In [2]:
import hashlib
import secrets
import random
from typing import Tuple, List, Dict, Callable

# Security parameter (key length in bits)
K = 128

In [None]:
def G(key_a: bytes, key_b: bytes, gate_id: int) -> bytes:
    """
    Pseudorandom generator (PRG) using cryptographic hash.
    Takes two keys and gate identifier, outputs a pseudorandom string.
    """
    h = hashlib.sha256()
    h.update(key_a)
    h.update(key_b)
    h.update(gate_id.to_bytes(4, 'big')) 
    # return h.digest()[:K // 8]
    return h.digest() # 32 bytes


def generate_random_key() -> bytes:
    """Generate a random k-bit key."""
    return secrets.token_bytes(K // 8)


def xor_bytes(a: bytes, b: bytes) -> bytes:
    """XOR two byte strings."""
    return bytes(x ^ y for x, y in zip(a, b))

b"I'\xbbxP:\xe7\x03\x17U\x87\x98\x84\xdc\xcc|" 16
b'e\xbe\x91\x13\xf9\xb2\xbe\xdeJ\x80\xad3\xdd!\xca\x02' 16


In [None]:
#enc


def enc(k_1: bytes, k_2:bytes , gate_number :int, m: bytes) -> bytes:
    """
    Encrypt message m(k_3) using two keys k_1 and k_2, and gate number.
    
    Args:
        k_1: 16-byte key
        k_2: 16-byte key
        gate_number: Gate identifier
        m: 16-byte key
    
    Returns:
        32-byte ciphertext
    """
    c_1 = G(k_1, k_2, gate_number) # 32 bytes
    # generate 16 byes of 0s and pad it to message
    pad = bytes([0]*16)    
    m = m + pad
    print(f"m after padding: {m}, len: {len(m)}")
    c_2 = xor_bytes(c_1, m)
    return c_2


def dec(k_1: bytes, k_2:bytes , gate_number :int, c: bytes) -> bytes:

    c_2 = G(k_1, k_2, gate_number) # 32 bytes
    m = xor_bytes(c, c_2)

    #if the last 16 bytes are not 0s, then return bot
    # else return first 16 bytes 
    if m[16:] != bytes([0]*16):
        raise ValueError("Decryption failed: return BOT")
    else:
        return m[:16] # return first 16 bytes(that would be the output key)
    


    pass              
    

In [40]:
a = [1,2,3,4,5]
print(a[2:])

[3, 4, 5]


In [54]:

k_1 = generate_random_key()
k_2 = generate_random_key()
m = generate_random_key()

c = G(k_1, k_2, 0)

print(c, len(c))

c = enc(k_1, k_2, 0, m)
print(c, len(c))

print("===============================")
m_decrypted = dec(k_1, k_2, 0, c)
print(m_decrypted, len(m_decrypted))

#is m_decrypted same as m?
print(m == m_decrypted)

b'\xd2\xc7v"\x87\x05sJ*\xd9Q%\x17\xc3\x8fP3\x99&\xc0y\x11\\!\xe6\xc5o\xafk7\xf7\xd1' 32
m after padding: b'\xa9h\x87\xe6\x12\xfa7\xd2\\X\x93\x06\x0ci\xda\xf5\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', len: 32
b'{\xaf\xf1\xc4\x95\xffD\x98v\x81\xc2#\x1b\xaaU\xa53\x99&\xc0y\x11\\!\xe6\xc5o\xafk7\xf7\xd1' 32
b'\xa9h\x87\xe6\x12\xfa7\xd2\\X\x93\x06\x0ci\xda\xf5' 16
True
