## Diffie - Hellman Key Exchange - explained and simulated ##

It is becoming more and more necessary to have security on the internet considering the great dangers coming with lots of information. Now I am going to take a look at one of the most popular ways to exchange information safely.

## Definition ##

The Diffie-Hellman key exchange is a cryptographic protocol that allows two parties to securely exchange cryptographic keys over a public channel. It’s based on the idea that, even though an eavesdropper can see the exchange of data, they cannot compute the shared secret without **solving a difficult mathematical problem** (discrete logarithm problem).

Diffie-Hellman is widely used in protocols like SSL/TLS and VPNs.

The idea is that some function are very hard to be inverted and the protocol uses exactly this to make the hacker's work mmore challenging or practically imposible.

### How it is done ###

Let us have two friends named Mario and Luiggi. Mario wants to send a picture of his new princess girlfriend but wants nobody apart from Luiggi to know that he is dating her. However there is a hacker who likes stealing other people's girlfriends. Therefore they both decide to put DIffie - Hellman into practice.

1. They choose a **prime number _p_** and **a generator _q_** which are public.
2. Each one generates their private keys let us say **a** and **b** intigers.
3. Now they got to compute their real keys.
* Mario has a key that is $A = g^a \mod{p}$
* Luiggi has a key that is $B = g^b \mod{p}$

4. After exchanging their keys and using the transformation $S_{A} =B^a \mod{p}$ and $S_{B} = A^b \mod{p}$ they both get the same keys.

In [3]:

p = 23  
g = 5  


a = 6   
b = 15 


A = pow(g, a, p) 
B = pow(g, b, p)  


S_A = pow(B, a, p) 
S_B = pow(A, b, p)


print("Alice's public key (A):", A)
print("Bob's public key (B):", B)
print("Alice's computed shared secret (S_A):", S_A)
print("Bob's computed shared secret (S_B):", S_B)


Alice's public key (A): 8
Bob's public key (B): 19
Alice's computed shared secret (S_A): 2
Bob's computed shared secret (S_B): 2


In [4]:
def str_to_bytes(s):
    return [ord(c) for c in s]

def bytes_to_str(b):
    return ''.join(chr(c) for c in b)

def xor_bytes(b1, b2):
    return [x ^ y for x, y in zip(b1, b2)]

# Two messages
m1 = "Attack at dawn!"
m2 = "Send reinforcements"

# Make them the same length
m1 = m1.ljust(len(m2))
m2 = m2.ljust(len(m1))

# Convert to bytes
b1 = str_to_bytes(m1)
b2 = str_to_bytes(m2)

# Generate a "bad" key reused for both
import random
random.seed(42)
key = [random.randint(0, 255) for _ in range(len(b1))]

# Encrypt both messages with the same key
c1 = xor_bytes(b1, key)
c2 = xor_bytes(b2, key)

# Now attacker sees both ciphertexts and XORs them
c1_xor_c2 = xor_bytes(c1, c2)

# This gives us: m1 ⊕ m2
print("Ciphertext XOR gives message1 ⊕ message2:")
print(bytes_to_str(c1_xor_c2))

# Suppose we guess that m1 starts with "Attack"
known = "Attack".ljust(len(c1_xor_c2))
guess = str_to_bytes(known)

# m2 = (m1 ⊕ m2) ⊕ guess
m2_recovered = xor_bytes(c1_xor_c2, guess)

print("\nIf we guess m1 starts with 'Attack', we can recover part of m2:")
print(bytes_to_str(m2_recovered))


Ciphertext XOR gives message1 ⊕ message2:
CFLENTS

If we guess m1 starts with 'Attack', we can recover part of m2:
Send re(:f+34+lents


In [14]:
import numpy as np

def encrypt(message_bits,key_bits):
    return np.bitwise_xor(message_bits,key_bits)

def decrypt(cipher_bits, key_bits):
    return np.bitwise_xor(cipher_bits, key_bits)

msg = np.array([1,0,1,1,1,0,0,1],dtype =np.uint8)
key = np.random.randint(0,2,size = msg.shape,dtype = np.uint8)
cipher = encrypt(msg, key)
recovered = decrypt(cipher, key)

print("Message:", msg)
print("Key:", key)
print("Encrypted:", cipher)
print("Decrypted:", recovered)


Message: [1 0 1 1 1 0 0 1]
Key: [0 1 0 0 1 0 1 1]
Encrypted: [1 1 1 1 0 0 1 0]
Decrypted: [1 0 1 1 1 0 0 1]
