# **Lab 4**: February 13, 2019.
# Topic: Three Pass Protocol

Main concept: Using number theory that we learned on Monday for a new communication protocol. This is typically used to share keys or small messages.

### Part 1: The situation without numbers

You want to send a message to another group in public (i.e. on the white board) so that then you can communicate with an affine cipher. In order to do that, you can communicate the key via a three pass protocol. A three pass protocol works as follows:

1) You have a message (or key) you want to send and you put it in a box. You put a lock on the box for which you only have the key to. Then send the box to Bob (aka another group).
2) Bob puts their own lock on the box as well. Now the box has two locks. They send the box back to you.
3) You unlock your lock from the box. Now the box is still locked with Bob's lock. You send it back to Bob.
4) Now the box only has Bob's lock on it. They are able to unlock their lock and receive the message (or key).



**Question 1**: What are the strengths of this protocol? What are the weaknesses?

### Part 2: The situation with numbers

Mathematically, the protocol is as follows. A modulus $p$, a prime, is made public. The message to be sent is $k$. Note that $a^{-1}$ and $b^{-1}$ denote the multiplcative inverses of $a$ and $b$, respectively, modulo $p-1$. 

1) The message you want to send is $k$. To encrypt it, choose a random number $a$ such that $(a,p-1)=1$. Send $c_0 = k^a \mod p$ to Bob.
2) Bob chooses their own random number $b$ such that $(b,p-1)=1$. Bob sends $c_1 = c_0^b \mod p$ back to you.
3) You compute $c_2 = c_1^{a^{-1}} \mod p$ and send it back to Bob.
4) Bob computes $c_2^{b^{-1}} \mod p$ and recovers the message.

**Question 2**: Why is it important that $(a,p-1)=1$ and $(b,p-1)=1$? Why are we working relatively prime to $p-1$ instead of $p$?

**Question 3**: Why does this process work? Explicitly show that $c_2^{b^{-1}} \equiv k \mod p$. State any related theorems.

#### CHECK IN: Call me over so we can go over the process before you begin ####

### Part 3: Setting up for a  Three Pass Protocol

We will be using the Three Pass Protocol to exchange keys for a Vigenère cipher. This section is the set up process so that you can exchange keys with another group.

**Exercise 1:** Determine a key that you will eventually send with the Three Pass Protocol. Remember the key is the "message" in the Three Pass Protocol but will eventually be a key in the Vigère cipher. With that said, the key should be a short English word. We will limit the length of the key to 4 characters.

**Exercise 2:** Convert the key to numbers using our typical conversion. To avoid confusion, every letter should be two digits long (i.e. 'a' $\rightarrow$ 00, 'b' $\rightarrow$ 01, $\ldots$, 'z' $\rightarrow$ 25). As an example, $\texttt{jen} \rightarrow 090413$, so $k = 90413$. Let $k$ be the numerical representation of the key.

In [0]:
k=

**Exercise 3:** Choose a prime $p$ for your modulus. Note that $p$ must be larger than $k$. To check that your number is prime use the $\texttt{isPrime}$ function below. Once you have a prime $p$ (verify it is prime!) publish it on your whiteboard.

In [5]:
#The function below tests if n is prime and returns True if so and False if not.
def isPrime(n):
    if n==2 or n==3: return True
    if n%2==0 or n<2: return False
    for i in range(3,int(n**0.5)+1,2):
        if n%i==0:
            return False    

    return True

In [0]:
p = 

**Exercise 4:** Choose a encryption exponent $a$ such that $(a,p-1)=1$. Use the $\texttt{numpy.gcd()}$ function below to verify. Note that this function takes two arguments, the two numbers you wish to find the gcd of.

In [3]:
#By changing a and b below you can calculate the gcd of two numbers.
import numpy

numpy.gcd(27,3628273132)

1

In [0]:
a=

#### CHECK IN: Call me over so I can pair you with another group ####

### Part 4: Exchanging keys

Now that you are paired up with another group and the moduli are published on the boards you can begin to exchange keys. Be careful with your calculations! Let $q$ be the prime moduli for the group that you are obtaining a key from.

**Exercise 5:** Choose a decryption exponent $b$ such that $(b,q-1)=1$. Use the $\texttt{gcd}$ function again to verify the coprimality condition.

In [0]:
b=

**Exercise 6:** Now that all of the numbers are calculated, complete the Three Pass Protocol. Since you will be using large numbers and will likely break CoCalc with straight exponentiation, use the $\texttt{mod_pow}$ function below for modular exponentiation computations. Use the whiteboard to communicate. Show work for your steps below. What is the other group's key?

In [17]:
def mod_pow(base, exponent, modulus):
    if modulus == 1:
        return 0
    result = 1
    base = base % modulus
    while exponent > 0:
        if (exponent % 2 == 1):
           result = (result * base) % modulus
        exponent = exponent >> 1
        base = (base * base) % modulus
    return result

In [21]:
c_2 = mod_pow(c_1,a_inv,p)

In [5]:
k=7897

In [6]:
a = 25

In [7]:
b=27

In [8]:
p = 3628273133

In [9]:
c_0 = k**a % p

In [10]:
c_0

1442801250L

In [11]:
c_1 = c_0**b % p

In [12]:
c_1

672735018L

In [13]:
from sage.all import *

In [15]:
a_inv = inverse_mod(25,p-1)

In [19]:
b_inv = inverse_mod(27,p-1)

In [20]:
b_inv

1075043891

In [22]:
mod_pow(c_2,b_inv,p)

7897L

#### CHECK IN: Call me over so I can pair you with another group ####

### Part 5: Sending a message with Vigenère ###

Using the keys you have exchanged in the Part 4, you will now communicate via Vigenère.


**Exercise 7:** Now that you have the Vigenère key for a different group, use it to encode a message. You can do this by hand with the Vigenère table or using the code below. I suggest sending your ciphertext over email. Remember to show work below.

In [16]:
let = 'abcdefghijklmnopqrstuvwxyz'

#Enter a plaintext as the "string" argument (lowercase) and the key in letters as the "key" argument (lowercase).
def encodeVigenere(string, key):
    ciphertext = []
    for k,i in enumerate(string):
        ciphertext.append(let[(let.index(i)+let.index(key[k % len(key)])) % 26].upper())
    return "".join(ciphertext)

#Enter a ciphertext as the "string" argument (uppercase) and the key in letters as the "key" argument (lowercase).
def decodeVigenere(string, key):
    plaintext = []
    for k,i in enumerate(string):
        plaintext.append(let[(let.index(i.lower())-let.index(key[k % len(key)])) % 26])
    return "".join(plaintext)

**Exercise 8:** You should receive a ciphertext from another group. Decode the ciphertext by hand (haha) or using the code above.

### Part 6: Reflection

**Question 4:** Thinking back to Monday, how is the 'Basic Principle' used in the Three Pass Protocol?