<div class="alert alert-block alert-info">
<font size="7">
<center><b>
                      INFORTAMION SECURITY </b></center>
</font>
    </div> 

<div class="alert alert-block alert-info">
<font size="5">
<center><b>
                      Secure File Transfer with RSA and Hashing </b></center>
</font>
    </div> 


<!-- <font size="3">
<right><b>Prepared by</b></right>
</font> 
                                                                                                       


<!-- <font size="3">
<center>Supervisor by Mona Taghavi</center>
</font>     

<font size="3">
<center>Montreal - Canada</center>
</font> 

<font size="3">
<center>Summer 2024</center>
</font> -->

<span class="mark">**Project develop by:**</span>
```
🔅 Zhanna Latypova
🔅 Arya 
🔅 Simran Simran
```
_______



<span class="mark">**Project Goal:**</span>

Implement a secure file transfer system in Python that utilizes RSA encryption and hashing algorithms to ensure data confidentiality and integrity.  
_______


<span class="mark">**Project Tasks:**</span>
- Design and implement a Python program for:

    ▷ Generating RSA key pairs (public and private).\
    ▷ Encrypting a file using the recipient's public key.\
    ▷ Decrypting the encrypted file using the corresponding private key.\
    ▷ Generating a hash of the original file using a secure hashing algorithm (e.g., SHA-256).\
    ▷ Verifying the integrity of the received file using the original hash.
    
    
- Document the code and design decisions clearly. 
- Create a simple user interface for interacting with the system (input and output). 
- Test the functionality thoroughly with various test cases.
_______
<span class="mark">**Work Stages:**</span> 

1. `Key Generation:` Implement functions to generate RSA key pairs using the cryptography library. 
2. `File Encryption:` Write functions to encrypt a file using the public key of the recipient and the RSA encryption scheme. 
3. `File Decryption:` Create functions to decrypt an encrypted file using the corresponding private key and the RSA decryption scheme. 
4. `Hashing:` Implement functions to generate a hash (e.g., SHA-256) of a file using the hashlib library. 
5. `Integrity Verification:` Develop functions to verify the integrity of the received file by comparing its hash with the original hash. 
6. `User Interface:` Create a simple user interface for interacting with the system. 
7. Testing: Optionally, write comprehensive unit tests for each functionality using a testing framework like unittest.

_______
<span class="mark">**Project Deliverables:**</span> 

- Python code for the secure file transfer system. 

- Documentation covering:

    ▷ Design overview and key decisions.\
    ▷ Testing strategy and coverage. 
    
    
- A presentation demonstrating the functionality and security aspects of the system (if time permits).


_______
<span class="mark">**Additional Considerations (Optional):**</span> 

- Explore different RSA padding schemes and their security implications. 
- Investigate the performance trade-offs of different cryptographic algorithms and key sizes.
- Consider integrating the system with a file transfer protocol (e.g., Secure FTP) for real-world applications. 
- Discuss the limitations of your implementation and potential areas for improvement.

# Table of content

## 📚 Import the libraries for the project

The code begins by importing necessary libraries for file handling, cryptographic operations, and hashing.

In [1]:
# For file system operations
import os 
# For generating hashes
import hashlib 
# For RSA encryption/decryption
from cryptography.hazmat.primitives.asymmetric import rsa, padding
# For serializing keys to PEM format
# For hash algorithms
from cryptography.hazmat.primitives import serialization, hashes


## 💡 Create functions for ease of using

### Encryption File

Encrypts the content of the provided input file using the RSA public key and saves the encrypted content to the output file.

![](https://i.postimg.cc/Z5dPLNyT/Screen-Shot-2024-07-26-at-2-48-36-PM.png)

In [2]:
# Class for encryption
class Encryptor:
    # Initializes the Encryptor with a public RSA key.
    def __init__(self, public_key):
        self.public_key = public_key
    
    
    def encrypt_file(self, input_file_path, output_file_path):
        """Function to encrypt a file"""
        if not os.path.isfile(input_file_path):
            print(f"Error: File '{input_file_path}' not found.")
            return

        try:
            with open(input_file_path, 'rb') as file:
                plaintext = file.read()

            encrypted = self.public_key.encrypt(
                plaintext,
                padding.OAEP(
                    mgf=padding.MGF1(algorithm=hashes.SHA256()),
                    algorithm=hashes.SHA256(),
                    label=None
                )
            )

            with open(output_file_path, 'wb') as file:
                file.write(encrypted)
            print(f"File '{input_file_path}' encrypted as '{output_file_path}'.")
        except Exception as e:
            print(f"Error encrypting file: {e}")

### Decryption

Decrypts the content of the provided input file using the RSA private key and saves the decrypted content to the output file.


![](https://i.postimg.cc/Y00YLLHB/Screen-Shot-2024-07-26-at-2-48-51-PM.png)

In [3]:
# Class for decryption
class Decryptor:
    
    #Initializes the Decryptor with a private RSA key.
    def __init__(self, private_key):
        """Function to decrypt a file"""
        self.private_key = private_key

    def decrypt_file(self, input_file_path, output_file_path):
        if not os.path.isfile(input_file_path):
            print(f"Error: File '{input_file_path}' not found.")
            return

        try:
            with open(input_file_path, 'rb') as file:
                encrypted_message = file.read()

            decrypted = self.private_key.decrypt(
                encrypted_message,
                padding.OAEP(
                    mgf=padding.MGF1(algorithm=hashes.SHA256()),
                    algorithm=hashes.SHA256(),
                    label=None
                )
            )

            with open(output_file_path, 'wb') as file:
                file.write(decrypted)
            print(f"File '{input_file_path}' decrypted as '{output_file_path}'.")
        except Exception as e:
            print(f"Error decrypting file: {e}")

### Hashing and Integrity Verification

   - `hash_file(file_path)`: Generates a SHA-256 hash of the content of the provided file.
   
   - `verify_file_integrity(original_hash, file_path)`: Compares the provided original hash with the hash of the specified file to check its integrity.
   
![](https://i.postimg.cc/63jGK6Gj/Screen-Shot-2024-07-26-at-3-04-32-PM.png)   

In [4]:
# Class for file integrity validation
class IntegrityValidator:
    @staticmethod
    def hash_file(file_path):
        """Function of hashing"""
    
        if not os.path.isfile(file_path):
            print(f"Error: File '{file_path}' not found.")
            return None

        try:
            sha256_hash = hashlib.sha256()
            with open(file_path, 'rb') as file:
                while True:
                    byte_block = file.read(4096)
                    if not byte_block:
                        break
                    sha256_hash.update(byte_block)
            hex_digest = sha256_hash.hexdigest()
            print(f"Hash of file '{file_path}': {hex_digest}")
            return hex_digest
        except Exception as e:
            print(f"Error hashing file: {e}")
            return None

    @staticmethod
    def verify_file_integrity(original_hash, file_path):
        """Function of integrity verification"""
    
        file_hash = IntegrityValidator.hash_file(file_path)
        if file_hash is None:
            return

        if original_hash == file_hash:
            print(f"Integrity check passed for file '{file_path}'.")
        else:
            print(f"Integrity check failed for file '{file_path}'.")


### 🔐 Key Generation and  🖥 User Interface 

**Displays a menu for interacting with the user and performs encryption, decryption, and integrity validation based on user input.**

    => Generates RSA key pair (private and public keys).
    => Serializes the keys into PEM format and prints them.
    => Provides options for encrypting files, decrypting files, validating file integrity, displaying keys, and exiting the program.

<div style="border-radius: 15px; box-shadow: 4px 4px 4px; border: solid orange 2px; padding: 20px"> 
<font size="4">    
<font color='darkblue'>⚠️ Steps for working with the User Interface: </font>
</font>   

1.  **Run the Program**: Execute the script using Python.
2.  **Main Menu**: Once the program starts, you will see a series of options to select from:
    ```
    1. Encrypt file
    2. Decrypt file
    3. Integrity validation
    4. Show private and public key
    5. Exit
    Choose an option:
    ```
3.  **Encrypting the file:** Choose option 1️⃣ to encrypt a file.
    ```
    - Enter the path of the file you wish to encrypt.
    - The file will be encrypted, and a new file with the same name but with the `.enc` extension will be created.
    ```

4. **Decrypting the file:** Choose option 2️⃣ to decrypt a file.
    ```
    - Enter the path of the encrypted file (typically ending with `.enc`).
    - The file will be decrypted and saved with the `.dec` extension.
    ```
    
5. **Checking the integrity of the original file:** Choose option 3️⃣ to validate the hash of a file.
    ```
    - Enter the path of the file to verify.
    - Enter the original hash value of the file (typically obtained when the file was first hashed).
    - The program will check if the hash matches.
    ```

6. **Show Keys**: Choose option 4️⃣ to display the private and public keys in PEM format.
    
7. **Exit the Program**: Choose option 5️⃣ to quit the program.

    
____________
<font size="4">    
<font color='darkblue'>💎 Example usage: </font>
</font>
    
- **Encrypt a File**:
    ```
    Choose an option: 1
    Enter the path of the file to encrypt: example.txt
    ```

- **Decrypt a File**:
    ```
    Choose an option: 2
    Enter the path of the file to decrypt: example.txt.enc
    ```

- **Validate File Integrity**:
    ```
    Choose an option: 3
    Enter the path of the file to verify: example.txt
    Enter the original file hash: (enter actual hash here)
    ```

- **Show Keys**:
    ```
    Choose an option: 4
    ```

- **Exit**:
    ```
    Choose an option: 5
    ```
    </div>   
<br>    

In [5]:
def main_menu():
    """Function to generate RSA key pair (private and public keys)"""
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=2048,
    )
    public_key = private_key.public_key()

    encryptor = Encryptor(public_key)
    decryptor = Decryptor(private_key)
    validator = IntegrityValidator()

    print("Generated keys.")

    def get_key_pem(key, private=False):
        """Get the public key & private key in PEM format"""
        if private:
            return key.private_bytes(
                encoding=serialization.Encoding.PEM,
                format=serialization.PrivateFormat.PKCS8,
                encryption_algorithm=serialization.NoEncryption()
            ).decode('utf-8')
        return key.public_bytes(
            encoding=serialization.Encoding.PEM,
            format=serialization.PublicFormat.SubjectPublicKeyInfo
        ).decode('utf-8')


    while True:
        print("\nMain Menu:")
        print("1. Encrypt file")
        print("2. Decrypt file")
        print("3. Integrity validation")
        print("4. Show private and public key")
        print("5. Exit")
        choice = input("Choose an option: ")

        if choice == '1':
            input_file = input("Enter the path of the file to encrypt: ")
            encrypted_file = input_file + '.enc'
            encryptor.encrypt_file(input_file, encrypted_file)
            print("**** File encrypted successfully! ****")
        elif choice == '2':
            encrypted_file = input("Enter the path of the file to decrypt: ")
            decrypted_file = encrypted_file + '.dec'
            decryptor.decrypt_file(encrypted_file, decrypted_file)
            print("**** File decrypted successfully! ****")
        elif choice == '3':
            file_path = input("Enter the path of the file to verify: ")
            original_hash = input("Enter the original file hash: ")
            validator.verify_file_integrity(original_hash, file_path)
            print("**** The SHA-256 hash have been generated! ****")
            print("**** Integrety verified: The received file matches the original hash! ****")
        elif choice == '4':
            print("Private Key PEM:\n", get_key_pem(private_key, private=True))
            print("Public Key PEM:\n", get_key_pem(public_key))
        elif choice == '5':
            print("**** Au revoir! 😀 ****")
            break
        else:
            print("Invalid choice. Please try again.")

if __name__ == "__main__":
    main_menu()

Generated keys.

Main Menu:
1. Encrypt file
2. Decrypt file
3. Integrity validation
4. Show private and public key
5. Exit
Choose an option: 1
Enter the path of the file to encrypt: /Users/zhanna/Desktop/IS_FinalProject/File.txt
File '/Users/zhanna/Desktop/IS_FinalProject/File.txt' encrypted as '/Users/zhanna/Desktop/IS_FinalProject/File.txt.enc'.
**** File encrypted successfully! ****

Main Menu:
1. Encrypt file
2. Decrypt file
3. Integrity validation
4. Show private and public key
5. Exit
Choose an option: 2
Enter the path of the file to decrypt: /Users/zhanna/Desktop/IS_FinalProject/File.txt.enc
File '/Users/zhanna/Desktop/IS_FinalProject/File.txt.enc' decrypted as '/Users/zhanna/Desktop/IS_FinalProject/File.txt.enc.dec'.
**** File decrypted successfully! ****

Main Menu:
1. Encrypt file
2. Decrypt file
3. Integrity validation
4. Show private and public key
5. Exit
Choose an option: 3
Enter the path of the file to verify: /Users/zhanna/Desktop/IS_FinalProject/File.txt
Enter the orig