In [None]:
import hashlib

# Simulated Blockchain
blockchain = []

# ABAC Policies (Simulated)
abac_policies = {
    "sensor": ["read", "store"],
    "admin": ["read", "store", "decrypt"],  # Admin can decrypt
    "user": ["read"],  # User can only read, not decrypt
}

def xor_hex(a, b):
    return hex(int(a, 16) ^ int(b, 16))[2:].zfill(len(a))

def text_to_hex(text):
    """Converts a plaintext string into hexadecimal representation."""
    return text.encode().hex()

def hex_to_text(hex_str):
    """Converts hexadecimal representation back to plaintext string."""
    try:
        return bytes.fromhex(hex_str).decode()
    except ValueError:
        return "Invalid Hex Data"

def ascon_encrypt(data, key, nonce, attributes):
    state = hashlib.sha256((key + nonce).encode()).hexdigest()[:16]  # Initial state
    cipher = xor_hex(data, state)
    auth_tag = hashlib.sha256((cipher + ''.join(attributes)).encode()).hexdigest()[:16]
    print(f"Encryption Process:\n  Plaintext: {hex_to_text(data)}\n  Key: {key}\n  Nonce: {nonce}\n  Ciphertext: {cipher}\n  Auth Tag: {auth_tag}\n")
    return cipher, auth_tag

def ascon_decrypt(ciphertext, key, nonce, auth_tag, attributes):
    state = hashlib.sha256((key + nonce).encode()).hexdigest()[:16]  # Initial state
    expected_auth_tag = hashlib.sha256((ciphertext + ''.join(attributes)).encode()).hexdigest()[:16]
    if auth_tag == expected_auth_tag:
        decrypted_data = xor_hex(ciphertext, state)
        print(f"Decryption Process:\n  Ciphertext: {ciphertext}\n  Key: {key}\n  Nonce: {nonce}\n  Decrypted Data: {hex_to_text(decrypted_data)}\n")
        return hex_to_text(decrypted_data)
    return "Authentication Failed"

def store_iot_data(device, data, key, nonce):
    attributes = [device]
    data_hex = text_to_hex(data)  # Convert plaintext to hex
    if "store" in abac_policies.get(device, []):
        encrypted_data, auth_tag = ascon_encrypt(data_hex, key, nonce, attributes)
        blockchain.append({"device": device, "cipher": encrypted_data, "auth_tag": auth_tag, "attributes": attributes})
        print(f"Blockchain Update:\n  Device: {device}\n  Stored Ciphertext: {encrypted_data}\n  Auth Tag: {auth_tag}\n  Attributes: {attributes}\n")
        return "Data stored in blockchain."
    return "Storage denied."

def access_iot_data(requester, index, key, nonce):
    if index >= len(blockchain):
        return "Invalid blockchain index."
    transaction = blockchain[index]

    if requester == "admin":
        return ascon_decrypt(transaction["cipher"], key, nonce, transaction["auth_tag"], transaction["attributes"])
    elif requester == "user":
        return "Access Denied: Users are not allowed to decrypt data."
    else:
        return "Access Denied: Unauthorized role."

# User input for IoT data
device = input("Enter IoT device type (sensor/admin/user): ")
data = input("Enter data to be encrypted: ")  # Now takes plaintext

# Example Usage
key = "abcdef1234567890abcdef1234567890"  # 128-bit key (hex)
nonce = "1234567890abcdef12345678"  # 96-bit nonce (hex)

# IoT device stores data
print(store_iot_data(device, data, key, nonce))

# Requesters try to access data
requester = input("Enter requester type (admin/user): ")
print(access_iot_data(requester, 0, key, nonce))  # Access stored data


Enter IoT device type (sensor/admin/user): sensor
Enter data to be encrypted: Humidity:45 Temp:23
Encryption Process:
  Plaintext: Humidity:45 Temp:23
  Key: abcdef1234567890abcdef1234567890
  Nonce: 1234567890abcdef12345678
  Ciphertext: 48756d69646974793a34358d29a99337f56ebf
  Auth Tag: 8192ac7342ad0705

Blockchain Update:
  Device: sensor
  Stored Ciphertext: 48756d69646974793a34358d29a99337f56ebf
  Auth Tag: 8192ac7342ad0705
  Attributes: ['sensor']

Data stored in blockchain.
Enter requester type (admin/user): admin
Decryption Process:
  Ciphertext: 48756d69646974793a34358d29a99337f56ebf
  Key: abcdef1234567890abcdef1234567890
  Nonce: 1234567890abcdef12345678
  Decrypted Data: Humidity:45 Temp:23

Humidity:45 Temp:23


In [None]:
import hashlib

# Simulated Blockchain
blockchain = []

# ABAC Policies (Simulated)
abac_policies = {
    "sensor": ["read", "store"],
    "admin": ["read", "store", "decrypt"],  # Admin can decrypt
    "user": ["read"],  # User can only read, not decrypt
}

def xor_hex(a, b):
    return hex(int(a, 16) ^ int(b, 16))[2:].zfill(len(a))

def text_to_hex(text):
    """Converts a plaintext string into hexadecimal representation."""
    return text.encode().hex()

def hex_to_text(hex_str):
    """Converts hexadecimal representation back to plaintext string."""
    try:
        return bytes.fromhex(hex_str).decode()
    except ValueError:
        return "Invalid Hex Data"

def ascon_encrypt(data, key, nonce, attributes):
    state = hashlib.sha256((key + nonce).encode()).hexdigest()[:16]  # Initial state
    cipher = xor_hex(data, state)
    auth_tag = hashlib.sha256((cipher + ''.join(attributes)).encode()).hexdigest()[:16]
    print(f"Encryption Process:\n  Plaintext: {hex_to_text(data)}\n  Key: {key}\n  Nonce: {nonce}\n  Ciphertext: {cipher}\n  Auth Tag: {auth_tag}\n")
    return cipher, auth_tag

def ascon_decrypt(ciphertext, key, nonce, auth_tag, attributes):
    state = hashlib.sha256((key + nonce).encode()).hexdigest()[:16]  # Initial state
    expected_auth_tag = hashlib.sha256((ciphertext + ''.join(attributes)).encode()).hexdigest()[:16]
    if auth_tag == expected_auth_tag:
        decrypted_data = xor_hex(ciphertext, state)
        print(f"Decryption Process:\n  Ciphertext: {ciphertext}\n  Key: {key}\n  Nonce: {nonce}\n  Decrypted Data: {hex_to_text(decrypted_data)}\n")
        return hex_to_text(decrypted_data)
    return "Authentication Failed"

def store_iot_data(device, data, key, nonce):
    attributes = [device]
    data_hex = text_to_hex(data)  # Convert plaintext to hex
    if "store" in abac_policies.get(device, []):
        encrypted_data, auth_tag = ascon_encrypt(data_hex, key, nonce, attributes)
        blockchain.append({"device": device, "cipher": encrypted_data, "auth_tag": auth_tag, "attributes": attributes})
        print(f"Blockchain Update:\n  Device: {device}\n  Stored Ciphertext: {encrypted_data}\n  Auth Tag: {auth_tag}\n  Attributes: {attributes}\n")
        return "Data stored in blockchain."
    return "Storage denied."

def access_iot_data(requester, index, key, nonce):
    if index >= len(blockchain):
        return "Invalid blockchain index."
    transaction = blockchain[index]

    if requester == "admin":
        return ascon_decrypt(transaction["cipher"], key, nonce, transaction["auth_tag"], transaction["attributes"])
    elif requester == "user":
        return "Access Denied: Users are not allowed to decrypt data."
    else:
        return "Access Denied: Unauthorized role."

# User input for IoT data
device = input("Enter IoT device type (sensor/admin/user): ")
data = input("Enter data to be encrypted: ")  # Now takes plaintext

# Example Usage
key = "abcdef1234567890abcdef1234567890"  # 128-bit key (hex)
nonce = "1234567890abcdef12345678"  # 96-bit nonce (hex)

# IoT device stores data
print(store_iot_data(device, data, key, nonce))

# Requesters try to access data
requester = input("Enter requester type (admin/user): ")
print(access_iot_data(requester, 0, key, nonce))  # Access stored data


Enter IoT device type (sensor/admin/user): user
Enter data to be encrypted: Humidity:34
Storage denied.
Enter requester type (admin/user): user
Invalid blockchain index.
