#### <center> Module 4d - Asymmetric Cryptographic Primitives - Digital Signing Algorithm
## <center> SYSE 541: Secure Vehicle and Industrial Networking
## <center> <img src="https://www.engr.colostate.edu/~jdaily/Systems-EN-CSU-1-C357.svg" width="400" /> 
### <center> Instructor: Dr. Jeremy Daily

## Learning Objectives
By the end of this exercise, students should be able to
1. Use sign and verify messages using RSA
1. Use sign and verify messages using ECDSA
2. Use secure hash values to detect changes.

In [1]:
# Install some prequisites
# Be sure version 3.1 or higher is installed
%pip install --upgrade --user cryptography

Note: you may need to restart the kernel to use updated packages.


In [2]:
# Import only the modules we need
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding
import base64
import json

## Generate keys for Alice and Bob

In [3]:
#Alice needs to generate a key pair
private_key_for_alice = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_alice

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey at 0x2b29e144048>

In [4]:
#To send out the public key, we have to derive it from the private key and serialize it
public_key_for_alice = private_key_for_alice.public_key()
public_key_for_alice

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey at 0x2b29f8916c8>

In [5]:
#Let's serialize it so we can send it accross the network to bob (and everyone)
public_pem_key_for_alice = public_key_for_alice.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_alice.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmFOEy3ZIbMbJbT6wXN6
hU2Sckv7SuLKDNCKFc5Heux2Ong6cxl4SNyIERr3Mk3W5BDZk/Z1DMoyvE4dWLpT
AHDAVuf4PNQSWY2Nfje8yLWqlOQrRx5QxM05fLAgbPtKXb/nv0cZz+vGdf4ZjBgH
0E4q/HsOBi5VVG2uCBoLqEnosGz8EfqU0joaZno8qLMsf0ONVnbqTZdkrH+pkr28
Kl8rarb6zmgaPbQ3vZRmljnX/FOrFDeBmOwOT8Rmm2QVazDDqJbN2I+PS7XJlA5t
Wlal8d8YuzPhcx3HSrIvHm9BxP1FRMIHMbUDWniOR2eo9aR845NiW5Fvpv1325gE
CwIDAQAB
-----END PUBLIC KEY-----



In [6]:
#Bob also needs to generate a key pair
private_key_for_bob = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_bob

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey at 0x2b29f898608>

In [7]:
# Bob extracts the public key 
public_key_for_bob = private_key_for_bob.public_key()
public_key_for_bob

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey at 0x2b29f898e48>

In [8]:
#Let's serialize it so we can send it across the network to Alice (and everyone)
public_pem_key_for_bob = public_key_for_bob.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_bob.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgaFoAiJj1Tf5DuQcSeT
9qt94xIjWHp01O2WNFgQYMlqfy2Xh9js1TChhzO4Ci5MNrmjaqDcDawvnJpJNeU7
JHNscuq3vSnQgNLzzXZI+3saQ6y8WozNeV1OAS9Rs8AkmM2SCEdY96u1Xdetry8t
Gztj+af3wRNDHz31PQBqzVf12j0w9rNRddNqaKRjc17pBcYQgxnOsbS+yysXq5TN
avQSUy9fkCybq8D6ojr413ZzuBhggMTgRuyHp4TZBEqe5Do26iZaaRrZSiJmQvG9
BC9v0N2JM10P3L1VS8phSpwF5Cdoc/H3zc/JEaLlCV2bGYZPzPb6S85ZMKYti/66
WwIDAQAB
-----END PUBLIC KEY-----



### Integrity and Authenticity
Bob would like some assurance that he received the message as Alice intended. Since everyone has Bob's public key, anyone can send Bob encrypted messages. Bob wants to know it was from Alice.

Alice sends Bob (and everyone else) her public key.

Alice computes a secure hash of the message sent to Bob.

Alice signs the hash digest with her private key and sends the signature to Bob.

Bob compute the secure hash of the original message.

Bob verifies the hash matches the signature.

<img src="Asymmetric Encryption Primitives - Verify Message.svg"/> 

Let's work this out with some code.

## Alice Sends a Message to Bob

In [9]:
# Alice has a message for Bob:
plain_text = b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
plain_text

b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

### Detecting alteration

In transit, the plain text message was changed.


In [10]:
#Recall
changed_plain_text = b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
changed_plain_text

b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

In [11]:
# This is the function used to sign the data
def sign(text,private_pem_key,password=None):
    #private_pem_key and text need to be bytes
    private_key = serialization.load_pem_private_key(private_pem_key,password)
    signature = private_key.sign(
            text,
            padding.PSS(
                mgf=padding.MGF1(hashes.SHA256()),
                salt_length=padding.PSS.MAX_LENGTH
            ),
            hashes.SHA256()
        )
    return signature

In [12]:
pem = private_key_for_alice.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )

signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'\xbfo\xe9\xad\xb4\x06\x9bg\xcc\xca)\x8c\xbf].5\x8b\xe9\xc9{Bg=\xb5\xd2<f^\xff\x8a\xd3\xf1\x04\x9dH\xf5\x81\xe5\xcf\x8e\xbfB\x14\xfaY\x13\xe6\x84@O\x07\xf3\xd7A\xf9\xccf\xac\x89\xf7\xd8\x85=\xd3\xc0\xdd\xe6\x90`\x1d\xa1\xd4\x05\x0b/\xfc;\x8f\xe6\xf6\x9a\x80\xaa9>\xd3\xe2=\x91\xed\xa5\xd5\xaa`\xbe\x9b\xcc\xdc\xab\x82\xa0P\xf4\xe3\xbdK\x11Qo\xd2\x96\xfb\x1cx\x85\x19\x80\x8e\x01|,Y\x9a\xcd\x10Lq\xf6R\xb4\xfaH\xde\xf4\x7f\xba\xc2\xb5\x8d\xb4IN\xca5\xe4\xcfn\xaa\xe7\x15\xc5?\xb5X\xaaNAmO\x8e\xbd\xcc\xdd\x14\x80O\xd3[\xce1Y\xd1\xa81\x9b\xb5b\xd7\x16*1l(\x89\x16\xef\xac\xc2\xae\xda\xc7\xf7\x80!=\x19\x9e\tA\xf6\xf7\xd0t\xe8\xf2\xf4`\xe4e\xa5@\xb1\xd2\x1e\x9ek\n\x14\xcd\x0b\xf5\xf1|7\xfb\x95\xe7\xd7O\xe2!\xcd\x7f\xabh\xedFE2\x88\xda\xd4\xccp\xea\xe9\xfa\x88\xb1\xf5t\x10\xa6\x988\xdb'

In [13]:
# These signatures will change each time from the salt.
signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'$\xfcE\x93_\xfcx\xae\xbds\x8bd\xb1\x14\xf682\xa8\xbcd\x10\xaa\x14\xf5\xf0\xf8\x8b\x90\xbc\xb9\xdd}u\xed-\xca\xddi\xde4\xd3\x9f\x19\xed^\xa8\xc8\xda\xf9\xd2\xde\xc7\x8e\xf3z\xc7\x02\xf5\xcdt\xdf>\xd9\xd9.\x8c+\x18\xbes\x96\x109/\x9c\xf0 \xae|\x1a&\xb1\x19\xf1U\xfd\xe1f\xb9K\xb4\xc7\xb3\xcd36B\x0f\xb5x\x11\xd9{\xcb\x92\xd0\xc9v\xceT\xf2Z\xcf?\xa2\x15\xb5\x9f\xd0\xf5\r\x89\xdfdvU[*\x1e=\x01\x10\xda\xadz\x92siO\xc7dS\x92+h\xaa\xd9!o\x19\x1d\x81\x8cg\xe1\x9e\xf4\xf7 \x9b\x85\xc8F\xa9\xfcv\xb3w4\xd7\xad\xe4O\xc7\xdc\x1ce\xc4&\x1c).{\x87!]\xeb\xe4\xce\x9f\xbaQ\xcd\xfa\x87\x87\x8e\x05?a\x85N\x1eC,\xc8\x1bS\xd5\x1e\xcd&\x83 !|*\xfc\xf7\xa7\xe7\xd5DT\xf8bNcW\x8d\xbe-7\x9c\xee\xa0\x92\xfd\xa9\xd6MN\xf7\xebr\xe6\x89D\xd7\xe4a\xfd.\t&\x89'

In [14]:
# Make this safe for encapsualting in email or json
sig_from_alice_b64 = base64.b64encode(signature_from_alice)
sig_from_alice_b64

b'JPxFk1/8eK69c4tksRT2ODKovGQQqhT18PiLkLy53X117S3K3WneNNOfGe1eqMja+dLex47zescC9c103z7Z2S6MKxi+c5YQOS+c8CCufBomsRnxVf3hZrlLtMezzTM2Qg+1eBHZe8uS0Ml2zlTyWs8/ohW1n9D1DYnfZHZVWyoePQEQ2q16knNpT8dkU5IraKrZIW8ZHYGMZ+Ge9Pcgm4XIRqn8drN3NNet5E/H3BxlxCYcKS57hyFd6+TOn7pRzfqHh44FP2GFTh5DLMgbU9UezSaDICF8Kvz3p+fVRFT4Yk5jV42+LTec7qCS/anWTU7363LmiUTX5GH9LgkmiQ=='

In [15]:
# Do this to make sure all the plain text are in ascii text
plain_text_b64 = base64.b64encode(plain_text)
plain_text_b64

b'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4='

In [16]:
# Let's make a message to send in json format.
message = json.dumps({'text': plain_text_b64.decode('utf-8'), 
                      'signature': sig_from_alice_b64.decode('utf-8'),
                      'pub_key': public_pem_key_for_alice.decode('utf-8')})
message

'{"text": "V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=", "signature": "JPxFk1/8eK69c4tksRT2ODKovGQQqhT18PiLkLy53X117S3K3WneNNOfGe1eqMja+dLex47zescC9c103z7Z2S6MKxi+c5YQOS+c8CCufBomsRnxVf3hZrlLtMezzTM2Qg+1eBHZe8uS0Ml2zlTyWs8/ohW1n9D1DYnfZHZVWyoePQEQ2q16knNpT8dkU5IraKrZIW8ZHYGMZ+Ge9Pcgm4XIRqn8drN3NNet5E/H3BxlxCYcKS57hyFd6+TOn7pRzfqHh44FP2GFTh5DLMgbU9UezSaDICF8Kvz3p+fVRFT4Yk5jV42+LTec7qCS/anWTU7363LmiUTX5GH9LgkmiQ==", "pub_key": "-----BEGIN PUBLIC KEY-----\\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmFOEy3ZIbMbJbT6wXN6\\nhU2Sckv7SuLKDNCKFc5Heux2Ong6cxl4SNyIERr3Mk3W5

In [17]:
print(public_pem_key_for_alice.decode('utf-8'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmFOEy3ZIbMbJbT6wXN6
hU2Sckv7SuLKDNCKFc5Heux2Ong6cxl4SNyIERr3Mk3W5BDZk/Z1DMoyvE4dWLpT
AHDAVuf4PNQSWY2Nfje8yLWqlOQrRx5QxM05fLAgbPtKXb/nv0cZz+vGdf4ZjBgH
0E4q/HsOBi5VVG2uCBoLqEnosGz8EfqU0joaZno8qLMsf0ONVnbqTZdkrH+pkr28
Kl8rarb6zmgaPbQ3vZRmljnX/FOrFDeBmOwOT8Rmm2QVazDDqJbN2I+PS7XJlA5t
Wlal8d8YuzPhcx3HSrIvHm9BxP1FRMIHMbUDWniOR2eo9aR845NiW5Fvpv1325gE
CwIDAQAB
-----END PUBLIC KEY-----



## Send message to Bob

In [18]:
message_for_bob = json.loads(message)
message_for_bob

{'text': 'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=',
 'signature': 'JPxFk1/8eK69c4tksRT2ODKovGQQqhT18PiLkLy53X117S3K3WneNNOfGe1eqMja+dLex47zescC9c103z7Z2S6MKxi+c5YQOS+c8CCufBomsRnxVf3hZrlLtMezzTM2Qg+1eBHZe8uS0Ml2zlTyWs8/ohW1n9D1DYnfZHZVWyoePQEQ2q16knNpT8dkU5IraKrZIW8ZHYGMZ+Ge9Pcgm4XIRqn8drN3NNet5E/H3BxlxCYcKS57hyFd6+TOn7pRzfqHh44FP2GFTh5DLMgbU9UezSaDICF8Kvz3p+fVRFT4Yk5jV42+LTec7qCS/anWTU7363LmiUTX5GH9LgkmiQ==',
 'pub_key': '-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmFOEy3ZIbMbJbT6wXN6\nhU2Sckv7SuLKDNCKFc5Heux2Ong6cxl4SNyIERr3Mk3W5B

In [19]:
# Load the verification key
pub_bytes = message_for_bob['pub_key'].encode('ascii')
print(pub_bytes)

b'-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmFOEy3ZIbMbJbT6wXN6\nhU2Sckv7SuLKDNCKFc5Heux2Ong6cxl4SNyIERr3Mk3W5BDZk/Z1DMoyvE4dWLpT\nAHDAVuf4PNQSWY2Nfje8yLWqlOQrRx5QxM05fLAgbPtKXb/nv0cZz+vGdf4ZjBgH\n0E4q/HsOBi5VVG2uCBoLqEnosGz8EfqU0joaZno8qLMsf0ONVnbqTZdkrH+pkr28\nKl8rarb6zmgaPbQ3vZRmljnX/FOrFDeBmOwOT8Rmm2QVazDDqJbN2I+PS7XJlA5t\nWlal8d8YuzPhcx3HSrIvHm9BxP1FRMIHMbUDWniOR2eo9aR845NiW5Fvpv1325gE\nCwIDAQAB\n-----END PUBLIC KEY-----\n'


In [20]:
# Verificaiton routine
# if nothing happens, the signature was verified. Usually we put this in a try except block
from cryptography.exceptions import InvalidSignature
def validate(text,signature,pub_bytes):
    verification_key = serialization.load_pem_public_key(pub_bytes)
    try:
        verification_key.verify(
             signature,
             text,
             padding.PSS(
                 mgf=padding.MGF1(hashes.SHA256()),
                 salt_length=padding.PSS.MAX_LENGTH
             ),
             hashes.SHA256()
        )
        return("Message Verfied.")
    except InvalidSignature:
        return("Bad Signature")

In [21]:
#Verify the message against the signature
sig_bytes = base64.b64decode(message_for_bob['signature'])
print("sig_bytes")
print(sig_bytes)
plain_text_bytes = base64.b64decode(message_for_bob['text'])
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)

sig_bytes
b'$\xfcE\x93_\xfcx\xae\xbds\x8bd\xb1\x14\xf682\xa8\xbcd\x10\xaa\x14\xf5\xf0\xf8\x8b\x90\xbc\xb9\xdd}u\xed-\xca\xddi\xde4\xd3\x9f\x19\xed^\xa8\xc8\xda\xf9\xd2\xde\xc7\x8e\xf3z\xc7\x02\xf5\xcdt\xdf>\xd9\xd9.\x8c+\x18\xbes\x96\x109/\x9c\xf0 \xae|\x1a&\xb1\x19\xf1U\xfd\xe1f\xb9K\xb4\xc7\xb3\xcd36B\x0f\xb5x\x11\xd9{\xcb\x92\xd0\xc9v\xceT\xf2Z\xcf?\xa2\x15\xb5\x9f\xd0\xf5\r\x89\xdfdvU[*\x1e=\x01\x10\xda\xadz\x92siO\xc7dS\x92+h\xaa\xd9!o\x19\x1d\x81\x8cg\xe1\x9e\xf4\xf7 \x9b\x85\xc8F\xa9\xfcv\xb3w4\xd7\xad\xe4O\xc7\xdc\x1ce\xc4&\x1c).{\x87!]\xeb\xe4\xce\x9f\xbaQ\xcd\xfa\x87\x87\x8e\x05?a\x85N\x1eC,\xc8\x1bS\xd5\x1e\xcd&\x83 !|*\xfc\xf7\xa7\xe7\xd5DT\xf8bNcW\x8d\xbe-7\x9c\xee\xa0\x92\xfd\xa9\xd6MN\xf7\xebr\xe6\x89D\xd7\xe4a\xfd.\t&\x89'

plain_text_bytes
b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challe

'Message Verfied.'

In [22]:
plain_text_bytes = changed_plain_text
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)


plain_text_bytes
b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'


'Bad Signature'

## Class Exercise
Determine which message has been altered:

Churchill's Message:

    You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.

Signature of Churchill's Message  (Base64 encoded)
    
`EwW+JghPEI7X+/3izXdobEA3rjYNxWGPkg4Xwkh1+XukURadECpxzuOLHsNtkvcThaGL3gvIRbK/SLBB7lNdG+eDpjjzzT+lc37GD0CPef1uoncxoRsCVKuGzqeFj6sQ5VBj2OqmyhH2cbZ28S/y8pG4+xrN6KxDOzTv7yRtnU41JvaxhLX9F7zQfYRQocDqVj5x5zcQdgoC2ayxdEwzBWw+RO/XfQKYos0a4eKaXp0Tsa5bWnQeaUeUikEdLobfoXadiycD5HqkGD+vpoXcHXiSZuqdSA2bUMoIFBB1XwwiitWvKDPtjOJo9/143e8JzX51Qmo+XDb2xwc2ZtTWWQ==`

Churchill's Verification key:
```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----
```

Roosevelt's Message:

    Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.
    
Signature of Roosevelt's Message (Base64 encoded)
                                       `MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==`

Roosevelt's Verification Key:

```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----
````


In [23]:
# Hints: You can enter the text in as bytes. 
FDR = b'Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.'
FDR

b'Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.'

In [24]:
fdr_sig = base64.b64decode(b'MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==')

In [25]:
fdr_pub = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----'''

In [26]:
#Enter your code here to verify Roosevelt's message

In [27]:
# Hints: You can enter the text in as bytes. 
Churchill = b'You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.'
Churchill

b'You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.'

In [28]:
churchill_sig = base64.b64decode(b'XCumWxz3AAMxdsMFaiDD8faqFRUDIDHWUANj3mDwJHU6twkfb5eiWT14jgeb515mJedWzjYM3JUEpwCxgmpL9wycm8lGzemCDgVJJxXCijn4BAWmyZ6rRIvOtnCyJamiZWT3mG2EAmxpydaEl2dSeqJVp3sYIZ1Q8Mw+FoVIB/OSbIiBn/J2klpDO5JPfxxFAbio7Rm31w1ZW0/YR2HWwBBdUA+gIPEFWGza+rcdTu++hkzpzIRZtqrJuFMvFYMkv5k88cJuxLeFbJAnD48XxS1L0njqM6SJRRFm8/3B5lTGiGQsE2XsftdcHvTPBmE0nzwO2A9IZXRkq+XHv0y2gg==')

In [29]:
churchhill_pub_ = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----'''

In [30]:
## Enter your code here to verify Churchill's message

## Using Elliptic Curves

In [31]:
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import ed25519

In [32]:
# Generate a private key
private_key = ed25519.Ed25519PrivateKey.generate()
private_key

<cryptography.hazmat.backends.openssl.ed25519._Ed25519PrivateKey at 0x2b29f8a7fc8>

In [33]:
private_bytes = private_key.private_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PrivateFormat.Raw,
     encryption_algorithm=serialization.NoEncryption()
)
private_bytes

b"3\x01P\x01'\x9f\xa8\xa4\x8f\x96\xd4\xee\x12\x96E\x93'-\x1c\xa5>U<\xc7%\x0f*\x11\x1f\x82m\xaa"

In [34]:
#ECC keys are small.
len(private_bytes)

32

In [35]:
#Compare to an RSA key
private_pem_for_bob = private_key_for_bob.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )
print(private_pem_for_bob.decode('ascii'))

-----BEGIN RSA PRIVATE KEY-----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In [36]:
#RSA keys are much larger
len(private_pem_for_bob)

1679

In [37]:
# Extract the public portion of the key
public_key = private_key.public_key()
public_key

<cryptography.hazmat.backends.openssl.ed25519._Ed25519PublicKey at 0x2b29f8d1248>

In [38]:
public_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PublicFormat.Raw,
)
public_bytes

b'\xc1\xa1\xd5\xf7+\xff\x89\xd1!^\xdf\x9c\x1a\xe8\xcf\x8c%\xd7\xa0\n\xa9\x9c\x8c\x1a\x9b\xdf\xbc\x10\xb8!\x8a\x9a'

In [39]:
len(public_bytes)

32

In [40]:
# Ascii safe PEM Keys
public_pem_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.PEM,
     format=serialization.PublicFormat.SubjectPublicKeyInfo,
)
public_pem_bytes

b'-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEAwaHV9yv/idEhXt+cGujPjCXXoAqpnIwam9+8ELghipo=\n-----END PUBLIC KEY-----\n'

In [41]:
#Dissect PEM format
print(public_pem_bytes.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MCowBQYDK2VwAyEAwaHV9yv/idEhXt+cGujPjCXXoAqpnIwam9+8ELghipo=
-----END PUBLIC KEY-----



In [49]:
# The PEM encapsulates the key in the main lines
lines = public_pem_bytes.decode('ascii').split('\n')
lines[1]

'MCowBQYDK2VwAyEAwaHV9yv/idEhXt+cGujPjCXXoAqpnIwam9+8ELghipo='

In [58]:
#The bytes are base64 encoded
base64.b64decode(lines[1])

b'0*0\x05\x06\x03+ep\x03!\x00\xc1\xa1\xd5\xf7+\xff\x89\xd1!^\xdf\x9c\x1a\xe8\xcf\x8c%\xd7\xa0\n\xa9\x9c\x8c\x1a\x9b\xdf\xbc\x10\xb8!\x8a\x9a'

In [59]:
# The last part of the data is where the key is.
base64.b64decode(lines[1])[-32:]

b'\xc1\xa1\xd5\xf7+\xff\x89\xd1!^\xdf\x9c\x1a\xe8\xcf\x8c%\xd7\xa0\n\xa9\x9c\x8c\x1a\x9b\xdf\xbc\x10\xb8!\x8a\x9a'

In [57]:
public_bytes == base64.b64decode(lines[1])[-32:]

True

## Digital Signing
https://cryptography.io/en/latest/hazmat/primitives/asymmetric/ed25519/

In [43]:
ecc_signature = private_key.sign(plain_text)
ecc_signature

b'\xc12\x0f\xa6\xb2\xb6\xc4\xed\x06\x1e\xcb\xf4h\x95\x14\xfb\xf8YIK\x8bA\x86\xab\xe4G\x87\xa16\xd4\xa9V\x12A?\xacT\xec\xc8\x06\xcfJ\x99C\xc3\x9a>\xcc\x1f]x\x92\xf6\x83aO\xe1I\x0f\xc8\xec\xe8\xf1\x04'

In [44]:
len(ecc_signature)

64

In [45]:
# If nothing happens, it's verified
public_key.verify(ecc_signature,plain_text)

In [46]:
# Change the message to fail
public_key.verify(ecc_signature,plain_text+b'\x00')

InvalidSignature: 

In [60]:
# Change the signature to fail
public_key.verify(ecc_signature+b'\x00',plain_text)

InvalidSignature: 

## Summary
We used asymmetric encryption to digitally sign messages to determine if they have been altered.

ECC uses much shorter keys, which is important for embedded vehicle and industrial systems.

You can use ECC to digitally sign data.

A question still remains: How can we trust Alice is who she says? What if Eve is in the middle pretending to be Alice? 

A middle person attack can easily resign the message. Never trust a public key comes from a principal without verification.