<a href="https://colab.research.google.com/github/dreganism/dreganism/blob/main/G7_Lab2.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Question 1 - Explain the following terms:

## A. Cryptography
Cryptography is the art and science of securing messages by encoding (encrypting)them with mathematical algorithms to protect them from unauthorized access or modification [1] - only the sender and receiver can understand the message since they have the key to decipher the encoded message. An eavesdropper may know the message is being transmitted, and may even copy the secured message, but the contents remain unknown since they were encoded with a secret key that the eavesdropper does not have. Cryptography provides confidentiality, integrity, and authentication.

## B. Encryption
Encryption is a method of securing information by converting it into a code to prevent unauthorized access. Before a message is sent, it is encrypted with an encryption key (if the intent is to protect CIA of the message). The process of encryption involves using an algorithm to transform plain text data into encrypted code [2], called ciphertext, which can only be deciphered and understood with a decryption key.

Encryption is commonly used to protect sensitive information[3] such as financial transactions, personal communication, and confidential business information. The security of encryption lies in the fact that even if an attacker gains access to the encrypted data, they cannot interpret or make use of it without the decryption key.

There are various types of encryption algorithms, such as symmetric encryption[4], where the identical key is used for encryption and decryption, and asymmetric encryption, where different keys are used for encryption and decryption. Some commonly used encryption algorithms are AES, RSA, and DES. It is important to note that encryption does not guarantee absolute security, as encryption algorithms can become vulnerable to attacks over time and the security of encrypted information can also be compromised if the decryption key is lost or stolen.

## C. Plain Text
Plaintext is unencoded data (usually ordinary readable text before it’s encryption into ciphertext) that does not provide confidentiality, integrity, and access authorization for the data in the event an adversary intercepts it.
## D. Cipher Text
Cipher text is encrypted plaintext.  

## E. Decryption
Decryption is the reverse of encryption in that it uses the encryption key to decipher (decrypt) ciphertext and render it back in its original plaintext form.

## F. Double Strength Encryption
Double encryption is where two or more independent layers of encryption are used[5] to protect against compromises of any one layer of encryption. Using two layers of encryption mitigates threats that come with encrypting data.
 
## G. Hybrid Encryption
Hybrid encryption is a method of encoding and decoding messages that blends the speed and convenience of a public asymmetric encryption approach with the effectiveness of a private symmetric encryption arrangement.  Using this methodology, the sender generates a private key, encrypts it using a public key algorithm, and then encrypts the entire message (including the already-encrypted private key) with the original symmetric key[6]. The encoded ciphertext can only be decoded if the recipient knows the private key the sender originally generated.


# References

[1] "What is cryptography? How algorithms keep information secret and safe". Fruhlinger, Josh.  Retrieved from https://www.csoonline.com/article/3583976/what-is-cryptography-how-algorithms-keep-information-secret-and-safe.html February 10, 2023.

[2,3,4] “SURVEILLANCE SELF-DEFENSE”. Authored by ssd.eff.org (Electronic Frontier Foundation). Retrieved from https://ssd.eff.org/module/deep-dive-end-end-encryption-how-do-public-key-encryption-systems-work February 11, 2023.

[5] “Double encryption”. Lanfear, T., Richins, J, Berry C., David. Retrieved from https://learn.microsoft.com/en-us/azure/security/fundamentals/double-encryption  February 11, 2023.

[6] “What does hybrid encryption mean?” Rouse, M. Retrieved from https://www.techopedia.com/definition/1779/hybrid-encryption February 11, 2023.





# Question 2 - Write phython code to implement the shift cipher using two functions: one to encrypt, one to decrypt. 

In [None]:
# We reuse the encrypt funcion to provide both encryption and decryption functionality.

import string
   
def encrypt(message, shift=0, replace='', alphabet=string.ascii_letters):
    
    # Define the input-output mapping
    size = len(alphabet)
    code = {a:alphabet[(index+shift) % size] for index, a in enumerate(alphabet)}
    # Encrypt the message with mapping
    return ''.join([code.get(letter, replace) for letter in message])
 
message = input('Message to Encrypt: ')

encrypted = encrypt(message, shift=3, replace=' ')
decrypted = encrypt(encrypted, shift=-3, replace=' ')

print('Your encrypted ciphertext is: ', encrypted)
print('Decrypting your ciphertext yeilds: ', decrypted)

## Question 3
### A) What is a hash function in cryptography?
In cryptography, a hash function is a mathematical function that takes an input (or "message") and returns a fixed-size string of characters, which is typically a "digest" that is unique to the unique values of the input. The idea behind a hash function is to take an input, perform some mathematical operations on it, and produce an output (the "hash") that has certain properties. These properties include:

1.	Deterministic: Given a specific input, the same output will always be produced.

2.	Fixed-Size Output: The output is of a fixed length, regardless of the size of the input.

3.	One-Way: Given the hash value, it is computationally infeasible to obtain the original input.

4.	Collision-Resistant: It is difficult to find two different inputs that produce the same hash value (also known as a "collision").

Hash functions are widely used in cryptography for tasks such as digital signatures, message authentication codes, and key derivation functions. A common use of hash functions is to verify the integrity of data, for example, to ensure that a file has not been modified during transmission. To do this, the hash of the file is computed and then sent along with the file. The recipient can then compute the hash of the received file and compare it to the original hash. If they match, the recipient can be confident that the file has not been altered in transit.

In [16]:
#Question 3. B) Write a hash function in Python to hash the message given
import hashlib

def hash_message(message):

    sha256 = hashlib.sha256()                      # Create SHA-256 hash object
    message_bytes = message.encode('utf-8')        # Encode message to bytes
    sha256.update(message_bytes)   # Update the hash object with the message bytes
    hash_hex = sha256.hexdigest() # Get the hexadecimal representation of the hash

    return hash_hex

message = "Information Systems Security Engineering and Management"
hash_value = hash_message(message)
print("Hash value of the message:", hash_value)


Hash value of the message: ea2b9ab09f3ab6aefb8dbd8d93a511a22f7f8616872d78d1b8f81550b932e063


In [25]:
# Question 3. C) Validate message hash has not changed over time given that the
# message is the same (use code from 3. B)

# I. The original Hash value of the message: ea2b9ab09f3ab6aefb8dbd8d93a511a22f7f8616872d78d1b8f81550b932e063

# II. If message is NOT altered, the hash remains the same, but by uppercasing the 

# last letter in the message, the hash changes - see next line for changed hash.

# III. Hash value of the message: 804c6c6dc627b03e86610a1b65538eed5165b881b6e62abe68452b8250d3ad26

# IV. Hash reverts to original after the message is restored to it's orignal state.

# Hash value of the restored message: ea2b9ab09f3ab6aefb8dbd8d93a511a22f7f8616872d78d1b8f81550b932e063








