## Background code

#### Imports

In [1]:
import os
import zlib
import time
from IPython.display import display, HTML
from Cryptodome.PublicKey import RSA as PyCryptoRSA
from Cryptodome.Cipher import PKCS1_OAEP
from classes.rsa import RSA 
from classes.png import PNG 

#### Helpers

In [2]:
def visualiseResults(img_path, encrypt_img_path, decrypt_img_path, keysize, title=None):
    if title is not None:
        title += ' '
    else:
        title = ''
    html = f"""
    <style>
        table {{
            margin: auto;
        }}
        th {{
            text-align: center;
            padding-bottom: 10px;
            font-size: 16px;
        }}
        td {{
            text-align: center;
            border: 1px inset grey;
        }}
        p {{
            text-align: center;
        }}
    </style>
    <p>{title}Keysize: {keysize}</p>
    <table>
    <tr>
        <th>Original</th>
        <th>Encrypted</th>
        <th>Decrypted</th>
    </tr>
    <tr>
        <td><img src="{img_path}" width="300"></td>
        <td><img src="{encrypt_img_path}" width="300"></td>
        <td><img src="{decrypt_img_path}" width="300"></td>
    </tr>
    </table>
    """
    display(HTML(html))

#### Keypair generation

In [3]:
keysize = 256
keypair = RSA.generateKeypair(keysize)
print(keypair)

((18606593754577973737274742585146986973921517947633579073572979068099238824819, 65537), (18606593754577973737274742585146986973921517947633579073572979068099238824819, 2287177003629707744136675866547814624705492336537239196558556635967327016833))


#### Path to image

In [4]:
filename = "dice.png"
img_path = f"media/{filename}"

## Porównanie szyfrowania danych bez oraz z dekompresją danych

### Szyfrowanie po dekompresji danych z kompresją przed zapisaniem (całość) dla dwóch rozmiarów kluczy - 16-bit & 512-bit 

In [5]:
keypair512 = RSA.generateKeypair(512)
keypair16 = RSA.generateKeypair(16)
print(f"512-bit Keypair - {keypair512}")
print(f" 16-bit Keypair - {keypair16}")

512-bit Keypair - ((1314292550055105692352073708100263191749246931017880110513977270315538429857030229404829795570130338216438355530517697613484159977080883228022209825078893, 65537), (1314292550055105692352073708100263191749246931017880110513977270315538429857030229404829795570130338216438355530517697613484159977080883228022209825078893, 671755764670275956737681202988151977265125416914200071133660323538758118084695634861578534862394323000078728379067803208430983201398979562983094978687741))
 16-bit Keypair - ((3013, 65537), (3013, 153))


#### Encryption

In [6]:
##########################################################################
###########################512-bit encrypt################################
##########################################################################

png = PNG(img_path)
png_name = os.path.basename(img_path)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)
pubkey = keypair512[0]

chunk_size = len(idat_chunks[0])
combined_data = PNG.concatDataChunks(idat_chunks)

try:
    decompressed_data = zlib.decompress(combined_data)
except zlib.error:
    decompressed_data = combined_data


encrypted_uncompressed = RSA.encryptData(decompressed_data, pubkey)
encrypted_compressed = zlib.compress(encrypted_uncompressed)
new_chunk = PNG.buildNewIDAT(encrypted_compressed)

encrypted_idat_chunks = [new_chunk]
all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, encrypted_idat_chunks)

timestamp = RSA.getTimeStamp()
encrypt_img_path512 = RSA.writeEncrypted(all_chunks, png_name, timestamp)
keyfile512 = RSA.saveKeys(keypair512, png_name, timestamp)

time.sleep(1)
##########################################################################
############################16-bit encrypt################################
##########################################################################

png = PNG(img_path)
png_name = os.path.basename(img_path)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)
pubkey = keypair16[0]

chunk_size = len(idat_chunks[0])
combined_data = PNG.concatDataChunks(idat_chunks)

try:
    decompressed_data = zlib.decompress(combined_data)
except zlib.error:
    decompressed_data = combined_data


encrypted_uncompressed = RSA.encryptData(decompressed_data, pubkey)
encrypted_compressed = zlib.compress(encrypted_uncompressed)
new_chunk = PNG.buildNewIDAT(encrypted_compressed)

encrypted_idat_chunks = [new_chunk]
all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, encrypted_idat_chunks)

timestamp = RSA.getTimeStamp()
encrypt_img_path16 = RSA.writeEncrypted(all_chunks, png_name, timestamp)
keyfile16 = RSA.saveKeys(keypair16, png_name, timestamp)


#### Decryption


In [7]:
##########################################################################
############################16-bit decrypt################################
##########################################################################

keys = RSA.loadKeys(keyfile16)
privkey = keys[1]

png = PNG(encrypt_img_path16)
png_name = os.path.basename(encrypt_img_path16)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
encrypted_idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)

encrypted_idat_chunk = encrypted_idat_chunks[0]

encrypted_decompressed = zlib.decompress(encrypted_idat_chunk[8:-4])
decrypted_decompressed = RSA.decryptData(encrypted_decompressed, privkey)
decrypted_recompressed = zlib.compress(decrypted_decompressed)

decrypted_idat_chunks = []
for i in range(0, len(decrypted_recompressed), chunk_size):
    chunk_data = decrypted_recompressed[i:i+chunk_size]

    new_chunk = PNG.buildNewIDAT(chunk_data)
    decrypted_idat_chunks.append(new_chunk)

all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, decrypted_idat_chunks)

decrypt_img_path16 = RSA.writeDecrypted(all_chunks, png_name)

##########################################################################
###########################512-bit decrypt################################
##########################################################################

keys = RSA.loadKeys(keyfile512)
privkey = keys[1]

png = PNG(encrypt_img_path512)
png_name = os.path.basename(encrypt_img_path512)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
encrypted_idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)

encrypted_idat_chunk = encrypted_idat_chunks[0]

encrypted_decompressed = zlib.decompress(encrypted_idat_chunk[8:-4])
decrypted_decompressed = RSA.decryptData(encrypted_decompressed, privkey)
decrypted_recompressed = zlib.compress(decrypted_decompressed)

decrypted_idat_chunks = []
for i in range(0, len(decrypted_recompressed), chunk_size):
    chunk_data = decrypted_recompressed[i:i+chunk_size]

    new_chunk = PNG.buildNewIDAT(chunk_data)
    decrypted_idat_chunks.append(new_chunk)

all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, decrypted_idat_chunks)

decrypt_img_path512 = RSA.writeDecrypted(all_chunks, png_name)

#### Porównanie

In [8]:
visualiseResults(img_path, encrypt_img_path16, decrypt_img_path16, 16)
visualiseResults(img_path, encrypt_img_path512, decrypt_img_path512, 512)

Original,Encrypted,Decrypted
,,


Original,Encrypted,Decrypted
,,


### Szyfrowanie po dekompresji bez kompresji przed zapisaniem (całość)

#### Encrypt

In [9]:
png = PNG(img_path)
png_name = os.path.basename(img_path)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)
pubkey = keypair[0]

chunk_size = len(idat_chunks[0])
combined_data = PNG.concatDataChunks(idat_chunks)

try:
    decompressed_data = zlib.decompress(combined_data)
except zlib.error:
    decompressed_data = combined_data

encrypted_idat_chunks = []

encrypted_uncompressed = RSA.encryptData(decompressed_data, pubkey)

new_chunk = PNG.buildNewIDAT(encrypted_uncompressed)
encrypted_idat_chunks.append(new_chunk)

all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, encrypted_idat_chunks)

timestamp = RSA.getTimeStamp()
encrypt_img_path = RSA.writeEncrypted(all_chunks, png_name, timestamp)
keyfile = RSA.saveKeys(keypair, png_name, timestamp)

#### Decrypt

In [10]:
keys = RSA.loadKeys(keyfile)
privkey = keys[1]

png = PNG(encrypt_img_path)
png_name = os.path.basename(encrypt_img_path)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
encrypted_idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)

encrypted_idat_chunk = encrypted_idat_chunks[0]

decrypted_decompressed = RSA.decryptData(encrypted_idat_chunk[8:-4], privkey)
decrypted_recompressed = zlib.compress(decrypted_decompressed)

decrypted_idat_chunks = []
for i in range(0, len(decrypted_recompressed), chunk_size):
    chunk_data = decrypted_recompressed[i:i+chunk_size]

    new_chunk = PNG.buildNewIDAT(chunk_data)
    decrypted_idat_chunks.append(new_chunk)

all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, decrypted_idat_chunks)

decrypt_img_path = RSA.writeDecrypted(all_chunks, png_name)

#### Porównanie

In [11]:
visualiseResults(img_path, encrypt_img_path, decrypt_img_path, keysize)

Original,Encrypted,Decrypted
,,


### Szyfrowanie bez dekompresji danych

#### Jako całość

##### Encryption

In [12]:
png = PNG(img_path)
png_name = os.path.basename(img_path)
crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)
pubkey = keypair[0]

chunk_size = len(idat_chunks[0])
combined_data = PNG.concatDataChunks(idat_chunks)

encrypted_data = RSA.encryptData(combined_data, pubkey)
new_chunk = PNG.buildNewIDAT(encrypted_data)

encrypted_idat_chunks = [new_chunk]
all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, encrypted_idat_chunks)

timestamp = RSA.getTimeStamp()
encrypt_img_path = RSA.writeEncrypted(all_chunks, png_name, timestamp)
keyfile = RSA.saveKeys(keypair, png_name, timestamp)

##### Decryption

In [13]:
keys = RSA.loadKeys(keyfile)
privkey = keys[1]

png = PNG(encrypt_img_path)
png_name = os.path.basename(encrypt_img_path)

crit_chunks = png.getCriticalChunks()
anc_chunks = png.getAncillaryChunks()
encrypted_idat_chunks, crit_chunks_no_idat = png.getDataChunks(crit_chunks)
encrypted_idat_chunk = encrypted_idat_chunks[0]

decrypted_data = RSA.decryptData(encrypted_idat_chunk[8:-4], privkey)

decrypted_idat_chunks = []
for i in range(0, len(decrypted_data), chunk_size):
    chunk_data = decrypted_data[i:i+chunk_size]

    new_chunk = PNG.buildNewIDAT(chunk_data)
    decrypted_idat_chunks.append(new_chunk)

all_chunks = png.buildFromChunks(
    anc_chunks, crit_chunks_no_idat, decrypted_idat_chunks)

decrypt_img_path = RSA.writeDecrypted(all_chunks, png_name)

#### Porównanie

In [14]:
visualiseResults(img_path, encrypt_img_path, decrypt_img_path, keysize)

Original,Encrypted,Decrypted
,,


#### Per chunki (standard ecb)

##### Encryption

In [15]:
encrypt_img_path, keyfile = RSA.encryptFileECB(img_path, keypair)

##### Decryption

In [16]:
decrypt_img_path = RSA.decryptFileECB(encrypt_img_path, keyfile)

#### Porównanie

In [17]:
visualiseResults(img_path, encrypt_img_path, decrypt_img_path, keysize)

Original,Encrypted,Decrypted
,,


## Porównanie metod szyfrowania: ECB (Electronic CodeBook) oraz CBC (Cypher Clock Chaining)

### ECB

#### Encryption

In [18]:
ecb_encrypted_img_path, keyfile_path =  RSA.encryptFileECB(img_path, keypair)

print(f"""Original png: {img_path}
Encrypted png: {ecb_encrypted_img_path}
Keyfile: {keyfile_path}
""")

Original png: media/dice.png
Encrypted png: files/ECB_dice_encrypted.png
Keyfile: files/ECB_dice_keys.txt



#### Decryption

In [19]:
ecb_decrypted_img_path =  RSA.decryptFileECB(
    ecb_encrypted_img_path, keyfile_path)

print(f"Decrypted png: {ecb_decrypted_img_path}")

Decrypted png: files/ECB_dice_decrypted.png


#### Porównanie

In [20]:
visualiseResults(img_path, ecb_encrypted_img_path, ecb_decrypted_img_path, keysize)

Original,Encrypted,Decrypted
,,


### CBC

#### Encryption

In [21]:
cbc_encrypted_img_path, keyfile_path, iv =  RSA.encryptFileCBC(img_path, keypair)

print(f"""Original png: {img_path}
Encrypted png: {cbc_encrypted_img_path}
Keyfile: {keyfile_path}
""")

Original png: media/dice.png
Encrypted png: files/CBC_dice_encrypted.png
Keyfile: files/CBC_dice_keys.txt



#### Decryption

In [22]:
cbc_decrypted_img_path =  RSA.decryptFileCBC(
    cbc_encrypted_img_path, keyfile_path, iv)

print(f"Decrypted png: {cbc_decrypted_img_path}")

Decrypted png: files/CBC_dice_decrypted.png


#### Porównanie

In [23]:
visualiseResults(img_path, cbc_encrypted_img_path, cbc_decrypted_img_path, keysize)

Original,Encrypted,Decrypted
,,


##### Data lengths check

In [24]:
for i, j, k in zip(idat_chunks, encrypted_idat_chunks, decrypted_idat_chunks):
    print(f"orig: {len(i)} encrypted: {len(j)} decrypted: {len(k)}")

orig: 179514 encrypted: 185324 decrypted: 179514


## Porównanie z gotową implementacją RSA

##### Keygen

In [25]:
keysize = 1024
custom_keypair = RSA.generateKeypair(keysize)
print(f""" Key:
n - {custom_keypair[0][0]}
e - {custom_keypair[0][1]}
d - {custom_keypair[1][1]}
""") 

 Key:
n - 36621364609423801317876835805513943399899158736508075343271276549630132301012279442340933943198637507516448387994897323696063747341582485646218702385635317861727113948323709115088859391604937227660475021256443786740628647800422131031191805433398515214820112685419191700499474131641099474113909393227142197909
e - 65537
d - 10559997381462242661477279140830408812904074062018853591667921696673790991722691867210262441957487398218500108890055535395398213181275093668343699554201992475112139710511290206413234507641039612468988970415586647472295167080181167899411936291967343787544071951651269780033577381057375060610844968519839101913



##### Encode/Decode

In [None]:
img_path = f"media/dice.png"

##########################################################################
###########################Our Implementation#############################
##########################################################################

# Encrypt
cbc_enc_start = time.time()
cbc_encrypted_img_path, keyfile_path, iv = RSA.encryptFileCBC(img_path, custom_keypair)
cbc_enc_end = time.time()

# Decrypt
cbc_dec_start = time.time()
cbc_decrypted_img_path = RSA.decryptFileCBC(cbc_encrypted_img_path, keyfile_path, iv)
cbc_dec_end = time.time()

##########################################################################
#######################Python package PyCryptodome########################
##########################################################################
png = PNG(img_path)
idat_chunks, _ = png.getDataChunks(png.getCriticalChunks())
idat_data = png.concatDataChunks(idat_chunks)

pycrypto_key = PyCryptoRSA.construct((
    custom_keypair[0][0], 
    custom_keypair[0][1], 
    custom_keypair[1][1]
    ))
cipher = PKCS1_OAEP.new(pycrypto_key)

byte_len = (custom_keypair[0][0].bit_length() + 7) // 8
max_chunk = cipher._key.size_in_bytes() - 42

# Encrypt
cbc_enc_std_start = time.time()
enc_data = bytearray()
for i in range(0, len(idat_data), max_chunk):
    chunk = idat_data[i:i+max_chunk]
    enc_data.extend(cipher.encrypt(chunk))
cbc_enc_std_end = time.time()

# Decrypt
cbc_dec_std_start = time.time()
dec_data = bytearray()
keysize_bytes = cipher._key.size_in_bytes()
for i in range(0, len(enc_data), keysize_bytes):
    chunk = enc_data[i:i+keysize_bytes]
    dec_data.extend(cipher.decrypt(chunk))
cbc_dec_std_end = time.time()

print(f"""Python implementation time decrypt: {cbc_enc_std_end - cbc_enc_std_start
:>4.3f} ms encrypt: {cbc_dec_std_end - cbc_dec_std_start:>4.3f} ms
Custom implementation time decrypt: {cbc_enc_end - cbc_enc_start
:>4.3f} ms encrypt: {cbc_dec_end - cbc_dec_start:>4.3f} ms""")

##### Porównanie

In [None]:

std_encrypted_chunks = [PNG.buildNewIDAT(enc_data)]
std_decrypted_chunks = [PNG.buildNewIDAT(dec_data)]
anc_chunks = png.getAncillaryChunks()
crit_chunks = png.getCriticalChunks()
_, crit_no_idat = png.getDataChunks(crit_chunks)

timestamp = RSA.getTimeStamp()
std_enc_path = RSA.writeEncrypted(
    png.buildFromChunks(anc_chunks, crit_no_idat, std_encrypted_chunks),
    img_path, timestamp
)
time.sleep(1)
std_dec_path = RSA.writeDecrypted(
    png.buildFromChunks(anc_chunks, crit_no_idat, std_decrypted_chunks),
    std_enc_path
)

visualiseResults(
    img_path,
    cbc_encrypted_img_path,
    cbc_decrypted_img_path,
    keysize,
    "Nasza implementacja"
)

visualiseResults(
    img_path,
    std_enc_path,
    std_dec_path,
    keysize,
    "Implementacja PyCryptodome"
)

Original,Encrypted,Decrypted
,,


Original,Encrypted,Decrypted
,,


## Porównanie plików

In [None]:
files = ['dice', 'test', 'plte']
# files = ['dice']

for file in files:
    print(f"File: {file}.png")
    png = PNG(f"media/{file}.png")
    anc_chunks = png.getAncillaryChunks()
    crit_chunks = png.getCriticalChunks()
    print(f"Crit chunks: {len(crit_chunks)} Anc chunks: {len(anc_chunks)}")
    print("Crit chunk sizes: ")
    for chunk in crit_chunks:
        data_len = int.from_bytes(chunk[:4])
        chunk_type = chunk[4:8].decode('utf-8')
        print(f"{chunk_type}: {data_len}")


File: dice.png
Crit chunks: 3 Anc chunks: 0
Crit chunk sizes: 
IHDR: 13
IDAT: 179502
IEND: 0
File: test.png
Crit chunks: 10 Anc chunks: 8
Crit chunk sizes: 
IHDR: 13
IDAT: 8192
IDAT: 8192
IDAT: 8192
IDAT: 8192
IDAT: 8192
IDAT: 8192
IDAT: 8192
IDAT: 7564
IEND: 0
File: plte.png
Crit chunks: 5 Anc chunks: 6
Crit chunk sizes: 
IHDR: 13
PLTE: 768
IDAT: 8192
IDAT: 2484
IEND: 0


In [None]:
for i, j, k in zip(idat_chunks, encrypted_idat_chunks, decrypted_idat_chunks):
    print(f"orig: {len(i)} encrypted: {len(j)} decrypted: {len(k)}")

orig: 179514 encrypted: 185324 decrypted: 179514
