Tutorial 2 (Euclidean Algorithm)

1 basic euclidean algorithm for integers

In [9]:
def gcd(a,b):
    if b == 0:
        return a
    return gcd(b,a%b)

gcd(155,5)    

5

2 implement the extended euclidean algorithm

In [10]:
def extendedgcd(a,b):
    if b == 0:
        return a,1,0
    d,x1,y1 = extendedgcd(b,a%b)
    x = y1
    y = x1 - (a//b)*y1
    return d,x,y

extendedgcd(155,52)

(1, -1, 3)

3 Binary GCD algorithm

In [11]:
def bgcd(a,b):
    if a>=b:
        if b == 0:
            return a
        if a%2 == 0 and b%2 == 0:
            return 2*bgcd(a//2,b//2)
        if a%2 == 0 and b%2 == 1:
            return bgcd(a//2,b)
        if a%2 == 1 and b%2 == 0:
            return bgcd(a,b//2)
        if a%2 == 1 and b%2 == 1:
            return bgcd(a-b,b)
    else:
        return bgcd(b,a)

bgcd(254262621,24)

3

4 extended binary GCD

5 

tutorial 7


1

In [12]:
def is_generator(g, p):
    seen = set()
    for k in range(1, p): 
        seen.add(pow(g, k, p))
    return len(seen) == p - 1  

def find_generator_brute_force(p):
    for g in range(2, p): 
        if is_generator(g, p):
            return g
    return None  

p = 23 
generator = find_generator_brute_force(p)
print(f"A generator of Z_{p}^* is: {generator}")


A generator of Z_23^* is: 5


2

In [23]:
from sympy import factorint

def is_generator_optimized(g, p, factors):
    for q in factors:
        if pow(g, (p-1) // q, p) == 1:
            return False
    return True

def find_generator_using_factors(p):
    factors = factorint(p - 1).keys()  
    for g in range(2, p):
        if is_generator_optimized(g, p, factors):
            return g
    return None  

# Example usage
p = 211
generator = find_generator_using_factors(p)
print(f"A generator of Z_{p}^* using factorization is: {generator}")


A generator of Z_211^* using factorization is: 2


3

In [14]:
def discrete_log_brute_force(g, h, p):
    for x in range(p):
        if pow(g, x, p) == h:
            return x
    return None  


g = 5  
h = 8 
p = 23
x = discrete_log_brute_force(g, h, p)
print(f"Discrete log of {h} base {g} mod {p} is: {x}")


Discrete log of 8 base 5 mod 23 is: 6


4

In [15]:
from math import ceil, sqrt

def baby_step_giant_step(g, h, p):
    """Solve g^x ≡ h (mod p) using the Baby-step Giant-step algorithm"""
    m = ceil(sqrt(p))  # Step size
    baby_steps = {pow(g, j, p): j for j in range(m)}  # Compute baby steps

    # Compute giant steps
    g_inv_m = pow(g, -m, p)  # Compute g^(-m) mod p
    giant = h
    for i in range(m):
        if giant in baby_steps:
            return i * m + baby_steps[giant]  # Solution found
        giant = (giant * g_inv_m) % p  # Move to next giant step
    
    return None  # No solution found

# Example usage
g = 5  # Generator
h = 8  # Target
p = 23
x = baby_step_giant_step(g, h, p)
print(f"Discrete log of {h} base {g} mod {p} (using Baby-step Giant-step) is: {x}")


Discrete log of 8 base 5 mod 23 (using Baby-step Giant-step) is: 6


5

In [16]:
import random

def diffie_hellman(p, g):
    """Simulate Diffie-Hellman key exchange"""
    a = random.randint(1, p-1)  # Alice's secret key
    b = random.randint(1, p-1)  # Bob's secret key

    A = pow(g, a, p)  # Alice sends this
    B = pow(g, b, p)  # Bob sends this

    # Both compute the shared secret
    S_Alice = pow(B, a, p)
    S_Bob = pow(A, b, p)

    return a, b, A, B, S_Alice, S_Bob

# Example usage
p = 23
g = 5
a, b, A, B, S_Alice, S_Bob = diffie_hellman(p, g)
print(f"Alice's secret: {a}, Bob's secret: {b}")
print(f"Alice sends: {A}, Bob sends: {B}")
print(f"Shared secret: {S_Alice} (Alice), {S_Bob} (Bob)")


Alice's secret: 10, Bob's secret: 5
Alice sends: 9, Bob sends: 20
Shared secret: 8 (Alice), 8 (Bob)
