# Public-private key cryptography

The algorithm to encrypt a series of data through a public-private key consists of finding two random (usually large) prime numbers $p$ and $q$ such that $n = p \times q$.

Then $d$ is sought as a coprime integer of $(p-1)(q-1)$, that is, the greatest common divisor between $d$ and $(p-1)(q-1)$ is 1.

Finally, $e$ is found, which is the _mulplicative inverse_ of $d$ modulo $(p-1)(q-1)$, that is:

$e \times d = 1 \mod ((p-1)(q-1))$



In [1]:
let p = 13
let q = 17
let n = p*q 
let d = 181 
let e = 157 
let b = (p-1) * (q-1)

n

In [5]:
printfn $"{e} * {d} mod ({p-1} * {q-1}) = {e*d} mod({(p-1) * (q-1)}) = {e*d % b}"

157 * 181 mod (12 * 16) = 28417 mod(192) = 1


In [2]:
let publicKey = (n,d)
let privateKey = (n,e)

Encrypt message M

$C = M^e (\mod n)$

decrypt C

$M = C^d (\mod n)$

Note that this will be valid as long as $M \le n$.

In [4]:
let pow (b: bigint) (e:int) =
    let rec loop b i = 
        if i = 0 then 
            b
        else 
            b * (loop b (i-1))

    loop b (e-1)         


In [6]:
pow (bigint 2) 2

In [8]:
let m = bigint 222
let C = (pow m e) % (bigint n) 

let M = (pow C d) % (bigint n) 

printfn $"Encriptar {m}: {C} "
printfn $"Desencriptar {C}: {M} "


Encriptar 222: 1 
Desencriptar 1: 1 


In [7]:
pow m e % (bigint n) 

The security of the algorithm is due to the fact that it is extremely difficult from the mathematical point of view to find the prime factors of a large number, that is, to find p and q from the value of n. The only way is trial and error. However, for a 128-bit key, for example, the corresponding maximum integer is 2^128-1

In [8]:
let maxInt128bits = pow (bigint 2) 128 - (bigint 1)

printfn $"Max int representable en 128 bits: {maxInt128bits}"

Max int representable en 128 bits: 340282366920938463463374607431768211455


On the other hand, the number of primes up to a value $n$ is $\frac{n}{\log n}$. For 128 bits we would have:

In [9]:
(maxInt128bits + bigint 1)/(bigint 128)

which is the same as

$\frac{2^{128}}{128} = \frac{2^{128}}{2^{7}} = 2^{121} = 10^{(121 \log_{10}2)} \approx 10^{36} $

In [10]:
Math.Log10(2)*121.0

## Implementations

RSA (Rivest, Shamir, and Adleman) is the usual algorithm for generating public-private keys. Bit lengths of 1024, 2048 and 4096 are used. This algorithm is _asymmetric_, in the sense that different keys are used to encrypt and decrypt.

AES (Advanced Encryption Standard) is a _symmetric_ algorithm, therefore, it has a unique key to encrypt and decrypt.

The advantage of AES is that it is faster in the encrypt/decrypt process, since it uses fewer bits. However, it has the disadvantage that both the sender and receiver of the message must have the same key, which leads to the problem of sharing it securely. The usual way to solve this difficulty is to use an RSA type public private key to encrypt/decrypt the AES key.