#### <center> Module 4d - Asymmetric Cryptographic Primitives - Digital Signing Algorithm
## <center> SYSE 549: Secure Vehicle and Industrial Networking
## <center> <img src="https://www.engr.colostate.edu/~jdaily/Systems-EN-CSU-1-C357.svg" width="400" /> 
### <center> Instructor: Dr. Jeremy Daily

## Learning Objectives
By the end of this exercise, students should be able to
1. Use sign and verify messages using RSA
1. Use sign and verify messages using ECDSA
2. Use secure hash values to detect changes.

In [1]:
# Install some prequisites
# Be sure version 3.1 or higher is installed
%pip install --upgrade --user cryptography

Note: you may need to restart the kernel to use updated packages.


In [2]:
# Import only the modules we need
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding
import base64
import json

## Generate keys for Alice and Bob

In [3]:
#Alice needs to generate a key pair
private_key_for_alice = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_alice

<cryptography.hazmat.bindings._rust.openssl.rsa.RSAPrivateKey at 0x2187f68e710>

In [4]:
#To send out the public key, we have to derive it from the private key and serialize it
public_key_for_alice = private_key_for_alice.public_key()
public_key_for_alice

<cryptography.hazmat.bindings._rust.openssl.rsa.RSAPublicKey at 0x2187f68e2f0>

In [5]:
#Let's serialize it so we can send it accross the network to bob (and everyone)
public_pem_key_for_alice = public_key_for_alice.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_alice.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH6c40ZKqc1zSekvcyIG
QrHimJPhCGYmKdpM8sD1IIr6I8SjW/o+8pNjlTMTKHISFE/7FCyoUKNvzuY/47xp
as0M4JWDHpZA1Z4rd7yCDpMDEWPVOLIyF/ZOanSp3IVnSp8tb7kpsPwhJGTq/P7d
yB5VnB/tCOtXfde+gb1y2uvJv0alePn1NHJhkhcfQbB+zAHyI0K4NozBQhoMA6SA
Q38OCgBJSi7DfOsCXpz0sKjlS9RXS3jZR/qD/K0l3ITbHa6hjZqqFoSEWb0n17Qg
JTeV6nKO6sDdR5AOFn12tAVYO4zEsEP726e2M0tWtliXRvllUjJPwDNd2SogfAOV
uwIDAQAB
-----END PUBLIC KEY-----



In [6]:
#Bob also needs to generate a key pair
private_key_for_bob = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_bob

<cryptography.hazmat.bindings._rust.openssl.rsa.RSAPrivateKey at 0x2187f68e6f0>

In [7]:
# Bob extracts the public key 
public_key_for_bob = private_key_for_bob.public_key()
public_key_for_bob

<cryptography.hazmat.bindings._rust.openssl.rsa.RSAPublicKey at 0x2187f68cf70>

In [8]:
#Let's serialize it so we can send it across the network to Alice (and everyone)
public_pem_key_for_bob = public_key_for_bob.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_bob.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AOWUczddAgFSpigV6NU
pLGAlZ+klXesX0KOD6q2mTQGjiFlRTriyW5XF6i7BJ2SkTcSOfTrr6TIk/evwhMW
98SBhAM226eFP3ko3EPqM68+K7r9D2S6qXpWGgFgumQzQkjNMqcOYEUUS3XJLfWC
q7fiWLk3AKF70DClUmcfvxmlQghKqP9YTTL8HQGRF9ZN/6U80Z297Emxh3JTBxYc
JiOTbg7BAGVIcbgTLPqxX6qZlU4wqhBcWoaTqPTboSvBCSaPv/QzLDtlqC85AQFV
lknYFpkywBkiHAC8G9wVvc7Agsv8Psnii+yF4L7MlC0f/cyXah8oKrNPwq9XRAUb
FQIDAQAB
-----END PUBLIC KEY-----



### Integrity and Authenticity
Bob would like some assurance that he received the message as Alice intended. Since everyone has Bob's public key, anyone can send Bob encrypted messages. Bob wants to know it was from Alice.

Alice sends Bob (and everyone else) her public key.

Alice computes a secure hash of the message sent to Bob.

Alice signs the hash digest with her private key and sends the signature to Bob.

Bob compute the secure hash of the original message.

Bob verifies the hash matches the signature.

<img src="Asymmetric Encryption Primitives - Verify Message.svg"/> 

Let's work this out with some code.

## Alice Sends a Message to Bob

In [9]:
# Alice has a message for Bob:
plain_text = b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
plain_text

b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

### Detecting alteration

In transit, the plain text message was changed.


In [10]:
#Recall
changed_plain_text = b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
changed_plain_text

b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

In [11]:
# This is the function used to sign the data
def sign(text,private_pem_key,password=None):
    #private_pem_key and text need to be bytes
    private_key = serialization.load_pem_private_key(private_pem_key,password)
    signature = private_key.sign(
            text,
            padding.PSS(
                mgf=padding.MGF1(hashes.SHA256()),
                salt_length=padding.PSS.MAX_LENGTH
            ),
            hashes.SHA256()
        )
    return signature

In [12]:
pem = private_key_for_alice.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )

signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'!\x90\x0e\xc4\x0e.\xac\xea#\xd2\xbf\x90\xaf*W\x8e\xb1\xd1\x8b\xaa\xa1%\xf6\xa6\xc1\x86$|4\xc5_\xe1\xf3\x03@\xc6\xce\x00/\xb0\x81\xe7[\x8dQ\x10\xfdb\xb3\x1d\xc3\xf8\x01\xe3\x90\x0b3%91<E\xf0\x83N\xa4\x8eFh\xc5\xb4R\xea\xe3 j\x929\xaa\xbf"2!\x87\x8e\x18G9\x9e \xd3\x1d\xfc9\xeb\x9d.`\xb4lM\xb8\xa8\x9a\xb6\x80\x9f\x9b\xa9\xfcD\xe8\xd8U\xbd\x83\xf9\x7f\x8f\x8c\x7f\x9b\xd2\xa9f\xac5\xb8\x13\x0e\xd8\x9b\xeb\xb7\x8f\xd9\xbd\xae\'\xfa.I\xad\x16\x16\x7f\xcc\xd1\xd2urirG\xa1\xff\xdd\xf5\xa3\xba2\x11\xb8]H\x1b\xa3\x8c\xe6f\xb0\xab{\x8b\x8c\xc0\xbcUg!@=!\xef\xee>\xe1\xadLxj\x1a\xef(\xc2\x85\x882s,\xe7}\xa3\x11Z\xad>\xe4,Iuq_$\xea\xb1\xfc\xe5\xfc\xe5\x7f\x1b\x87\xac5\xf1\x0b\x06\x9b#\r\x84\x07\xe5_\xe1\xbc\x90\xff\xf9\x80\xf7\x10`\x83\x8e\x03\x1372\xa7\xba\xefkJ$'

In [13]:
# These signatures will change each time from the salt.
signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'\x8e\x9fg9\xbe#\xcd0\x96\x1c\x17\x1c\xecI\xd8\xd0\x9b\x87\xcc\x15o[*w\x00\xfeK\xf7C\xaa\xea\xe0\xaf,#\x85\xf8\xf6\xab\xe4=\x19\xde$\xfc\xb4\xd4\x90\x0b\x93&\xb6T2\x1a1=ki\xcf\x8d\xe9\x06\xc6O\xd2\x1ch\xba\xd1\xb2\xf6\x14? \xd4j\xb4\xe2\xe3\xb8H\xf2\xa3\x9b\xaa\x98\x98\x04\xc4\xc1\xafB`\xf8\x01\x1f\xbd\xc3F\x93\xc4\xd7C\x80Z\x15p%\xb3P\xbe\x14 \x161\x1c\xbaD\xf9R\t``nHG\x1d\xe1\x1e,(\xbf\r|x\r\x92U\xddu\x9e\xe3%\x91\x01\xcf\x85\x84kN\xc5\xa9U:1\xbb\xe4\xca\xed\xbc\x90g^\xb2v-\x1a\x87<<\xc3nj\x9f{\x90S  \x0f\x1b\x8d\xact\xedf`\x07o\x82\x80O:h&\x0fQ7\xab\x1cf\xce\xb3\xb7\x87F+V\xbb\xc1\x17 \xe5\x9d(\x0c\tB\x0e\xf5\x85T\xa0\xa6\x8b\xd6\xd5&P5A\xf8p4\x9a\xe9\xee#\xca\x81\xaa:\xb9\x0f\xady\xc9{\x8e\x10\xb4-\x16o\x88'

In [14]:
# Make this safe for encapsualting in email or json
sig_from_alice_b64 = base64.b64encode(signature_from_alice)
sig_from_alice_b64

b'jp9nOb4jzTCWHBcc7EnY0JuHzBVvWyp3AP5L90Oq6uCvLCOF+Par5D0Z3iT8tNSQC5MmtlQyGjE9a2nPjekGxk/SHGi60bL2FD8g1Gq04uO4SPKjm6qYmATEwa9CYPgBH73DRpPE10OAWhVwJbNQvhQgFjEcukT5UglgYG5IRx3hHiwovw18eA2SVd11nuMlkQHPhYRrTsWpVToxu+TK7byQZ16ydi0ahzw8w25qn3uQUyAgDxuNrHTtZmAHb4KATzpoJg9RN6scZs6zt4dGK1a7wRcg5Z0oDAlCDvWFVKCmi9bVJlA1QfhwNJrp7iPKgao6uQ+tecl7jhC0LRZviA=='

In [15]:
# Do this to make sure all the plain text are in ascii text
plain_text_b64 = base64.b64encode(plain_text)
plain_text_b64

b'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4='

In [16]:
# Let's make a message to send in json format.
message = json.dumps({'text': plain_text_b64.decode('utf-8'), 
                      'signature': sig_from_alice_b64.decode('utf-8'),
                      'pub_key': public_pem_key_for_alice.decode('utf-8')})
message

'{"text": "V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=", "signature": "jp9nOb4jzTCWHBcc7EnY0JuHzBVvWyp3AP5L90Oq6uCvLCOF+Par5D0Z3iT8tNSQC5MmtlQyGjE9a2nPjekGxk/SHGi60bL2FD8g1Gq04uO4SPKjm6qYmATEwa9CYPgBH73DRpPE10OAWhVwJbNQvhQgFjEcukT5UglgYG5IRx3hHiwovw18eA2SVd11nuMlkQHPhYRrTsWpVToxu+TK7byQZ16ydi0ahzw8w25qn3uQUyAgDxuNrHTtZmAHb4KATzpoJg9RN6scZs6zt4dGK1a7wRcg5Z0oDAlCDvWFVKCmi9bVJlA1QfhwNJrp7iPKgao6uQ+tecl7jhC0LRZviA==", "pub_key": "-----BEGIN PUBLIC KEY-----\\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH6c40ZKqc1zSekvcyIG\\nQrHimJPhCGYmKdpM8sD1IIr6I8SjW/o+8pNjlTMTKHISF

In [17]:
print(public_pem_key_for_alice.decode('utf-8'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH6c40ZKqc1zSekvcyIG
QrHimJPhCGYmKdpM8sD1IIr6I8SjW/o+8pNjlTMTKHISFE/7FCyoUKNvzuY/47xp
as0M4JWDHpZA1Z4rd7yCDpMDEWPVOLIyF/ZOanSp3IVnSp8tb7kpsPwhJGTq/P7d
yB5VnB/tCOtXfde+gb1y2uvJv0alePn1NHJhkhcfQbB+zAHyI0K4NozBQhoMA6SA
Q38OCgBJSi7DfOsCXpz0sKjlS9RXS3jZR/qD/K0l3ITbHa6hjZqqFoSEWb0n17Qg
JTeV6nKO6sDdR5AOFn12tAVYO4zEsEP726e2M0tWtliXRvllUjJPwDNd2SogfAOV
uwIDAQAB
-----END PUBLIC KEY-----



## Send message to Bob

In [18]:
message_for_bob = json.loads(message)
message_for_bob

{'text': 'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=',
 'signature': 'jp9nOb4jzTCWHBcc7EnY0JuHzBVvWyp3AP5L90Oq6uCvLCOF+Par5D0Z3iT8tNSQC5MmtlQyGjE9a2nPjekGxk/SHGi60bL2FD8g1Gq04uO4SPKjm6qYmATEwa9CYPgBH73DRpPE10OAWhVwJbNQvhQgFjEcukT5UglgYG5IRx3hHiwovw18eA2SVd11nuMlkQHPhYRrTsWpVToxu+TK7byQZ16ydi0ahzw8w25qn3uQUyAgDxuNrHTtZmAHb4KATzpoJg9RN6scZs6zt4dGK1a7wRcg5Z0oDAlCDvWFVKCmi9bVJlA1QfhwNJrp7iPKgao6uQ+tecl7jhC0LRZviA==',
 'pub_key': '-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH6c40ZKqc1zSekvcyIG\nQrHimJPhCGYmKdpM8sD1IIr6I8SjW/o+8pNjlTMTKHISFE

In [19]:
# Load the verification key
pub_bytes = message_for_bob['pub_key'].encode('ascii')
print(pub_bytes)

b'-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH6c40ZKqc1zSekvcyIG\nQrHimJPhCGYmKdpM8sD1IIr6I8SjW/o+8pNjlTMTKHISFE/7FCyoUKNvzuY/47xp\nas0M4JWDHpZA1Z4rd7yCDpMDEWPVOLIyF/ZOanSp3IVnSp8tb7kpsPwhJGTq/P7d\nyB5VnB/tCOtXfde+gb1y2uvJv0alePn1NHJhkhcfQbB+zAHyI0K4NozBQhoMA6SA\nQ38OCgBJSi7DfOsCXpz0sKjlS9RXS3jZR/qD/K0l3ITbHa6hjZqqFoSEWb0n17Qg\nJTeV6nKO6sDdR5AOFn12tAVYO4zEsEP726e2M0tWtliXRvllUjJPwDNd2SogfAOV\nuwIDAQAB\n-----END PUBLIC KEY-----\n'


In [21]:
# Verification routine
# if nothing happens, the signature was verified. Usually we put this in a try-except block
from cryptography.exceptions import InvalidSignature
def validate(text,signature,pub_bytes):
    verification_key = serialization.load_pem_public_key(pub_bytes)
    try:
        verification_key.verify(
             signature,
             text,
             padding.PSS(
                 mgf=padding.MGF1(hashes.SHA256()),
                 salt_length=padding.PSS.MAX_LENGTH
             ),
             hashes.SHA256()
        )
        return("Message Verfied.")
    except InvalidSignature:
        return("Bad Signature")

In [22]:
#Verify the message against the signature
sig_bytes = base64.b64decode(message_for_bob['signature'])
print("sig_bytes")
print(sig_bytes)
plain_text_bytes = base64.b64decode(message_for_bob['text'])
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)

sig_bytes
b'\x8e\x9fg9\xbe#\xcd0\x96\x1c\x17\x1c\xecI\xd8\xd0\x9b\x87\xcc\x15o[*w\x00\xfeK\xf7C\xaa\xea\xe0\xaf,#\x85\xf8\xf6\xab\xe4=\x19\xde$\xfc\xb4\xd4\x90\x0b\x93&\xb6T2\x1a1=ki\xcf\x8d\xe9\x06\xc6O\xd2\x1ch\xba\xd1\xb2\xf6\x14? \xd4j\xb4\xe2\xe3\xb8H\xf2\xa3\x9b\xaa\x98\x98\x04\xc4\xc1\xafB`\xf8\x01\x1f\xbd\xc3F\x93\xc4\xd7C\x80Z\x15p%\xb3P\xbe\x14 \x161\x1c\xbaD\xf9R\t``nHG\x1d\xe1\x1e,(\xbf\r|x\r\x92U\xddu\x9e\xe3%\x91\x01\xcf\x85\x84kN\xc5\xa9U:1\xbb\xe4\xca\xed\xbc\x90g^\xb2v-\x1a\x87<<\xc3nj\x9f{\x90S  \x0f\x1b\x8d\xact\xedf`\x07o\x82\x80O:h&\x0fQ7\xab\x1cf\xce\xb3\xb7\x87F+V\xbb\xc1\x17 \xe5\x9d(\x0c\tB\x0e\xf5\x85T\xa0\xa6\x8b\xd6\xd5&P5A\xf8p4\x9a\xe9\xee#\xca\x81\xaa:\xb9\x0f\xady\xc9{\x8e\x10\xb4-\x16o\x88'

plain_text_bytes
b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that 

'Message Verfied.'

In [23]:
plain_text_bytes = changed_plain_text
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)


plain_text_bytes
b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'


'Bad Signature'

## Class Exercise
Determine which message has been altered:

Churchill's Message:

    You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.

Signature of Churchill's Message  (Base64 encoded)
    
`EwW+JghPEI7X+/3izXdobEA3rjYNxWGPkg4Xwkh1+XukURadECpxzuOLHsNtkvcThaGL3gvIRbK/SLBB7lNdG+eDpjjzzT+lc37GD0CPef1uoncxoRsCVKuGzqeFj6sQ5VBj2OqmyhH2cbZ28S/y8pG4+xrN6KxDOzTv7yRtnU41JvaxhLX9F7zQfYRQocDqVj5x5zcQdgoC2ayxdEwzBWw+RO/XfQKYos0a4eKaXp0Tsa5bWnQeaUeUikEdLobfoXadiycD5HqkGD+vpoXcHXiSZuqdSA2bUMoIFBB1XwwiitWvKDPtjOJo9/143e8JzX51Qmo+XDb2xwc2ZtTWWQ==`

Churchill's Verification key:
```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----
```

Roosevelt's Message:

    Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.
    
Signature of Roosevelt's Message (Base64 encoded)
                                       `MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==`

Roosevelt's Verification Key:

```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----
````


In [24]:
# Hints: You can enter the text in as bytes. 
FDR = b'Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.'
FDR

b'Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.'

In [25]:
fdr_sig = base64.b64decode(b'MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==')

In [26]:
fdr_pub = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----'''

In [27]:
#Enter your code here to verify Roosevelt's message

In [28]:
# Hints: You can enter the text in as bytes. 
Churchill = b'You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.'
Churchill

b'You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.'

In [29]:
churchill_sig = base64.b64decode(b'XCumWxz3AAMxdsMFaiDD8faqFRUDIDHWUANj3mDwJHU6twkfb5eiWT14jgeb515mJedWzjYM3JUEpwCxgmpL9wycm8lGzemCDgVJJxXCijn4BAWmyZ6rRIvOtnCyJamiZWT3mG2EAmxpydaEl2dSeqJVp3sYIZ1Q8Mw+FoVIB/OSbIiBn/J2klpDO5JPfxxFAbio7Rm31w1ZW0/YR2HWwBBdUA+gIPEFWGza+rcdTu++hkzpzIRZtqrJuFMvFYMkv5k88cJuxLeFbJAnD48XxS1L0njqM6SJRRFm8/3B5lTGiGQsE2XsftdcHvTPBmE0nzwO2A9IZXRkq+XHv0y2gg==')

In [30]:
churchhill_pub_ = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----'''

In [31]:
## Enter your code here to verify Churchill's message

## Using Elliptic Curves

In [32]:
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import ed25519

In [33]:
# Generate a private key
private_key = ed25519.Ed25519PrivateKey.generate()
private_key

<cryptography.hazmat.bindings._rust.openssl.ed25519.Ed25519PrivateKey at 0x2187f68ead0>

In [34]:
private_bytes = private_key.private_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PrivateFormat.Raw,
     encryption_algorithm=serialization.NoEncryption()
)
private_bytes

b'A\x12wS\xcf_\xaa\x1b\xaf\x01S\xac\xe95\xb8*.\xe5y\xbe\xbfQ\xfe>9\x9eC4{\x1b\x00X'

In [35]:
#ECC keys are small.
len(private_bytes)

32

In [36]:
#Compare to an RSA key
private_pem_for_bob = private_key_for_bob.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )
print(private_pem_for_bob.decode('ascii'))

-----BEGIN RSA PRIVATE KEY-----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In [37]:
#RSA keys are much larger
len(private_pem_for_bob)

1675

In [38]:
# Extract the public portion of the key
public_key = private_key.public_key()
public_key

<cryptography.hazmat.bindings._rust.openssl.ed25519.Ed25519PublicKey at 0x2187f68ea30>

In [39]:
public_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PublicFormat.Raw,
)
public_bytes

b'K*\xc5\xc3\xc3\xd5r\x9e\x1e\xc6e\xb4\xfa\xba\xa4\xf4\xc89\x9c\xa3\x81\xfc\x1d\xed\xa7\xb0\x80\x1c+\x9d\xbc\x0b'

In [40]:
len(public_bytes)

32

In [41]:
# Ascii safe PEM Keys
public_pem_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.PEM,
     format=serialization.PublicFormat.SubjectPublicKeyInfo,
)
public_pem_bytes

b'-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEASyrFw8PVcp4exmW0+rqk9Mg5nKOB/B3tp7CAHCudvAs=\n-----END PUBLIC KEY-----\n'

In [42]:
#Dissect PEM format
print(public_pem_bytes.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MCowBQYDK2VwAyEASyrFw8PVcp4exmW0+rqk9Mg5nKOB/B3tp7CAHCudvAs=
-----END PUBLIC KEY-----



In [43]:
# The PEM encapsulates the key in the main lines
lines = public_pem_bytes.decode('ascii').split('\n')
lines[1]

'MCowBQYDK2VwAyEASyrFw8PVcp4exmW0+rqk9Mg5nKOB/B3tp7CAHCudvAs='

In [44]:
#The bytes are base64 encoded
base64.b64decode(lines[1])

b'0*0\x05\x06\x03+ep\x03!\x00K*\xc5\xc3\xc3\xd5r\x9e\x1e\xc6e\xb4\xfa\xba\xa4\xf4\xc89\x9c\xa3\x81\xfc\x1d\xed\xa7\xb0\x80\x1c+\x9d\xbc\x0b'

In [45]:
# The last part of the data is where the key is.
base64.b64decode(lines[1])[-32:]

b'K*\xc5\xc3\xc3\xd5r\x9e\x1e\xc6e\xb4\xfa\xba\xa4\xf4\xc89\x9c\xa3\x81\xfc\x1d\xed\xa7\xb0\x80\x1c+\x9d\xbc\x0b'

In [46]:
public_bytes == base64.b64decode(lines[1])[-32:]

True

## Digital Signing
https://cryptography.io/en/latest/hazmat/primitives/asymmetric/ed25519/

In [47]:
ecc_signature = private_key.sign(plain_text)
ecc_signature

b"\x1co\xfc\x96\xac\xcb\xaf\xe5\x1b\xba\xf89\xe1@\x12S\xab\x05\xdf;\x12\xd6\\\xfe\x91\\\x90Lt\xf4e*Tjg;Z\xe0\xa4[\xf3\xed\xa5H\x8aZc\xb9gy\xdd\xa4\xfa;\xa0\xadC*'\xe1\xdf\x8a0\n"

In [48]:
len(ecc_signature)

64

In [49]:
# If nothing happens, it's verified
public_key.verify(ecc_signature,plain_text)

In [50]:
# Change the message to fail
public_key.verify(ecc_signature,plain_text+b'\x00')

InvalidSignature: 

In [51]:
# Change the signature to fail
public_key.verify(ecc_signature+b'\x00',plain_text)

InvalidSignature: 

## Summary
We used asymmetric encryption to digitally sign messages to determine if they have been altered.

ECC uses much shorter keys, which is important for embedded vehicle and industrial systems.

You can use ECC to digitally sign data.

A question still remains: How can we trust Alice is who she says? What if Eve is in the middle pretending to be Alice? 

A middle person attack can easily resign the message. Never trust a public key comes from a principal without verification.