# Pictures as Secure Group Messages
## Test Code by Charlie Cook
## Done on April 5th 2020

Imports of what we need from PyCryptoDome *(version 3.9.7)*

In [1]:
from Crypto.PublicKey import RSA as rsa
from Crypto.Random import get_random_bytes as grb
from Crypto.Cipher import AES as aes
from Crypto.Cipher import PKCS1_OAEP as pkcs1_oaep

### RSA Stuff

In [2]:
myKeyRSA = rsa.generate(2048)

In [3]:
myKeyRSA

RsaKey(n=23427737933818228454441308802653478721314732711805557373913878500449622724853215130996536697510177077210715847694368409436887453450539104539321130660327822091216406551938711067416801837480199104829881161933044149376324046872714946528820196924461007100812806857081926849949300063720865487269958040670568347292173422019500785654813917931051122537767700783580878546492048898806076394644789690447149886616687256554825554668740411530670313879681362921340560266465877883113484153412580765257930120209208728113181368809673407346166829260528692434840458467839490133894163456818484264237578444736382277130225706582311963761399, e=65537, d=6183099223267405559714153906799156765638857848317695205926378256498013453940183067821283088096815989626541980544632684670135902668459415467829233715124843921821359618638325003627761658029548354617099417086051446313469006272411912738252081615017886376963529750695440154639715887241688970273474641451372464109204848768259819104645871921365547164851414232899575617

Public Key Encryption Object (U for **pUblic**)

In [4]:
myCipherU = pkcs1_oaep.new(myKeyRSA.publickey())

In [5]:
myCipherU

<Crypto.Cipher.PKCS1_OAEP.PKCS1OAEP_Cipher at 0x7f40642804c0>

Ciphertext (the argument for any Encryption Object must be a `bytes` object)

In [6]:
c = myCipherU.encrypt(bytes("Hello World!", "ascii"))

In [7]:
c

b'e\xfb\x1eF\xa9\xb8\x8e\x05,\xd2>xR\x1d\n+EtN\xa5\x86\x81\x89\xaa\xe8\t\x90m\\\xada\xac$F\xc0\xa3\xc4\x80\xfd\x12\xfb\x17\x02#\xf2\xdd>\xb6\x02\xcd\xbfq\t\xef\xaa\x189\xe6\xc9W\xc7WG\x00\xa3)\xc1\x99\xdb\xe3\x8f\xc8\x9fR\xa0^\xd3\x9c\xb3\xd9x\x00]\xbf\xa9\xc7B\xa4\xe4V9p\xc1\xeat\xa1U\xdd\x89"\x80\x80\xb2\xd1i\xceT\xcc\\\xc1p\xd2\xa2\x7f=\xabn\xa6H\xc4\xd3\xcf0:z\xeal\xca.M\x9d\xa4\x18\x00t\xcf\xc7e(\x9d\xd9\xc6cOo\\\x8f\xd7\x8a5B\x1c$_\xc9\xff\xb4\xf8D\xb6+mP\xb5\x86\xea\xde\x0f-\x93\xf0*\xc9`\xaee)\xd3\x96\xfdu\x89\xc3\x02\xc9\xe3$\x18R\x90U\xa1\xb9D\xf1\xbdnl\xd8\x08]7\xc5\xd4\xd7\x05\xdd\xc9mh\x87\x0eG\xe1\x88A\xefM\xb3p\xaa\xa0i\xf1C\x93\x1b\xbd\x88@._&\x02\x05\x7fFe\xb6Tt\xe4\x9ch\xe5\x1c\xa7\x95,\xaeX<OZ\x84:'

Private Key Decryption Object (R for **pRivate**)

In [8]:
myCipherR = pkcs1_oaep.new(rsa.import_key(myKeyRSA.export_key()))

In [9]:
myCipherR.decrypt(c)

b'Hello World!'

Raw key data & binary text key data (the latter can be stored in `.pem` files)

In [10]:
myKeyRSA.publickey()

RsaKey(n=23427737933818228454441308802653478721314732711805557373913878500449622724853215130996536697510177077210715847694368409436887453450539104539321130660327822091216406551938711067416801837480199104829881161933044149376324046872714946528820196924461007100812806857081926849949300063720865487269958040670568347292173422019500785654813917931051122537767700783580878546492048898806076394644789690447149886616687256554825554668740411530670313879681362921340560266465877883113484153412580765257930120209208728113181368809673407346166829260528692434840458467839490133894163456818484264237578444736382277130225706582311963761399, e=65537)

In [11]:
myKeyRSA.publickey().export_key()

b'-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZVb0xyWdbwrNUFOT7J9\njqL6jvvwSt7YSnNBcEFZ10mTX/ryX9SMezsRnzJ0wd05hHCUAo4fIEdguDiMeEWH\n4g1c0FvMkKutpRlJnf4+z3CeHS/M27ZWmQSyNU3wZ0ebAL0Lnjjf0qczsJo63qUm\nAQSKV/N6stUkGL3t28YagDGs44Pp36e+ByTnTEtzSwYEUOLKeeyePIqblVePcsnL\n0PfQFY+8RZLLkiRtv9RBj5Bak2lCdZS8s22sDE/j1VfL2bwNQEA2VIzSQRWFieVZ\nqUT3rLW1FSXr4vTf9sl3r14iIYl0T2sa7Vk1Dc2Hq45XckNSk80esgrBi/CxDlCa\n9wIDAQAB\n-----END PUBLIC KEY-----'

In [12]:
myKeyRSA.export_key()

b'-----BEGIN RSA PRIVATE KEY-----\nMIIEogIBAAKCAQEAuZVb0xyWdbwrNUFOT7J9jqL6jvvwSt7YSnNBcEFZ10mTX/ry\nX9SMezsRnzJ0wd05hHCUAo4fIEdguDiMeEWH4g1c0FvMkKutpRlJnf4+z3CeHS/M\n27ZWmQSyNU3wZ0ebAL0Lnjjf0qczsJo63qUmAQSKV/N6stUkGL3t28YagDGs44Pp\n36e+ByTnTEtzSwYEUOLKeeyePIqblVePcsnL0PfQFY+8RZLLkiRtv9RBj5Bak2lC\ndZS8s22sDE/j1VfL2bwNQEA2VIzSQRWFieVZqUT3rLW1FSXr4vTf9sl3r14iIYl0\nT2sa7Vk1Dc2Hq45XckNSk80esgrBi/CxDlCa9wIDAQABAoIBAATl4JQ0IfMeMem9\nkn/fTxmvoCXxQkic6bUf+5nR2mQoiJ+KM6a8floA7MMjMBpZvgXfzsLj1gXNEcwV\nj1IxS5fMuyazSt/amBeju4ypmXtyFnTgvmsMvJZcnbNzHiWA/0ydW1bOsMw80MwY\nFfZVrNNut5QAqhFZjL1Wbeup+9MRm6NHVJRl89nOQsRW2nNxCGxkdSMioAHZ0Rsz\nG0fP0hqfHxDidV5jmm02oi4XKPxQNWdpp/LW6wwfUnz8tyOekW0wS7LGWSNeB36Y\ncHl3rFEJKRKBSTg2Kmnn/M2SS2vGikr0hn9PaCTBFqjc2XFDWoge3i6vw4Uwr75x\n2jpHI0ECgYEAwM35sz8Brr54zkF5A70s4nxTAgtWqgRMLfcG0J3VhWGARx9UNVfK\nYEobDYiVCmfzeZ8YOv3EmWvxX14JQTAfDJ2HVdy8xdfs2WPARzOgKBCYeceG4fRK\nHnjD3f8yBJPFaYGYKjGbQKGZUaqx7TyZ4bMVyhxGJKslb6/ySlWPYhcCgYEA9ml2\nspj45+agd/kRd7/aCkiqMpAR9h9nrcBsf9fM964wG

### AES Stuff

In [13]:
myKeyAES = grb(16)

We want AES keys to be randomized, as they will be generated per message/image. These session keys will be sent securely by being encrypted by RSA.

In [14]:
myKeyAES

b'\xe5\xd7\x1b\xe5\xe0j\xea|g\xc1\x972\xc6Q(@'

AES Encrypt/Decrypt Object (source of the nonce; an explicit nonce can be generated elsewhere) (S for **Symmetric**)

In [15]:
myCipherS = aes.new(myKeyAES, aes.MODE_EAX)

In [16]:
myCipherS

<Crypto.Cipher._mode_eax.EaxMode at 0x7f406421a100>

In [17]:
myCipherS.nonce

b'S+\x1e(\xda\x97\x9f\xfd]\x8d\xd9j*\x11\xde\x13'

Ciphertext and Digest/Tag/Fingerprint (Like RSA, AES works on `bytes` objects only)

In [18]:
c, t = myCipherS.encrypt_and_digest(bytes("Hello World!", "ascii"))

In [19]:
c

b'\xa5\xbc9\x8c\x1d\xc9.]\x156\xc6a'

In [20]:
t

b'\xe6,\xa2@\x18C\n\xa9\xa2\xc8*\x84\njob'

An identical E/D Object as seen above, with the original's nonce provided

In [21]:
myCipherS2 = aes.new(myKeyAES, aes.MODE_EAX, myCipherS.nonce)

In [22]:
myCipherS2.decrypt_and_verify(c, t)

b'Hello World!'