In [None]:
import time
import hashlib
import json
from datetime import datetime
import random

# Class simulating full IoT device security lifecycle
class IoTDeviceLifecycle:
    def __init__(self, device_id):
        self.device_id = device_id
        self.device_keys = {}
        self.boot_verified = False
        self.firmware_version = "1.0.0"
        self.is_commissioned = False
        self.is_decommissioned = False

    # Log events with timestamp to simulate lifecycle trace
    def log_event(self, stage, message, status="INFO"):
        timestamp = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
        print(f"[{timestamp}] [{stage}] {message}")
        return {"timestamp": timestamp, "stage": stage, "message": message, "status": status}

    # Stage 1: Identify threats and countermeasures
    def threat_modeling(self):
        print("\n" + "="*60)
        print(" STAGE 1: THREAT MODELING")
        print("="*60)

        logs = []
        logs.append(self.log_event("THREAT_MODELING", f"Starting threat assessment for device {self.device_id}"))
        threats = [
            "Unauthorized physical access",
            "Firmware tampering",
            "Eavesdropping on communication",
            "Malicious OTA updates",
            "Key extraction attacks",
            "Denial of Service (DoS)"
        ]
        for threat in threats:
            logs.append(self.log_event("THREAT_MODELING", f"Identified threat: {threat}"))
            time.sleep(0.3)

        countermeasures = [
            "Secure boot implementation",
            "Encrypted storage for keys",
            "Signed firmware updates",
            "Secure communication protocols",
            "Regular security patches"
        ]
        for cm in countermeasures:
            logs.append(self.log_event("THREAT_MODELING", f"Countermeasure: {cm}"))
            time.sleep(0.3)

        logs.append(self.log_event("THREAT_MODELING", "Threat modeling completed successfully", "SUCCESS"))
        return logs

    # Stage 2: Simulated secure boot validation
    def secure_boot_initialization(self):
        print("\n" + "="*60)
        print(" STAGE 2: SECURE BOOT INITIALIZATION")
        print("="*60)

        logs = []
        logs.append(self.log_event("SECURE_BOOT", "Starting secure boot sequence"))

        logs.append(self.log_event("SECURE_BOOT", "Verifying bootloader digital signature..."))
        time.sleep(1)
        bootloader_verified = True

        logs.append(self.log_event("SECURE_BOOT", "✓ Bootloader signature verified", "SUCCESS"))

        logs.append(self.log_event("SECURE_BOOT", "Checking kernel integrity hash..."))
        time.sleep(1)
        logs.append(self.log_event("SECURE_BOOT", "✓ Kernel integrity verified", "SUCCESS"))

        logs.append(self.log_event("SECURE_BOOT", "Initializing secure services..."))
        time.sleep(1)
        logs.append(self.log_event("SECURE_BOOT", "✓ Crypto services initialized", "SUCCESS"))
        logs.append(self.log_event("SECURE_BOOT", "✓ Secure storage mounted", "SUCCESS"))

        self.boot_verified = True
        logs.append(self.log_event("SECURE_BOOT", "Secure boot completed successfully", "SUCCESS"))
        return logs

    # Stage 3: Injecting security keys
    def secure_key_injection(self):
        print("\n" + "="*60)
        print("  STAGE 3: SECURE KEY INJECTION")
        print("="*60)

        logs = []
        logs.append(self.log_event("KEY_INJECTION", "Starting secure key injection process"))

        key_types = {
            "ENCRYPTION_KEY": hashlib.sha256(b"encryption_secret").hexdigest()[:32],
            "AUTHENTICATION_KEY": hashlib.sha256(b"auth_secret").hexdigest()[:32],
            "FIRMWARE_SIGNING_KEY": hashlib.sha256(b"firmware_secret").hexdigest()[:32],
            "COMMUNICATION_KEY": hashlib.sha256(b"comm_secret").hexdigest()[:32]
        }

        for key_name, key_value in key_types.items():
            logs.append(self.log_event("KEY_INJECTION", f"Injecting {key_name}..."))
            time.sleep(0.3)
            self.device_keys[key_name] = key_value
            logs.append(self.log_event("KEY_INJECTION", f"✓ {key_name} injected", "SUCCESS"))

        logs.append(self.log_event("KEY_INJECTION", "✓ Keys securely stored in hardware", "SUCCESS"))
        self.is_commissioned = True
        logs.append(self.log_event("KEY_INJECTION", "Key injection completed", "SUCCESS"))
        return logs

    # Stage 4: Simulated OTA update verification
    def ota_firmware_update_check(self):
        print("\n" + "="*60)
        print(" STAGE 4: OTA FIRMWARE UPDATE CHECK")
        print("="*60)

        logs = []
        logs.append(self.log_event("OTA_UPDATE", "Checking for firmware updates..."))
        time.sleep(1)

        logs.append(self.log_event("OTA_UPDATE", "✓ Firmware signature verified", "SUCCESS"))
        logs.append(self.log_event("OTA_UPDATE", f"✓ Firmware updated to new version", "SUCCESS"))
        return logs

    # Stage 5: Secure wipe and removal
    def secure_decommissioning(self):
        print("\n" + "="*60)
        print(" STAGE 5: SECURE DECOMMISSIONING")
        print("="*60)

        logs = []
        logs.append(self.log_event("DECOMMISSIONING", "Starting secure decommissioning process"))
        logs.append(self.log_event("DECOMMISSIONING", "✓ Sensitive data erased", "SUCCESS"))
        logs.append(self.log_event("DECOMMISSIONING", "✓ Keys permanently deleted", "SUCCESS"))
        logs.append(self.log_event("DECOMMISSIONING", "✓ Factory reset completed", "SUCCESS"))
        logs.append(self.log_event("DECOMMISSIONING", "✓ Device securely decommissioned", "SUCCESS"))

        self.is_decommissioned = True
        return logs

    # Run full lifecycle in order
    def run_full_lifecycle(self):
        print(" STARTING IOT DEVICE SECURITY LIFECYCLE")
        print(f"Device: {self.device_id}")
        print("="*60)

        stages = [
            self.threat_modeling,
            self.secure_boot_initialization,
            self.secure_key_injection,
            self.ota_firmware_update_check,
            self.secure_decommissioning
        ]

        for stage in stages:
            stage()
            time.sleep(1)

# Run demo
if __name__ == "__main__":
    iot_device = IoTDeviceLifecycle("Smart_Sensor_7B3A")
    iot_device.run_full_lifecycle()
