# Ch2: Mathematics of Cryptography

## 1.1 Euclid's Algorithm 
Find the gcd of any 2 given numbers `a` and `b`

In [8]:
def gcd(a, b):
    return gcd(b, a % b) if b != 0 else a

In [9]:
# test using custom parameters
print(gcd(10, 2))

2


## 1.2 Extended Euclid's Algorithm
To find the solution to the equation $ax + by = gcd(a, b)$.

In [10]:
def extended_gcd(a, b):
    s, old_s = 1, 0
    t, old_t = 0, 1

    while b != 0:
        q = a // b
        a, b = b, a % b
        s, old_s = old_s, s - q * old_s
        t, old_t = old_t, t - q * old_t
    return a, s, t

In [11]:
# test using any custom pramters a and b
a = 161
b = 28
hcf, s, t = extended_gcd(a, b)
print(s * a + t * b, hcf)

7 7


## 1.3 Diophantine's Equation
The diopahntine's equation $ax + by = c$ has a solution when $gcd(a, b) | c$.

In [12]:
def diophantine_sol_exists(a, b, c):
    hcf = gcd(a, b)
    return c % hcf == 0

In [13]:
# returns solution of diophantine equation in form (x, y) if exists
# returns the particular solution otherwise returns nothing
def diophantine(a, b, c):
    hcf = gcd(a, b)
    # solution exits
    if c % hcf == 0:
        _, s, t = extended_gcd(a / hcf, b / hcf)
        return int((c / hcf) * s), int((c / hcf) * t)

In [14]:
# generator function to iterate over solutions
def diophantine_general(a, b, c, iters=10):
    if diophantine_sol_exists(a, b, c):
        x, y = diophantine(a, b, c)
        hcf = gcd(a, b)
        for i in range(iters):
            yield x + i * (b // hcf), y - i * (a // hcf)

In [15]:
for x, y in diophantine_general(20, 5, 100, iters=6):
    print(x, y)

0 20
1 16
2 12
3 8
4 4
5 0


## 1.4 Additive Inverse
Additive inverse of number $a$ in $Z_{n}$ always exists

In [16]:
def additive_inverse(a, n):
    return (n - a) % n

In [17]:
print(additive_inverse(0, 10))
print(additive_inverse(4, 10))

0
6


## 1.5 Multiplicative Inverse
Multiplicate inverse of $a$ in $Z_{n}$ exists only if $a$ and $n$ are relitively prime i.e. $gcd(a, n) = 1$. The multiplicative inverse if exists means that $(a * b) mod(n) = 1$ where $b$ is the multiplicative inverse. 

In [18]:
def multiplicative_inverse_exists(a, n):
    return gcd(a, n) == 1

In [19]:
print(multiplicative_inverse_exists(8, 10))

False


In [20]:
def multiplicative_inverse(a, n):
    if multiplicative_inverse_exists(a, n):
        for num in range(n):
            if multiplicative_inverse_exists(num, n) and (a * num) % n == 1:
                return num

In [21]:
print(multiplicative_inverse(1, 10))

1


In [22]:
print(multiplicative_inverse(3, 10))

7


In [25]:
# finding all multiplcative inverse pairs in modulo n
def multiplicative_inverses(n):
    pairs = []
    for num in range(n):
        if multiplicative_inverse_exists(num, n):
            pairs.append((num, multiplicative_inverse(num, n)))
    return pairs

In [26]:
print(multiplicative_inverses(11))

[(1, 1), (2, 6), (3, 4), (4, 3), (5, 9), (6, 2), (7, 8), (8, 7), (9, 5), (10, 10)]


if their exists a multiplicative inverse of $b$ in $Z_n$ then the multiplicative inverse of $b$ is the solution of the extended euclid's algorithm for $n$ and $b$ where the value of `t` will be the multiplicative inverse.

In [32]:
def multiplicative_inverse(b, n):
    if multiplicative_inverse_exists(b, n):
        return (extended_gcd(n, b)[2] + n) % n

In [33]:
print(multiplicative_inverse(3, 10))

7


In [34]:
print(multiplicative_inverse(2, 10))

None


In [37]:
print(multiplicative_inverse(11, 26))

19


In [38]:
print(multiplicative_inverse(23, 100))

87


In [42]:
print(multiplicative_inverse(12, 26))

None


In [35]:
print(multiplicative_inverses(11))

[(1, 1), (2, 6), (3, 4), (4, 3), (5, 9), (6, 2), (7, 8), (8, 7), (9, 5), (10, 10)]


## 1.5 Soltions to Sigle Variable Linear Equations 
The solution to the equatin of form $ax \cong b \% n$ for x exists if $gcd(a, n) | b$ and the number of solutions are $gcd(a, n)$ The particular solution $x_0 = (b * (a / gcd(a, n))^{-1}) \% (n / gcd(a, n))$ and the general solutions are $x = x_0 + k(n / gcd(a, n))$.

In [51]:
def sol_single_var_le(a, b, n):
    hcf = gcd(a, n)
    sols = []
    if b % hcf == 0:
        a, b, n = a // hcf, b // hcf, n // hcf
        x_0 = (b * multiplicative_inverse(a, n)) % n
        for k in range(hcf):
            sols.append(x_0 + k * n)
    return sols

In [52]:
print(sol_single_var_le(14, 12, 18))

[6, 15]


For equations of the form $ax + c \cong b \% n$ we first subtract $c$ from both sides to obtain $b = (b - c) \% n$. Then we obtain an equation of form $ax \cong b \% n$ and we use previous method solve.

In [55]:
def sol_single_var_le(a, b, n, c=0):
    if c != 0:
        b = (b - c) % n
        
    hcf = gcd(a, n)
    sols = []
    if b % hcf == 0:
        a, b, n = a // hcf, b // hcf, n // hcf
        x_0 = (b * multiplicative_inverse(a, n)) % n
        for k in range(hcf):
            sols.append(x_0 + k * n)
    return sols

In [56]:
print(sol_single_var_le(a=3, b=6, n=13, c=4))

[5]


In [57]:
print(sol_single_var_le(14, 12, 18))

[6, 15]
