In [13]:
#Key loading in PEM format
key = RSA.generate(2048)
f = open('mykey.pem','wb')
f.write(key.exportKey('PEM'))
f.close()
f = open('mykey.pem','r')
key = RSA.importKey(f.read())

In [14]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric import rsa

In [15]:
private_key = rsa.generate_private_key(public_exponent=65537,key_size=2048,backend=default_backend())

In [16]:
#Key loading
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization

with open("mykey.pem", "rb") as key_file:
    private_key = serialization.load_pem_private_key(key_file.read(),password=None,backend=default_backend())

In [18]:
#Key serialisation
from cryptography.hazmat.primitives import serialization
pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.PKCS8,
    encryption_algorithm=serialization.BestAvailableEncryption(b'mypassword'))
pem.splitlines()[0]

b'-----BEGIN ENCRYPTED PRIVATE KEY-----'

In [19]:
#Signing
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding
message = b"A message I want to sign"
signature = private_key.sign(
            message,
            padding.PSS(
             mgf=padding.MGF1(hashes.SHA256()),
             salt_length=padding.PSS.MAX_LENGTH
         ),
         hashes.SHA256()
     )

In [21]:
#Verification
public_key = private_key.public_key()
if public_key.verify(
        signature,
        message,
        padding.PSS(
            mgf=padding.MGF1(hashes.SHA256()),
            salt_length=padding.PSS.MAX_LENGTH
         ),
        hashes.SHA256()
     ):
    print("Signature verified")
else:
    print("Incorrect signature")

Incorrect signature


In [22]:
#Encryption
message = b"encrypted data"
ciphertext = public_key.encrypt(
         message,
         padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
)
print(ciphertext)

b'\x1d\x96\t\x8f\xdf\x00\xf3\xd8\x80(C\x8c\x08\xb4\x0f\\\xc8\xed\xbb\x98\xd7\x80\x85y\xc0%\x9b\x06\xc8+\xbc\xe2\xc2\xb1\x08\x10\xc2\x1b\xec\xbfh\x93\x07C\xb1\x04\x99\xff\x94\xff\xd0\xe0T\x84\xc0\x9fP\x8b\xa5\xce\x8b\xf0E\x18\x8a9\xc3\xc4\xc9\xd6-q\xb6\xa2\x0b\x87\x16\xde-\x97\xc2\xc8\xe8\x08\xaaJ(:\xac\xfd/\xe6Q\xf8\xb8\xcajg\xabqHk\x02m\xfd\x876\xb4\xaf\x0f\x03(\x8a\xce\xd9\xb1\xbb[\xdc\x9e\xe4\x191\x90F\xa2\'z\xf2\xf5\xd3\xb0\xdb\xf8G=\xdea\x06e\x0c\xd9\xd1\xf8i\x04w\x1e/\xab\x1d[\xa7\x1a\xc6\\_\xd9kP\x93\xdeA*"f\x1e9\xcd(\xaa\x02\xfe.p\xbf\xeahi\xacJL\n$\xc4\x8d\x12\xdcNG\x93\xcdLx!\xa0J\x81\x19\xa4M\xdfP\xc5\xac\x088\xda\xe4F\xb4a\x8c\xa7\xb4\xc3\xa6\xcf\x06\xdd\x91\toW\xc3ZQ\xab\x82\x87w\xc2\xd6\x98)\xc0\xcc\xc9q\xec+\xf4f7\xa7*qd-\xbf8.\\\xb4\xc0\xc8'


In [24]:
#Decryption
plaintext = private_key.decrypt(
        ciphertext,
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
         )
     )
plaintext == message
print(plaintext)

b'encrypted data'
