<a href="https://colab.research.google.com/github/chasebw/cse380-notebooks/blob/master/08_1_dpc_About_Encryption_Resembling_Scrambling.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# About Encryption Resembling Scrambling
## Divide Pair Conquer
### Due: Monday, 22 February 2021, 11:59 pm

## Introduction

### Encryption is Like Scrambling

#### Perfect Shuffling

In [None]:
def shuffle(deck):
  mid = len(deck) // 2
  tuples = list(zip(deck[:mid], deck[mid:]))
  return [i for sub in tuples for i in sub]

deck0 = ['As', '2s', '3s', '4s', '5s', '6s', '7s', '8s', '9s', '10s', 'Js', 'Qs', 'Ks',
         'Ah', '2h', '3h', '4h', '5h', '6h', '7h', '8h', '9h', '10h', 'Jh', 'Qh', 'Kh',
         'Ac', '2c', '3c', '4c', '5c', '6c', '7c', '8c', '9c', '10c', 'Jc', 'Qc', 'Kc',
         'Ad', '2d', '3d', '4d', '5d', '6d', '7d', '8d', '9d', '10d', 'Jd', 'Qd', 'Kd']

deck1 = shuffle(deck0)
deck2 = shuffle(deck1)
deck3 = shuffle(deck2)
deck4 = shuffle(deck3)
deck5 = shuffle(deck4)
deck6 = shuffle(deck5)
deck7 = shuffle(deck6)
deck8 = shuffle(deck7)

In [None]:
deck0 == deck8

In [None]:
deck5

### What is the PCS Cryptosystem?
(Perfect Card Shuffling)

1. Get a new deck of cards.
2. Choose a number, say 5 (this is your encryption key).
3. Write a message, one character per card on your original deck.
4. Perfect shuffle the deck 5 times.
5. Send the shuffled deck to your friend.
6. Your friend does (8 - 5 = 3) perfect shuffles to get the original order back.

### How Does RSA Scramble?

Look at how RSA encryption shuffles/scrambles numbers (say the number 10) with some (very) small primes (say 2 and 11) and the smallest possible encryption exponent (3).

In [None]:
pow(10, 3, 2 * 11)

### Alternatively

What about with 3 and 11?

In [None]:
pow(10, 3, 33)

### Save Typing

In [None]:
for m in range(22):
  c = pow(m, 3, 22)
  print(m, c, m == c)

In [None]:
for m in range(33):
  c = pow(m, 3, 33)
  print(m, c, m == c)

### Tabulate

Count how many scramblings are **not** derangements.

#### Definition

A *derangement* is a permutation where no element is left in its original position.

In [None]:
from math import gcd
from sympy import prime

def find_first_e(n, t):
  for e in range(3, n):
    if gcd(e, t) == 1:
      return e
  return None

headers = '| p | q | n | t | e | # |/| n |=|   %  |\n'\
          '|---|---|---|---|---|---|-|---|-|------|'

print(headers)

for i in range(1, 9):
  for j in range(i + 1, 9):
    p, q = prime(i), prime(j)
    n = p * q
    t = (p - 1) * (q - 1)
    e = find_first_e(n, t)
    num = sum(map(lambda m: m == pow(m, e, n), range(0, n)))
    print(f'|{p}|{q}|{n}|{t}|{e}|{num}|/|{n}|=|{num/n/.01:.2f}|')

## Your DPC Tasks

### TODO Investigate

Why is 65537 ($2^{16} + 1$) typically used as **e**, the encryption exponent?

65537 is a commonly used value for e, many regard it as a compromise
between avoiding  potential small exponent attacks and still allowing
efficient encryptions or signature verification.

It is also 1 more than a power of two. Which makes it really efficient.

 
The customary value of e was chosen for efficiency. Also, there aren’t many choices for similar values of e. Because it consists mostly of squarings.


## Sources:

- Source 1:
https://en.wikipedia.org/wiki/RSA_(cryptosystem)

- Source 2:
https://www.johndcook.com/blog/2018/12/12/rsa-exponent/#:~:text=In%20practice%2C%20the%20most%20common,power%20consists%20mostly%20of%20squarings%20%E2%80%A6


In [None]:
e = 2 ** 16 + 1
(e, bin(e))

(65537, '0b10000000000000001')

$\color{red}{\text{Awesome!}}$

### TODO Explore

The book gives some very vague constraints on **p** and **q**, the two primes used in RSA.

Research the criteria the security community uses to judge the goodness (suitability) of these two primes, that in practice are randomly chosen.

What is bad about the choice of **p** and **q** in this next cell?

In [None]:
p = 5179195214309
q = 5179195214311
n = p * q
t = (p - 1) * (q - 1)
e = 65537
d = 17826498662743824930707633
m = 5179195214304
c = pow(m, e, n)
m_again = pow(c, d, n)
(c, m_again, m == m_again)

## Criteria:

- The prime number in binary is represented  in more than 256 bits or larger than 2^256. This would be around a 78 digit number or larger.

- The largest prime factor of p-1 is large. Large in this case means it is represented with >=100 binary bits. This would be a number around 2^100. This is a 31 digit number.

-  The largest prime factor of p+1 is large.  Large in this case means it is represented with >=100 binary bits. This would be a number around 2^100. This is a 31 digit number.

- The largest prime factor of p-2 is large. Large in this case means it is represented with >=100 binary bits. This would be a number around 2^100. This is a 31 digit number.

-  p and q should be similar in magnitude but differ in length by a few digits to make factoring harder.

- p and q should be chosen at random.

- The primes are not obvious. (They are only 2 apart)

##Source Used:

- Section 4: What is a strong prime?
https://people.csail.mit.edu/rivest/pubs/RS01.version-1999-11-22.pdf

- Another Source I read:
https://www.di-mgt.com.au/rsa_alg.html


- Another Source:
https://en.wikipedia.org/wiki/RSA_(cryptosystem)

$\color{red}{\text{Really good!}}$

### Bonus

From Wikipedia:



> The earliest known statement of the [Chinese Remainder Theorem], as a problem with specific numbers, appears in the 3rd-century book *Sun-tzu Suan-ching* by the Chinese mathematician Sun-tzu:

> There are certain things whose number is unknown. If we count them by threes,we have two left over; by fives, we have three left over; and by sevens, two are left over. How many things are there?




Can you solve this by hand?
  
That is, with just pencil and paper?


<pre>

Notes: 
Example of how to do it.

The moduli have to be coprime to one another.


x = 2 (mod 3)
x = 2 (mod 4)
x = 2 (mod 5)

find x


       3         4           5 
x = 4  * 5   + 3 * 5    +  3 * 4   

x = 20 + 15 * 3 * 2 + 36

x = 146
x = 86
x = 26 (mod 60)




x = 1 mod 3
x = 1 mod 4
x = 1 mod 5
x = 0 mod 7




# Product of other moduli

M_1 = 4 * 5 * 7  //exclude 3 moduli
M_2 = 3 * 5 * 7 // exclude 4 moduli
M_3 = 3 * 4 * 7 // exclude 5 moduli
M_4 = 3 * 4 * 5 // exclude 7 moduli


M_1 = 140 
M_2 = 105
M_3 = 84
M_4 = 60

Make the remainder match for each value found
Euclidean division is required in some cases for big numbers.

y1 = 140 = 1 mod 3 y1 = 2
y2 = 105 = 1 mod 4 y2 = 1
y3 = 84  = 1 mod 5 y3 = 4
y4 = 60  = 1 mod 7 y4 = 2

A_1 * M_1 * Y_1 + ...

140 * 2 + 105 * 1 + 84 * 4

336
105
280

721 - 420

301 in answer.





x = 2 mod 3 
x = 3 mod 5
x = 2 mod 7


3 * 5 * 7
15 * 7 = 105

3      5      7
5*7 + 3*7  + 3*5

#force teach one to match the remainder 2,3,2:

35 + 21 * 3  + 15 * 2

128
23
</pre>


In [None]:
35 + 21 * 3  + 15 * 2
128 - 105
# You can subtract 105 because that is the product of the moduli (3,5,7) and any value
# of 128 with a difference of 128 will work. We normally take the smallest as the solution.
# 23

23

$\color{red}{\text{Nice!}}$

How about this one?

Find all solutions, if any, to the system of congruences:

$x \equiv_{6} 5$

$x \equiv_{10} 3$

$x \equiv_{15} 8$


Challenge yourselves to figure this out without using a computer.

(You can use a calculator, but not its programmability, if it has it!)

#### Hint

You cannot apply the Chinese Remainder Theorem directly, because the moduli are not pairwise coprime. Try using that consequence of the CRT that you used last week to translate these congruences into a set of congruences that together are equivalent to the given ones.