# Galois field

In [None]:
import random
from Crypto.Cipher import AES
from Crypto.Util.Padding import pad, unpad

### What is a field?

In mathematics, a field is a set of elements on which two operations, usually denoted as addition and multiplication, are defined and satisfy certain properties. The properties that a set must satisfy to be a field are known as the field axioms. These axioms can be stated as follows:

1. Closure under addition and multiplication: For any two elements a and b in the field, their sum a + b and their product a * b are also in the field.
1. Associativity of addition and multiplication: For any three elements a, b, and c in the field:

    $(a + b) + c = a + (b + c)$
    
    $(a * b) * c = a * (b * c) \\ $
    
1. Commutativity of addition and multiplication: For any two elements a and b in the field: 

    $a + b = b + a$
    
    $a * b = b * a \\ $
    
1. Existence of additive and multiplicative identity elements: There exist two distinct elements 0 and 1 in the field such that for any element a in the field:

    $a + 0 = a$
    
    $a * 1 = a \\ $
    
1. Existence of additive and multiplicative inverses: For any non-zero element a in the field, there exists a unique element $-a$ (additive inverse) such that $a + (-a) = 0$ , and there exists a unique element $a^-1$ (multiplicative inverse) such that $a * a^-1 = 1$

1. Distributivity of multiplication over addition: For any three elements a, b, and c in the field:

    $a * (b + c) = (a * b) + (a * c)\\ $
    
These properties are essential to ensure that the field behaves like a consistent mathematical structure, allowing for the manipulation of its elements in a systematic and well-defined way.

In simpler terms, a field is a set of numbers on which you can perform addition, subtraction, multiplication, and division, and the results of these operations also belong to the same set of numbers.

Examples of fields include the set of real numbers, the set of complex numbers, and the set of rational numbers.

Fields have many applications in mathematics and computer science, including algebraic geometry, coding theory, cryptography, and computer graphics. In particular, Galois fields (also known as finite fields) are used in various cryptographic applications.



### What is GF(2)? Why is it an algebraic field?

GF(2) stands for Galois Field of order 2, which is also commonly referred to as the binary field. It is a finite field with two elements, 0 and 1, and its addition and multiplication operations are defined as follows:

1. Addition :
    
    $ 0 + 0 = 0  \\\\  0 + 1 = 1 + 0 = 1 \\\\  1 + 1 = 0 \\ $
    
1. Multiplication :

    $\\ 0 * 0 = 0 \\\\ 0 * 1 = 1 * 0 = 0 \\\\ 1 * 1 = 1 $
    
The binary field GF(2) is an algebraic field because it satisfies all the axioms of a field.

### What is perfect secrecy? How does it relate to the participants in the conversation, and to the outside eavesdropper?

Perfect secrecy is a way of making sure that nobody can read secret messages even if they have all the computers in the world. It's like a secret code that only the people who know it can understand. 

Two people, Alice and Bob, might use a secret code to talk to each other so that nobody else can understand what they're saying. They might use a code that's so good that nobody can figure out what they're saying. This is called perfect secrecy. One way to achieve perfect secrecy is to use something called a one-time pad, which is like a secret key that's only used once. If Alice and Bob use the one-time pad to encrypt their messages, then nobody else can read what they're saying. 

### What is symmetrical encryption?

Symmetric encryption is a type of encryption where the same secret key is used to encrypt and decrypt the message. It is like a secret code that only you and the person you want to communicate with know.

In symmetric encryption, you start by choosing a secret key. You use this key to encrypt your message, by performing some mathematical operation on the message and the key. The resulting encrypted message can only be decrypted back to the original message using the same secret key.

Symmetric encryption is fast and efficient, and is commonly used in many applications where secure communication is needed. However, the challenge with symmetric encryption is how to securely share the secret key with the intended recipient, without it falling into the hands of an attacker.

### How to encrypt one-bit messages?

XOR (exclusive OR) is a binary operation that takes two bits as input and outputs a single bit, where the output bit is 1 if and only if exactly one of the input bits is 1. It is denoted by the symbol ⊕. The Galois field (also known as a finite field) is a mathematical structure that consists of a finite set of elements and two operations: addition and multiplication.

The Galois field GF(2) is a particular type of Galois field with two elements: 0 and 1. Addition in GF(2) is equivalent to XOR: adding 0 to any element gives the same element, and adding 1 to an element switches its value

$$ 0 + 1 = 1 $$ and $$ 1 + 1 = 0 $$

Multiplication in GF(2) is equivalent to AND: multiplying any element by 0 gives 0, and multiplying any element by 1 gives the same element.

The fact that addition in GF(2) is equivalent to XOR is useful in cryptography, particularly in the design of stream ciphers and one-time pads. For example, if we have a stream of bits that we want to encrypt using a one-time pad, we can XOR each bit in the stream with a corresponding key bit generated from the same random source. This is a simple and secure encryption technique, as long as the key is truly random and used only once.

In general, the use of Galois fields in cryptography provides a way to perform mathematical operations on finite sets of elements (such as bits or bytes), which is necessary for many cryptographic algorithms. By using the arithmetic operations of addition and multiplication in a Galois field, we can design efficient and secure encryption and decryption algorithms that are resistant to attacks by eavesdroppers and other adversaries.


#### Example
Here's an example that allows the user to input a one-bit message (0 or 1) and encrypts it using a one-time pad:

In [None]:
def encrypt_bit(message="1"):
    key = random.randint(0, 1)  # generate a random one-bit key
    encrypted = message ^ key  # XOR the message and the key
    return encrypted, key

def decrypt_bit(encrypted, key):
    message = encrypted ^ key  # XOR the encrypted message and the key
    return message

# Example usage:
message = 1
encrypted, key = encrypt_bit()
print("Message:", message)
print("Key:", key)
print("Encrypted message:", encrypted)
decrypted = decrypt_bit(encrypted, key)
print("Decrypted message:", decrypted)

In this example, we first define two functions: `encrypt_bit` and `decrypt_bit`. The `encrypt_bit` function generates a random one-bit key, XORs it with the input message, and returns both the encrypted message and the key. The `decrypt_bit` function takes an encrypted message and its corresponding key, XORs them, and returns the original message.

In the example usage, we use a one-bit message 
```
message = 1
encrypted, key = encrypt_bit()
```
encrypt it using the `encrypt_bit` function, and print out the message, key, and encrypted message. We then decrypt the encrypted message using the `decrypt_bit` function and print out the result.

### How to extend the one-bit encryption system to many bits?

To extend the one-bit encryption system to many bits, we can use the same one-time pad technique, but generate a key sequence that is as long as the message sequence. The key sequence should be generated from a truly random source and kept secret, as it is used to XOR each bit of the message sequence.

#### Example
Here's an example implementation of a one-time pad encryption and decryption system that works for an arbitrary-length message:

In [None]:
def generate_key(length):
    return [random.randint(0, 1) for _ in range(length)]

def encrypt(message, key):
    encrypted = [m ^ k for m, k in zip(message, key)]
    return encrypted

def decrypt(encrypted, key):
    decrypted = [e ^ k for e, k in zip(encrypted, key)]
    return decrypted

# Example usage:
message = [1, 0, 1, 1, 0, 1, 0, 0]  # an eight-bit message
key = generate_key(len(message))
encrypted = encrypt(message, key)
print("Message:", message)
print("Key:", key)
print("Encrypted message:", encrypted)
decrypted = decrypt(encrypted, key)
print("Decrypted message:", decrypted)

In this implementation, we first define three functions: `generate_key`, `encrypt`, and `decrypt`. The `generate_key` function takes an integer length and returns a list of length random bits. The encrypt function takes a message sequence (i.e., a list of bits) and a key sequence (also a list of bits), XORs each bit in the message sequence with the corresponding bit in the key sequence, and returns the encrypted message sequence. The decrypt function takes an encrypted message sequence and its corresponding key sequence, XORs each bit in the encrypted sequence with the corresponding bit in the key sequence, and returns the original message sequence.

In the example usage, we create an eight-bit message sequence, generate a random key sequence of the same length using the generate_key function, encrypt the message sequence using the encrypt function, and print out the message, key, and encrypted message. We then decrypt the encrypted message using the decrypt function and print out the result.

#### Are there other ways? 

Yes, there are other ways to extend the one-bit encryption system to encrypt multiple bits. One such way is to use a block cipher, which is a type of encryption algorithm that operates on fixed-length blocks of data (e.g., 64 bits, 128 bits, etc.). A block cipher typically consists of two main components: a key schedule, which generates a set of round keys from the encryption key, and a round function, which performs a sequence of substitutions and permutations on the input block using the round keys.

One example of a block cipher that uses Galois Field arithmetic is the Advanced Encryption Standard (AES), which is a widely-used encryption algorithm that supports key sizes of 128, 192, or 256 bits. AES uses a block size of 128 bits and operates on a Galois Field of order 2^8, denoted GF(2^8), using a specific irreducible polynomial as the modulus.

AES uses a key schedule to generate a set of round keys from the encryption key, which is then used by the round function to encrypt each block of data. The round function consists of several rounds, each of which applies a specific sequence of substitutions and permutations to the input block using the current round key.

#### Example
Here's an example implementation of AES encryption and decryption using the PyCryptodome library in Python:

In [None]:
key = b'secret_key_12345'  # 16-byte encryption key
message = b'This is a test message that will be encrypted using AES.'  # variable-length message

cipher = AES.new(key, AES.MODE_ECB)  # create an AES cipher object in ECB mode
padded_message = pad(message, AES.block_size)  # pad the message to a multiple of the block size
encrypted = cipher.encrypt(padded_message)  # encrypt the padded message using the AES cipher

decrypted = unpad(cipher.decrypt(encrypted), AES.block_size)  # decrypt the encrypted message and unpad the result

print('Original message:', message)
print('Encrypted message:', encrypted)
print('Decrypted message:', decrypted)

In this implementation, we first import the necessary modules from the PyCryptodome library,

```
from Crypto.Cipher import AES
from Crypto.Util.Padding import pad, unpad
```

and define a 16-byte encryption key and a variable-length message. We then create an AES cipher object in ECB mode using the `AES.new` function, pad the message to a multiple of the block size using the `pad` function, and encrypt the padded message using the `encrypt` method of the AES cipher object. We then decrypt the encrypted message using the `decrypt` method of the AES cipher object, unpad the result using the `unpad` function, and print out the original message, encrypted message, and decrypted message.

> Note that this implementation uses [ECB mode](https://www.techtarget.com/searchsecurity/definition/Electronic-Code-Book), which is not secure for encrypting multiple blocks of data.

### Why is the system decryptable and how do the paricipants decrypt the encrypted messages? 

The system is decryptable because it uses a symmetric key encryption scheme, where the same secret key is used for both encryption and decryption. This means that the sender encrypts the plaintext message using the secret key, and the receiver decrypts the ciphertext using the same secret key to recover the original plaintext message.

Symmetric key encryption is based on mathematical algorithms that are designed to be reversible, meaning that the encryption process can be reversed using the same key to recover the original plaintext message. This is what makes the system decryptable.

In the case of the block cipher based on Galois Field arithmetic, the encryption process involves applying a series of mathematical operations (substitution, permutation, and mixing) to the plaintext block using the encryption key. The decryption process involves applying the inverse of each operation in reverse order using the same encryption key to recover the original plaintext block.

The security of symmetric key encryption schemes depends on the secrecy of the encryption key. As long as the encryption key is kept secret and is not compromised by an attacker, the system is secure and decryptable only by the intended recipient who has access to the secret key.

#### Who is responsible for determining the secret key and how is it communicated to the participants?

The secret key in a symmetric key encryption scheme like AES is typically determined by one of the participants, usually the sender, and then shared securely with the other participant(s) who need to decrypt the message. The key must be kept secret from anyone who is not authorized to view the encrypted message.

There are several methods that can be used to securely share the secret key:

1. Pre-shared key: The sender and receiver share a secret key in advance through a secure channel, such as in person or through a secure messaging service. This method is suitable for a small number of participants who trust each other.

1. Key exchange protocols: The sender and receiver use a secure key exchange protocol, such as Diffie-Hellman key exchange, to generate a shared secret key over an insecure channel. This method is suitable for a large number of participants who do not necessarily trust each other.

##### Simulation of Diffie-Hellman Key exchange: 
    1. Bob and Alice agree on two numbers choose 2 numbers. (p,g) The numbers are public.
    2. Each of them generate a private key
    3. Each of them calculate a public key 
    4. Thus each of them can calcuate the secret key.

###### Code
```
p = 5
g = 3

a = random.randint(1, p-1)
b = random.randint(1, p-1)

A = pow(g, a, p)
B = pow(g, b, p)

s1 = pow(B, a, p)
s2 = pow(A, b, p)

print("Shared secret key: ", s1)
print("Shared secret key: ", s2)

```

In the above code snippet let assume the public numbers are p(5) and g(3). 
    Alice and Bob generate a random private key - a(1) | b(4)
    Each of them calculate a public key by formula.
```
    key=g^(a & b) & p
```
Alice Key = 3^1 % 5 = 3 

Bob Key = 3^4 % 5 = 1

So A(3) and B(1)

Alice and Bob now can calculate the secret key by using the private key. The formula is:
```
    (A or B)^(b or a) % p
```

Alice private key is "a". Alice secret key:
```
    B^a % p
    1^1 % 5 = 1
```
Bob private key is "b". Bob secret key 
```
    A^b % p
    3^4 % 5 = 81 % 5 = 1
```
Both are calculating the secret by using private key.

3. Key distribution center: The sender and receiver use a trusted third party, known as a key distribution center (KDC), to securely distribute the secret key. The KDC generates and distributes the key to the sender and receiver using a secure channel.

Suppose we have three participants: Alice, Bob, and the KDC. Alice wants to communicate with Bob using a secret key that only they know.

1. Alice sends a request to the KDC for a secret key to communicate with Bob.

1. The KDC generates a new secret key for Alice and Bob to use and encrypts it using Bob's public key. The KDC then sends the encrypted key to Alice.

1. Alice decrypts the key using her private key and sends the encrypted key to Bob.

1. Bob decrypts the key using his private key and now both Alice and Bob share the same secret key to communicate with each other securely.

In practice, a combination of these methods may be used to securely distribute the secret key.


### What is a one-time pad?

A one-time pad is a type of symmetric-key encryption that uses a random secret key, which is at least as long as the plaintext message. The key is combined with the plaintext using the XOR operation to produce the ciphertext. The key is used only once and then discarded, hence the name "one-time" pad.

The security of the one-time pad is based on the fact that the ciphertext provides no information about the plaintext that cannot be obtained without the key. In other words, without the key, the ciphertext provides no information about the plaintext that cannot be guessed with equal probability.

The one-time pad is considered unbreakable in theory, assuming the key is truly random and used only once. However, in practice, there are many challenges in generating truly random keys and securely distributing them to the intended recipients. Also, if a one-time pad is used more than once, it is no longer secure.

### How does the one-time pad achieve perfect secrecy?

The one-time pad achieves perfect secrecy by ensuring that the ciphertext provides no information about the plaintext that cannot be obtained without the key. This is achieved by making the key truly random, at least as long as the plaintext, and used only once.

When the key is combined with the plaintext using the XOR operation, each bit in the key is used to encrypt a corresponding bit in the plaintext. The result is that each bit in the ciphertext is equally likely to be 0 or 1, regardless of the corresponding bit in the plaintext.

This means that an attacker who intercepts the ciphertext has no way of knowing which bit in the key was used to encrypt each bit in the plaintext. Without knowledge of the key, the attacker must consider all possible keys with equal probability, making the encryption unbreakable.

In other words, the perfect secrecy of the one-time pad is based on the fact that the ciphertext provides no information about the plaintext that cannot be guessed with equal probability, even if the attacker knows the encryption algorithm and has unlimited computational power.

### What happens if we try to use a one-time pad many times?

If a one-time pad is used more than once, it is no longer secure.

The reason is that if the same key is used to encrypt two different plaintext messages, an attacker who intercepts both ciphertexts can use a technique called XOR analysis to recover both plaintexts.

XOR analysis involves XORing the two ciphertexts together to obtain a new ciphertext that reveals information about the difference between the two plaintexts. The attacker can then use statistical analysis to make educated guesses about the original plaintexts.

In general, any repetition or correlation in the key used for a one-time pad compromises the security of the encryption. This is why the key must be truly random, at least as long as the plaintext, and used only once.

#### Example

In [None]:
# Define a function to generate a random key of a specified length
def generate_key(length):
    return ''.join([random.choice('01') for _ in range(length)])

# Define a function to encrypt a message using a key
def encrypt(message, key):
    return ''.join([str(int(message[i]) ^ int(key[i])) for i in range(len(message))])

# Define a function to decrypt a ciphertext using a key
def decrypt(ciphertext, key):
    return ''.join([str(int(ciphertext[i]) ^ int(key[i])) for i in range(len(ciphertext))])

# Generate two messages of length 10
message1 = generate_key(10)
message2 = generate_key(10)

# Generate a random key of length 10
key = generate_key(10)

# Encrypt both messages using the same key
ciphertext1 = encrypt(message1, key)
ciphertext2 = encrypt(message2, key)

# Try to recover the key using the two ciphertexts
recovered_key = ''.join([str(int(ciphertext1[i]) ^ int(ciphertext2[i])) for i in range(len(ciphertext1))])

# Print the original key and the recovered key
print("Original key:", key)
print("Recovered key:", recovered_key)

###   What are some current enterprise-grade applications of encryption over GF(2)?

Galois Field (GF) 2 is widely used in many encryption algorithms and protocols, including those used in enterprise-grade applications. Some examples of enterprise-grade applications that use encryption over GF(2) include:

1. Advanced Encryption Standard (AES): AES is a symmetric block cipher that uses GF(2) to perform the finite field arithmetic required for encryption and decryption. It is widely used in enterprise-grade applications, including securing sensitive data at rest and in transit.

1. Elliptic Curve Cryptography (ECC): ECC is a public key cryptography algorithm that also relies on GF(2) for performing mathematical operations. It is used in enterprise-grade applications that require secure communication and data exchange, such as secure email, secure messaging, and secure payment systems.

1. Secure Hash Algorithm (SHA): SHA is a family of cryptographic hash functions that use GF(2) arithmetic to generate fixed-length hash values from variable-length inputs. It is used in enterprise-grade applications to ensure data integrity and authentication, such as digital signatures and password hashing.

1. Transport Layer Security (TLS): TLS is a protocol that provides secure communication over the internet. It uses a combination of symmetric and asymmetric encryption algorithms, including those based on GF(2), to provide confidentiality, integrity, and authentication for data in transit.

1. Virtual Private Networks (VPNs): VPNs use encryption over GF(2) to provide secure remote access to enterprise networks and cloud resources. GF(2)-based encryption algorithms are used to encrypt the data transmitted between the remote client and the VPN server, ensuring confidentiality and data privacy.

In [None]:
# Define GF(2) operations

def gf2_add(x, y):
    """
    Compute the addition of two binary bits using GF(2) (XOR operation)

    Args:
        x (int): binary bit 0 or 1
        y (int): binary bit 0 or 1

    Returns:
        int: binary bit 0 or 1 as the sum of x and y using GF(2)
    """
    return x ^ y


def gf2_mul(x, y):
    """
    Compute the multiplication of two binary bits using GF(2) (AND operation)

    Args:
        x (int): binary bit 0 or 1
        y (int): binary bit 0 or 1

    Returns:
        int: binary bit 0 or 1 as the product of x and y using GF(2)
    """
    return x & y


def str_to_bin(text):
    """
    Convert string to binary representation

    Args:
        text (str): Input string to be converted

    Returns:
        str: Binary representation of the input string
    """
    binary = ""
    for c in text:
        # Convert each character to its ASCII value and then to binary
        binary += format(ord(c), "08b")
    return binary


def bin_to_str(binary):
    """
    Convert binary representation to string

    Args:
        binary (str): Binary representation to be converted

    Returns:
        str: Converted string from binary
    """
    text = ""
    chunk_size = 8
    num_chunks = len(binary) // chunk_size
    for i in range(num_chunks):
        # Convert each 8-bit chunk to its corresponding ASCII character
        chunk = binary[i * chunk_size: (i + 1) * chunk_size]
        text += chr(int(chunk, 2))
    return text


def encrypt(key, plaintext):
    """
    Encrypt plaintext with key using GF(2)

    Args:
        key (str): Binary string to be used as key for encryption
        plaintext (str): Binary string to be encrypted

    Returns:
        str: Encrypted binary string
    """
    ciphertext = ""
    for i in range(len(plaintext)):
        key_bit = int(key[i % len(key)])
        plaintext_bit = int(plaintext[i])
        ciphertext_bit = gf2_add(key_bit, plaintext_bit)
        ciphertext += str(ciphertext_bit)
    return ciphertext


def decrypt(key, ciphertext):
    """
    Decrypt ciphertext with key using GF(2)

    Args:
        key (str): Binary string to be used as key for decryption
        ciphertext (str): Binary string to be decrypted

    Returns:
        str: Decrypted binary string
    """
    plaintext = ""
    for i in range(len(ciphertext)):
        key_bit = int(key[i % len(key)])
        ciphertext_bit = int(ciphertext[i])
        plaintext_bit = gf2_add(key_bit, ciphertext_bit)
        plaintext += str(plaintext_bit)
    return plaintext


# Choose a key
key = "11011001"

# Generate a random plaintext message
plaintext = "Hello, world!"

# Convert plaintext to binary representation
plaintext_binary = str_to_bin(plaintext)

# Encrypt the message
ciphertext = encrypt(key, plaintext_binary)

# Decrypt the ciphertext
decrypted_plaintext_binary = decrypt(key, ciphertext)

# Convert decrypted binary representation back to string
decrypted_plaintext = bin_to_str(decrypted_plaintext_binary)

# Print the results
print("Key:", key)
print("Plaintext:", plaintext)
print("Ciphertext:", ciphertext)
print("Decrypted Plaintext:", decrypted_plaintext)
