#### <center> Module 4d - Asymmetric Cryptographic Primitives - Digital Signing Algorithm
## <center> SYSE 541: Secure Vehicle and Industrial Networking
## <center> <img src="https://www.engr.colostate.edu/~jdaily/Systems-EN-CSU-1-C357.svg" width="400" /> 
### <center> Instructor: Dr. Jeremy Daily

## Learning Objectives
By the end of this exercise, students should be able to
1. Use sign and verify messages using RSA
1. Use sign and verify messages using ECDSA
2. Use secure hash values to detect changes.

In [None]:
# Install some prequisites
# Be sure version 3.1 or higher is installed
%pip install --upgrade --user cryptography

In [1]:
# Import only the modules we need
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding
import base64
import json

## Generate keys for Alice and Bob

In [2]:
#Alice needs to generate a key pair
private_key_for_alice = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_alice

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey at 0x2b1e3b9da08>

In [3]:
#To send out the public key, we have to derive it from the private key and serialize it
public_key_for_alice = private_key_for_alice.public_key()
public_key_for_alice

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey at 0x2b1e52b3608>

In [4]:
#Let's serialize it so we can send it accross the network to bob (and everyone)
public_pem_key_for_alice = public_key_for_alice.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_alice.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2xeP7dc8pSWgJZV7B7
GHOldZHY7eY5xUF7S63yWWw+gFWnYuNg5AlOBhE4DmbOxhrrLlM1HlpV+JoBAWyv
GleLMcdJifsmyGkP007zDGBnq8s+w90hriL8M1aHcTdYJaGRZlzhQds2CmQ1gO6B
7z1MT0KLOxn6b0VceH+HtBal50bx3sabTGYr+kvNuJn76yLxpNqLCArrb3mwyJBw
TEcQEh+kMWyiMYCurWbbmp6XqrUs3avEfKYCdKee9yaNXPRBBZwUSo40RWsmKe7K
Jx4+UBrtcHeOxtdOzFJGvpVT5CrxL7kh/74fti/oeFLGz4hnjaPV/VoMXEQwSmf0
JQIDAQAB
-----END PUBLIC KEY-----



In [5]:
#Bob also needs to generate a key pair
private_key_for_bob = rsa.generate_private_key(
                         public_exponent=65537,
                         key_size=2048 # should use at least 4096, but smaller keys are easier to display
                        )
private_key_for_bob

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey at 0x2b1e52b3e08>

In [6]:
# Bob extracts the public key 
public_key_for_bob = private_key_for_bob.public_key()
public_key_for_bob

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey at 0x2b1e52bb808>

In [7]:
#Let's serialize it so we can send it across the network to Alice (and everyone)
public_pem_key_for_bob = public_key_for_bob.public_bytes(
       encoding=serialization.Encoding.PEM,
       format=serialization.PublicFormat.SubjectPublicKeyInfo
)
print(public_pem_key_for_bob.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9QzptBvgJ4Ho4NznbrT
+c9kCtHJZWjvaXQJkd5qnJ+TBSdbnqhwmrVD2cOnAKXZHFlDVony2ZBMtkIAAQcS
HYWuv/wY3BAegzNdMdFJ+i7piGODTeZeEAdl32mY5r0KficS157jcTedX5ufaxvU
PgmvQTeN4WkP3Tsox2gdAU1BDqT5jsV3YgmqcfeDJhoOGGwfGROWY4C476zFfFBr
ZcRyT/eprZuYH0MNMDvx+hpLEZVKxdPaSQGPS2hebjYfN7cKYo02038ZO03LYJ+A
eheuiwVE83tO2Nl7z1V4rmKGoEal5CTcqw4TWq+opIyF2Xz2fvZsN02thL6dwF7F
UwIDAQAB
-----END PUBLIC KEY-----



### Integrity and Authenticity
Bob would like some assurance that he received the message as Alice intended. Since everyone has Bob's public key, anyone can send Bob encrypted messages. Bob wants to know it was from Alice.

Alice sends Bob (and everyone else) her public key.

Alice computes a secure hash of the message sent to Bob.

Alice signs the hash digest with her private key and sends the signature to Bob.

Bob compute the secure hash of the original message.

Bob verifies the hash matches the signature.

<img src="Asymmetric Encryption Primitives - Verify Message.svg"/> 

Let's work this out with some code.

## Alice Sends a Message to Bob

In [8]:
# Alice has a message for Bob:
plain_text = b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
plain_text

b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

### Detecting alteration

In transit, the plain text message was changed.


In [9]:
#Recall
changed_plain_text = b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'
changed_plain_text

b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'

In [10]:
# This is the function used to sign the data
def sign(text,private_pem_key,password=None):
    #private_pem_key and text need to be bytes
    private_key = serialization.load_pem_private_key(private_pem_key,password)
    signature = private_key.sign(
            text,
            padding.PSS(
                mgf=padding.MGF1(hashes.SHA256()),
                salt_length=padding.PSS.MAX_LENGTH
            ),
            hashes.SHA256()
        )
    return signature

In [11]:
pem = private_key_for_alice.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )

signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'\xa3\x1c\xda\xc9\xaet\xb7d\xfb\\+\xdc\x18\xdb\xd7\xfb\xdb\x19\x9d\x88\\\x05(U\xbe\xb4"\xf8[\xc3\x0cv\xc7\t\x92v\xdc\tr\x12\xce\xee\x9d\x94\r\xe7\xae\xdb`!\x00%BK2\xfd\xaer\xfc\xd37w\xdd\xcbB\xad\xda\x85Md\xee\x86\xcc~"c\xf8a\xfa\x87\xfdx\x10\x0c\xecI\x18\xc55\x17\x97\xf76P\xcb\xdb\xd5R\xd8\x98\xb0\x03\xddj\xd2(\xbd\xfe\x1c\x9c\xe8\xda\xb6\x99N\x96\xfc\x8e\x84\x80g2\x19\xa1\n\xb2m\x84\xe9\xda\xcd-\x13\x15-|\xa0*<\xa3\x9dN\xc6L\xad\x01mU\xe4\xf4\x93Bq\xabJ,\x00\x9f\xd1\xa8kI\xd5\x82\x07\xc3N\xe8\xacM<\x1f\xce\xe7\x01vY\x18\xe7J\xef\xed%\xc9\x88\x89\xc1Z\xfd\xfb\xb0e\xbd\xbe\xde._\xef\x07^\n\xa0aX\xde\xd9\x03F\x17>\x0f\x19\x93r\x0e@N\xcabn\x01\x17\xb0\'\x94\xd5\x05\xddm\xc7O\xdd\x89?n\xc4\xe8\xa1\xf0c\x88\xf07\xa2\'\x06\x16pcC\x7f\xd3\xb1h\x8b\xaa'

In [13]:
# These signatures will change each time from the salt.
signature_from_alice = sign(plain_text,pem)
signature_from_alice

b'\x9f\x83\xa3\xc01\xda\x13\xcd#u\xf6\xfa\xef\xc0u-\x041\xd3x\xd2i\x87#\x12|\xe5\x952\x02\xdf$\xc5w\x87\x18-\x1f\xf4w\xed\xff)\x11O?KU2,4Wp\xf7\xf5\x14Bi_\x07\xd2\x18\x93x\xedf\xcde\xaf\x059\x9eL\xe8W\xdfD\x9a2\x07/\x13c\xe6w\x9b8\x85K\xdf\rj1\xc9v\xa3\xe3\x90$N1\xf65\x8b\xc1\xf7\x87\xfdig\x0b\xd4Z\xcb\xc0\x8dGQ\xf0\xbf\nM\xad*\xd9\xc8K"\xff\xf0\xa3V$\xb9`=d\xab\xd4\xcc\xf1\x8c"\xa4\x9bxP`TTQ\xf8\xd4[d\xcbA|\xd1\xf4\xd9,\x82\x8a\xda\xcf\xaag\xde\x82\x91\xd6\xe5\x87k\xfeS\xef/\x00\x83\x80\xa7\xd2\xf9\xcb\x19\xbe\x8e\x87<!/"b\xa0\x07jW\xdd\x1b\xbc@Y\xfd\x89\xd1\xff\n\xf9\xe6\xbc\xd2\xe7\xa2|5\xbe\x97\x1e\xd5\x8d\xffa\xc1\xd1\x8b\xb3\xa3\xaa\xcbA!{\x8f\xf0\xe4o\xfe\xb2\xb6\xee_H\xad>3\x99Cv\x8c\xa5$L\x08q'

In [14]:
# Make this safe for encapsualting in email or json
sig_from_alice_b64 = base64.b64encode(signature_from_alice)
sig_from_alice_b64

b'n4OjwDHaE80jdfb678B1LQQx03jSaYcjEnzllTIC3yTFd4cYLR/0d+3/KRFPP0tVMiw0V3D39RRCaV8H0hiTeO1mzWWvBTmeTOhX30SaMgcvE2Pmd5s4hUvfDWoxyXaj45AkTjH2NYvB94f9aWcL1FrLwI1HUfC/Ck2tKtnISyL/8KNWJLlgPWSr1MzxjCKkm3hQYFRUUfjUW2TLQXzR9Nksgoraz6pn3oKR1uWHa/5T7y8Ag4Cn0vnLGb6OhzwhLyJioAdqV90bvEBZ/YnR/wr55rzS56J8Nb6XHtWN/2HB0Yuzo6rLQSF7j/Dkb/6ytu5fSK0+M5lDdoylJEwIcQ=='

In [15]:
# Do this to make sure all the plain text are in ascii text
plain_text_b64 = base64.b64encode(plain_text)
plain_text_b64

b'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4='

In [16]:
# Let's make a message to send in json format.
message = json.dumps({'text': plain_text_b64.decode('utf-8'), 
                      'signature': sig_from_alice_b64.decode('utf-8'),
                      'pub_key': public_pem_key_for_alice.decode('utf-8')})
message

'{"text": "V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=", "signature": "n4OjwDHaE80jdfb678B1LQQx03jSaYcjEnzllTIC3yTFd4cYLR/0d+3/KRFPP0tVMiw0V3D39RRCaV8H0hiTeO1mzWWvBTmeTOhX30SaMgcvE2Pmd5s4hUvfDWoxyXaj45AkTjH2NYvB94f9aWcL1FrLwI1HUfC/Ck2tKtnISyL/8KNWJLlgPWSr1MzxjCKkm3hQYFRUUfjUW2TLQXzR9Nksgoraz6pn3oKR1uWHa/5T7y8Ag4Cn0vnLGb6OhzwhLyJioAdqV90bvEBZ/YnR/wr55rzS56J8Nb6XHtWN/2HB0Yuzo6rLQSF7j/Dkb/6ytu5fSK0+M5lDdoylJEwIcQ==", "pub_key": "-----BEGIN PUBLIC KEY-----\\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2xeP7dc8pSWgJZV7B7\\nGHOldZHY7eY5xUF7S63yWWw+gFWnYuNg5AlOBhE4DmbOx

In [17]:
print(public_pem_key_for_alice.decode('utf-8'))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2xeP7dc8pSWgJZV7B7
GHOldZHY7eY5xUF7S63yWWw+gFWnYuNg5AlOBhE4DmbOxhrrLlM1HlpV+JoBAWyv
GleLMcdJifsmyGkP007zDGBnq8s+w90hriL8M1aHcTdYJaGRZlzhQds2CmQ1gO6B
7z1MT0KLOxn6b0VceH+HtBal50bx3sabTGYr+kvNuJn76yLxpNqLCArrb3mwyJBw
TEcQEh+kMWyiMYCurWbbmp6XqrUs3avEfKYCdKee9yaNXPRBBZwUSo40RWsmKe7K
Jx4+UBrtcHeOxtdOzFJGvpVT5CrxL7kh/74fti/oeFLGz4hnjaPV/VoMXEQwSmf0
JQIDAQAB
-----END PUBLIC KEY-----



## Send message to Bob

In [18]:
message_for_bob = json.loads(message)
message_for_bob

{'text': 'V2UgY2hvb3NlIHRvIGdvIHRvIHRoZSBNb29uIGluIHRoaXMgZGVjYWRlIGFuZCBkbyB0aGUgb3RoZXIgdGhpbmdzLCBub3QgYmVjYXVzZSB0aGV5IGFyZSBlYXN5LCBidXQgYmVjYXVzZSB0aGV5IGFyZSBoYXJkOyBiZWNhdXNlIHRoYXQgZ29hbCB3aWxsIHNlcnZlIHRvIG9yZ2FuaXplIGFuZCBtZWFzdXJlIHRoZSBiZXN0IG9mIG91ciBlbmVyZ2llcyBhbmQgc2tpbGxzLCBiZWNhdXNlIHRoYXQgY2hhbGxlbmdlIGlzIG9uZSB0aGF0IHdlIGFyZSB3aWxsaW5nIHRvIGFjY2VwdCwgb25lIHdlIGFyZSB1bndpbGxpbmcgdG8gcG9zdHBvbmUsIGFuZCBvbmUgd2UgaW50ZW5kIHRvIHdpbiwgYW5kIHRoZSBvdGhlcnMsIHRvby4=',
 'signature': 'n4OjwDHaE80jdfb678B1LQQx03jSaYcjEnzllTIC3yTFd4cYLR/0d+3/KRFPP0tVMiw0V3D39RRCaV8H0hiTeO1mzWWvBTmeTOhX30SaMgcvE2Pmd5s4hUvfDWoxyXaj45AkTjH2NYvB94f9aWcL1FrLwI1HUfC/Ck2tKtnISyL/8KNWJLlgPWSr1MzxjCKkm3hQYFRUUfjUW2TLQXzR9Nksgoraz6pn3oKR1uWHa/5T7y8Ag4Cn0vnLGb6OhzwhLyJioAdqV90bvEBZ/YnR/wr55rzS56J8Nb6XHtWN/2HB0Yuzo6rLQSF7j/Dkb/6ytu5fSK0+M5lDdoylJEwIcQ==',
 'pub_key': '-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2xeP7dc8pSWgJZV7B7\nGHOldZHY7eY5xUF7S63yWWw+gFWnYuNg5AlOBhE4DmbOxh

In [19]:
# Load the verification key
pub_bytes = message_for_bob['pub_key'].encode('ascii')
print(pub_bytes)

b'-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV2xeP7dc8pSWgJZV7B7\nGHOldZHY7eY5xUF7S63yWWw+gFWnYuNg5AlOBhE4DmbOxhrrLlM1HlpV+JoBAWyv\nGleLMcdJifsmyGkP007zDGBnq8s+w90hriL8M1aHcTdYJaGRZlzhQds2CmQ1gO6B\n7z1MT0KLOxn6b0VceH+HtBal50bx3sabTGYr+kvNuJn76yLxpNqLCArrb3mwyJBw\nTEcQEh+kMWyiMYCurWbbmp6XqrUs3avEfKYCdKee9yaNXPRBBZwUSo40RWsmKe7K\nJx4+UBrtcHeOxtdOzFJGvpVT5CrxL7kh/74fti/oeFLGz4hnjaPV/VoMXEQwSmf0\nJQIDAQAB\n-----END PUBLIC KEY-----\n'


In [20]:
# Verificaiton routine
# if nothing happens, the signature was verified. Usually we put this in a try except block
from cryptography.exceptions import InvalidSignature
def validate(text,signature,pub_bytes):
    verification_key = serialization.load_pem_public_key(pub_bytes)
    try:
        verification_key.verify(
             signature,
             text,
             padding.PSS(
                 mgf=padding.MGF1(hashes.SHA256()),
                 salt_length=padding.PSS.MAX_LENGTH
             ),
             hashes.SHA256()
        )
        return("Message Verfied.")
    except InvalidSignature:
        return("Bad Signature")

In [21]:
#Verify the message against the signature
sig_bytes = base64.b64decode(message_for_bob['signature'])
print("sig_bytes")
print(sig_bytes)
plain_text_bytes = base64.b64decode(message_for_bob['text'])
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)

sig_bytes
b'\x9f\x83\xa3\xc01\xda\x13\xcd#u\xf6\xfa\xef\xc0u-\x041\xd3x\xd2i\x87#\x12|\xe5\x952\x02\xdf$\xc5w\x87\x18-\x1f\xf4w\xed\xff)\x11O?KU2,4Wp\xf7\xf5\x14Bi_\x07\xd2\x18\x93x\xedf\xcde\xaf\x059\x9eL\xe8W\xdfD\x9a2\x07/\x13c\xe6w\x9b8\x85K\xdf\rj1\xc9v\xa3\xe3\x90$N1\xf65\x8b\xc1\xf7\x87\xfdig\x0b\xd4Z\xcb\xc0\x8dGQ\xf0\xbf\nM\xad*\xd9\xc8K"\xff\xf0\xa3V$\xb9`=d\xab\xd4\xcc\xf1\x8c"\xa4\x9bxP`TTQ\xf8\xd4[d\xcbA|\xd1\xf4\xd9,\x82\x8a\xda\xcf\xaag\xde\x82\x91\xd6\xe5\x87k\xfeS\xef/\x00\x83\x80\xa7\xd2\xf9\xcb\x19\xbe\x8e\x87<!/"b\xa0\x07jW\xdd\x1b\xbc@Y\xfd\x89\xd1\xff\n\xf9\xe6\xbc\xd2\xe7\xa2|5\xbe\x97\x1e\xd5\x8d\xffa\xc1\xd1\x8b\xb3\xa3\xaa\xcbA!{\x8f\xf0\xe4o\xfe\xb2\xb6\xee_H\xad>3\x99Cv\x8c\xa5$L\x08q'

plain_text_bytes
b'We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are wil

'Message Verfied.'

In [22]:
plain_text_bytes = changed_plain_text
print("\nplain_text_bytes")
print(plain_text_bytes)
validate(plain_text_bytes,sig_bytes,pub_bytes)


plain_text_bytes
b'We choose to go to MARS in this decade and do the other things, not because they are easy, but because they are hard; because that goal will serve to organize and measure the best of our energies and skills, because that challenge is one that we are willing to accept, one we are unwilling to postpone, and one we intend to win, and the others, too.'


'Bad Signature'

## Class Exercise
Determine which message has been altered:

Churchill's Message:

    You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.

Signature of Churchill's Message  (Base64 encoded)
    
`EwW+JghPEI7X+/3izXdobEA3rjYNxWGPkg4Xwkh1+XukURadECpxzuOLHsNtkvcThaGL3gvIRbK/SLBB7lNdG+eDpjjzzT+lc37GD0CPef1uoncxoRsCVKuGzqeFj6sQ5VBj2OqmyhH2cbZ28S/y8pG4+xrN6KxDOzTv7yRtnU41JvaxhLX9F7zQfYRQocDqVj5x5zcQdgoC2ayxdEwzBWw+RO/XfQKYos0a4eKaXp0Tsa5bWnQeaUeUikEdLobfoXadiycD5HqkGD+vpoXcHXiSZuqdSA2bUMoIFBB1XwwiitWvKDPtjOJo9/143e8JzX51Qmo+XDb2xwc2ZtTWWQ==`

Churchill's Verification key:
```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----
```

Roosevelt's Message:

    Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.
    
Signature of Roosevelt's Message (Base64 encoded)
                                       `MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==`

Roosevelt's Verification Key:

```
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----
````


In [None]:
# Hints: You can enter the text in as bytes. 
FDR = b'Yesterday, December 7th, 1941 -- a date which will live in infamy -- the United States of America was suddenly and deliberately attacked by naval and air forces of the Empire of Japan.'
FDR

In [None]:
fdr_sig = base64.b64decode(b'MDRzeA4o3/S0B0BMgSYPBt4wxjkMDWrnAKm5X580XhVJ6OdmFlCsoBSYhev05KLyVsJ8C3pzfPB+PEdeZ9rkJJxAhnwxFUTpV+tNjJuNBuLuojdrWppC50xrPDStxZd6h5D7gzo32GgRAAX2Tww4BU1TtwQzkubGKgXIr2ualU8PbBMbGYw9Cx827WhIqJD0WCDV7MuanhauGVXcfXMf1CCebVqGoYXhjmp4Z7nSnoCGr7YyfvIZN9thSdz3ORiSivXn83avSiPZsyuJoZtIDsHQYg0D+uPv1NmG/XpoFJR0T3BXfJfZEdiTCyK+46mZz0hZWzxAnSfcV1gPKsqfhg==')

In [None]:
fdr_pub = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bHZs7RxSNTk+Z1MMkHE
v7F7WK5oxLmJ9HypDyagbF4csmwCqsnhMwqJ9vEi3zmlE3VtjfrjpNSJSSvr1RDV
mxh7yz7z+sKvH+JBccMxmFS7/IrKZpNLJPnSY4JlrrCVKYhGwcx0z+kr0Xd4fi97
NVH7xSZaVTXJ+SC19j4EN/gb8nWcYk6umBJmVF688RdOeHQ6ZE3hLbUhKW48oDu1
u8YyRWIHNYyxZXz7G7ojuosd69e7bkO2GR0gAmQpZhXurxD5EGJLYWKvNFYcWPux
YJvgjlmBJCcGz4lKSJcdNzZfSg2YLqopKLcKmNSR9NmywpXIMu0S3wUAWJ7SgGMm
XQIDAQAB
-----END PUBLIC KEY-----'''

In [None]:
#Enter your code here to verify Roosevelt's message

In [None]:
# Hints: You can enter the text in as bytes. 
Churchill = b'You ask, what is our aim? I can answer in one word. It is Victory. Victory at all costs - Victory in spite of all terrors - Victory, however long and hard the road may be, for without Victory there is no survival.'
Churchill

In [None]:
churchill_sig = base64.b64decode(b'XCumWxz3AAMxdsMFaiDD8faqFRUDIDHWUANj3mDwJHU6twkfb5eiWT14jgeb515mJedWzjYM3JUEpwCxgmpL9wycm8lGzemCDgVJJxXCijn4BAWmyZ6rRIvOtnCyJamiZWT3mG2EAmxpydaEl2dSeqJVp3sYIZ1Q8Mw+FoVIB/OSbIiBn/J2klpDO5JPfxxFAbio7Rm31w1ZW0/YR2HWwBBdUA+gIPEFWGza+rcdTu++hkzpzIRZtqrJuFMvFYMkv5k88cJuxLeFbJAnD48XxS1L0njqM6SJRRFm8/3B5lTGiGQsE2XsftdcHvTPBmE0nzwO2A9IZXRkq+XHv0y2gg==')

In [None]:
churchhill_pub_ = b'''-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoxIAKE5I9a/aR6I/UJe
pO2nsgsC9CB7cakanpv3g/JQwbF7brg8FRx02URVnpuZEwh7eAgwsug32mpghZCz
Ix2uKBxPjhlyjpD6XDEqq1b3sKBKJv+OhqJS8RPNGtV8OFmbp0Ay2lZRN223YgLd
/9gMO8P5h4MXCvT8qt5qfAGnltV4otCl9N3Tj42+xW9Ycxlzj0GPCfM+sLBktiYL
rbmm7X+YRY2FYv3AZb1PSc1aB6e4P2tKtGM5gA4CuKpSKctPVS7yvlFbB0IhfSLi
2eLOKYoihRaE50b+SRP4fXPwwahIDumczWF7momIMoK2MXlE1bPZR14vmLFtb9g0
QQIDAQAB
-----END PUBLIC KEY-----'''

In [None]:
## Enter your code here to verify Churchill's message

## Using Elliptic Curves

In [23]:
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import ed25519

In [24]:
# Generate a private key
private_key = ed25519.Ed25519PrivateKey.generate()
private_key

<cryptography.hazmat.backends.openssl.ed25519._Ed25519PrivateKey at 0x2b1e4ff8108>

In [25]:
private_bytes = private_key.private_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PrivateFormat.Raw,
     encryption_algorithm=serialization.NoEncryption()
)
private_bytes

b'\xcc\x03\xe4\x00Z\x8b\xef9d\x1f[\xbe\x90\x0e\xd7 \x03\xd8\x8eo\xe4~.\n\xa7Z\xa54\x02o\xf6\xb9'

In [26]:
#ECC keys are small.
len(private_bytes)

32

In [27]:
#Compare to an RSA key
private_pem_for_bob = private_key_for_bob.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
 )
print(private_pem_for_bob.decode('ascii'))

-----BEGIN RSA PRIVATE KEY-----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In [28]:
#RSA keys are much larger
len(private_pem_for_bob)

1675

In [29]:
# Extract the public portion of the key
public_key = private_key.public_key()
public_key

<cryptography.hazmat.backends.openssl.ed25519._Ed25519PublicKey at 0x2b1e52dbc08>

In [30]:
public_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.Raw,
     format=serialization.PublicFormat.Raw,
)
public_bytes

b'u\x04\x12|H\x1fl\xafl\xf1\x9a12c\xf2\x08\x93\x95T\xe2w\xb8Q\x89\x8c\x92\xd8T\xc7pnB'

In [31]:
len(public_bytes)

32

In [32]:
# Ascii safe PEM Keys
public_pem_bytes = public_key.public_bytes(
     encoding=serialization.Encoding.PEM,
     format=serialization.PublicFormat.SubjectPublicKeyInfo,
)
public_pem_bytes

b'-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEAdQQSfEgfbK9s8ZoxMmPyCJOVVOJ3uFGJjJLYVMdwbkI=\n-----END PUBLIC KEY-----\n'

In [33]:
#Dissect PEM format
print(public_pem_bytes.decode('ascii'))

-----BEGIN PUBLIC KEY-----
MCowBQYDK2VwAyEAdQQSfEgfbK9s8ZoxMmPyCJOVVOJ3uFGJjJLYVMdwbkI=
-----END PUBLIC KEY-----



In [34]:
# The PEM encapsulates the key in the main lines
lines = public_pem_bytes.decode('ascii').split('\n')
lines[1]

'MCowBQYDK2VwAyEAdQQSfEgfbK9s8ZoxMmPyCJOVVOJ3uFGJjJLYVMdwbkI='

In [35]:
#The bytes are base64 encoded
base64.b64decode(lines[1])

b'0*0\x05\x06\x03+ep\x03!\x00u\x04\x12|H\x1fl\xafl\xf1\x9a12c\xf2\x08\x93\x95T\xe2w\xb8Q\x89\x8c\x92\xd8T\xc7pnB'

In [36]:
# The last part of the data is where the key is.
base64.b64decode(lines[1])[-32:]

b'u\x04\x12|H\x1fl\xafl\xf1\x9a12c\xf2\x08\x93\x95T\xe2w\xb8Q\x89\x8c\x92\xd8T\xc7pnB'

In [37]:
public_bytes == base64.b64decode(lines[1])[-32:]

True

## Digital Signing
https://cryptography.io/en/latest/hazmat/primitives/asymmetric/ed25519/

In [38]:
ecc_signature = private_key.sign(plain_text)
ecc_signature

b'\xd9\x95\x05\xa3NHq\xb1\x8d\x03\x90\xa0X\x9a&\xba\xab\xfc\xac\xbd\xe5 a*P\xc0f\xf8+\xf8\xc2\x11d\xb2\xaf\x1c\x9a\xbcWX\x19N\xf6[\xb8\r\xadH\x1cd\xb6\xbdd7t1d1.\xc9\t\x02\x0c\x0e'

In [39]:
len(ecc_signature)

64

In [40]:
# If nothing happens, it's verified
public_key.verify(ecc_signature,plain_text)

In [41]:
# Change the message to fail
public_key.verify(ecc_signature,plain_text+b'\x00')

InvalidSignature: 

In [42]:
# Change the signature to fail
public_key.verify(ecc_signature+b'\x00',plain_text)

InvalidSignature: 

## Summary
We used asymmetric encryption to digitally sign messages to determine if they have been altered.

ECC uses much shorter keys, which is important for embedded vehicle and industrial systems.

You can use ECC to digitally sign data.

A question still remains: How can we trust Alice is who she says? What if Eve is in the middle pretending to be Alice? 

A middle person attack can easily resign the message. Never trust a public key comes from a principal without verification.