In [7]:
# Import necessary libraries
import hashlib
import random
import string

# Function to generate a random string of specified length
def generate_random_string(length):
    return ''.join(random.choices(string.ascii_letters + string.digits, k=length))

# Function to generate a nonce
def generate_nonce():
    return generate_random_string(16)

# Function to generate a session key
def generate_session_key():
    return generate_random_string(32)

# Function to encrypt data using a symmetric key
def encrypt(data, key):
    # In a real implementation, use a secure encryption algorithm
    # Here, we use a simple XOR operation for demonstration purposes
    encrypted_data = ''.join(chr(ord(c) ^ ord(k)) for c, k in zip(data, key))
    return encrypted_data

# Function to decrypt data using a symmetric key
def decrypt(data, key):
    return encrypt(data, key)  # XOR operation is its own inverse

# Simulating IoT device
class IoTDevice:
    def __init__(self, id, key):
        self.id = id
        self.key = key

    # Method to send data to the server
    def send_data(self, data, session_key):
        encrypted_data = encrypt(data, session_key)
        # Simulate sending encrypted data to the server
        print(f"IoT Device {self.id} sent encrypted data to server: {encrypted_data}")

# Simulating server
class Server:
    def __init__(self, key):
        self.key = key

    # Method for IoT device authentication
    def authenticate_iot_device(self, device_id, nonce):
        session_key = generate_session_key()
        encrypted_session_key = encrypt(session_key, self.key)
        return encrypted_session_key, nonce

    # Method for receiving data from IoT devices
    def receive_data(self, encrypted_data, session_key):
        decrypted_data = decrypt(encrypted_data, session_key)
        print(f"Server received encrypted data from IoT device: {encrypted_data}")
        print(f"Server decrypted data: {decrypted_data}")

# Simulating smartphone
class Smartphone:
    def __init__(self, username, password):
        self.username = username
        self.password = password

    # Method for user authentication
    def authenticate_user(self, server, nonce):
        # Simulate user authentication with username and password
        if self.username == "user" and self.password == "password":
            session_token = generate_random_string(32)
            encrypted_session_token = encrypt(session_token, server.key)
            return encrypted_session_token, nonce
        else:
            return "Authentication failed", nonce

# Main function
def main():
    # Initialization phase
    iot_device_key = generate_random_string(16)
    server_key = generate_random_string(32)
    smartphone_username = "user"
    smartphone_password = "password"

    # Create IoT device, server, and smartphone instances
    iot_device = IoTDevice("1", iot_device_key)
    server = Server(server_key)
    smartphone = Smartphone(smartphone_username, smartphone_password)

    # Mutual authentication of IoT device and server
    iot_device_nonce = generate_nonce()
    encrypted_session_key, nonce = server.authenticate_iot_device(iot_device.id, iot_device_nonce)
    session_key = decrypt(encrypted_session_key, iot_device.key)
    print(f"IoT Device {iot_device.id} authenticated with server")

    # Data transmission from IoT device to server
    data_to_send = "Sensor data: temperature=25Â°C, humidity=60%"
    encrypted_data_to_server = encrypt(data_to_send, session_key)
    iot_device.send_data(encrypted_data_to_server, session_key)

    # Server receiving and processing data
    server.receive_data(encrypted_data_to_server, session_key)

    # Mutual authentication of smartphone user and server
    smartphone_nonce = generate_nonce()
    encrypted_session_token, nonce = smartphone.authenticate_user(server, smartphone_nonce)
    print("Smartphone user authenticated with server")

if __name__ == "__main__":
    main()


IoT Device 1 authenticated with server
IoT Device 1 sent encrypted data to server: Sensor data: tem
Server received encrypted data from IoT device: A,wa~FD\cKiAk4
Server decrypted data: Sensor data: tem
Smartphone user authenticated with server
