<a href="https://colab.research.google.com/github/carlos-alves-one/-Blockchain-Programming/blob/main/rsa_enc_dec_sign.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Import Cryptography Libraries

The code snippet is for setting up essential components from the `cryptography` library in Python, specifically for working with cryptographic keys using RSA, a widely used algorithm for public-key cryptography. The goal of this code can be broken down based on each import statement:

1. **Importing the Default Backend**:
   - `from cryptography.hazmat.backends import default_backend`
   - The `default_backend` function refers to the default cryptographic backend that provides cryptographic algorithm implementations. It is used in various cryptographic operations such as encryption, decryption, and key generation. The backend abstracts the implementation details of these cryptographic algorithms.

2. **Importing RSA for Asymmetric Cryptography**:
   - `from cryptography.hazmat.primitives.asymmetric import rsa`
   - This line imports the RSA module from the `cryptography.hazmat.primitives.asymmetric` package. RSA (Rivest-Shamir-Adleman) is one of the first public-key cryptosystems widely used for secure data transmission. Importing RSA allows the generalisation of private and public keys, encrypting data with the public key, and decrypting it with the private key, among other things.

3. **Importing Serialization Tools**:
   - `from cryptography.hazmat.primitives import serialisationserialisation.`
   - This line imports the serialisation module for serialising keys in various formats. Serialisation is converting a data structure or object into a format easily stored or transmitted (like PEM or DER formats) and then reconstructing it later. In cryptographic operations, we often need to serialise keys for storage or transmit them over a network.

In summary, this code aims to import necessary functionalities from the `cryptography` library for performing RSA-based cryptographic operations, including key generation, encryption/decryption, and key serialisation/deserialisation. This forms the foundation for implementing secure communication or data storage systems.

In [10]:
# Importing the default_backend function from the cryptography.hazmat.backends module for cryptographic operations
from cryptography.hazmat.backends import default_backend

# Importing the RSA module from cryptography.hazmat.primitives.asymmetric for RSA asymmetric encryption and key generation
from cryptography.hazmat.primitives.asymmetric import rsa

# Importing the serialization module from cryptography.hazmat.primitives for serializing and deserializing keys
from cryptography.hazmat.primitives import serialization


# Generating an RSA Private Key

- rsa.generate_private_key is a function to generate a private key for RSA encryption.

- The public_exponent parameter is set to 65537, a common choice for RSA, a prime number that balances security and performance.

- key_size=2048 specifies the size of the key. A key size of 2048 bits is generally considered secure and is a common choice.

- backend=default_backend() specifies the backend cryptographic provider.


In [11]:
private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
    backend=default_backend()
)


# Printing the Private Key in PEM Format

- This section converts the private key into a byte format and prints it.

- The encoding parameter is set to serialization.Encoding.PEM, which means the key is encoded in the PEM (Privacy Enhanced Mail) format, a standard textual format for storing keys.

- format=serialization.PrivateFormat.TraditionalOpenSSL indicates the traditional format used by OpenSSL for private keys.

- encryption_algorithm=serialization.NoEncryption() means the private key is not encrypted and will be output in plain text. It is crucial to handle and store such keys securely.


In [12]:
print(private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption(),
))


b'-----BEGIN RSA PRIVATE KEY-----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\nJgJxSgN62oHaRN9UBYZDVpyXVIYVWG4NfR2TSmyqe

# Deriving the Public Key from the Private Key

- This line derives the public key associated with the generated private key.

- In RSA, the public and private keys are mathematically linked. The public key can be safely shared and is used to encrypt data that only the corresponding private key can decrypt.


In [13]:
public_key = private_key.public_key()


This code generates an RSA private key, prints it in a readable (PEM) format, and then derives the corresponding public key. This is a fundamental process in asymmetric cryptography, where the private key is kept secret, and the public key is shared for encryption purposes.

# Saving the RSA Private Key in PEM Format

In [14]:
with open("Vahid_private_key.pem", "wb") as f:
    f.write(private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.TraditionalOpenSSL,
        encryption_algorithm=serialization.NoEncryption(),
    ))


- This block of code opens a file named "Vahid_private_key.pem" in binary write mode ("wb").

- It then writes the private key to this file in PEM format. The key is not encrypted (serialization.NoEncryption()), which means it will be stored in plain text.

- The PEM format is widely used for storing cryptographic keys and certificates. It is a Base64 encoded version of the key with specific header and footer lines.
