# Asymetric Criptography

## 1. Introduction

In this second lab of the subject of system administration and security, we will focus on how does it work asymetric criptography. As you know, cryptography is a very useful tool when computer security is desired; it can also be understood as a means to guarantee the confidentiality, integrity and availability properties of a system's resources. 

In the previous lab, we started to use symmetric criptography, in which you only need a key to encrypt and decrypt, basically as classical cryptography. With this type of cryptography we can guarantee confidentiality because only whoever has the secret key will be able to see the message. 

The problem with symmetric cryptography is that if I wanted to share secrets with m people, for each person I would have to generate a new secret key and the personal administration of all m keys would be chaotic. Another problem associated with this type of cryptography is how I share with another person in a confidential and integrated way the secret key. These problems are solved to some extent with asymmetric cryptography.


In Asymetric criptography dissapears this symmetry by adding a public key. Basically, the public key is used for encrypt data, wheread the other one, the private key is used to decrypt that data. 

Adding this public key, we solve many problems, some metioned previously:
- **Safe distribution of keys**: In symmetric criptography you need a safe channel to share the private key. With asymmetric, using a public key to encrypt and a private key to decrypt, it is deleted the necessity to share private key.

- **Keys scalability**: In symmetric criptography, the number of keys grows exponentially with the number of users we need to share key. With asymmetric, each user only needs a pair of keys(public and private), simplifying the management.

- **Authenticity**: In symmetric criptography, anyone with the key can encrypt, making it impossible to verify who sent the message. With asymmetric, digital signatures with the private key guarantee the authenticity of the sender.

- **No long-term confidentiality**: In symmetric criptography, if a symmetric key is compromised, all messages encrypted with it are exposed. With asymmetric, the private key is not shared and messages encrypted with the public key remain secure

Apart from using asymetric Criptography, we will also use the Diffie-Hellman algorythm. The main objective of this algorythm is to achieve the exchange of a secret key via an unsafe channel like Internet. In order to understand Diffie-Hellman because it is quite hard mathematically, I will use the example with colours. 

### Exemple with colours

Imagine the situation that Sahoni and Ruben want to share a secret colour and for that, they follow the next algorythm: 
- Sahoni & Ruben start using the same colour that anybody can know. 
- Later, each one adds a secret colour that only they know(individually).
- After, they exchange the colours via a channel that anybody can know. 
- Finally, each one add the secret colour to the mixture that each one received. Then, both will have the same colour.

If you understand it good, you know now what it consist of Deffie Hellman algorythm. 

<img src="llustration-of-Diffie-Hellman-algorithm-with-colors.png" width="500" height="500" alt="Asymmetric Cryptography">

In our case, we will use this algorythm with number. Instead of using colours, we will use numbers in order to create a secret number or a password that it will be used to encrypt our messages. And why not to encrypt our messages with asymmetric criptography ? 

Basically because it is computationally **more expensive and slower** than symmetric criptography. For this reason, we will use both types.

# 2. Objective of the lab 

The objective of lab is to understand the fundamentals of asymmetric cryptography by implementing a safe communication between two clients with this tool. 


 In order to be done, the lab will be spread in three parts: 

- The first part, implement a function or algorythm to generate keys.
- The second part, implement a channel to exchange keys.
- The third part, implement a second channel to exchange the encrypted number and decrypt them.
- The fourth part, use the same channel to exchange a message with the secret number.

In this practice, you will be exploring the whole process of protecting information. In addition, the student is expected to analyse the importance of maintaining the secret key and experiment with the risks associated with using incorrect keys for decryption.

Also, you need to know that on this file it will be done client A. On the file asymmetric-Criptography-B will be done the other client.

# 3. Development of the lab 

Before you start the lab, it is interesting you install a library. 

In [1]:
%pip install cryptography

Note: you may need to restart the kernel to use updated packages.



[notice] A new release of pip is available: 24.0 -> 24.3.1
[notice] To update, run: python.exe -m pip install --upgrade pip


This library gives us tools to use to implement cryptography.

Once you have done it, you should import two libraries in order that the development goes properly.

In [2]:
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization

- **rsa**: This import allows us to generate keys and also to encrypt and decrypt files.

- **serialization**: This import allow us to serialize and deserialize cryptographic keys.

### 3.1. Part I: Generation of keys

First of all, you will need to create the function to generate both keys. I suggest you that the the size of the key should be of 4096 bit in order you don't have any problem when you send a message. Moreover, the public_exponent parameter is 65537 because almost everyone use it.

In [3]:
def generate_keys_a():
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=4096
        # Depending the size of the key, the encryption and decryption will be faster or slower
        # Also, the size of the key will determine the security of the key
        # Besides, the size of the key will determine the size of the encrypted message
    )
    public_key = private_key.public_key()
    return private_key, public_key

private_key_a, public_key_a = generate_keys_a()

Afterwards, you will need to convert that keys to another format. I suggest you that you find information about PEM format because with this format,  keys can be *readable*. Instead, if you want to pass it into another format, I suggest you using DER format where keys will in binary code.

In [4]:
public_pem_a = public_key_a.public_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PublicFormat.SubjectPublicKeyInfo
)

In [5]:
private_pem_a = private_key_a.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.PKCS8,
    encryption_algorithm=serialization.NoEncryption()
)

In [6]:
print("Private key:\n", public_pem_a.decode())
print("Public key:\n", private_pem_a.decode())

Private key:
 -----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

Public key:
 -----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQCezYqm1UiAei6K
587YXUlRdgAXsxrG+nPoqJ9Ecf/uNqnZ1CrXj6Vgoq4puC/IayS4bULaSBkh5xip
4IPf4oJDVjo4Y5

### 3.2. Part II: Implement a channel to exchange keys

On this second part, you will need to develop two vital points.
- Create a communication channel to exchange keys.
- Send the mix of numbers and save them locally.

Firstly, you will need to import the library socket in order you can use all its functions.

In [7]:
import socket
from cryptography.hazmat.backends import default_backend

The first import gives you tools to implement network communication. The second is a module from the cryptography library that is used for implementing specific cryptographics operations like key generation, signs, etc.

Later, you will to need to make a function to make the communication channel from client A to client B. In this case, client A (the one you will develop here) will be the one who will wait for the connection from the other client. I suggest that you make the channel via TCP.

In [8]:
def client_a_exchange():
    with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:  # Create tcp socket
        s.bind(('localhost', 12345))  # Associate the socket with a specific network interface and port number
        s.listen()  # Put the socket into server mode and wait for a connection
        print("Waiting connection from client B...")

        conn, addr = s.accept()  # Accept a connection
        with conn:
            print(f"Connection established with {addr}")
            conn.sendall(public_pem_a)  # Send the public key to Client B
            client_b_public = conn.recv(1024)  # Receive the public key from Client B
            print("Public B key received:\n", client_b_public.decode())

            client_b_public_key = serialization.load_pem_public_key(
            client_b_public,
            backend=default_backend()
            )
            

            return client_b_public_key
            
client_b_public = client_a_exchange()

Waiting connection from client B...
Connection established with ('127.0.0.1', 52673)
Public B key received:
 -----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----



If you did it correctly, you should receive the public key from B client.

### 3.3. Part III: Second channel development and sending of encrypted message key

In the last part of this lab, you will need to develop a second channel in order to send the encrypted mixed number to B and after, A will send its mixed number. You need to know that you **CAN'T USE**  the same channel where you made the exchange of keys. The phases of this part are the following ones: 

- Sign the mixed number with A private key (Client A) and sign the mixed number with B private key (Client B)
- Use the public key to encrypt the mixed number (Client A & B)
- Create the channel to transmit the mixed number (Client A & B)
- Transmit the mixed numbers through the channel (Client A & B)
- Decrypt the mixed number that they were sent (Client A & B)

First of all, you will need to import two more libraries in order you can do properly this part. 

In [9]:
from cryptography.hazmat.primitives.asymmetric import padding
from cryptography.hazmat.primitives import hashes

- **padding**: It allows us to protect data when you encrypt or decrypt it.
- **hashes**: It gives support for hashing algorythms. Basically, it maintains the integrity of our data.

After adding both libraries, first, you will need to do the function that makes possible to do the mix between the public numbers and the private number of client A.

In [10]:
def power(a,b,p):
    if b == 1:
        return a
    else:
        return pow(a, b) % p

In [11]:
public_num_a = 7
public_num_b = 13
private_num_a = 3

key_a_generated = power(public_num_a, private_num_a,public_num_b)
print("Key generated by A: ", key_a_generated)

Key generated by A:  5


Once finished the mixed number generation function, you will need to code the part that allows you to sign the message with B private key.

In [12]:
# Sign the message
signature = private_key_a.sign(
    str(key_a_generated).encode(),
    padding.PSS(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        salt_length=padding.PSS.MAX_LENGTH
    ),
    hashes.SHA256()
)

print("Firm generated:", signature)


Firm generated: b'\x171\x9c\xcf\x19\xa8\xcf\xaa\xe7p\xd6\x1e5o\r\xd2\x8d\x1anjS\x92\x1d\xce&\xca\x87h\xc1\x1a\xc1\x0f\xee^\xcea\x01i\xd5_\xa0\x070A\xae\xbf\x19\xf6\x8e\xcd?\x90\x9f\xc3\xd2\xc4\x1e\x0f0\x96\xc3B\xd8\xd5>\x9f\x9b\x14\x0e\x9c\x80\xe9\xfd\xc0\r\xe06*\xfe\x162\x17>\xf4n\x92\x97\xabg\x91\xae\xe4\xc6\xc6\xbeR\xc2\xab\xa6\xeaf\xb1\x19\xa7\xd2\xbcM\xdf\x8eo2$\xb3Z\xacA\x95\x0c\x84\xb7\xa8\xaffb\x14\x00\x00\x87\x81\xa0\x9d/\x0e\x82V\xbbx\x92\xf0\x01\xddG\xf0\xe0\xc6{l\xb0R`\xbcr\xb1B\x02\x9a\xf5\xf7\xb0E\x88^\xb8\xb1\r\xf1\xf6T\xa2TUh\xba\xd9\rW\x94Z)\x15\x15\xa3\xcc\x1d\xba~RZ\x19h0\x9d\x13\x1c\xbe[\xca\xbeZ\xf6\xea@P\xc0\x10\xa5\x00\x82\xd62\x90\xde\n}\xe1\xc5U\x03{\x08E\x00\x1a\xbf\xf51*\x99\xf3L4\xa3y\xec\n\xa7C.\xcde\x97\xe6\xbeR\x8d\xef\xd1\xbd\x85\x17e\x97y\xad\x96\xaf\x9fW9\x17\x19<,";P\xed\x1b\x0c\x85R#c\xa2\xe8\xbc\x8b\x9cF\xad\x02\xab,\xb02)r\xd5\x88\xd4\xa4\xbe,+\x006\xe9/\x11V\xf07\xccj\xce6Vf\xe3@\x84\x00u,\xa2Bi\xc2\xa0\xa7h2v\x04\x18y\x15W\xa4&\xf2A\xc3\r\xca,\xe

From the signing process, there are several things that need to be explained: 
- PS5 Padding: Padding adds  randomness to prevent pattern-related attacks on signed data. It can be used or PS5 or PKCSv15. Normally, the recommended choice is PS5 for any new protocols or appplications. Then, PKCSv15 is usually used to support legacy protocols. 

- mgf : A function mask generator based on hash SHA256 algorythm. MGF1 generates random values that they are combined with the message to ensure a unique padding.

- salt-length: It stablishes the "jump" length (an additional random value used to ensure the randomness) 

- hashes.SHA256 : It is the hash algorythm to generate a summary of the message. The summary is compact and fixed representation of data. You can use different hashes from different families. In my case, I used this one because is enough for most of modern applications.

Now, you need to encrypt the message.

In [None]:
chunk_size = 214
data_to_encrypt = str(key_a_generated).encode() + b"||SIGNATURE||" + signature
encrypted_blocks = []

# Divide the message in chunks
for i in range(0, len(data_to_encrypt), chunk_size):
    chunk = data_to_encrypt[i:i + chunk_size]
        
    # Cypher the chunk
    encrypted_chunk = client_b_public.encrypt(
        chunk,
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
    )
    print(len(encrypted_chunk))
    encrypted_blocks.append(encrypted_chunk)

print("Encrypted blocks:", encrypted_blocks)

512
512
512
Encrypted blocks: [b'\x82\xb0\x9e\n\xe06\x8d\xe4\'\xaa\x8c\xf1\x1ex\x0c\x8b2\xe3:\x15\xb0\xe7\xa1\xb5\x9a\xb8\xcfJ\x04\xf3/z\xbe\x13\xe9\x86\xe8v-\xd3\xcf~\xbe\xd9\xf9\x06\xe3\xeey\xe1\x10\xcb\xb2\x04\x9d\x927\x90\xf2\x95\x01\x83;/<s)Z\x0fi\x9f\xedG=,h\xe6*$h_?\x17\xcf;\xa7\x12\xdbwxR\xe5.\x81\xc0\x9c\x12\xe3\x1d\x1dmD2x3\xc5i\xf6\x16i1\x95\x05t\x0b\x89\x98}\xd7 zg\xb6\xbe"\x8f\xa3\xd9\xa5U\x87S\x82\x93\xc8\xdd\xc5`)\x95\xa5\xc1\xa7\xf2A&\xbft`\xf79\xbd\x92\xab\xb8\'\xab\x0cN\x0c\x06~\xe4\xd8\xe8~v\xde\xe31i/)\xbeDg\xc4\xe6\x8c\xe0A\xd1T\x89\xbe.\xf8p\xca\x8eW6\x9f\x915\xff\x0e._\x049\xcf\xd5\xe4\xcf\x02\x15^\xf7\x91\x02c\xc8Q\xde\xe2\x92\x8b3K\xfd\xe8$61\xf5\xef\x9eD\x11S\xdeeH\x15M\xd8\x1d\x04P\x1a#\xb0l\xe4\x9d\x19\x9f\x93S\x85<\x96\x8a\x0b\xaa3\xe1uq\x15{\x067\x04\xcb\xe3$6v\xb2\xdf\xd2\xee\xbc\x08_\x0b\xd1\xb1|Y\xbf/\xbcO\xd9\xcf!\xa4\xd2\x07#A\'\xc7\xda\xfc,rR^\xfd\xb4\x81\xf2\xb2\'\\it\x03R$\xa0\xd5q9\xabk\x8e\x9f\xa2M\x0f\x0f\x82\xca\xc0\x89p\x00.\x05E[u\t\x90\x17\x

In order to encrypt the message, firstly, you need to create a string where you will need to concatenate the message with signature. Between the message and the signature, I recommend that you put a flag to separate the message and the signature. Afterwards, you may need to separate the whole message in chunks or blocks in order to not exceed the hash maximum permited length. 

From the encryption function, you should know that the message is encrypted the public key, meaning anyone can encrypt data. Then, when the message is sent and received by somebody, the receiver needs to decrypt the data with private key. Moreover, like signtures, RSA supports encryption with several different padding options. In our case, valid paddings for encryption can be OAEP or PKCS1v15. OAEP is the most recommended for any new protocols whereas PKCS1v15, it should be only used to support legacy protocols.

Later, you will require to do the communication channel in order you can send the encrypted message to the other client. You can wait until client B opens the channel and then, you send the message, or opposite.

Later, you need to create the function that allows to send the message for client A.

In [15]:
# Send the encrypted message to Client B
def send_encrypted_message(encrypted_blocks):
    with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
        s.connect(('localhost', 12346))  # Channel 2
        for block in encrypted_blocks:
            print(len(block))
            s.sendall(block)
        
        print("Message sent to Client B")

send_encrypted_message(encrypted_blocks)

512
512
512
Message sent to Client B


Basically, you need to wait until the client B opens the channel. Once it is opened, client A tries to connect. Once it is connected, it start sending in blocks the encrypted message.

Now, you need to change the roles from both clients. Client B will send the mixed number to client A.

In [16]:
def receive_and_decrypt_message(private_key_a):
    with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
        s.bind(('localhost', 12346))
        s.listen()
        print("Waiting for encrypted message...")
        conn, addr = s.accept()
        with conn:
            encrypted_message_parts = []
            while True:
                part = conn.recv(1024)
                if not part:
                    break
                encrypted_message_parts.append(part)

            decrypted_data = b""
            for encrypted_part in encrypted_message_parts:
                decrypted_part = private_key_a.decrypt(
                    encrypted_part,
                    padding.OAEP(
                        mgf=padding.MGF1(algorithm=hashes.SHA256()),
                        algorithm=hashes.SHA256(),
                        label=None
                    )
                )
                decrypted_data += decrypted_part

            print("Decrypted message received")
            return decrypted_data

decrypted_data = receive_and_decrypt_message(private_key_a)

Waiting for encrypted message...
Decrypted message received


After both clients have received their mixed numbers, you will need to verify if the message was sent by the correct sender. Basically, you will need to separate the message and the signature. Later, you will need to use the function to verify both things.

In [17]:
key_from_b, signature = decrypted_data.split(b"||SIGNATURE||") 

try:
    client_b_public.verify(
        signature,  # Firma a verificar
        key_from_b,    # Mensaje original
        padding.PSS(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            salt_length=padding.PSS.MAX_LENGTH  # Longitud del salt
        ),
        hashes.SHA256()  # Algoritmo hash utilizado
    )
    print("The firm is valid:", key_from_b.decode())
except Exception as e:
    print("The firm is not valid:", e)

The firm is valid: 11


### 3.4. Part IV: Transmission of encrypted messages with the Deffie-Hellman key

If the signature was right, no exception message will appear. Then, after transforming the number from string to integer, you need to create the secret number that will be the same for both clients. 

In [18]:
secret_key_num = power(int(key_from_b), private_num_a, public_num_b)
print("Secret number key generated by A:", secret_key_num)

Secret number key generated by A: 5


Once you have the secret number key, now client B will send an encrypted message through symmetric encryption. In order to encrypt it, you can free to use any type of symmetric encryption algorythm. In my case, I will use the characters movement technique with tha ASCII code table.

After entering the secret message and encrypting it, you will need to send it to client A.

In [19]:
def receive_and_decrypt_message():
    with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
        s.bind(('localhost', 12346))
        s.listen()
        print("Waiting for encrypted message...")
        conn, addr = s.accept()
        with conn:
            return conn.recv(1024)

decrypted_data = receive_and_decrypt_message()

Waiting for encrypted message...


Once has been the message, client A needs to decrypt it.

In [20]:
decrypted_message = ''.join([chr(num - secret_key_num) for num in decrypted_data])
print("Decrypted message:", decrypted_message)

Decrypted message: buenos dias
