<a href="https://colab.research.google.com/github/cjjob/diffie_hellman/blob/main/Diffie_Hellman_key_exchange.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

As described by [Wikipedia entry](https://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange):
> Diffie–Hellman key exchange establishes a shared secret between two parties that can be used for secret communication for exchanging data over a public network. An analogy illustrates the concept of public key exchange by using colors instead of very large numbers:

In [23]:
import math
import random
import sympy # For big primes (no idea if the library is appropriate.)

In [19]:
# Step 1:
# Alice and Bob generate some big private prime numbers.

def generate_prime(user_input):
  # `user_input` is the number that our prime will be greater than.
  # Basically, pick a big number.
  return sympy.nextprime(
      n = user_input,
      ith=random.randint(100, 500) # Add some more (pseudo) randomness.
  )


alice_private_prime = generate_prime(342984028940)
bob_private_prime = generate_prime(23429084208482340)
print(f"Alice's private key: {alice_private_prime}")
print(f"Bob's private key: {bob_private_prime}")

Alice's private key: 342984037717
Bob's private key: 23429084208491737


In [21]:
# Step 2:
# Alice and Bob publicly declare some encryption parameters.
# The details are technical. For a good discussion see:
# https://security.stackexchange.com/questions/20079/diffie-hellman-key-exchange-securing-prime-and-base
# Suffice it to say we want a (really) large prime, p, and a primitive root modulo p.
# From here on, note:
# The prime --> "modulus"
# The primitive root modulo p --> "base"
# Note, calculating primitive roots is heavy for a large prime. So, we will just pick a modulus and 
# use Wolfram Alpha to find potential bases.


# 2.1 Get fat prime
public_modulus = generate_prime(758964208420234)
print(f"Public modulus: {public_modulus}")


# 2.2 Copy ^ into Wolfram Alpha link:
# https://www.wolframalpha.com/widgets/view.jsp?id=ef51422db7db201ebc03c8800f41ba99 
# Pick one value for the base.
public_base = 70
print(f"Public base: {public_base}")

Public modulus: 758964208436297
Public base: 70


In [22]:
# Step 3: Share mixed keys
# i.e Alice/Bob send each other:
# base^(private_key) mod modulus
# Computing this naively, i.e doing base^(private_key) would not be possible (the number is enormous).
# Luckily we can use a trick:
# https://en.wikipedia.org/wiki/Modular_exponentiation
# In particular, the identity:

$(a \cdot b) \;\mathrm{mod}\; m = [(a \;\mathrm{mod}\; m)\cdot(b \;\mathrm{mod}\; m)]\;\mathrm{mod}\; m$

In [24]:
# There are numerous algorithms that would work.
# However, this is so common almost every `pow` function in any language takes an additional third argument, the modulus.
alice_public_shared_key = pow(public_base, alice_private_prime, public_modulus)
bob_public_shared_key = pow(public_base, bob_private_prime, public_modulus)

print(f"Alice share: {alice_public_shared_key}")
print(f"Bob share: {bob_public_shared_key}")

Alice share: 37232940717351
Bob share: 445152695316944


In [27]:
# Step 4:
# Both can (independently, and in private) compute the shared secrete key.
# (share^private_key) mod modulus
alice_secret = pow(bob_public_shared_key, alice_private_prime, public_modulus)
bob_secret = pow(alice_public_shared_key, bob_private_prime, public_modulus)

assert alice_secret == bob_secret
print(f"Secret (successfully shared): {alice_secret}. Ssshhhh!")

Secret (successfully shared): 330591620647367. Ssshhhh!
