# Information Security

### CMP-5006

### Alejandro Proano, PhD

# Introduction to Asymmetric Cryptography

## What is Asymmetric Cryptography?

- Asymmetric encryption, also known as, public-key cryptography, is a cryptographic system that uses two different keys: a public key and a private key.
- The public key is used for encryption, while the private key is used for decryption.
- Unlike symmetric encryption, where the same key is used for both encryption and decryption, public-key cryptography provides a more secure way of exchanging encrypted messages.

## How Does Asymmetric Cryptography Work?

**1. Key Generation:**
   - The key pair consists of a public key and a private key.
   - The keys are mathematically related, but it is computationally infeasible to derive the private key from the public key.
   
**2. Encryption:**
   - The sender encrypts the message using the public key, resulting in ciphertext.
   - The ciphertext can only be decrypted using the recipient's private key.
   - We can't use the public key to do anything but encrypting the message.

**3. Decryption:**
   - The recipient decrypts the ciphertext using their private key, revealing the original message.


## Advantages of Asymmetric Cryptography

**1. Key Distribution:**
   - Asymmetric cryptography eliminates the need for a secure channel to exchange keys.
   - The public keys can be freely distributed, while the private keys remain secret.
   - This makes it easier to securely distribute keys to multiple recipients.

**2. Authentication:**
   - Asymmetric cryptography enables digital signatures, which provide authentication and integrity.
   - A digital signature is created using the sender's private key and can be verified using their public key.
   - This ensures that the message has not been tampered with and that it was indeed sent by the claimed sender.

**3. Forward Secrecy:**
   - Asymmetric cryptography allows for forward secrecy, meaning that even if a private key is compromised, past communications remain secure.
   - Each message is encrypted with a unique session key, which is then encrypted with the recipient's public key.
   - If a private key is compromised, only the session keys for future communications are at risk, not the past ones.

## Applications

- **Secure Communication:** Asymmetric encryption is widely used in secure communication protocols like HTTPS, SSH, and S/MIME.
- **Digital Signatures:** Asymmetric encryption is used to create digital signatures, ensuring the authenticity and integrity of digital documents.
- **Key Exchange:** Asymmetric encryption is used for secure key exchange in protocols like Diffie-Hellman.
- **Secure Email:** Asymmetric encryption is used in email encryption protocols like PGP and S/MIME to protect the confidentiality of email messages.
- **Secure File Transfer:** Asymmetric encryption is used in protocols like FTPS and SFTP to secure file transfers over the internet.

## Number Theory

It is essential to understand some basic concepts from number theory.

**Prime Numbers**
- Prime numbers are at the heart of asymmetric encryption. 
- A prime number is a natural number greater than 1 that has no positive divisors other than 1 and itself. For example, 2, 3, 5, 7, and 11 are prime numbers.

**Modular Arithmetic**
- Modular arithmetic is a system of arithmetic for integers, where numbers "wrap around" after reaching a certain value called the modulus. 
- It is widely used in cryptography to perform operations on large numbers efficiently.

## Euclidean Algorithm 

**Goal:** Get the greatest common divisor (gcd) of two positive integers a and b:

1. Set the value of the variable c to the larger of the two values a and b, and set d to the smaller of a and b.
2. Find the remainder when c is divided by d. Call this remainder r.
3. If r = 0, then gcd(a, b) = d. Stop.
4. Otherwise, use the current values of d and r as the new values of c and d, respectively, and go back to step 2.

## 1. RSA Cryptosystem

- Developed in 1977 by Ron Rivest, Adi Shamir, and Leonard Adleman.
- Based on the mathematical properties of large prime numbers and modular arithmetic.
- Provides confidentiality, integrity, authentication, and non-repudiation.

## 2. Key Generation in RSA
- Key generation involves generating a public-private key pair.
- Steps:
  1. Choose two distinct prime numbers, p and q.
  2. Calculate n = p * q, which is the modulus.
  3. Calculate φ(n) = (p-1) * (q-1), which is Euler's totient function.
  4. Choose an integer e such that 1 < e < φ(n) and gcd(e, φ(n)) = 1, it's a coprime of φ(n)
  5. Calculate d, the modular multiplicative inverse of e modulo φ(n), i.e., d ≡ e^(-1) (mod φ(n)).
  6. The public key is (e, n) and the private key is (d, n).

## Example

1. Select two prime numbers: p = 17 and q = 11.
2. Compute the modulus: n = p * q = 17 * 11 = 187.
3. Calculate the totient: φ(n) = (p - 1) * (q - 1) = 16 * 10 = 160.
4. Choose a public exponent: e = 7 (coprime with 160).
5. Compute the private exponent: d = 23 (modular multiplicative inverse of 7 modulo 160).
6. The public key is (n, e) = (187, 7), and the private key is (n, d) = (187, 23).

## 3. Encryption in RSA
- Encryption is performed using the recipient's public key.
- Steps:
  1. Convert the plaintext message into a numerical representation.
  2. Obtain the recipient's public key (e, n).
  3. Compute the ciphertext c = m^e (mod n), where m is the plaintext message.
  4. Transmit the ciphertext to the recipient.

## 4. Decryption in RSA
- Decryption is performed using the recipient's private key.
- Steps:
  1. Obtain the recipient's private key (d, n).
  2. Receive the ciphertext c.
  3. Compute the plaintext message m = c^d (mod n).
  4. Convert the numerical representation of m back into the original plaintext message.

In [2]:
m = 29
n = 187
pub = 7
priv = 23

In [3]:
c = (m ** pub) % n
print(c)

160


In [5]:
print((c**priv) % n)

29


In [6]:
# Encrypt with the private key
m1 = 100

c1 = (m1 ** priv) % n
print(c1)

144


In [7]:
# Decrypt with the public key
print((c1**pub)%n)

100
