## Asymmetric Encryption
Recap: Symmetric KE = KD But Symmetric KE ≠ KD<br>
You can think of symmetric encryption as using the same number in an equation. If you multiply a number by X, you get an answer (which you can think of as the ciphertext). To get the number back, you use the inverse operation, division, with the same number X. So 15 times 3 equals 45. To get back to 15, you just divide by 3.<br><br>

With asymmetric encryption, it isn’t so conceptually clean, to begin with. You apply one number to encrypt the input, and you apply another number to decrypt. The inverse-ness (if that is a word) is built into the keys themselves.<br>

Every user has a pair both public and private key pairs<br>
Public key doesn’t reveal anything about private<br>
Both keys are computationally bound adversaries (having the public key computationally finding the private key is infeasible)<br>



### Asymmetric Confidentiality, Authentication
Asymmetric confidentiality is provided by the private and public key pairs. When a message is encrypted with Alice's public key only Alice's private key can decrypt the ciphertext<br>
<img src="AC.jpg"><br>
Asymmetric autehntication is provided by the private and public key pairs too. When Alice encrypts a message with her private key. Then anyone having the ciphertext decrypt it with Alice's public key. That shows that the message is authentic and only Alice owns the private key. Therefore noone other than Alice could have created the message.<br>
<img src="AA.jpg"><br>



### Confidentiality and Authenticity
Using private and public keys in combination to provide confidentiality and authentication. <img src="ACA.jpg">

### Digital Signatures
Digital signatures are used for providing non-repudiation
<br>
<img src="DS.jpg">


## Confidentiality, Integrity, Authenticity, Non-Repudiation
By combining digital signatures and what asymmetric confidentiality, authentication provide; we have a solid encryption scheme.<br>

<img src="ACIAN.jpg"><br>
Strength of security is typically proportional to key size
<ul>
<li>2^n for n bits</li>
<li>Typically 1024 to 15360 bits (today:  years to forever)</li>
</ul>
No shared secrets
<ul>
<li>Public keys do not need to be kept confidential</li>
<li>Can be exchanged in the clear</li>
</ul>
Block mode only (no stream encryption)<br>
Keys are dependent on the scheme<br>
<ul>
<li>Not just random bytes</li>
<li>Symmetric and asymmetric key lengths are not directly comparable</li>
<li>Generally:  the bigger the key, the more secure (and slower) the encryption</li>
</ul>


### Diffie-Hellman Key Exchange
<img src="DH.jpg">
<br>
For code example visit <a href="https://www.geeksforgeeks.org/implementation-diffie-hellman-algorithm/">here</a>

In [None]:
# Check the numbers for DH.
def prime_chck(p):
    if p < 1:
        return -1
    elif p>1:
        if p == 2:
            return 1
        for i in range(2,p):
            if p % i == 0:
                return -1
            return 1

In [None]:
def primitive_chck(g,p,L):
    for i in range(1,p):
        L.append(pow(g,i) % p)
    for i in range(1,p):
        if L.count(1) > 1:
            L.clear()
            return -1
        return 1

In [None]:
l = []
while 1:
    P = int(input("Enter P: "))
    if prime_chck(P) == -1:
        print("Number is not prime. Enter again!")
        continue
    break

while 1:
    G = int(input("Enter the P (primitive root of (P): "))
    if primitive_chck(G, P, l) == -1:
        print("Number is not a primitive root of (P). Try Again!")
        continue
    break

In [None]:
x1, x2 = int(input("Enter The Private Key Of User 1 : ")), int(
    input("Enter The Private Key Of User 2 : "))
while 1:
    if x1 >= P or x2 >= P:
        print(f"Private Key Of Both The Users Should Be Less Than {P}!")
        continue
    break
 
# Calculate Public Keys
y1, y2 = pow(G, x1) % P, pow(G, x2) % P
 
# Generate Secret Keys
k1, k2 = pow(y2, x1) % P, pow(y1, x2) % P
 
print(f"\nSecret Key For User 1 Is {k1}\nSecret Key For User 2 Is {k2}\n")
 
if k1 == k2:
    print("Keys Have Been Exchanged Successfully")
else:
    print("Keys Have Not Been Exchanged Successfully")

### RSA Encryption

In [None]:
%pip install cryptography

In [None]:
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding

# Generate RSA keys
private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
)

# Serialize private key to PEM format and save it to a file
with open('private_key.pem', 'wb') as private_key_file:
    private_key_pem = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.PKCS8,
        encryption_algorithm=serialization.NoEncryption()
    )
    private_key_file.write(private_key_pem)

# Get the corresponding public key
public_key = private_key.public_key()

# Serialize public key to PEM format and save it to a file
with open('public_key.pem', 'wb') as public_key_file:
    public_key_pem = public_key.public_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PublicFormat.SubjectPublicKeyInfo
    )
    public_key_file.write(public_key_pem)

# Message to be encrypted
message = b'Cryptanalysis in Action, EC-Council'

# Encrypt the message with the public key
ciphertext = public_key.encrypt(message, padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)

# Print the ciphertext
print("Encrypted message:", ciphertext)

# Decrypt the ciphertext with the private key
decrypted_message = private_key.decrypt(
    ciphertext,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)

# Print the decrypted message
print("Decrypted message:", decrypted_message.decode('utf-8'))


#### PKI, Hybrid Cryptography
PKI is used for sharing public keys in a certificate via centrally trusted authority called CA.<br>
After getting the certification we can use asymmetric encryption for securely sharing the symmetric key for the communications. This the fundamental details about the hybrid cryptography.