PRACTICAL INTRODUCTION TO QUANTUM-SAFE CRYPTOGRAPHY

CRYPTOGRAPHIC HASH FUNCTIONS:

In [1]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import hashes

def char_diff(str1, str2):
    return sum(str1[i] != str2[i] for i in range(len(str1)))

message_1 = b"Buy 10000 shares of WXYZ stock now!"
message_2 = b"Buy 10000 shares of VXYZ stock now!"

print(f'the two messages differ by {char_diff(message_1, message_2)} characters')

the two messages differ by 1 characters


In [2]:
# Create new SHA-256 hash objects, one for each message
chf_1 = hashes.Hash(hashes.SHA256(), backend=default_backend())
chf_2 = hashes.Hash(hashes.SHA256(), backend=default_backend())

# Update each hash object with the bytes of the corresponding message
chf_1.update(message_1)
chf_2.update(message_2)

# Finalize the hash process and obtain the digests
digest_1 = chf_1.finalize()
digest_2 = chf_2.finalize()

#Convert the resulting hash to hexadecimal strings for convenient printing
digest_1_str = digest_1.hex()
digest_2_str = digest_2.hex()

#Print out the digests as strings 
print(f"digest-1: {digest_1_str}")
print(f"digest-2: {digest_2_str}")

print(f"The two digests differ by { char_diff(digest_1_str, digest_2_str)} characters")

digest-1: 6e0e6261b7131bd80ffdb2a4d42f9d042636350e45e184b92fcbcc9646eaf1e7
digest-2: 6b0abb368c3a1730f935b68105e3f3ae7fd43d7e786d3ed3503dbb45c74ada46
The two digests differ by 57 characters


In [3]:
# applications:
# data integrity checks
# digital signatures
# blockchain and cryptocurrencies 

symmetric key cryptography:

In [1]:
# Install the library if needed
%pip install secretpy

# import the required crypto functions which will be demonstrated later
from secretpy import Caesar
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from functools import reduce
import numpy as np

# Set the plaintext we want to encrypt
plaintext=u"this is a strict top secret message for intended recipients only"
print(f"\nGiven plaintext: {plaintext}")

Note: you may need to restart the kernel to use updated packages.

Given plaintext: this is a strict top secret message for intended recipients only


In [2]:
# initialize the required python object for doing Caesar shift encryption
caesar_cipher = Caesar()

# Define the shift, ie the key
caesar_key = 5 
print(f"Caesar shift secret key: {caesar_key}")

# Define the alphabet
alphabet=('a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', ' ')
print(f"alphabet: {alphabet}")

Caesar shift secret key: 5
alphabet: ('a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', ' ')


In [10]:
# quantum applications
import numpy as np
from matplotlib import pyplot as plt
n=8
q=127
N=int(1.1*n*np.log(q))
sigma=1.0
print(f"n={n},q={q},N={N},sigma={sigma}")

n=8,q=127,N=42,sigma=1.0


In [11]:
def chi(stdev, modulus):
    return round((np.random.randn() * stdev**2))%modulus

# print some examples
sd=2
m=1000
for x in range(10):
  print("chi = ",chi(sd,m))

chi =  995
chi =  998
chi =  1
chi =  6
chi =  2
chi =  997
chi =  999
chi =  996
chi =  3
chi =  995


In [12]:
#Alice's private key
alice_private_key = np.random.randint(0, high=q, size=n)
print(f"Alice's private key: {alice_private_key}")

Alice's private key: [105  17  42   1  94  62  96  82]


In [13]:
#Alice's Public Key
alice_public_key = []

# N is the number of values we want in the key
for i in range(N):
    # Get n random values between 0 and <q
    a = np.random.randint(0, high=q, size=n)
    # get an error to introduce
    epsilon = chi(sigma, q)
    #  calculate dot product (ie like array multiplication)
    b = (np.dot(a, alice_private_key) + epsilon) % q
    # value to be added to the key -
    sample = (a, b)
    alice_public_key.append(sample)
    
print(f"Alice's public key: {alice_public_key}")

Alice's public key: [(array([ 20,  35,  15, 114,   0, 124,  32,  92]), np.int64(25)), (array([ 26, 126,  63, 114,  62,   5,  24,  33]), np.int64(111)), (array([ 96,  84,   9, 105,  78, 108,  86,   9]), np.int64(87)), (array([ 48,  68,  15,  20,  47, 104,  34, 101]), np.int64(47)), (array([ 24,  37,  19, 120,  40,  43,  58, 112]), np.int64(98)), (array([ 57,  29,  87,  65, 101,  18,  29,   6]), np.int64(79)), (array([ 70,  39,  63,  63, 108,  46, 102,  75]), np.int64(43)), (array([ 95,  84,  97,  15,  35, 109,  77,   8]), np.int64(60)), (array([43, 99, 13, 44, 69, 85, 88, 95]), np.int64(111)), (array([ 40,  69,  25, 109,  66,  81,  27,  50]), np.int64(68)), (array([103,  37,  14,  61,   0,   6,  34,  79]), np.int64(110)), (array([ 79,  96,  43,  86,  81,  55, 121,  70]), np.int64(67)), (array([  3, 123,  34,  57, 112,  84,  19, 105]), np.int64(89)), (array([ 77, 115,  66, 120,  43, 119,  36, 118]), np.int64(19)), (array([ 35,  41,  50, 116,  46,   4,  44,  39]), np.int64(41)), (array([1

In [14]:
#Encryption
bob_message_bit = 1
print(f"Bob's message bit={bob_message_bit}")

Bob's message bit=1


In [15]:
# a list of N values between 0 and <2 - ie 0 or 1
r = np.random.randint(0, 2, N)
print(r)

[1 0 1 0 1 0 1 0 1 1 1 0 1 1 1 1 1 0 0 1 0 1 0 1 0 0 0 1 0 1 0 1 0 1 0 0 1
 1 0 1 0 0]


In [16]:
sum_ai=np.zeros(n, dtype=int)
sum_bi=0

for i in range(N):
    sum_ai = sum_ai + r[i] * alice_public_key[i][0]
    sum_bi = sum_bi + r[i] * alice_public_key[i][1]
sum_ai = [ x % q for x in sum_ai ]
# sum_bi = sum_bi 
ciphertext = (sum_ai, (bob_message_bit*int(np.floor(q/2))+sum_bi)%q)
print(f"ciphertext is: {ciphertext}")

ciphertext is: ([np.int64(116), np.int64(58), np.int64(111), np.int64(99), np.int64(64), np.int64(20), np.int64(34), np.int64(69)], np.int64(4))


In [17]:
#Decryption
adots = np.dot(ciphertext[0], alice_private_key) % q
b_adots = (ciphertext[1] - adots) % q

decrypted_message_bit = round((2*b_adots)/q) % 2

print(f"original message bit={bob_message_bit}, decrypted message bit={decrypted_message_bit}")

assert bob_message_bit == decrypted_message_bit

original message bit=1, decrypted message bit=1


In [18]:
bob_message_bits = np.random.randint(0, 2, 16)
print(f"Bob's message bits are : {bob_message_bits}")
decrypted_bits = []

for ib in range(len(bob_message_bits)):
    bob_message_bit = bob_message_bits[ib]

    r = np.random.randint(0, 2, N)
    
    sum_ai=np.zeros(n, dtype=int)
    sum_bi=0
    for i in range(N):
        sum_ai = sum_ai + r[i] * alice_public_key[i][0]
        sum_bi = sum_bi + r[i] * alice_public_key[i][1]
    sum_ai = [ x % q for x in sum_ai ]

    ciphertext = (sum_ai, (bob_message_bit*int(np.floor(q/2))+sum_bi)%q)

    adots = np.dot(ciphertext[0], alice_private_key) % q
    b_adots = (ciphertext[1] - adots) % q

    decrypted_message_bit = round((2*b_adots)/q) % 2
    assert decrypted_message_bit == bob_message_bit

    decrypted_bits.append(decrypted_message_bit)
    
print(f"Decrypted message bits = {np.array(decrypted_bits)}")

Bob's message bits are : [1 1 0 1 0 0 0 0 0 0 0 1 0 1 1 0]
Decrypted message bits = [1 1 0 1 0 0 0 0 0 0 0 1 0 1 1 0]
