In [1]:
### HMAC
## HMAC (sometimes expanded as either keyed-hash message authentication code or 
## hash-based message authentication code) is a specific type of message authentication code (MAC) 
## involving a cryptographic hash function and a secret cryptographic key. As with any MAC, 
## it may be used to simultaneously verify both the data integrity and authenticity of a message.
## HMAC can provide authentication using a shared secret instead of using digital signatures 
## with asymmetric cryptography. It trades off the need for a complex public key infrastructure 
## by delegating the key exchange to the communicating parties, who are responsible for establishing 
## and using a trusted channel to agree on the key prior to communication.



In [2]:
import hashlib

In [5]:
def modify(m):
  l = list(m)
  l[0] = l[0] ^ 1
  return bytes(l)

In [3]:
# Alice and Bob share a secret key
secret_key = "secret key".encode()

# Alice wants to compute a MAC
m = "Hey Bob. You are still awesome.".encode()
sha256 = hashlib.sha256()
sha256.update(secret_key)
sha256.update(m)
hmac = sha256.digest()

print(m, hmac)


b'Hey Bob. You are still awesome.' b'\xd5\x9dy\xa2\x15\xe1\x04XEp\xe8\x8a\x19\x88d\xa45\xc5%\xa1\x84?\xfd\x01\xcd\xe1vH0\xb8\x19\xd6'


In [4]:
# Bob receives and validates the HMAC
sha256 = hashlib.sha256()
sha256.update(secret_key)
sha256.update(m)
hmac = sha256.digest()
print(m, hmac)

b'Hey Bob. You are still awesome.' b'\xd5\x9dy\xa2\x15\xe1\x04XEp\xe8\x8a\x19\x88d\xa45\xc5%\xa1\x84?\xfd\x01\xcd\xe1vH0\xb8\x19\xd6'


In [6]:
## What happens if Eve modifies a message - will Bob figure it out?

# Eve comes along
m = modify(m)
print(m)

b'Iey Bob. You are still awesome.'
