#           NETWORKS SECURITY AND CRYPTOGRAHY FUNDAMENTALS 

#                                      Topic: Schnorr Digital Signature

In [1]:
# Algortihm

# Generating private key & public key pair:

# 1.	Choose primes p and q, such that q is a prime factor of p-1.
# 2.	Choose an integer a, such that a^q  = 1 mod p. The values a, p, and q comprise a global public key that can be common to a group of users.
# 3.	Choose a random integer s with 0 < s < q. This is the user’s private key.
# 4.	Calculate v = a^-s mod p. This is the user’s public key.
 

# Creating Digital Signature:

# 1.	Choose a random integer r with 0 < r < q and compute x = a r mod p. This computation is a pre-processing stage independent of the message M to be signed.
# 2.	Concatenate the message with and hash the result to compute the value:
# i.	e = H (M || x)

# 3.	Compute y = (r + se) mod q. The signature consists of the pair (e, y).

# Signature Verification

# 1.	Compute k = a^ y v^e  mod p
# = a ^y  a^( -se)  mod p        (∵ v = a -s mod p)
# = a ^(y-se) mod p
# = a^ r mod p       (∵ y = r + se)
# = x

           # So, here k = x.

# 2.	Verify that e = H (M || x).
# i.	Hence, H (M || k) = H (M || x).


# Let’s consider a scenario of two friends Karthik and Mansoor. Karthik wants to send his Aadhar information to Mansoor for his land document registration purpose. Karthik sends this document through Schnorr protocol. Now Mansoor checks this document and verifies whether the recieved document is original or manipulated.

In [2]:
#Importing necessary libraries

In [3]:
import random
import ipywidgets as widgets
from hashlib import sha1
import math

In [4]:
# Defining Hash function
# UTF-8 is the most widely used way to represent Unicode text in web pages
# hexdigest returns the encoded data in hexadecimal format
# SHA-1 is a cryptographic hash function which takes an input and produces a 160-bit hash value known as a message digest 

In [5]:
def hash_function(message):
    hashed=sha1(message.encode("UTF-8")).hexdigest()
    return hashed

In [6]:
# Defining the variables -
# p = prime number;
# q = prime factor of q-1;
# a = alpha value which is computed by the formula -> "[a^q = 1 mod p]";
# s = karthik's secret / private key computed by choosing a random integer with the condition -> "[0<s<q]";
# v = karthik's public key computed by the formula -> "[v = a^(-s) mod p]";

In [7]:
# The public key “v” will be global and public knowledge along with p, q and a. 
# However only Ramesh will have the knowledge of the private key "s".

In [8]:
# Choosing primes p and q, such that q is a prime factor of p-1.
def create_public_and_private_keys():
    
    p = int(input("Enter a prime number 'p':"))
    
    if p > 1:
        for i in range(2, int(p/2)+1):
            
            if (p % i) == 0:
                print(p, "is not a prime number")
                u=0
                break
        else:
            print(p, "is a prime number")
            u=1
    else:
        print(p, "is not a prime number")
        u=0
        
    if(u==1):
        n = p-1 
        print("The prime factors of 'p-1' are:")
        while (n % 2 == 0):
            print(2),
            n = n / 2
        
        #Here n is divided to half to reduce the process
        # n must be odd at this point    
        #so a skip of 2 ( i = i + 2) can be used
        for i in range(3,int(math.sqrt(n))+1,2):
         
            # while i divides n , print i and divide n
            while n % i== 0:
                print(i),
                n = n / i
        if n > 2:
            print(int(n))
        
        q = int(input("Choose the prime number 'q' which is a prime factor of 'p-1' from the above list:"))
        
        # Choosing alpha 'a' such that [α^q = 1 mod p]; 
        k=1%p
        a=k**(1/q)
        
        # Calculating kathik's secret key by choosing a random integer
        s=random.randint(0,q)
        
        # Calcuating karthik's public key
        v=((a)**-s)%p
        # Printing karthik's prime number p, q and public key
        print('\nAt Karthik side i.e., Sender -\n')
        print('Prime number "p" selected by the sender is: ', p)
        print('Prime number "q" selected by the sender is: ', q)
        print('Alpha value chosen by sender: ', int(a))
        print('Public key generated: ', int(v))
        print('Secret key generated: ',s)
        return p,q,a,s,v
    else:
        print("Please check the prime number")

In [9]:
# Defining the variables -
# r = random integer chosen with the condition "[0<r<q]";
# x = value derived by computing the formula "[x = a^r mod p]";
# m = input file document;
# h = concatenated message with 'x'
# e = hash value calculated for the message 'm' that is concatenated with 'x';
# h = Computed value y = (r + s*e) mod q

In [10]:
# Now Karthik signs and wants to sends an encrypted message "m". he will follow the following steps to use Schnorr's signature:-

# He will first choose a random number “r” such that 0<r<q.
# He will now compute a value X such that: X= a^r mod p.
# Now that he has computed the value of X, he is going concatenate this with the original message(same as string concatenation).
# So, he is going to concatenate 'm' and 'x' to get m||x. and he is going to store the hash of this value in e.
# e = H(m||x) where H() is the hash function 
# He is going to get a value “y” such that:
# y = (r + s*e) mod q 

In [11]:
def keygen_and_creating_signature():
    
    # Deriving values from the function "create_public_and_private_keys()"
    p,q,a,s,v = create_public_and_private_keys()
    
    # Generating random integer 'r'
    r=random.randint(0,q)
        
    # Calculating the value for 'x'
    x=(a**r)%p
    print('The computed value of "x" which is used for concatenation is:', int(x))
    
    # Giving an input message to be sent
    m=msginput()
    with open(m) as file:
        text=file.read()
        hash_component = hash_function(text)

    # Concatenating the message 'm' with 'x'
    h=hash_component+str(int(x))
    print('The concatenated msg at sender Ramesh side is:', h)
    
    # Generating the hash value for the concatenated message 'h'
    z = hash_function(h)
    e = int(z,16)
    
    # Calculating the value 'y'
    y=(r+(s*e))%q
    
    # Key pair generated is-
    print('\nThe signature consists of the pair (hash value,y) -> (e,y): ', (e,y))

In [12]:
def msginput():
    file_name=input("Enter the name of document to sign: ")
    return file_name

In [13]:
# Now that all the computations are over, he is going to send the following to Mansoor.

# The message “m”.
# The signatures e and y.

# Along with this, Mansoor has the following public piece of information:--

# Karthik's public key “v”.
# The prime number that Karthik chose “p”.
# “q” which is the factor of “p-1” which Karthik chose.
# “a” such that a^q = 1 mod p, chosen by Karthik.

# Now, Mansoor will have to compute 'k' such that:
# k = a^y * v^e mod p 

In [14]:
def verify():
    
    # Here we will be verifying the signature with the given values sent by the karthik 
    # values α, p, and q comprise a global public key 'v' that can be common to a group of users.
    
    
    print('\nVerification at Mansoor side i.e., Reciever side -\n')
    print("Enter two prime numbers chosen by the karthik:")
    p=int(input("First prime number: "))
    q=int(input("Second prime number: "))
    v=int(input("Enter the public key of the karthik: "))
    a=int(input("Enter the value of alpha such that a^q = 1 mod p, chosen by karthik: "))
    m=input("Enter the name of the file that is sent by the karthik: ")
    with open(m) as file:
        text=file.read()
        hash_component1 = hash_function(text)
    e=int(input("Enter the hash value sent by the karthik: "))
    y=int(input("Enter the value of y sent by the karthik: "))
    
    # Computing the value 'k' with the help of the given values 
    k=((a**y)*(v**e))%p
    print('\nThe new computed value of "k" generated by mansoor is: ', int(k))
    
    # Concatenating the message with the new calculated value 'k'
    l=hash_component1+str(int(k))
    print('The new concatenated message is: ', l)
    
    # Generating the hash value for the concatenated message at the reciever side-
    y = hash_function(l)
    g = int(y,16)
    print('The hash value generated for the concatenated message at Mansoor side: ',g)
    
    print('\nChecking whether the derived hash value is eqivalent to the hash value given by karthik:')
    if (e == g):
        print("\nThe Hash values are matched perfectly, The message sent by the karthik is True")
    else:
        print("\nThe message sent by the karthik is False, Please recheck the message file or hash value or y value and try again")   

In [15]:
def main():
    while(1):
        choice = int(input("\nEnter your choice of selection here:"))
    
        if (choice==1): keygen_and_creating_signature()
        elif (choice==2): verify()
        elif (choice==3): 
            print("Exit")
            break
        else: raise Exception("Enter correct input")

In [17]:
text_0 = widgets.HTML(value="<h1>Schnorr Digital Signature</h1>")
vbox_text = widgets.VBox([text_0])

page = widgets.VBox([text_0])
display(page)
text_1 = widgets.HTML(value="<h2> Choose your option:</h2>")
text_2 = widgets.HTML(value="<h2> 1. Generating keypair and creating signature</h3>")
text_3 = widgets.HTML(value="<h2> 2. Signature verification</h3>")
text_4 = widgets.HTML(value="<h2> 3. Exit</h3>")
page =widgets.VBox([text_1,text_2,text_3,text_4])


display(page)
main()

VBox(children=(HTML(value='<h1>Schnorr Digital Signature</h1>'),))

VBox(children=(HTML(value='<h2> Choose your option:</h2>'), HTML(value='<h2> 1. Generating keypair and creatin…


Enter your choice of selection here:1
Enter a prime number 'p':59
59 is a prime number
The prime factors of 'p-1' are:
2
29
Choose the prime number 'q' which is a prime factor of 'p-1' from the above list:29

At Karthik side i.e., Sender -

Prime number "p" selected by the sender is:  59
Prime number "q" selected by the sender is:  29
Alpha value chosen by sender:  1
Public key generated:  1
Secret key generated:  1
The computed value of "x" which is used for concatenation is: 1
Enter the name of document to sign: Aadhar.txt
The concatenated msg at sender Ramesh side is: 27ff491a2ede8f321885628fb6cbeae696495c2d1

The signature consists of the pair (hash value,y) -> (e,y):  (1342301905424409579212231967720745639497737631088, 18)

Enter your choice of selection here:2

Verification at Mansoor side i.e., Reciever side -

Enter two prime numbers chosen by the karthik:
First prime number: 59
Second prime number: 29
Enter the public key of the karthik: 1
Enter the value of alpha such that a