In [2]:
from cryptography import x509
from cryptography.x509.oid import NameOID
from cryptography.hazmat.primitives.asymmetric import rsa, padding, dh
from cryptography.hazmat.primitives import hashes, serialization
from cryptography.hazmat.primitives.kdf.hkdf import HKDF
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.exceptions import InvalidSignature
import datetime
import base64

def verify_certificate ( cert : x509.Certificate, issuer : x509.Certificate):
  try:
    issuer.public_key().verify(cert.signature, cert.tbs_certificate_bytes, padding.PKCS1v15(), cert.signature_hash_algorithm)
    # cert.verify_directly_issued_by(issuer)
  except ValueError:
    print("Issuer does not match/Signature algorithm not supported")
  except TypeError:
    print("Public key type not supported")
  except InvalidSignature:
    print("Signature verification failed")
  else:
    print("Certificate validated successfully")

### Příprava
Načtení předem vytvořeného kořenového certifikátu a jeho soukromého klíče (v PEM formátu)

In [3]:
root_private_key_bytes = b'-----BEGIN RSA PRIVATE KEY-----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\nJOrr+4Hqcrunim+eRD9JobYZPNaZU4UafotVrrxbF6zuLWmyEIiDfYUe328=\n-----END RSA PRIVATE KEY-----\n'
root_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nq5Kh+mrtVOaupB19PuED\n-----END CERTIFICATE-----\n'

root_private_key = serialization.load_pem_private_key(root_private_key_bytes, None)
root_cert = x509.load_pem_x509_certificate(root_cert_bytes)

#### Výpis hodnot z RSA soukromého klíče

In [4]:
print(f"Modulus size: {root_private_key.key_size}b")
print(f"p = {root_private_key.private_numbers().p}")
print(f"q = {root_private_key.private_numbers().q}")
print(f"d = {root_private_key.private_numbers().d}")
print(f"dp = {root_private_key.private_numbers().dmp1}")
print(f"dq = {root_private_key.private_numbers().dmq1}")
print(f"qInv = {root_private_key.private_numbers().iqmp}")

Modulus size: 4096b
p = 32023942467893740721189568404315200685509161172169398124833342164338363811305629263403210621240478650763595808941703584176846640717390079216423911800286300576855114956423329849672195770654781670414536714356335086300408381537965692821347888029432155395636524598359856275120016497910210867821587950323649753254734214477050041262676516839281261104795238852429486561731373544198507197155234291992645735988866830800751726621109357491195937392204747092329504336301645851553995249030620889231653255575998988998034965980197470015772430407996881846351877546283758018793127534282921740593977839112157961055423727674465226043641
q = 272605958351894160099618342781539376149761054614454977712192114909044694908249563127832454523786456234503118604545481816371279000730889968388655005741292236991785609335739444529158311520158285991398579948874111348426263857619134900687698082748603897647807807961424967427762288882044924989634971128922023711586175946872863556830916881590497229311527167092

#### Informace o certifikátu

In [5]:
print(f"Vydavatel certifikatu: {root_cert.issuer.rfc4514_string()}")
print(f"Vlastnik certifikatu: {root_cert.subject.rfc4514_string()}")
print(f"Algoritmus podpisu: {root_cert.signature_algorithm_oid}")

Vydavatel certifikatu: CN=KAB root-certificate,L=Prague,C=CZ
Vlastnik certifikatu: CN=KAB root-certificate,L=Prague,C=CZ
Algoritmus podpisu: <ObjectIdentifier(oid=1.2.840.113549.1.1.11, name=sha256WithRSAEncryption)>


In [6]:
verify_certificate(root_cert, root_cert)

Certificate validated successfully


In [7]:
print(f"n = {root_cert.public_key().public_numbers().n}")
print(f"e = {root_cert.public_key().public_numbers().e}")

n = 872991752666609576932146013278860869227082214615646198896850717999760884443492260769073027893250410324667373408819902768413581941952147651232195076548983457653985415983700214528398795698703168324367860846275582768870286939387681192289809297055786954583827678716465868406817842898961846643421464713124897839963034687489363868281690788414944070180783996203140784822317343493406592221591730319852894147880410261844772722091754205788220597958288695736357331636383155511205506282486276385943102379516762626915664979542854299784438525688032608553158045678874479105910083975720228695447564758964480730133843609257591423984933452841568873297813839024352743362716263069070885710877443427074640790773385720732719161543936209390161934374760751739890583164023963699117705403624634284628139694659546881462411431264301158251992926557344209399193264881124015106488816292444329424354234003477484608029472985561024082261453534479067117464234165556813395564900646760905345179447959021747229123246197122951556796817

# Úkol

Pokračujte dále podle vytvořené šablony. Potřebujete:
* Vytvořit vlastní pár SK a VK pro RSA
* Vytvořit certifikát, kterým budete moci předat svůj VK kolegovi
** Certifikát bude popdepsaný soukromým klíčem CA (v tomto případě kořenová CA, jejíž certifikát a soukromý klíč máte načtený výše)
** V certifikátu musí být váš veřejný klíč, zadejte tam také své jméno (případně upravte jiné položky dle libosti)
* Vytvořit sdílený klíč pomocí DH algoritmu, vzájemně zasílané hodnoty podepište svým soukromým klíčem
* Poslat si zprávu zašifrovanou symetrickou šifrou, klíč použijte z kroku výše


#### Vytvoření soukromého klíče RSA

In [8]:
private_key = rsa.generate_private_key(public_exponent=65537, key_size=2048)
public_key = private_key.public_key()

In [9]:
print(f"Modulus size: {private_key.key_size}b")
print(f"n = {public_key.public_numbers().n}")
print(f"p = {private_key.private_numbers().p}")
print(f"q = {private_key.private_numbers().q}")
print(f"e = {public_key.public_numbers().e}")
print(f"d = {private_key.private_numbers().d}")
print(f"dp = {private_key.private_numbers().dmp1}")
print(f"dq = {private_key.private_numbers().dmq1}")
print(f"qInv = {private_key.private_numbers().iqmp}")

Modulus size: 2048b
n = 24324973145631121884291079472646127502948656714927389760121508232079000036406761189520288045189192742600881731917618035029325666417044601859415172775330825875420164811552361025707734312847843933347210555959175099620400429265555474207806670839413947608160023363804018821211249729761311895618855131038830018244783894383084377058948838556269758048355850132504433713979384149823928654488990868808280828694194875041805669072551274091115035579158632299015028456516823350725342403697195754801343246101294554114183136198376452889729819013827646111075726895647740783647464749630647944037071809365074188822401230795956878506711
p = 172627096036407545630935228875903952912089826757011426074422649756147207954470664966087167140535225761212504622911180352076237713422135322129561892596867549935181038642047525948765814587693587710055338422812107875741001493342547297236645528551198794153269317992808505268952245289827652192500768027672150050307
q = 1409105158120768934790183221580356286347

### Vytvoření vlastního certifikátu

In [10]:
subject = x509.Name([
    x509.NameAttribute(NameOID.COUNTRY_NAME, "CZ"),
    x509.NameAttribute(NameOID.LOCALITY_NAME, "Prague"),
    x509.NameAttribute(NameOID.ORGANIZATION_NAME, "FIT CVUT"),
    x509.NameAttribute(NameOID.COMMON_NAME, "Kanstantsin Downar"), # Zde zadejte své jméno
])

cert = x509.CertificateBuilder().subject_name(
    subject
).issuer_name(
    root_cert.subject
).public_key(
    private_key.public_key() # Zde je námi vytvořený veřejný klíč
).serial_number(
    x509.random_serial_number()
).not_valid_before(
    datetime.datetime.now(datetime.timezone.utc)
).not_valid_after(
    datetime.datetime.now(datetime.timezone.utc) + datetime.timedelta(days=30)
).sign(root_private_key, hashes.SHA256()) # Podepisujeme soukromým klíčem CA

In [11]:
# Váš certifikát v PEM formátu (můžete poslat přímo v textové podobě kolegovi)
cert.public_bytes(encoding=serialization.Encoding.PEM)

b'-----BEGIN CERTIFICATE-----\nMIIEFzCCAf+gAwIBAgIUfEzap9CtHwhq9Pm+nTs2UuIxBlwwDQYJKoZIhvcNAQEL\nBQAwPTELMAkGA1UEBhMCQ1oxDzANBgNVBAcMBlByYWd1ZTEdMBsGA1UEAwwUS0FC\nIHJvb3QtY2VydGlmaWNhdGUwHhcNMjQwNTA5MDgwMzM4WhcNMjQwNjA4MDgwMzM4\nWjBOMQswCQYDVQQGEwJDWjEPMA0GA1UEBwwGUHJhZ3VlMREwDwYDVQQKDAhGSVQg\nQ1ZVVDEbMBkGA1UEAwwSS2Fuc3RhbnRzaW4gRG93bmFyMIIBIjANBgkqhkiG9w0B\nAQEFAAOCAQ8AMIIBCgKCAQEAwLDfG0OeIfjT/Jx+y0Rbkz39P6oQCHPVtrKg88a0\nIrKL39eooRL35uz5rsF7g4ffRjjGEyeDAxCYbAVisSMxCM8ANo115F9p7sNCvU8M\nB/0vB/ujsHvdImWfQ373silulIIuEOyDt8hm/lCB5HqdF2IIM42cQwZ5cDehjBAe\n/ArZLQi6EsEDsB80Jvybeld1zq0kdMH0+liaTEnXmSVMbTIoFdcZkomfPG70YTdw\njuqgX63+FqlOpL938pCcT9l9M9kZgFnoSpPnwPLSCO0m/hHKriGjd92vsa42d+Nl\nvYgyjAi9V9CzauMje+khPz4OHEEYWfdpxSILAVQZxrr61wIDAQABMA0GCSqGSIb3\nDQEBCwUAA4ICAQB1LwXF2t37UlUWDcz4wYnzPlQzp03ghGiigx6ayNmAhv7mKSk2\nyD9XdX3EmmJ4+BhNXtQd/elpL4gExDG5HX/GARM71X0y41aC/p9KG9Y7yULxNhgI\nwqk7kk8kvjAmyvFsxDJvfVqLkWG3ZzLRoD0JetXBGSkZKtWqUPsxROSYG0BkMyZW\naJIvd1OLvjOCEouW2ZSv5OhDLryI0u/+GFwf5LrV6XAoJ

In [12]:
# Ověření validity našeho certifikátu pomocí kořenového certifikátu (vyhodí výjimku při chybě, viz definice funkce na začátku)
verify_certificate(cert, root_cert)

Certificate validated successfully


------------------------------------------------------------------

### Vygenerování parametrů pro DH (Student A)

Jeden z dvojice začíná volbou (vygenerováním) parametrů pro DH.

In [None]:
dh_parameters = dh.generate_parameters(generator=2, key_size=2048)

In [None]:
print(f"p = {dh_parameters.parameter_numbers().p}")
print(f"g = {dh_parameters.parameter_numbers().g}")

In [None]:
dh_private_key = dh_parameters.generate_private_key() # Vygenerování utajené hodnoty, pomocí které se umocňuje generátor a y od kolegy

In [None]:
print(dh_private_key.private_numbers().x)

In [None]:
# Dopočtení hodnoty y pro výměnu s kolegou
dh_public = dh_private_key.public_key()

In [None]:
print(dh_public.public_numbers().y)

In [None]:
dh_public_pem = dh_public.public_bytes(encoding=serialization.Encoding.PEM, format=serialization.PublicFormat.SubjectPublicKeyInfo)

In [None]:
dh_public_pem_signature = private_key.sign(dh_public_pem, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())
signature_b64 = base64.b64encode(dh_public_pem_signature)

### Zaslání hodnot kolegovi (Student A)

Nyní můžeme zaslat kolegovi náš certifikát, veřejné hodnoty pro DH (modul, generátor, y) a jejich podpis.
Certifikát a veřejné hodnoty DH jsou v PEM formátu, podpis je zakódovaný v base64

In [None]:
print(cert.public_bytes(encoding=serialization.Encoding.PEM))
print(dh_public_pem)
print(signature_b64)

-----------------------------------------------------

### Příjem (Student B)

Nyní potřebujeme provést následující kroky:
* Ověřit získaný certifikát (vůči našemu kořenovému)
* Pomocí VK v certifikátu ověřit podpis DH
* Vygenerovat vlastní tajný klíč pro DH a dopočítat K a y pro kolegu
* (Můžeme rovnou zašifrovat zprávu pomocí získaného K)
* Kolegovi pošleme naše y a jeho podpis (případně rovnou i zašifrovanou zprávu)


In [13]:
# Zde nahraďte hodnotami získanými od kolegy
received_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nk8pQwMk8+w3ijJ5q6bzYna9t093N5ectCx+AoypBPsXgpw==\n-----END CERTIFICATE-----\n'
received_dh_bytes = b'-----BEGIN PUBLIC KEY-----\nMIICJDCCARcGCSqGSIb3DQEDATCCAQgCggEBAMiVzdW+AgVJgjEbe4PcIBrI5EDU\n42/VMpA88RTP7Xft0SUCnVkX6J8PFxnHoPbLLdwst+B4ohxHDdDy76eZFAvNkZty\nP5FhjVty4OfJBivd4Q5amQ6chvF0+PCllbD5FjY/jSOYDvFORzJTfU1AYxsNR8QF\nxGRUdLUot8QFRoCoGUfWKI1nFDN8tqLwtjqE9iaX9GrXkexL8M1Ht7HQYtewBdSz\n3JdQ2zY8Fmg04+uNhAnn0qqmpTbiYWutVgOJvhaNDtn96wp+QyY2XaS4xbhT1M0b\nAfMN6zhGlWsQDiMjn2QjUKbP2uktQjRAsqD/XM/7AXUAm/ifcPdzuKafMWcCAQID\nggEFAAKCAQBYPW2zrlzhpr0Wl+BuH24/vsg6Z9tPo6yEhtIDKmJVzthUsTneo1xY\nFij6rThDaqhk8lDH17lGg3uuP2fi0l6oudOZ7Qykr1Bjwi7gOwVHfBr2wqR+L8u3\nIlHL/7hMHmfQ4xxtg1dVA2HjoXJxDC+5VQnbOhTU111WwxVLi9TNf6s8NIedQY0k\nKCTkMIFjnFsHPJb/tye/2IChIYbe+EqRWxGed+luSGS4ePQ77O+XJgXB2ZPjQY8C\n+tR9C+epa99Jygg3tpSKy1R74UjjfX7SPV32S2b6OBvpdGQscuMuLBZ+sWmrPxoq\nkXvNyHR1jiDdT9PPQNxv4Nk4lLSDlD+5\n-----END PUBLIC KEY-----\n'
received_signature = b'fTzInYkxdZWeIccV3u4t738mo9WslIQnDtsLzAyooC6Ltq1FJvOSLiyMtC5J+2EbF8ZCQI5CNxvf9KNvcQT67gBZgi2WoaJgsn8GGOCATq3LF9FZvzMuL0RYfaOQelmHTVYpstzaFT6lPpdQcxJk8mFNjC0ol1GgYPbGFdFwO1APDkXIAyq/n02tAUyhQBSegGkBcmN/e1x4pQs08DoUizFspH+m1GFEhtGBeztSx4BwHjnqrTW/XI7Z4PCNMJfNm+9RGr27wbhBbMYjRfYy0do3ABgWwkldjGoa34Zld01DGL5quIUNx7WlOzUtF7+/8B7uneAJa1raTHLysNZt8Q=='


In [16]:
# Načtení a ověření získaného certifikátu
received_cert = x509.load_pem_x509_certificate(received_cert_bytes)
verify_certificate(received_cert, root_cert)

Certificate validated successfully


In [26]:
print(f"Vydavatel certifikatu: {received_cert.issuer.rfc4514_string()}")
print(f"Vlastnik certifikatu: {received_cert.subject.rfc4514_string()}")
print(f"Algoritmus podpisu: {received_cert.signature_algorithm_oid}")

Vydavatel certifikatu: CN=KAB root-certificate,L=Prague,C=CZ
Vlastnik certifikatu: CN=Senyaaa,O=something,L=Saratov,C=Ru
Algoritmus podpisu: <ObjectIdentifier(oid=1.2.840.113549.1.1.11, name=sha256WithRSAEncryption)>


In [17]:
# Ověření podpisu
signature = base64.b64decode(received_signature)
received_cert.public_key().verify(signature, received_dh_bytes, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())

In [18]:
# Načtení parametrů pro DH od kolegy
received_dh_public = serialization.load_pem_public_key(received_dh_bytes)
print(f"p = {received_dh_public.parameters().parameter_numbers().p}")
print(f"g = {received_dh_public.parameters().parameter_numbers().g}")
print(f"y = {received_dh_public.public_numbers().y}")

p = 25321532119880418939485757463983039848921172825456937495130512700477673675278910052879645964779965893663824671265297684243467762360274484131321280888199483438582364633662297231807442791932529370889804446309104819115192352343402497021459610939134681411842443250859228497538965678658392677084423338277390029825492199440276610540477394213021470303934227240017713909411746277439863492400545268219055759037885846472277899357381198484806854667592160325745422021877990585575801157892731428468051047857913594822302420917631215170015109988990344216031249825377493547215261760387146193996213864009978430879681119627182799270247
g = 2
y = 11139262370668651108690507821421458283761225963201699780220422682910054072739375288477351863567529795678339410702449931531622721696857582705267988658900887431318732045281492089658490669622132819632842960054435377328476217419456428879516812283918880054447253547521615636311244911469464974577686091739643641634200091929391089595589207079426575586906474893870628359585837

In [19]:
# Vygenerování vlastní tajné hodnoty pro DH
dh_params = received_dh_public.parameters()
dh_private = dh_params.generate_private_key()

In [20]:
print(dh_private.private_numbers().x)

8326518438280249904427278311552293710927458585040910170740323368659293969015033252462888295730559701209283777529516079870677152279557381725371980836089670540302783460362771570071970440954783541958041533379963731626063627631575027486578533622349867828983031645615939064855027021550498239857420593095879851857447022330201468214361027141418647546855181730526415304360766088246577882435197104489512785624595940382271399149818518442924650876528502914986124890165408353618719896120202201138796874228717710982894339685956196450206272029912067616284902685105345101937608365660476138523093270889465049755015339408296720655993


In [21]:
# Dopočtení hodnoty y pro odeslání kolegovi, dopočtení sdíleného klíče K na základě přijatých hodnot
dh_my_public = dh_private.public_key()
shared_key = dh_private.exchange(received_dh_public)
print(f"Dopoctene y k odeslani: {dh_my_public.public_numbers().y}")
print(f"Sdileny klic: {shared_key.hex()}")

Dopoctene y k odeslani: 3200445167157438641722984636391952971948345140969640480729119789590419908274783756200690610948485409354844940416861193802932290041627056024963970307364693421499883087981376379340871332560225979054127689060768866954349521385988754417981626474831107481152991206468130178812894902181225625326915754720792394842479936498084190955264218032191547002901166862409049154850546878878734028204336808968874945216876411671078216873381856552848349785804994449202044301558971691413816083230199174154838680973394968133541057592550551486458294178214151203884628902011307338124446425044757227369978255109426158602401383499357701723124
Sdileny klic: 73e3ce8ace0ca640ab80ebca249ad2cfded55d742ef0551ce214a102c71945ec1c64cca2f548116062f49bd12fc867208b1c60ffe47c29bcecb01ba20bf84239287949bccff3b38c422b5645d9e951e797e73dda7f6cccc385bc24339ce578bd8b2d207d28a66b1afa3ac8c21f8e69e5bb186a24c50bf817999dab8686b585caf2dec09e384421da8af130d402807885bc7cb6956a85c9354cb22559b746c53008fd7efd894ec646a83a64708

In [22]:
# Vytvoření klíče pro AES-128
derived_key = HKDF(algorithm=hashes.SHA256(), length=16, salt=None, info=None,).derive(shared_key)
print(f"Odvozeny klic: {derived_key.hex()}")

Odvozeny klic: 3a5f8cd62268acf35cb7c046f3011d43


In [23]:
# Zašifrování zprávy pomocí AES-128 ECB. Pozor, není zde padding, vstupní data musi být zarovnána
cipher = Cipher(algorithms.AES128(derived_key), modes.ECB())
encryptor = cipher.encryptor()
encrypted_message = encryptor.update(b"a secret message") + encryptor.finalize()

In [24]:
# Příprava dat pro zaslání kolegovi
dh_my_public_pem = dh_my_public.public_bytes(encoding=serialization.Encoding.PEM, format=serialization.PublicFormat.SubjectPublicKeyInfo)
dh_my_public_pem_signature = private_key.sign(dh_my_public_pem, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())
signature_b64 = base64.b64encode(dh_my_public_pem_signature)
encrypted_message_b64 = base64.b64encode(encrypted_message)
print(cert.public_bytes(encoding=serialization.Encoding.PEM))
print(dh_my_public_pem)
print(signature_b64)
print(encrypted_message_b64)

b'-----BEGIN CERTIFICATE-----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\naJIvd1OLvjOCEouW2ZSv5OhDLryI0u/+GFwf5LrV6XAoJ

---------------------------------------------

### Příjem (Student A)

Potřebujeme:
* Ověřit získaný certifikát (vůči našemu kořenovému)
* Pomocí VK v certifikátu ověřit podpis DH
* Dopočítat K na základě y od kolegy
* Dešifrovat zprávu a (vizuálně) ověřit správnost sdíleného K

In [None]:
# Zde nahraďte hodnotami získanými od kolegy
received_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nVKLa3qxOAKFNHvPyDFn07GzZtNNvyjJoY7S0KDaTDJ0=\n-----END CERTIFICATE-----\n'
received_dh_bytes = b'-----BEGIN PUBLIC KEY-----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\nfikGOlEKLsMihT0nzY7r2+LlNJWn9kSoCA==\n-----END PUBLIC KEY-----\n'
received_signature = b'FWqWQcoC2cy7sqJoWGi66i2z8FV6s3BxSBra7ltopZB47qrdiBukisbncb7Xn2EfZ6cv5mVQrc05W4QlssIt9vwty7UB0c6zLQskL1nf/oX7kU7IvDghVJec8yoHB0nmXhT0HDeuYKlQI6FGf/IdmJvwPblebhA1cfXdnn22iZ2ZjSs6myXGuZDqkDdBsakrvZaqBGUZxOgWSDBwaiKd0GYSMuI+/vllJ/foeUkk3B3umaT/OB7YYmR2OI2YTKiKwPSyRfUI9AIc3NR5upAh7xrqSwMXZcz+Yr0+qgDyVoQE2Vb7pwf5ixI9aXoTtBOiECnp9Nzk6Qy/+4G6gVULMw=='
received_encrypted_message = b'P8MwjZ2qEww6UNsbJQdAFw=='

In [None]:
# Načtení a ověření získaného certifikátu
received_cert = x509.load_pem_x509_certificate(received_cert_bytes)
verify_certificate(???, ???)

In [None]:
# Ověření podpisu
signature = base64.b64decode(received_signature)
received_cert.public_key().verify(signature, received_dh_bytes, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())

In [None]:
# Načtení parametrů pro DH od kolegy, dopočtení sdíleného klíče K
received_dh_public = serialization.load_pem_public_key(received_dh_bytes)
print(f"y = {received_dh_public.public_numbers().y}")
shared_key = dh_private_key.exchange(received_dh_public)
print(f"Sdileny klic: {shared_key.hex()}")

In [None]:
# Vytvoření klíče pro AES-128
derived_key = HKDF(algorithm=hashes.SHA256(), length=16, salt=None, info=None,).derive(shared_key)
print(f"Odvozeny klic: {derived_key.hex()}")

In [None]:
# Dešifrování přijaté zprávy pomocí AES-128 ECB
cipher = Cipher(algorithms.AES128(derived_key), modes.ECB())
decryptor = cipher.decryptor()
message = decryptor.update(base64.b64decode(received_encrypted_message)) + decryptor.finalize()

In [None]:
print(message)