# **Answer-1**

In [3]:
def caesar_decrypt(ciphertext, key):
    decrypted_text = ''
    for char in ciphertext:
        if char.isalpha():
            shifted = ord(char) - key
            if char.isupper():
                if shifted < ord('A'):
                    shifted += 26
                decrypted_text += chr(shifted)
        else:
            decrypted_text += char
    return decrypted_text

def create_playfair_table(key):
    key = ''.join(sorted(set(key), key=key.index))  # removing duplicates and preserve order
    key = key.replace('J', 'I')  # Playfair treats I and J as the same
    alphabet = "ABCDEFGHIKLMNOPQRSTUVWXYZ"
    table = []
    for char in key:
        if char not in table:
            table.append(char)
    for char in alphabet:
        if char not in table:
            table.append(char)
    return table

def playfair_decrypt(ciphertext, key):
    table = create_playfair_table(key)
    decrypted_text = ''
    for i in range(0, len(ciphertext), 2):
        digraph = ciphertext[i:i+2]
        row1, col1 = divmod(table.index(digraph[0]), 5)
        row2, col2 = divmod(table.index(digraph[1]), 5)
        if row1 == row2:
            decrypted_text += table[row1 * 5 + (col1 - 1) % 5]
            decrypted_text += table[row2 * 5 + (col2 - 1) % 5]
        elif col1 == col2:
            decrypted_text += table[((row1 - 1) % 5) * 5 + col1]
            decrypted_text += table[((row2 - 1) % 5) * 5 + col2]
        else:
            decrypted_text += table[row1 * 5 + col2]
            decrypted_text += table[row2 * 5 + col1]
    return decrypted_text

def row_transposition_decrypt(ciphertext, key):
    num_columns = len(key)
    num_rows = len(ciphertext) // num_columns
    if len(ciphertext) % num_columns != 0:
        num_rows += 1
    matrix = [''] * num_columns
    index = 0
    key_indices = sorted(range(len(key)), key=lambda x: key[x])
    for num in key_indices:
        for row in range(num_rows):
            if index < len(ciphertext):
                matrix[num] += ciphertext[index]
                index += 1
    decrypted_text = ''.join(matrix)
    return decrypted_text

# 1:-> Decrypt Caesar cipher
caesar_ciphertext = "YWFKKNHFSFQDXNX"
caesar_key = 5
playfair_key = caesar_decrypt(caesar_ciphertext, caesar_key)
print("Decrypted Caesar cipher text:", playfair_key)

# 2:-> Decrypt Playfair cipher
playfair_ciphertext = "LDELKRBRRQBLSRTOIEBR"
playfair_decrypted_text = playfair_decrypt(playfair_ciphertext, playfair_key)
print("Decrypted Playfair cipher text:", playfair_decrypted_text)

# 3:-> Decrypt Row Transposition
transposition_key = "31452"
final_decrypted_text = row_transposition_decrypt(playfair_decrypted_text, transposition_key)
print("Final decrypted text:", final_decrypted_text)


Decrypted Caesar cipher text: TRAFFICANALYSIS
Decrypted Playfair cipher text: NELAMTDTIMECNIAKAHDT
Final decrypted text: IMECNELANIAKAHDTMTDT


# **Answer-2**

# **Scenario 1:Role-Based Access Control (RBAC)**

In [4]:
class Role:
    def __init__(self, name):
        self.name = name
        self.perms = set()

    def add_perm(self, perm):
        self.perms.add(perm)

    def remove_perm(self, perm):
        self.perms.discard(perm)

    def has_perm(self, perm):
        return perm in self.perms

class User:
    def __init__(self, username, role):
        self.username = username
        self.role = role

class CourseMat:
    def __init__(self, name):
        self.name = name
        self.access_perms = set()

    def grant_access(self, role):
        self.access_perms.add(role)

    def revoke_access(self, role):
        self.access_perms.discard(role)

    def can_access(self, user):
        return user.role in self.access_perms

# Define roles
prof_role = Role("Professor")
ta_role = Role("TA")
stud_role = Role("Student")

# Define users
prof = User("ProfSmith", prof_role)
ta = User("TAJohn", ta_role)
stud = User("StudJane", stud_role)

# Define course material
course_mat = CourseMat("LectureNotes")
course_mat.grant_access(prof_role)
course_mat.grant_access(ta_role)

# Check access
print(course_mat.can_access(prof))  # True
print(course_mat.can_access(ta))    # True
print(course_mat.can_access(stud))  # False


True
True
False


# **Scenario 2:Mandatory Access Control (MAC)**

In [5]:
class ClearanceLevel:
    def __init__(self, lvl):
        self.lvl = lvl

UG = ClearanceLevel(1)
GR = ClearanceLevel(2)
PG = ClearanceLevel(3)

class User:
    def __init__(self, username, clr_level):
        self.username = username
        self.clr_level = clr_level

class Course:
    def __init__(self, name, req_clr_level):
        self.name = name
        self.req_clr_level = req_clr_level

    def can_access(self, user):
        return user.clr_level.lvl >= self.req_clr_level.lvl

# Define users
ug_stud = User("StudJane", UG)
gr_stud = User("StudJoe", GR)
pg_stud = User("StudJim", PG)

# Define courses
ug_course = Course("IntroCS", UG)
gr_course = Course("AdvAlgo", GR)
pg_course = Course("QuantumComp", PG)

# Check access
print(ug_course.can_access(ug_stud))  # True
print(ug_course.can_access(gr_stud))  # True
print(gr_course.can_access(ug_stud))  # False
print(pg_course.can_access(gr_stud))  # False
print(pg_course.can_access(pg_stud))  # True


True
True
False
False
True


# **Scenario 3: Attribute-Based Access Control (ABAC)**

In [6]:
class User:
    def __init__(self, username, role, exp_years):
        self.username = username
        self.role = role
        self.exp_years = exp_years

class CourseMat:
    def __init__(self, name, file_type, course_lvl):
        self.name = name
        self.file_type = file_type
        self.course_lvl = course_lvl

class Env:
    def __init__(self, access_time, access_loc):
        self.access_time = access_time
        self.access_loc = access_loc

class ABACPolicy:
    def __init__(self, name, condition):
        self.name = name
        self.condition = condition

    def evaluate(self, user, mat, env, action):
        return self.condition(user, mat, env, action)

# Define policies
def prof_can_edit_anytime(user, mat, env, action):
    return user.role == "Professor" and action == "edit"

def ta_can_edit_if_exp(user, mat, env, action):
    return user.role == "TA" and user.exp_years > 2 and action == "edit"

def stud_can_view_day(user, mat, env, action):
    return user.role == "Student" and env.access_time < 18 and action == "view"

policies = [
    ABACPolicy("ProfEdit", prof_can_edit_anytime),
    ABACPolicy("TAEditExp", ta_can_edit_if_exp),
    ABACPolicy("StudViewDay", stud_can_view_day)
]

def check_access(user, mat, env, action):
    for policy in policies:
        if policy.evaluate(user, mat, env, action):
            return True
    return False

# Define users
prof = User("ProfSmith", "Professor", 10)
ta = User("TAJohn", "TA", 3)
stud = User("StudJane", "Student", 1)

# Define course material
course_mat = CourseMat("LectureNotes", "pdf", "Graduate")

# Define environment
env = Env(14, "OnCampus")

# Check access
print(check_access(prof, course_mat, env, "edit"))  # True
print(check_access(ta, course_mat, env, "edit"))   # True
print(check_access(stud, course_mat, env, "view")) # True
print(check_access(stud, course_mat, Env(20, "OnCampus"), "view"))  # False


True
True
True
False


# **Scenario 4: Discretionary Access Control (DAC)**

In [13]:
class User:
    def __init__(self, username, role):
        self.username = username
        self.role = role

class CourseMaterial:
    def __init__(self, material_name, owner):
        self.material_name = material_name
        self.owner = owner
        self.access_control_list = {}

    def grant_access(self, user, permissions):
        self.access_control_list[user.username] = permissions

    def revoke_access(self, user):
        if user.username in self.access_control_list:
            del self.access_control_list[user.username]

    def can_access(self, user, permission):
        if user.username == self.owner.username:  # Check if user is the owner
            return True
        if user.username in self.access_control_list:
            return permission in self.access_control_list[user.username]
        return False

# Define users
professor = User("Prof. Smith", "Professor")
ta = User("TA John", "Teaching Assistant")

# Define course material
course_material = CourseMaterial("Lecture Notes", professor)
course_material.grant_access(ta, {"read"})

# Check access
print(course_material.can_access(ta, "read"))   # True
print(course_material.can_access(ta, "edit"))   # False
print(course_material.can_access(professor, "edit"))  # True, by default owner has full access
print(course_material.can_access(professor, "read"))  # True, by default owner has full access


True
False
True
True


# **Answer-3**

In [14]:
import pandas as pd
import numpy as np

In [15]:
data = pd.read_csv("/content/sales_system.csv")
data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,,3.82,9.6
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8


In [16]:
duplicated = data[data.duplicated()]
duplicated

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating


In [17]:
missing_values_count = data.isnull().sum()

# look at the # of missing points in the first ten columns
missing_values_count[:]

InvoiceID                  0
Branch                     0
City                       0
Customer                   0
Gender                     0
ProductLine                0
UnitPrice                  0
Quantaty                   0
Tax5%                      0
Total                      1
Date                       0
Time                       0
Payment                    0
cogs                       0
gross_margin_percentage    1
gross_income               0
Rating                     0
dtype: int64

In [23]:
data['gross_margin_percentage'].fillna(4.761905,inplace=True)

In [31]:
data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8


In [34]:
total = data['Total'].fillna(0)
nums = 0
for i in total:
  nums+=i
nums

2665.404

In [35]:
value = nums/7
value

380.772

In [39]:
data['Total'].fillna(380.772, inplace=True)
data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8


In [40]:
copy_data = data
copy_data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8


In [41]:
class MACPolicy:
    def __init__(self):
        self.access_rules = {}

    def add_access_rule(self, subject, resource, action):
        if resource not in self.access_rules:
            self.access_rules[resource] = {}
        if action not in self.access_rules[resource]:
            self.access_rules[resource][action] = []
        self.access_rules[resource][action].append(subject)

    def check_access(self, subject, resource, action):
        if resource in self.access_rules and action in self.access_rules[resource]:
            return subject in self.access_rules[resource][action]
        return False

In [42]:
mac_policy = MACPolicy()

# Defining access rules
mac_policy.add_access_rule("admin", "/content/sales_system.csv", "read")
mac_policy.add_access_rule("admin", "/content/sales_system.csv", "write")
mac_policy.add_access_rule("user", "/content/sales_system.csv", "read")

In [46]:
if mac_policy.check_access("admin", "/content/sales_system.csv", "write"):
    copy_data['status'] = 'active'
copy_data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating,status
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1,active
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6,active
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4,active
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4,active
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3,active
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1,active
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8,active


In [47]:
if mac_policy.check_access("admin", "/content/sales_system.csv", "write"):
    copy_data.loc[copy_data['Customer'] == "Normal", 'status'] = 'inactive'

copy_data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating,status
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1,active
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6,inactive
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4,inactive
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4,active
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3,inactive
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1,inactive
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8,active


In [48]:
if mac_policy.check_access("admin", "/content/sales_system.csv", "write"):
    copy_data.loc[copy_data['ProductLine'] == "Electronics", 'status'] = 'inactive'

copy_data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating,status
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1,active
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6,inactive
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4,inactive
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4,active
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3,inactive
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1,inactive
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8,inactive


In [49]:
if mac_policy.check_access("admin", "/content/sales_system.csv", "write"):
    copy_data.loc[copy_data['Rating'] < 8.5, 'status'] = 'inactive'

copy_data

Unnamed: 0,InvoiceID,Branch,City,Customer,Gender,ProductLine,UnitPrice,Quantaty,Tax5%,Total,Date,Time,Payment,cogs,gross_margin_percentage,gross_income,Rating,status
0,750-67-84,A,Yangon,Member,Female,Health and care,74.69,7,26.1415,548.9715,1/5/2019,13:08,Ewallet,522.83,4.761905,26.1415,9.1,active
1,226-31-30,C,Naypyitaw,Normal,Female,Electronics,15.28,5,3.82,80.22,3/8/2019,10:29,Cash,76.4,4.761905,3.82,9.6,inactive
2,631-41-31,A,Yangon,Normal,Male,Sports,46.33,7,16.2155,340.5255,3/3/2019,13:23,Creditcard,324.31,4.761905,16.2155,7.4,inactive
3,123-19-11,A,Yangon,Member,Male,Health and care,58.22,8,23.288,380.772,1/27/2019,20:33,Ewallet,465.76,4.761905,23.288,8.4,inactive
4,373-73-79,A,Yangon,Normal,Male,Sports,86.31,7,30.2085,634.3785,2/8/2019,10:37,Ewallet,604.17,4.761905,30.2085,5.3,inactive
5,699-14-30,C,Naypyitaw,Normal,Male,Electronics,85.39,7,29.8865,627.6165,3/25/2019,18:30,Ewallet,597.73,4.761905,29.8865,4.1,inactive
6,355-53-59,A,Yangon,Member,Female,Electronics,68.84,6,20.652,433.692,2/25/2019,14:36,Ewallet,413.04,4.761905,20.652,5.8,inactive
