<a href="https://colab.research.google.com/github/ProfDoeg/Colegio_Invisible/blob/master/02_cuaderno.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Guinoes, Hashes, 
# Teclas, Claves, Llaves, Keys
# y Contraseñas 


# Preperando el Espacio

In [None]:
from IPython.core.display import display, HTML
display(HTML("<style>.container { width:95% !important; }</style>"))

In [None]:
#! rm -r Colegio_Invisible

In [None]:
! git clone https://github.com/ProfDoeg/Colegio_Invisible.git

In [None]:
! pip install cryptos

In [None]:
! pip install eciespy

# Basic Cryptography and Script Writing

## Outline

In this introduction we cover:

- scripts
- cryptographic hash functions
- symmetric cryptography



By the end of the exposition you will:

- understand the structure of python script
- be able to run a Python script from terminal
- be able direct the script with user input and capture it's output
- understand the features of a cryptographic **hash function**
- be able to hash a string or file using **SHA256**
- understand the features of **symmetric cryptography**
- be able to generate an **AES** cryptographic **key**
- be able to **AES encrypt** a string or file using a symmetric key
- be able to **AES decrypt** a string or file using AES


----

# Scripts

## `*.py`

Python scripts are programs that can be saved in text files with a `.py` extension. 

## `python`
The script is called from the bash terminal using the `python` call. 

##`argv`
The script uses `argv` from the `sys` module to pull an argument vector (tuple) from the bash terminal input.

## Example
Here we write a Python script and run it from the bash terminal.

In [54]:
! echo "from sys import argv" > zero.py 
! echo "print(argv)" >> zero.py 

In [55]:
! cat zero.py

from sys import argv
print(argv)


In [56]:
! python zero1.py 8 hello 1 8 

['zero1.py', '8', 'hello', '1', '8']


# Cryptographic Hash Functions

A cryptographic hash function is an algorithm that takes an arbitrary amount of data input and produces a fixed-size output  of gibberish called a digest, checksum, fingerprint, hash code, hash value, or just “hash.” 

$$ F(\text{input})\longrightarrow \text{hash}$$

Cryptographic hash function should have the following features. They should be:

- **[ONE-WAY FUNCTION]** the input to the function cannot be derived from the output 
- **[INPUT HYPERSENSITIVITE]** a tiny change in input should drastically change output
- **[DETERMINISTIC]** the output of the function should always be the same for a given input
-  **[NON-PREDICTABLE]** there are no computational short cuts in producing the hash from the input
- **[COLLISION RESISTANT]** two different inputs should never produce the same hash ouput for the remainder of all human history

**SHA256** is a cryptographic hash function with a 256 bit output prescribed by the U.S. National Institute of Standards and Technology.

We implement SHA256 in Python using the **`hashlib`**

## Apply SHA256 using Terminal

UNIX like systems can hash from the terminal

It can be done on:

- a string
- a file

In [None]:
! echo 🐶| shasum -a 256 

In [None]:
! ls Colegio_Invisible/img

In [None]:
! shasum -a 256 Colegio_Invisible/img/colegio_invisible.jpeg

## Hashing Using Python

### Python Hashing Module `hashlib`

We will be using the **`hashlib`** module to do our hashing work. A module is a toybox filled with delights.


In [None]:
import hashlib
type(hashlib)

In [None]:
hashlib.algorithms_available

### Prepare the Bytestring Input

The input must be a bytestring, a string of `type` **`bytes`**.

We can prepare a bytestring by:
- using `b'  '` to write the literal
- convert a string to `bytes` using `.encode()`  


In [None]:
b'a byte string'

In [None]:
type(b'a byte string')

In [None]:
type('🐶')

In [None]:
str.encode('🐶')

In [None]:
'🐶'.encode()

### Apply SHA256 to Bytestring using Python

We will be using `sha256`. The following code creates a `sha256 HASH object`

- `.digest()` returns the sha256 digest as a bytestring
- `.hexdigest()` returns the sha256 digest as a hexstring

In [None]:
H=hashlib.sha256(b'a byte string')
H

In [None]:
H.hexdigest()

In [None]:
H.digest()

In [None]:
hashlib.sha256( '🐶'.encode() ).digest()

In [None]:
hashlib.sha256( '🐶'.encode() ).hexdigest()

In [None]:
hashlib.sha256( '🐶\n'.encode() ).hexdigest()

### Apply SHA256 to File using Python

File is opened as **binary** using `open()` in mode `'rb'` read binary.

In [None]:
img_file=open('Colegio_Invisible/img/colegio_invisible.jpeg','rb')
img_bytes=img_file.read()
img_file.close()

In [None]:
hashlib.sha256( img_bytes ).hexdigest()

In [None]:
def sha256_file(path):
  bytestring = open(path,'rb').read()
  return hashlib.sha256( bytestring ).hexdigest()

In [None]:
sha256_file('Colegio_Invisible/img/colegio_invisible.jpeg')

### Apply SHA256 to File Using a Python Script

Here the Python program is packaged in a script.

- a script is called from the Terminal following a call to `python`
- arguments can be passed to the script using `argv`

`> python path/to/script.py arg1 arg2`

Look at the contents of script `sha_256.py` in `Colegio_Invisible/scripts` 

https://www.sublimetext.com/

In [None]:
! cat Colegio_Invisible/scripts/sha_256.py

In [None]:
! python Colegio_Invisible/scripts/sha_256.py 

In [None]:
! python Colegio_Invisible/scripts/sha_256.py Colegio_Invisible/img/colegio_invisible.jpeg

In [None]:
fileHash=! {'python Colegio_Invisible/scripts/sha_256.py Colegio_Invisible/img/colegio_invisible.jpeg'}
fileHash

In [None]:
fileHash[-1]

# Symmetric Cryptography

Encryption uses a key to map a plaintext to a ciphertext. Decryption is the reverse process where a key is used to map the ciphertext back to a plain text.

Symmetric cryptography uses one single key that needs to be shared among all participants who are communicating. The encryption and decryption step use the same key.

AES (Advanced Encryption Standard) is a symmetric block cipher standardized by NIST . It has a fixed data block size of 16 bytes. Its keys can be 128, 192, or 256 bits long.

https://en.wikipedia.org/wiki/Advanced_Encryption_Standard



## AES in Python Using `ecies`

The **`eciespy`** library is an encryption library used in ethereum development. It does lots of things including including AES (symmetric encryption) and ECC (asymmetric cyptography). We will use it do most of our things.

https://ecies.org/py/

In [None]:
import ecies
type(ecies)

## Prepare the Encryption Key

In [None]:
bytekey256=hashlib.sha256(b'semilla de mostaza').digest()
bytekey256

The 256 bits are stored as 32 bytes. Remember each byte is 8 bits.

In [None]:
len(bytekey256)

In [None]:
len(bytekey256)*8

## Encryption: Generating Ciphertext From Plaintext

In [None]:
plaintext=b'this is my plain text byte string'

In [None]:
ciphertext=ecies.aes_encrypt(key=bytekey256,plain_text=plaintext)
ciphertext

## Decryption: Recovering Plaintext from Cipertext

In [None]:
recoveredtext=ecies.aes_decrypt(key=bytekey256,cipher_text=ciphertext)
recoveredtext

## AES on Files





### Encrypting Files

In [None]:
f=open('Colegio_Invisible/img/colegio_invisible.jpeg','rb')
plainimg=f.read()
f.close()

cipherimg=ecies.aes_encrypt(key=bytekey256,plain_text=plainimg)

In [None]:
def aes_encrypt_file(plainfile_path,cipherfile_path,password):
  plain = open(plainfile_path,'rb').read()
  bytekey = hashlib.sha256( password.encode() ).digest()
  cipher = ecies.aes_encrypt(key=bytekey,plain_text=plain)
  open(cipherfile_path,'wb').write(cipher)


In [None]:
aes_encrypt_file('Colegio_Invisible/img/colegio_invisible.jpeg','cipher_img.aes','password')

In [None]:
! ls

In [None]:
! head -c 50 ciper_img.aes

### Decrypting Files

In [None]:
f=open('cipher_img.aes','rb')
cipherimg2=f.read()
f.close()

aes_key=hashlib.sha256( 'password'.encode()  ).digest()

plainimg2=ecies.aes_decrypt( key= aes_key , cipher_text=cipherimg2)

In [None]:
def aes_decrypt_file(cipherfile_path,extractfile_path,password):
  cipher = open(cipherfile_path,'rb').read()
  bytekey = hashlib.sha256( password.encode() ).digest()
  extract = ecies.aes_decrypt(key=bytekey,cipher_text=cipher)
  open(extractfile_path,'wb').write(extract)

In [None]:
aes_decrypt_file('cipher_img.aes','extract_img.jpeg','password')

In [None]:
from IPython.display import Image
display(Image('extract_img.jpeg'))

## AES Using Python Scripts

In [51]:
! cat Colegio_Invisible/scripts/aes_encrypt.py

##################################################################################
# this script will encrypt a file using AES to create a password protected file
# the AES key is the SHA256 hash of the user provided password
#
# run at the terminal using the following
# > python aes_encrypt.py <PASSWORD> <PLAINTEXT_PATH> <CIPHERTEXT_PATH>
# <PASSWORD>: password used to generate AES key
# <PLAINTEXT_PATH>: path to file that will be encrypted
# <CIPHERTEXT_PATH>: path to newly generated encrypted file
#
#EXAMPLE:
#>python aes_encrypt.py Password123 file2enc.jpg cipher.aes
#
# IF <PASSWORD> IS NOT INCLUDED USER WILL BE PROMPTED TO ENTER IT SECURELY
##################################################################################

from sys import argv
import getpass
import ecies
import eth_keys
import hashlib


if len(argv)==4:
    _, password, plaintext_path, ciphertext_path = argv
elif len(argv)==3:
    _, plaintext_path, ciphertext_path  = argv
    while True:
        password = getpa

In [52]:
! python Colegio_Invisible/scripts/aes_encrypt.py 'Colegio_Invisible/img/colegio_invisible.jpeg' 'pic.aes'

Traceback (most recent call last):
  File "Colegio_Invisible/scripts/aes_encrypt.py", line 19, in <module>
    import ecies
ModuleNotFoundError: No module named 'ecies'


In [53]:
! python Colegio_Invisible/scripts/aes_decrypt.py 'pic.aes' 'dec.jpeg'

Traceback (most recent call last):
  File "Colegio_Invisible/scripts/aes_decrypt.py", line 20, in <module>
    import ecies
ModuleNotFoundError: No module named 'ecies'


In [None]:
display(Image('dec.jpeg'))

In [50]:
! python Colegio_Invisible/scripts/sha_256.py dec.jpeg

Traceback (most recent call last):
  File "Colegio_Invisible/scripts/sha_256.py", line 30, in <module>
    file_hash=sha256_file(file_path)
  File "Colegio_Invisible/scripts/sha_256.py", line 26, in sha256_file
    bytestring = open(path,'rb').read()
FileNotFoundError: [Errno 2] No such file or directory: 'dec.jpeg'


In [None]:
! ls Colegio_Invisible/scripts
! cat Colegio_Invisible/scripts/ecc_generate.py

In [None]:
! mkdir teclas

In [None]:
! python Colegio_Invisible/scripts/ecc_generate.py teclas/my_privkey.enc

In [None]:
#! rm -r Colegio_Invisible

In [None]:
! python Colegio_Invisible/scripts/ecc_pubkey_extract.py teclas/my_privkey.enc teclas/my_pubkey.enc

In [None]:
! python Colegio_Invisible/scripts/ecc_keydump.py teclas/my_pubkey.enc

In [None]:
pubkey=!{'python Colegio_Invisible/scripts/ecc_keydump.py teclas/my_pubkey.enc'}
pubkey

In [None]:
pbytes.fromhex(pubkey[-1])