# RSA(Rivest–Shamir–Adleman) public-key cryptosystem

## Theoratical explanation


RSA is a public-key, assymetric cryptosystem that is very secure for data transmission. RSA uses a mathematically related pair of keys for encryption and decryption: a public key and a private key. A public key is a cryptographic key that can be used by any person to encrypt a message so that it can only be deciphered by the intended recipient with their private key. A private key, also known as a secret key, is shared only with key's initiator. 



![displaying images](https://miro.medium.com/proxy/0*yeF86NncRejLnXJz.png)



An RSA user creates and publishes a public key based on two large prime numbers; the prime numbers are kept secret. Public key consists of product of the prime numbers 'n' and a value 'e' such that e is co-prime with the totient of n. Private key consists of a value 'd' which is calculated through the extended euclidean algorithim and requires the public key in addition to a constant k.



##Implementation and Methods


Suppose that Bob wants to send information to Alice. If they decide to use RSA, Bob must know Alice's public key to encrypt the message and Alice must use her private key to decrypt the message.
To enable Bob to send his encrypted messages, Alice transmits her public key (n, e) to Bob via a reliable, but not necessarily secret, route. Alice's private key (d) is never distributed.

The RSA algorithm involves three steps: key generation, encryption, and decryption.

### Key Generation


The first step is to select two prime numers p and q. For security purposes, the integers p and q should be chosen at random, and should be similar in magnitude but differ in length by a few digits to make factoring harder; p and q are kept secret. I have utilized a random number generator with range 50-100 in order to satisfy the conditions of the two integers being chosen at random and being similar in magnitude. Since these integers should be prime numbers, the Miller-Robin primality test is utilized to determine the primality of the chosen integers. Miller-Robin algorithim is perferred for primality testing over various other algorithims since it is a part of the course; although, the algorithim has been modified slightly. The isPrime function returns value of False if n is certainly not prime. A return value of True means n is very likely a prime. If both integers are not prime, new integers are chosen at random untill the condition of primality is satisfied.

In [1]:
import random
import math

In [2]:
def isPrime(num):

  if num == 0 or num % 2 == 0:
    return False
  s = num - 1
  t = 0
                   # keep halving s while it is even (and use t to count how many times we halve s)
  while s%2 == 0:
    s //= 2        #floor division
    t += 1

  for k in range (5):       #num of trials
    a = random.randrange(2, num - 1)
    v = pow(a, s, num)
    if v != 1:              # this test does not apply if v is 1.
      i = 0
      while v != (num - 1):
        if i == t - 1:
          return False
        else:
          i = i + 1
          v = (v ** 2) % num
  return True


The next step is to calculate the product of the two selected primes: p*q = n, which is to be released as part of the public key. Next, the totient function of n - φ(n)- is calculated and its value stored in variable m. Phi function is used to carry out this computation and calculate the totient: φ(n) = (p − 1)(q − 1).

In [4]:
def phi (p,q):
  return ((p-1)*(q-1))

Afterwards, we select an integer e, such that e is co-prime to phi(n) and 1<e<φ(n). 
Two integers 'e' and 'm' are coprime, or mutually prime if the only positive integer that is a divisor of both of them is 1 i.e. gcd(e,m) = 1. Public key also consists of e. The math.gcd() function is used instead of euclidean algorithim to compute the highest common factor since it provides the same result and simplifies the algorithim.
Lastly, we calculate d such that e.d = 1 modϕ(n).
'd' can be found using the extended euclidean algorithm. This equation can be simplified as d = ((k*m)+1)/e. An appropriate constant k must be chosen such that d is an integer. The pair (n,d) makes up the private key.

###RSA algorithim

In [6]:
def rsa(message):

  p = 0
  q = 0

  while not (isPrime(p) and isPrime(q)) or (p == q):
    p = random.randint(50, 100)
    q = random.randint(50, 100)
  
  print ("P =", + p)
  print ("Q =", + q)

  n = p*q
  m = phi(p,q)

  e = 2
  while ((m > e) and (math.gcd(m, e) != 1)):
    e+=1

  print ("Public key (n, e) =", n, ",",e)

  d = 0.01
  k = 0
  while (not d.is_integer()):
    k+=1
    d = ((k*m)+1)/e

  print ("Private key(d) =", + d)

  print("Original message:",+ message)

  ciphertext = (message**e) % n
  print("Encrypted message:",+ ciphertext)

  plaintext = (ciphertext**int(d)) % n
  print("Decrypted message:",+ plaintext)
  return plaintext

###Encryption and Decryption

This implementation of RSA only handles integer messages. In order to accomodate string messages, a padding scheme will have to be implemented. Given a plaintext (integer value) m, the ciphertext c is computed using the public key (n, e). 



![displaying images](https://wikimedia.org/api/rest_v1/media/math/render/svg/b1c63ab770e3152d384046d1d58c8ca0e23d4fb1)


This can be done reasonably quickly, even for very large numbers, using modular exponentiation.

In [None]:
ciphertext = (message**e) % n

The original message/plaintext can be extracted from the ciphertext by using the private key (d) :

![displaying images](https://wikimedia.org/api/rest_v1/media/math/render/svg/10227461ee5f4784484f082d744ba5b8c468668c)

In [None]:
plaintext = (ciphertext**int(d)) % n

## Testing


### Test 1
A certain message will be encypted two times by passing it through the RSA algorithim seperately. The two ciphertexts derived from the same message will be decrypted and compared to see whether the plaintext obtained is also the same.

In [None]:
message = 500
rsa(message)
print("---------------------------")
rsa(message)

###Test 2

Random messages will be generated between the range 100-1000. RSA function will then be called on each message so that the message is encrypted into ciphertext. The ciphertexts will be decrypted and the results obtined in decryption phase compared with the original message. If the text derived after decryption matches with the original message i.e the message was encrypted and decrypted successfully, "Success!" will be printed.

In [None]:
for i in range (6):
  message = random.randint(0, 1000)
  result = (rsa (message))
  print("---------------------------")
  if (result == message):
    print("Test ", i, ": ","Success!")
  else:
    print("Test ", i, ": ","Failure")
  print("---------------------------")

## Conclusion

This notebook focuses on implementing the asymmetric RSA algorithim. It details the fundamental steps required for RSA which are key generation, encryption, and decryption. Moroever, it shows a simplified version of the public key and private key and explains how they are mathmatically linked and the steps required in generating them. Finally, it carries out two tests to determine the correctness of the program.

The security of RSA relies on the practical difficulty of factoring the product of two large prime numbers. RSA is a relatively slow algorithm. Because of this, it is not commonly used to directly encrypt user data. More often, RSA is used to transmit shared keys for symmetric key cryptography.