
        for i in range(0, len(leaves), 2):
            combined_hash = self.hash_data(leaves[i] + leaves[i+1])
            parent_nodes.append(combined_hash)

        # Recursively build tree until one root remains
        return self.build_merkle_tree(parent_nodes)

    def get_root(self) -> str:
        return self.root

In [35]:
data = ["transaction1", "transaction2", "transaction3", "transaction4"]
merkle_tree = MerkleTree(data)
print("Merkle Root:", merkle_tree.get_root())

Merkle Root: 0cf77e26eb4a27047852cf39e3868c7a69ff1109acb9e799ba422d3ac350fb97


## Encryption and Decryption 

* We've seen that hashing is one-way - we cannot get back to the original value from the hashed value. We have to match the hashed values. 

* However encryption and decryption is two-way. We disguise the original data for transmission, but enable the recipient to decrypt for reading.

* Let's look at a simple substitution example using the Ceaser Cipher of shifting the elements: 


## Caeser Cipher: 

* Shift the letters by a constant number of positions. 

* For example, with a left shift of 3, D would be replaced by A, E would become B, and so on.

![caeser](https://upload.wikimedia.org/wikipedia/commons/thumb/4/4a/Caesar_cipher_left_shift_of_3.svg/440px-Caesar_cipher_left_shift_of_3.svg.png)

In [86]:
key = "D" 
shift = ord(key.upper()) - ord('A')
shift

3

In [88]:
key = "X" 
shift = ord(key.upper()) - ord('A')
shift

23

In [94]:
def simple_substitution_encrypt(plaintext, key):
    ciphertext = ""
    for char in plaintext:
        if char.isalpha():
            shift = ord(key.upper()) - ord('A')
            if char.isupper():
                ciphertext += chr((ord(char) - ord('A') + shift) % 26 + ord('A'))
            else:
                ciphertext += chr((ord(char) - ord('a') + shift) % 26 + ord('a'))
        else:
            ciphertext += char
    return ciphertext

def simple_substitution_decrypt(ciphertext, key):
    plaintext = ""
    for char in ciphertext:
        if char.isalpha():
            shift = ord(key.upper()) - ord('A')
            if char.isupper():
                plaintext += chr((ord(char) - ord('A') - shift) % 26 + ord('A'))
            else:
                plaintext += chr((ord(char) - ord('a') - shift) % 26 + ord('a'))
        else:
            plaintext += char
    return plaintext

# Usage
message = "Hello, World!"
key = "D"
encrypted = simple_substitution_encrypt(message, key)
decrypted = simple_substitution_decrypt(encrypted, key)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: Hello, World!
Encrypted: Khoor, Zruog!
Decrypted: Hello, World!


## XOR Cipher: 

* The XOR cipher is more sophisticated - it involves bitwise XOR operations on binary representations of the characters in plaintext and key

* 0 XOR 0 = 0

* 1 XOR 0 = 1

* 0 XOR 1 = 1

* 1 XOR 1 = 0



In [95]:
def xor_cipher(data, key):
    return bytes([b ^ ord(key[i % len(key)]) for i, b in enumerate(data)])

In [100]:
message = b"Hello, World!"
key = "SECRET"
encrypted = xor_cipher(message, key)
decrypted = xor_cipher(encrypted, key)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: b'Hello, World!'
Encrypted: b'\x1b />*xs\x12, )0r'
Decrypted: b'Hello, World!'


## Python's Cryptography library 

You may need to install Python's cryptography library via the installer if you haven't already... 
Copy and paste one of the following into a VSC terminal or your OS terminal/command line

` python3 -m pip install cryptography `

` pip install cryptography `


## Fernet's Cipher

* The Fernet cipher in Python’s cryptography library is a symmetric encryption algorithm.

* It's based on the Advanced Encryption Standard (AES) in Cipher Block Chaining (CBC) mode with a 128-bit initialization vector (IV). 

* It uses AES-128 under the hood but provides additional features and protections:

In [123]:
from cryptography.fernet import Fernet

# Generate a random key
key = Fernet.generate_key()
f = Fernet(key)
print(f)
print(key)

# Encrypt a message
message = b"Hello, World!"
encrypted = f.encrypt(message)

# Decrypt the message
decrypted = f.decrypt(encrypted)

print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

<cryptography.fernet.Fernet object at 0x103b450a0>
b'MyYQFF5RCrkZNc0GcWjCX-zcEZ6JRDBYIAoIb0EMFiY='
Original: b'Hello, World!'
Encrypted: b'gAAAAABnLhYW-tNH3PZgxg1WMKhbbCn7qffDIeLlS7wBTCelP2_mMbNjnnpU84bgojdO6F5LbilBVBjh44LdwHN7uSgn4gKuHA=='
Decrypted: b'Hello, World!'


## Encryption Algorithms

* <b>RSA</b> is an <b>asymmetric</b> encryption algorithm: 

    * RSA uses a <b>pair of keys: a public key for encryption and a private key for decryption</b>. This type of encryption is often used for secure data exchange where two parties may not have a shared secret.

* <b>AES</b> is a <b>symmetric</b> encryption algorithm: 

    * AES uses <b>a single key for both encryption and decryption</b>. AES is often used for encrypting large amounts of data quickly because it is more computationally efficient than RSA.

## Prime numbers as building blocks for Cryptography

* Mathematical definition: a prime number is a number greater than one (1), which is only divisable by itself and 1. 

* e.g. $15 = 5 \times 3$ - NOT prime

* e.g. $7 = 7 \times 1$ - prime

* Applied in cryptography to disguise the original data.

<img src="https://media.geeksforgeeks.org/wp-content/uploads/20240912153108/Prime-Numbers.png" alt="prime_numbers" width="650"> 

In [124]:
def is_prime(n):
    """Check if a number is prime."""
    if n <= 1:
        return False
    if n <= 3:
        return True
    if n % 2 == 0 or n % 3 == 0:
        return False
    i = 5
    while i * i <= n:
        if n % i == 0 or n % (i + 2) == 0:
            return False
        i += 6
    return True

In [125]:
def generate_primes(limit):
    """Generate prime numbers up to a given limit."""
    primes = []
    for num in range(2, limit + 1):
        if is_prime(num):
            primes.append(num)
    return primes

In [126]:
prime_numbers = generate_primes(50)
print("Prime numbers up to 50:", prime_numbers)

Prime numbers up to 50: [2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47]


## So what do prime numbers mean for cryptography? 

* Ancient greek mathemeticians proposed that every whole number greater than one can be written as a product of primes: 

    * e.g. $135 = 3 \times 3 \times 3 \times 5$

    * e.g. $250 = 3 \times 5 \times 5 \times 5$

* Therefore, the end result (the hashed value) is knowable if we know the constitute parts (primes).

* As we saw with password encryption and credit card encryption, the original data is hashed, so that the original data can be disguised, and the disguised value can still be compared. 

* Therefore, it is possible to decrypt a hashed value, by understanding the prime factors. 


Let's scale this up - 

* Question: what are the prime factors that can be multiplied together to get `449623`?

In [127]:
449623

449623

I'm sure you can work this out in your heads, but let's write a Python script that can identify prime factors that multiply together. 

In [128]:
def prime_factors(n):
    factors = []
    # Divide by 2 until n is odd
    while n % 2 == 0:
        factors.append(2)
        n //= 2

    # Now n is odd, we can start from 3 and go up by 2 (checking only odd divisors)
    factor = 3
    while factor * factor <= n:
        while n % factor == 0:
            factors.append(factor)
            n //= factor
        factor += 2

    # If n is still greater than 2, it must be prime
    if n > 2:
        factors.append(n)

    return factors

In [129]:
number = 449623
print("Prime factors of", number, "are:", prime_factors(number))

Prime factors of 449623 are: [521, 863]


In [131]:
521 * 863

449623

* Now, this is harder for us as humans to work out in our heads, but for computers, it's much easier given modern compute power.

* Therefore, this is why encrypted values are seriously large! To make it much harder for brute force attacks to work. 

* We saw 160 bits and 256 bit lengths earlier, but modern day RSA values are 2048 bit to 4096 bit values! 

* 2^4096 creates some large hash values!

In [133]:
from cryptography.hazmat.primitives.asymmetric import rsa, padding
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.backends import default_backend
import binascii

def generate_rsa_keys():
    # Generate a 4096-bit RSA private key
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=4096,
        backend=default_backend()
    )
    public_key = private_key.public_key()
    return private_key, public_key

def encrypt_message(public_key, message):
    # Encrypt the message using the public key and OAEP padding
    ciphertext = public_key.encrypt(
        message.encode(),
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
    )
    # Convert to hexadecimal for easy readability
    return binascii.hexlify(ciphertext).decode()

# Generate the RSA keys
private_key, public_key = generate_rsa_keys()

# Encrypt a sample message
message = "This is a secret message"
encrypted_hex = encrypt_message(public_key, message)

print("4096-bit Encrypted Hexadecimal Value:", encrypted_hex)

4096-bit Encrypted Hexadecimal Value: 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

And with new lines...

In [137]:
inp = encrypted_hex
new_input = ""
for i, letter in enumerate(inp):
    if i % 80 == 0:
        new_input += '\n'
    new_input += letter

# this is just because at the beginning too a `\n` character gets added
new_input = new_input[1:] 

In [138]:
print(new_input)

18ad0a2787bb049843c88cc2a0b42e44ca6255b6e48e611a7848ed29b67a0f2b55a8b853e1768514
554cfd83e3d1987278ec9b013ad7ef8eeebd0e8f5164a157a3e94779a5845a20c853a337ec855566
a22333f75390a23be2960d69dd20dcc7652461c1e7091e2bfe44f82afbfbf821db23a6110b1287be
7ab14b492f38850194d50e7be16ab178db4f33ceeccf648bf2598245954df79936f48678cf3652f7
64216893f32da2f6d7a2f22aca68e30842a7dbec051dbd6d5348602d93f07dac749362c29eb433cc
33b03071ec1fa6e8ca51be2530a76ac47cfaccef927fe4a93d76e4938cac9c7ce616e0d1dd0f4f8e
48bae1b5cff5ac8584ab94f8d3c51e2af1839a5f5cacd2e1ab1abc18611c01cf670a1ebc93cd6cf1
029f37fdc5162bd6eac83fd800e333e13fd09a0ac977bb656bdc82b4394d033d40b833ccdb99b132
287b11b65a9971ae2f59274513e60c8601254855f1cfbdc7a004836a88b62142a0a411454b1b7554
214b08b1b0ef42e6ac10124acfe5104117429d45e2644df783c374a5f5d4bb1c5ae06a682b83c008
ffc7218fa6a08fcec10aa08517a1520db973aba843ccf563c8dfb59fde48e57c9f0b06e0f1ee3599
e5d7b4f20adc0df26c2bb5f0d973cfa8a369b017e803cd78c8cfa8cbb9dfa02b625df235907eb098
feecc893e7905e2610b683c65795

...yeah... this is a long string (encrypted value)...

## RSA (Rivest–Shamir–Adleman) 

* RSA was proposed by MIT professors Ron Rivest, Adi Shamir and Leonard Adleman, who publicly described the algorithm in 1977.

* RSA (Rivest–Shamir–Adleman) is a widely used asymmetric encryption algorithm that relies heavily on the properties of <b>prime numbers</b> for its security.

* The security of RSA relies on the fact that while $n$ (product of two large prime numbers) is shared openly, it is computationally difficult to factor $n$ back into its prime factors without knowing them.

* The private key also consists of two values: $n$ (the same modulus as in the public key) and $d$ (the private exponent).

* The private exponent $d$ is derived from e and the totient of $n$ (computed as $(p-1)(q-1)$ where $p$ and $q$ are the prime factors of $n$), making it hard for someone without $d$ to decrypt messages, even if they know $e$ and $n$.



## RSA Steps 
 
1. RSA begins by selecting two large, distinct prime numbers, typically denoted as $p$ and $q$.

2. Euler’s Totient Function

	* $\phi(n) = (p-1) * (q-1)$

	* Greek letter phi $\phi$ (φ) is used to represent the <b>golden ratio</b>, a mathematical constant that is approximately equal to <b>1.618</b>

3. Selecting the Public and Private Keys

	* A public exponent $e$ is chosen such that  1 < $e$ < $\phi(n)$  and  $e$  is coprime with  $\phi(n)$ . This ensures that  $e$  has an inverse modulo  $\phi(n)$ , which is crucial for decryption.
	* The private key  $d$  is calculated as the modular multiplicative inverse of  e  mod  $\phi(n)$ . In other words,  d  is the number that satisfies the equation \( $e \cdot d \equiv 1 \pmod{\phi(n)}$ \).

4. Encryption and Decryption

	* The message (or plaintext) is encrypted using the formula: \( $\text{ciphertext} = \text{message}^e \mod n $\).
	* Decryption is achieved by reversing this operation: \( $\text{message} = \text{ciphertext}^d \mod n $\).
	* The use of the prime-generated values  $p$  and  $q$  ensures that only someone with knowledge of $\phi(n)$  can calculate  $d$  and thus decrypt the message, as knowing  $\phi(n)$  requires knowing the factorization of $n$ into $p$ and $q$.


In [139]:
import random
from math import gcd

# Helper function to check if a number is prime
def is_prime(n):
    if n <= 1:
        return False
    for i in range(2, int(n ** 0.5) + 1):
        if n % i == 0:
            return False
    return True

# Function to generate a random prime number within a range
def generate_prime(start=50, end=100):
    while True:
        p = random.randint(start, end)
        if is_prime(p):
            return p

# Generate RSA keys
def generate_rsa_keys():
    # Step 1: Choose two distinct prime numbers, p and q
    p = generate_prime()
    q = generate_prime()
    while q == p:  # Ensure q is different from p
        q = generate_prime()

    # Step 2: Compute n = p * q
    n = p * q

    # Step 3: Compute the totient function phi(n) = (p-1) * (q-1)
    phi_n = (p - 1) * (q - 1)

    # Step 4: Choose e such that 1 < e < phi(n) and gcd(e, phi(n)) = 1
    e = 3
    while gcd(e, phi_n) != 1:
        e += 2  # Increment e by 2 to keep it odd

    # Step 5: Calculate d, the modular multiplicative inverse of e mod phi(n)
    d = pow(e, -1, phi_n)

    # Public and private keys
    public_key = (e, n)
    private_key = (d, n)
    return public_key, private_key

# Encryption function
def encrypt(message, public_key):
    e, n = public_key
    # Encrypt each character and return as list of integers
    encrypted_message = [(ord(char) ** e) % n for char in message]
    return encrypted_message

# Decryption function
def decrypt(encrypted_message, private_key):
    d, n = private_key
    # Decrypt each integer and convert back to character
    decrypted_message = ''.join([chr((char ** d) % n) for char in encrypted_message])
    return decrypted_message


In [152]:
public_key, private_key = generate_rsa_keys()
print("Public Key:", public_key)
print("Private Key:", private_key)

# Encrypt and decrypt a message
message = "HELLO"
encrypted_msg = encrypt(message, public_key)
print("Encrypted Message:", encrypted_msg)

decrypted_msg = decrypt(encrypted_msg, private_key)
print("Decrypted Message:", decrypted_msg)

Public Key: (7, 5063)
Private Key: (703, 5063)
Encrypted Message: [233, 4547, 4963, 4963, 3536]
Decrypted Message: HELLO


`pip install sympy`

`python3 -m pip install -U sympy --user`

In [153]:
import random
from sympy import isprime, mod_inverse

In [154]:
def generate_large_prime(bits=512):
    """Generate a large prime number with the specified bit length."""
    prime_candidate = random.getrandbits(bits)
    while not isprime(prime_candidate):
        prime_candidate = random.getrandbits(bits)
    return prime_candidate

def generate_rsa_keys(bits=512):
    """Generate RSA public and private keys."""
    # Step 1: Generate two large prime numbers
    p = generate_large_prime(bits)
    q = generate_large_prime(bits)
    while p == q:  # Ensure p and q are different
        q = generate_large_prime(bits)
    
    # Step 2: Calculate n and φ(n)
    n = p * q
    phi_n = (p - 1) * (q - 1)
    
    # Step 3: Choose a public exponent e
    e = 65537  # Commonly used public exponent
    if not (1 < e < phi_n and isprime(e) and phi_n % e != 0):
        raise ValueError("Invalid exponent 'e'. Choose a different e.")
    
    # Step 4: Compute private exponent d
    d = mod_inverse(e, phi_n)
    
    # The public key is (n, e) and the private key is (n, d)
    return (n, e), (n, d)

In [171]:
public_key, private_key = generate_rsa_keys(512)
print("Public Key:", public_key)
print("Private Key:", private_key)

Public Key: (56440753624057014319679888689579665592601285738408321472473805842254121340200028419314885973445278200479521432639122963450219228341122533244136496396256892952521271212008053309199817536527243034568065102450369566575066408356657486740696683414035555848906940611298281479636926889518452365437581683056542677437, 65537)
Private Key: (56440753624057014319679888689579665592601285738408321472473805842254121340200028419314885973445278200479521432639122963450219228341122533244136496396256892952521271212008053309199817536527243034568065102450369566575066408356657486740696683414035555848906940611298281479636926889518452365437581683056542677437, 34641947518618389627372682950674306856621247826837888997516804858395593800594261915665063830841147986851530427512835821059631482369068677231874980050039411465139154219586900506875582357928645254203391573660646822197690455864069811257955424382487697107241125142229323444101897531799370233664092464712614158973)


## Credit Cards 

* Credit card numbers follow a structured format called the ISO/IEC 7812 standard.

* The card number is divided into specific sections to convey information about the card issuer, the individual account, and include a checksum to validate the number.

1. The first 6 digits identify the institution that issued the card (e.g., a bank or financial institution). This section includes the <b>Major Industry Identifier (MII)</b>
    * <b>3</b>: Travel and entertainment (e.g., American Express)
    
    * <b>4-5</b>: Banking and financial institutions (e.g., Visa, Mastercard)

2. The following digits (up to 12-15, depending on the card issuer) represent the individual account number assigned by the issuer. This part of the card number is unique to each cardholder.

3. The last digit is a check digit calculated using the Luhn algorithm, a simple checksum formula used to validate the card number. This ensures that common errors (like mistyping a digit) can be detected.

In [172]:
def luhn_algorithm(card_number):
    # Reverse the card number to process from the right side
    card_digits = [int(digit) for digit in str(card_number)][::-1]
    total_sum = 0

    for i, digit in enumerate(card_digits):
        if i % 2 == 1:  # Double every second digit from the right
            doubled = digit * 2
            # If doubling results in a number greater than 9, subtract 9
            if doubled > 9:
                doubled -= 9
            total_sum += doubled
        else:
            total_sum += digit

    # If the total sum is divisible by 10, the card number is valid
    return total_sum % 10 == 0

In [176]:
card_number = 4532015112830366  # Replace with a test card number

if luhn_algorithm(card_number):
    print(f"The card number {card_number} is valid.")
else:
    print(f"The card number {card_number} is invalid.")

The card number 4532015112830366 is valid.


In [177]:
import hashlib
import os

def hash_credit_card(card_number):
    # Generate a random salt
    salt = os.urandom(16)
    # Combine the salt with the card number and hash it
    hash_object = hashlib.sha256(salt + card_number.encode())
    return salt, hash_object.hexdigest()
    

In [185]:
# Example usage:
card_number = "4532015112830366"  # Replace with the actual card number
salt, hashed_card = hash_credit_card(card_number)
print(f"Salt: {salt.hex()}")
print(f"Hashed Card Number: {hashed_card}")

Salt: db74d107b4e4d739d7fe020400852ebc
Hashed Card Number: 563d6196db0b6bc0e2f56b9303a823b90bcb34a39fd19a243188ff75e50fbd82


## Encryption with AES (For Reversible Storage)

* Advanced Encryption Standard (AES) is a symmetric block cipher that the U.S. government selects to protect classified data. AES-256 encryption uses the 256-bit key length to encrypt as well as decrypt a block of messages.

* When the card number needs to be decrypted later (e.g., during a transaction), AES encryption (Advanced Encryption Standard) is commonly used. AES is symmetric, meaning the <b>same key</b> is used for both encryption and decryption.

* Here’s an example using Python’s cryptography library with AES encryption:

In [187]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives.kdf.pbkdf2 import PBKDF2HMAC
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import hashes
import os

def encrypt_credit_card(card_number, password):
    # Generate a random salt and IV (Initialization Vector)
    salt = os.urandom(16)
    iv = os.urandom(16)

    # Derive a key from the password
    kdf = PBKDF2HMAC(
        algorithm=hashes.SHA256(),
        length=32,
        salt=salt,
        iterations=100000,
        backend=default_backend()
    )
    key = kdf.derive(password.encode())

    # Encrypt the card number
    cipher = Cipher(algorithms.AES(key), modes.CFB(iv), backend=default_backend())
    encryptor = cipher.encryptor()
    encrypted_card = encryptor.update(card_number.encode()) + encryptor.finalize()

    return salt, iv, encrypted_card

In [189]:
# Example usage
card_number = "4532015112830366"  # Replace with the actual card number
password = "securepassword"  # Use a secure password
salt, iv, encrypted_card = encrypt_credit_card(card_number, password)
print(f"Salt: {salt.hex()}")
print(f"Initialisation Vector (IV): {iv.hex()}")
print(f"Encrypted Card Number: {encrypted_card.hex()}")

Salt: 4f9318bf43d59dc29217c4074f808820
Initialisation Vector (IV): 44371488b84b71d91f841666df67c7b9
Encrypted Card Number: fc4442bd9f9bb9a4c11890c7b7200a8b


## Decryption 

In [191]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives.kdf.pbkdf2 import PBKDF2HMAC
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import hashes
import os

def decrypt_credit_card(encrypted_card, password, salt, iv):
    # Derive the same key from the password and salt
    kdf = PBKDF2HMAC(
        algorithm=hashes.SHA256(),
        length=32,
        salt=salt,
        iterations=100000,
        backend=default_backend()
    )
    key = kdf.derive(password.encode())

    # Decrypt the encrypted credit card number
    cipher = Cipher(algorithms.AES(key), modes.CFB(iv), backend=default_backend())
    decryptor = cipher.decryptor()
    decrypted_card = decryptor.update(encrypted_card) + decryptor.finalize()

    return decrypted_card.decode()

# Example usage with the encrypted card, salt, and IV
password = "securepassword"  # Must be the same password used for encryption
decrypted_card_number = decrypt_credit_card(encrypted_card, password, salt, iv)
print(f"Decrypted Card Number: {decrypted_card_number}")

Decrypted Card Number: 4532015112830366


## PBKDF2 (Password-Based Key Derivation Function 2):

* An older but still widely used algorithm.

* Uses a combination of a salt and key stretching (by iterating the hash many times) to make brute-force attacks more difficult.

* Typically slower than SHA-256, which is good for password hashing.

In [192]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import padding
import os

In [193]:
# Function to encrypt plaintext using AES
def encrypt_aes(key, plaintext):
    # Generate a random 16-byte IV (Initialization Vector)
    iv = os.urandom(16)
    
    # Create the cipher using AES and CBC mode with the IV
    cipher = Cipher(algorithms.AES(key), modes.CBC(iv), backend=default_backend())
    
    # Encryptor object
    encryptor = cipher.encryptor()
    
    # Padding the plaintext to be a multiple of block size (16 bytes)
    padder = padding.PKCS7(algorithms.AES.block_size).padder()
    padded_data = padder.update(plaintext) + padder.finalize()
    
    # Encrypt the padded plaintext
    ciphertext = encryptor.update(padded_data) + encryptor.finalize()
    
    # Return both the IV and ciphertext (IV is needed for decryption)
    return iv, ciphertext


In [194]:
# Function to decrypt ciphertext using AES
def decrypt_aes(key, iv, ciphertext):
    # Create the cipher using AES and CBC mode with the provided IV
    cipher = Cipher(algorithms.AES(key), modes.CBC(iv), backend=default_backend())
    
    # Decryptor object
    decryptor = cipher.decryptor()
    
    # Decrypt the ciphertext
    padded_plaintext = decryptor.update(ciphertext) + decryptor.finalize()
    
    # Unpad the plaintext
    unpadder = padding.PKCS7(algorithms.AES.block_size).unpadder()
    plaintext = unpadder.update(padded_plaintext) + unpadder.finalize()
    
    return plaintext

In [195]:
# Demo: Encrypt and decrypt a message using AES-256
def demo_aes():
    # Key must be either 16, 24, or 32 bytes long (AES-128, AES-192, AES-256 respectively)
    key = os.urandom(32)  # AES-256 key (32 bytes)
    
    # Example plaintext message
    plaintext = b"Hello, this is a secret message!"
    print(f"Original plaintext: {plaintext}")
    
    # Encrypt the message
    iv, ciphertext = encrypt_aes(key, plaintext)
    print(f"Encrypted ciphertext: {ciphertext.hex()}")
    print(f"Initialization Vector (IV): {iv.hex()}")
    
    # Decrypt the message
    decrypted_plaintext = decrypt_aes(key, iv, ciphertext)
    print(f"Decrypted plaintext: {decrypted_plaintext}")

# Run the AES encryption/decryption demo
demo_aes()

Original plaintext: b'Hello, this is a secret message!'
Encrypted ciphertext: 9a72cd892f8eb5eb7379de9fc8b84f5440553ef92787ee1e665ea0b2bb4de3caf7527db5c07abe42fee9b128657bae39
Initialization Vector (IV): d76e1b346c5a716f2678bf8625c5a7af
Decrypted plaintext: b'Hello, this is a secret message!'


1.	Initialization Vector (IV): Each encryption operation generates a new 16-byte IV, which is prepended to the ciphertext.

2.	Padding: The plaintext is padded to be compatible with AES’s block size.

3.	Encryption and Decryption: AES-CBC mode encrypts with the key and IV, and decrypts using the same parameters.

In [196]:
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import padding
import os

class AESCipher:
    def __init__(self, key: bytes):
        self.key = key
        self.backend = default_backend()

    def encrypt(self, plaintext: str) -> bytes:
        # Generate a random 16-byte IV for AES-CBC mode
        iv = os.urandom(16)
        cipher = Cipher(algorithms.AES(self.key), modes.CBC(iv), backend=self.backend)
        encryptor = cipher.encryptor()

        # Pad plaintext to be a multiple of AES block size (128 bits)
        padder = padding.PKCS7(algorithms.AES.block_size).padder()
        padded_data = padder.update(plaintext.encode()) + padder.finalize()

        # Encrypt the padded plaintext
        ciphertext = encryptor.update(padded_data) + encryptor.finalize()

        # Return the IV and ciphertext (IV is needed for decryption)
        return iv + ciphertext

    def decrypt(self, iv_and_ciphertext: bytes) -> str:
        # Extract the IV from the first 16 bytes
        iv = iv_and_ciphertext[:16]
        ciphertext = iv_and_ciphertext[16:]

        cipher = Cipher(algorithms.AES(self.key), modes.CBC(iv), backend=self.backend)
        decryptor = cipher.decryptor()

        # Decrypt the ciphertext
        padded_plaintext = decryptor.update(ciphertext) + decryptor.finalize()

        # Remove padding from plaintext
        unpadder = padding.PKCS7(algorithms.AES.block_size).unpadder()
        plaintext = unpadder.update(padded_plaintext) + unpadder.finalize()

        return plaintext.decode()


In [197]:
key = os.urandom(32)  # AES-256 key (32 bytes)
aes_cipher = AESCipher(key)
plaintext = "Hello, this is a secret message!"

# Encrypt
encrypted_data = aes_cipher.encrypt(plaintext)
print("Encrypted:", encrypted_data)

# Decrypt
decrypted_data = aes_cipher.decrypt(encrypted_data)
print("Decrypted:", decrypted_data)

Encrypted: b'\xa8\xee\xe7\x95Z:\x95\xd2\x02\x8b\xbe?\x92K\xe8\xb4\xb2\x9e9\xe9\xeaa\x88Q+\xf8\xbb\xc3\xc4`\x06\xda,\x92\xff\xbc\x8c2\xf6\xca\x8e\xc1\xc4\xe9F\x11\x9b7\xef\x1f$j\xf6J\xc1\xe8\x90S?\x8dK\x88\x12\x07'
Decrypted: Hello, this is a secret message!


## Summary: 

* Hashing is one-way 

* Encryption and decryption is two-way 

* SHA-256 (Secure Hashing Algorithm) - 256 bits standard for blockchain -> 2048 bits and 4096 bits for higher security.

* RSA (Rivest–Shamir–Adleman) - public key and private key (based on primes)

* AES (Advanced Encryption Standard) is a symmetric block cipher - Same key for public and private.

## Exercise 

Write functions to encrypt and decrypt a string (`str`) message using the Caeser Cipher.
 

In [None]:
# Write your solution here.

## Exercise: 

Implement the SHA-256 algorithm for a string, e.g. a password.

How would you check whether the password entered is correct?

Extension: add the process of 'salting' to this algorithm. 

In [None]:
# Write your solution here.

## Exercise 

Write a function to work out whether a number passed in is prime. 

In [None]:
# Write your solution here.

## Exercise 

Write a function which will will determine the prime factors of an integer passed in. 


In [None]:
# Write your solution here.

## Exercise:

Implement AES

In [None]:
# Write your solution here. 

## Exercise:

Implement RSA algorithm that has both a private and public key. Feel free to make use of the `hashlib` and/or the `cryptography` library. 

In [None]:
# Write your solution here. 

## Exercise:

Implement a simple blockchain as visualised below. Use the SHA-256 algorithm to hash the data for each `Block` object - which is likely to include attributes such as `data`, `timestamp`, and a SHA-256 hash of the `previous` block. Then link the blocks together by including the hash of the previous block in the new block’s data.

Also write functions to add new blocks and to verify the blockchain by checking the chain of hashes.

In [None]:
# Write your solution here.

## Scenario Exercise - WhatsApp IM!

Simulate the exchange of messages modelling encryption and decryption protocols. Ensure that the messages sent between sender and receipent are encrypted so they cannot be read by anyone else. 

![whatsapp](https://www.wati.io/wp-content/uploads/2023/09/English-Understanding-WhatsApp-Data-Security-Understand-End-to-End-Encryption-and-Backups-–-2-1024x512.png)

In [None]:
# Write your solution here. 