#LAB 1:  Ceaser Cipher

In [None]:
def caesar_cipher(text, shift, mode='encrypt'):
    result = ''
    for char in text:
        if char.isalpha():
            # (uppercase or lowercase)
            base = 'A' if char.isupper() else 'a'
            # Encrypt or decrypt based on mode
            if mode == 'encrypt':
                result += chr((ord(char) - ord(base) + shift) % 26 + ord(base))
            else:
                result += chr((ord(char) - ord(base) - shift) % 26 + ord(base))
        else:
            result += char
    return result

message = "Hello, World!"
encrypted = caesar_cipher(message, 3)  
decrypted = caesar_cipher(encrypted, 3, mode='decrypt')  

print(encrypted)
print (decrypted)

Enter the text: yes
Enter the shift value (integer): 5

Plaintext: yes
Encrypted text: djx
Decrypted text: yes


# LAB 2: Playfair Cipher


The Playfair cipher is a classical encryption technique that encrypts pairs of letters (bigrams) instead of individual letters. It was invented by Charles Wheatstone in 1854 and later popularized by Sir Frances Bacon. Here’s a guide on how to encrypt and decrypt text using the Playfair cipher.

## Overview

1. **Generate the Cipher Grid:**
   - Create a 5x5 grid of letters based on a keyword. This grid will contain all letters of the alphabet (usually combining I and J into one letter to fit 25 letters into the grid).
   - The grid is constructed by placing the letters of the keyword first and then filling in the remaining letters of the alphabet in order.

2. **Prepare the Plaintext:**
   - Convert the plaintext to uppercase and replace any occurrences of 'J' with 'I'.
   - Split the plaintext into pairs of letters. If a pair is made of identical letters, replace the second letter with 'X'. If there’s an odd number of letters, append 'X' to the last letter.

3. **Encrypt Each Pair:**
   - Locate each letter of the pair in the grid.
   - Apply the Playfair cipher rules based on their positions in the grid:
     - **Same Row:** Replace each letter with the letter immediately to its right (wrap around to the beginning of the row if necessary).
     - **Same Column:** Replace each letter with the letter immediately below it (wrap around to the top of the column if necessary).
     - **Rectangle:** Replace each letter with the letter in its own row but in the column of the other letter of the pair.

4. **Decrypt Each Pair:**
   - Follow the reverse of the encryption rules:
     - **Same Row:** Replace each letter with the letter immediately to its left (wrap around to the end of the row if necessary).
     - **Same Column:** Replace each letter with the letter immediately above it (wrap around to the bottom of the column if necessary).
     - **Rectangle:** Replace each letter with the letter in its own row but in the column of the other letter of the pair.

## Example

### Step 1: Generate the Cipher Grid

Given the keyword "KEYWORD":

1. Create a grid with the keyword letters, removing duplicates:

`K E Y W O R A B C D F G H I/J L M N P Q S T U V X Z`

### Step 2: Prepare the Plaintext

For plaintext "HELLO WORLD":
1. Convert to uppercase and replace 'J' with 'I': "HELLO WORLD"
2. Split into pairs: "HE", "LL", "OW", "OR", "LD" (add 'X' if necessary)

### Step 3: Encrypt Each Pair

Using the grid:
- **HE:** Located in the rectangle formed by (H, E) → 'GB'
- **LL:** Same row, replace with 'XX'
- **OW:** Located in the rectangle formed by (O, W) → 'RO'
- **OR:** Located in the rectangle formed by (O, R) → 'KW'
- **LD:** Located in the rectangle formed by (L, D) → 'DN'

### Step 4: Decrypt Each Pair

Apply the reverse of the encryption rules to recover the original plaintext.

## Playfair Cipher Rules

1. **Same Row:** Letters are replaced by the letter to their immediate right.
2. **Same Column:** Letters are replaced by the letter immediately below.
3. **Rectangle:** Letters are replaced by letters on the same row but in the column of the other letter.

By following these steps and applying the rules, you can successfully encrypt and decrypt messages using the Playfair cipher.



# LAB 3: Vigenère Cipher

The Vigenère cipher is a method of encrypting alphabetic text using a series of Caesar ciphers based on the letters of a keyword. This method shifts each letter of the plaintext by a number of positions defined by the corresponding letter of the keyword. Here's a brief guide on how to encrypt and decrypt text using the Vigenère cipher.

## Encryption

1. **Prepare the Keyword:**
   - Repeat the keyword to match the length of the plaintext.

2. **Encrypt Each Character:**
   - For each letter in the plaintext:
     - Determine the shift amount using the corresponding letter in the keyword.
     - Apply the shift to the plaintext letter. Convert letters to their alphabetical index (A=0, B=1, ..., Z=25), apply the shift, and convert back to a letter.

3. **Handle Case Sensitivity:**
   - Preserve the case of the letters. If the plaintext letter is uppercase, the result should be uppercase, and similarly for lowercase letters.
   - Non-alphabetic characters remain unchanged.

### Encryption Formula

For each letter `P` in plaintext and corresponding letter `K` in the keyword:

$$ C = (P + K) \mod 26 $$

where:
- `P` is the zero-based index of the plaintext letter.
- `K` is the zero-based index of the keyword letter.
- `C` is the zero-based index of the ciphertext letter.

## Decryption

1. **Prepare the Keyword:**
   - Repeat the keyword to match the length of the ciphertext.

2. **Decrypt Each Character:**
   - For each letter in the ciphertext:
     - Determine the shift amount using the corresponding letter in the keyword.
     - Apply the inverse shift to the ciphertext letter. Convert letters to their alphabetical index, apply the inverse shift, and convert back to a letter.

3. **Handle Case Sensitivity:**
   - Preserve the case of the letters similarly to the encryption process.
   - Non-alphabetic characters remain unchanged.

### Decryption Formula

For each letter `C` in ciphertext and corresponding letter `K` in the keyword:

$$ P = (C - K + 26) \mod 26 $$

where:
- `C` is the zero-based index of the ciphertext letter.
- `K` is the zero-based index of the keyword letter.
- `P` is the zero-based index of the plaintext letter.

## Example

For plaintext "HELLO" and keyword "KEY":

1. **Repeat Keyword:** "KEYKE"
2. **Encryption:**
   - 'H' (7) shifted by 'K' (10) becomes 'R' (17)
   - 'E' (4) shifted by 'E' (4) becomes 'I' (8)
   - Repeat similarly for the rest of the letters.

3. **Decryption:**
   - 'R' (17) shifted back by 'K' (10) becomes 'H' (7)
   - 'I' (8) shifted back by 'E' (4) becomes 'E' (4)
   - Repeat similarly for the rest of the letters.

This process allows you to both encrypt and decrypt messages using the Vigenère cipher by following these steps and formulas.


In [7]:
def vigenere_cipher(text, key, mode='encrypt'):
    result = ''
    key_length = len(key)
    for i, char in enumerate(text):
        if char.isalpha():
            # Determine base and shift
            base = 'A' if char.isupper() else 'a'
            key_char = key[i % key_length]
            key_shift = ord(key_char.upper()) - ord('A')
            
            # Encrypt or decrypt
            if mode == 'encrypt':
                shifted = (ord(char) - ord(base) + key_shift) % 26
            else:
                shifted = (ord(char) - ord(base) - key_shift) % 26
            
            result += chr(shifted + ord(base))
        else:
            result += char
    return result

# Example usage
message = "HELLO WORLD"
key = "SECRET"
encrypted = vigenere_cipher(message, key)
decrypted = vigenere_cipher(encrypted, key, mode='decrypt')
print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")


Original: HELLO WORLD
Encrypted: ZINCS OSTCH
Decrypted: HELLO WORLD


# LAB 4: Hill Cipher

The Hill cipher is a polygraphic substitution cipher based on linear algebra. It encrypts blocks of text using matrix multiplication. Here's a guide on how to encrypt and decrypt text using the Hill cipher.

## Overview

1. **Key Matrix:**
   - Choose a key matrix of size `n x n` where `n` is the block size (typically 2 or 3). The matrix must be invertible modulo 26 (the number of letters in the alphabet).

2. **Prepare the Plaintext:**
   - Convert the plaintext to uppercase and remove non-alphabetic characters.
   - Pad the plaintext if necessary to make its length a multiple of `n`. For example, if using a 2x2 matrix, make sure the plaintext length is a multiple of 2.

3. **Encrypt Each Block:**
   - Divide the plaintext into blocks of size `n`.
   - Convert each block into a column vector of size `n x 1`.
   - Multiply the key matrix by the column vector modulo 26 to get the ciphertext vector.

4. **Decrypt Each Block:**
   - Compute the inverse of the key matrix modulo 26.
   - Multiply the inverse matrix by the ciphertext vector modulo 26 to get the plaintext vector.

## Example

### Key Matrix

Suppose we use a 2x2 matrix for encryption with the key matrix:

\[ K = \begin{bmatrix}
6 & 24 \\
1 & 7
\end{bmatrix} \]

### Prepare the Plaintext

For plaintext "HELLO WORLD":

1. Convert to uppercase and remove spaces: "HELLOWORLD"
2. Split into blocks of size 2: "HE", "LL", "OW", "OR", "LD"

### Encrypt Each Block

1. Convert each block to numerical vectors:
   - 'H' = 7, 'E' = 4
   - 'L' = 11, 'L' = 11
   - 'O' = 14, 'W' = 22
   - 'O' = 14, 'R' = 17
   - 'L' = 11, 'D' = 3

2. Multiply each vector by the key matrix modulo 26:
   - For block "HE":
     \[
     \begin{bmatrix}
     6 & 24 \\
     1 & 7
     \end{bmatrix}
     \begin{bmatrix}
     7 \\
     4
     \end{bmatrix}
     =
     \begin{bmatrix}
     (6 \times 7 + 24 \times 4) \mod 26 \\
     (1 \times 7 + 7 \times 4) \mod 26
     \end{bmatrix}
     =
     \begin{bmatrix}
     22 \\
     15
     \end{bmatrix}
     \]
   - Convert numerical result to letters: 'W', 'P'

### Decrypt Each Block

1. Compute the inverse of the key matrix modulo 26:
   - For matrix \( K \):
     \[
     K^{-1} = \begin{bmatrix}
     7 & 24 \\
     25 & 6
     \end{bmatrix}
     \]

2. Multiply the inverse matrix by the ciphertext vector modulo 26 to recover plaintext.

## Hill Cipher Rules

1. **Key Matrix:** The matrix used for encryption and decryption must be invertible modulo 26.
2. **Block Size:** Encrypt and decrypt blocks of text, where the block size matches the matrix size.
3. **Matrix Multiplication:** Multiply vectors by matrices and take results modulo 26.

By following these steps and applying the matrix operations, you can successfully encrypt and decrypt messages using the Hill cipher.


In [12]:
import numpy as np

def hill_cipher(text, key):
    # Convert text to numbers
    text_numbers = [ord(char) - ord('A') for char in text.upper()]

    # Pad the text if necessary
    while len(text_numbers) % 3 != 0:
        text_numbers.append(ord('X') - ord('A'))

    # Group text into 3-tuples
    text_groups = [text_numbers[i:i+3] for i in range(0, len(text_numbers), 3)]

    # Perform matrix multiplication
    result = []
    for group in text_groups:
        result.extend(np.dot(group, key) % 26)

    # Convert numbers back to text
    return ''.join(chr(num + ord('A')) for num in result)

def get_key_matrix():
    key = []
    for i in range(3):
        row = input(f"Enter row {i+1} (space-separated numbers): ").split()
        key.append([int(num) for num in row])
    return np.array(key)

if __name__ == "__main__":
    plaintext = input("Enter the plaintext: ")
    key = get_key_matrix()

    ciphertext = hill_cipher(plaintext, key)
    print("Ciphertext:", ciphertext)

Ciphertext: WSMI


#Decryption

In [None]:
import numpy as np

def hill_cipher_decrypt(ciphertext, key):

  # Convert ciphertext to numbers
  ciphertext_numbers = [ord(char) - ord('A') for char in ciphertext.upper()]

  # Group ciphertext into 3-tuples
  ciphertext_groups = [ciphertext_numbers[i:i+3] for i in range(0, len(ciphertext_numbers), 3)]

  # Calculate the inverse key
  determinant = np.linalg.det(key)
  if determinant == 0:
    raise ValueError("Singular matrix cannot be used for decryption.")
  inv_key = np.linalg.inv(key) % 26

  # Perform matrix multiplication with the inverse key
  decrypted_numbers = []
  for group in ciphertext_groups:
    decrypted_numbers.extend(np.dot(group, inv_key) % 26)

  # Convert numbers back to text
  decrypted_text = ''.join(chr(int(num) + ord('A')) for num in decrypted_numbers)
  return decrypted_text

def get_key_matrix():
  key = []
  for i in range(3):
    row = input(f"Enter row {i+1} (space-separated numbers): ").split()
    key.append([int(num) for num in row])
  return np.array(key)

if __name__ == "__main__":
  ciphertext = input("Enter the ciphertext: ")
  key = get_key_matrix()

  decrypted_text = hill_cipher_decrypt(ciphertext, key)
  print("Decrypted Text:", decrypted_text)

Enter the ciphertext: HJLTXX
Enter row 1 (space-separated numbers): 2 3 1
Enter row 2 (space-separated numbers): 5 1 4
Enter row 3 (space-separated numbers): 7 8 6
Decrypted Text: TYDRYG


# LAB 5: Diffie-Hellman Key Exchange

1. **Choose Parameters**:
   - Select a large prime number $p$ and a primitive root $g$ (both can be public).

2. **Private Keys**:
   - Alice selects a private key $a$.
   - Bob selects a private key $b$.

3. **Compute Public Keys**:
   - Alice computes her public key $A = g^a \mod p$.
   - Bob computes his public key $B = g^b \mod p$.
   - They exchange their public keys.

4. **Compute Shared Secret**:
   - Alice computes the shared secret: $s = B^a \mod p$.
   - Bob computes the shared secret: $s = A^b \mod p$.

5. **Shared Secret Established**:
   - Both parties now share the same secret $s$ which can be used for encrypted communication.


In [14]:
def generate_key(private_key, base, prime):
    return pow(base, private_key, prime)

def compute_shared_secret(private_key, received_public_key, prime):
    return pow(received_public_key, private_key, prime)

# Example usage
def diffie_hellman_exchange(base, prime):
    # Alice's side
    alice_private = 6
    alice_public = generate_key(alice_private, base, prime)
    
    # Bob's side
    bob_private = 15
    bob_public = generate_key(bob_private, base, prime)
    
    # Shared secrets
    alice_shared = compute_shared_secret(alice_private, bob_public, prime)
    bob_shared = compute_shared_secret(bob_private, alice_public, prime)
    
    return alice_shared, bob_shared



# Example usage
base, prime = 5, 23
alice_shared, bob_shared = diffie_hellman_exchange(base, prime)
print(f"Alice's Shared Secret: {alice_shared}")
print(f"Bob's Shared Secret: {bob_shared}")
print(f"Shared secrets match: {alice_shared == bob_shared}")

Alice's Shared Secret: 2
Bob's Shared Secret: 2
Shared secrets match: True


# LAB 6: RSA Algorithm Technique


1. **Key Generation**:
   - Choose two large prime numbers $p$ and $q$.
   - Compute $n = p \times q$.
   - Calculate the totient $\phi(n) = (p - 1)(q - 1)$.
   - Choose a public exponent $e$ such that $1 < e < \phi(n)$ and $\text{gcd}(e, \phi(n)) = 1$.
   - Compute the private exponent $d$ such that $d \cdot e \equiv 1 \mod \phi(n)$.

2. **Encryption**:
   - Convert the plaintext message into numerical form.
   - Encrypt the message using the public key:
     $$
     \text{ciphertext} = \text{plaintext}^e \mod n
     $$

3. **Decryption**:
   - Decrypt the ciphertext using the private key:
     $$
     \text{plaintext} = \text{ciphertext}^d \mod n
     $$


In [15]:
import math
import random

def is_prime(n):
    if n < 2: return False
    for i in range(2, int(math.sqrt(n)) + 1):
        if n % i == 0: return False
    return True

def generate_keypair(p, q):
    n = p * q
    phi = (p-1) * (q-1)
    
    def gcd(a, b):
        while b != 0:
            a, b = b, a % b
        return a
    
    def mod_inverse(a, m):
        for x in range(1, m):
            if (a * x) % m == 1:
                return x
        return None
    
    e = random.randrange(1, phi)
    while gcd(e, phi) != 1:
        e = random.randrange(1, phi)
    
    d = mod_inverse(e, phi)
    return ((e, n), (d, n))

def encrypt(pk, plaintext):
    key, n = pk
    cipher = [pow(ord(char), key, n) for char in plaintext]
    return cipher

def decrypt(pk, ciphertext):
    key, n = pk
    plain = [chr(pow(char, key, n)) for char in ciphertext]
    return ''.join(plain)

# Example usage
p, q = 17, 19
public, private = generate_keypair(p, q)
message = "HELLO"
encrypted = encrypt(public, message)
decrypted = decrypt(private, encrypted)
print(f"Original: {message}")
print(f"Encrypted: {encrypted}")
print(f"Decrypted: {decrypted}")

Original: HELLO
Encrypted: [200, 69, 304, 304, 14]
Decrypted: HELLO


# LAB 7: MD5
---
# Understanding How MD5 Works

## What is MD5?
MD5 (Message Digest Algorithm 5) is a cryptographic hash function that:
1. Takes an input of any size.
2. Produces a fixed 128-bit (32 hexadecimal characters) hash value.
3. Is commonly used for checksums to verify data integrity.

**Key Properties of MD5:**
- **Deterministic:** The same input always gives the same hash.
- **Fixed Output:** Outputs a 128-bit hash, regardless of input size.
- **Fast Computation:** Suitable for quick hashing tasks.
- **Not Secure for Cryptography:** Vulnerable to collisions (two different inputs producing the same hash).

---

## How Does MD5 Work?

### 1. Preprocessing (Message Padding)
- **Purpose:** Ensure the message length is a multiple of 512 bits.
- Steps:
  1. Append a `1` bit to the message.
  2. Add `0` bits until the length is 448 bits modulo 512.
  3. Append the original message length as a 64-bit integer.

### 2. Dividing into Chunks
- The padded message is divided into 512-bit chunks.
- Each chunk is processed sequentially.

### 3. Initializing Buffers
- Four 32-bit registers (`A, B, C, D`) are initialized with predefined constants.

### 4. Processing Each Chunk
- Each chunk is processed with:
  - Logical functions (AND, OR, XOR, NOT).
  - Additions and rotations.
  - Constants and pre-defined shifts.

### 5. Final Hash
- After processing all chunks, the buffers (`A, B, C, D`) are concatenated to produce the final 128-bit (32 hexadecimal characters) hash.

---

## Why Use MD5?
- Suitable for non-cryptographic purposes like checksums and data validation.
- Ensures basic data integrity by detecting accidental modifications.

---


In [None]:
import hashlib

# Function to compute the MD5 hash of a given message
def md5_hash(message):
    # Create an MD5 hash object
    md5 = hashlib.md5()
    # Update the hash object with the message (encoded to bytes)
    md5.update(message.encode('utf-8'))
    # Return the hexadecimal digest of the hash
    return md5.hexdigest()

# User input for the message to hash
message = input("Enter the message to hash using MD5: ")
# Compute and print the MD5 hash
print("MD5 Hash:", md5_hash(message))

Enter the message to hash using MD5: hello
MD5 Hash: 5d41402abc4b2a76b9719d911017c592


# LAB 8: SHA-1
---
# Understanding How SHA-1 Works

## What is SHA-1?
SHA-1 (Secure Hash Algorithm 1) is a cryptographic hash function that:
1. Takes an input message of arbitrary length.
2. Produces a fixed 160-bit (40 hexadecimal characters) hash value.
3. Ensures integrity by creating a unique "fingerprint" for the input.

**Key Properties of SHA-1:**
- **Deterministic:** The same input always results in the same hash.
- **Fixed Output:** Always produces a 160-bit hash, regardless of input size.
- **Non-reversible:** It's computationally infeasible to reconstruct the original message from the hash.

---

## How Does SHA-1 Work?

### 1. Preprocessing (Message Padding)
- **Purpose:** Ensure the message length is a multiple of 512 bits.
- Steps:
  1. Append a single `1` bit to the message.
  2. Add `0` bits until the message length is 448 bits modulo 512.
  3. Append the original message length (in bits) as a 64-bit big-endian integer.

### 2. Processing in 512-bit Chunks
- The padded message is divided into 512-bit chunks.
- Each chunk is processed to update the internal hash state.

### 3. Message Schedule (Word Expansion)
- Each 512-bit chunk is split into sixteen 32-bit words.
- These words are expanded into 80 words using XOR and bitwise operations.

### 4. Hash Computation (80 Iterations)
- Five initial hash values (`h0, h1, h2, h3, h4`) are defined.
- The algorithm uses four main functions (`f`) and constants (`k`) based on the iteration:
  1. 0–19: Logical `AND` and `NOT` operations.
  2. 20–39: XOR operations.
  3. 40–59: Logical `AND` and `OR` combinations.
  4. 60–79: XOR operations.
- The hash values are updated iteratively using a combination of bitwise operations, additions, and logical functions.

### 5. Final Hash
- After processing all chunks, the five hash values are concatenated to form the final 160-bit (40 hex characters) hash.

---

## Why Use SHA-1?
- Ensures data integrity by verifying that the message has not been altered.
- Commonly used in applications like checksum validation, digital signatures, and certificates.

---

## Steps in the Code
1. The **`pad_message`** function ensures the input message is padded according to SHA-1 rules.
2. The **`process_block`** function processes each 512-bit chunk and updates the hash values.
3. After all chunks are processed, the final hash value is returned as a 40-character hexadecimal string.

---

## Example Execution
1. User inputs a message to hash:
```bash
Enter the message to hash using SHA-1: Hello, World!
```
2. The SHA-1 function computes the hash:
```bash
SHA-1 Hash: d3486ae9136e7856bc42212385ea797094475802
```

This ensures a unique fingerprint for the input message.

In [None]:
import hashlib

# Get user input and encode it to bytes
user_input = input("Enter the message to hash using SHA-1: ").encode()

# Create SHA-1 hash object and hash the input message
sha1_hash = hashlib.sha1(user_input).hexdigest()

# Print the resulting hash
print("SHA-1 Hash:", sha1_hash)

Enter the message to hash using SHA-1: Keshwam
SHA-1 Hash: d0fa15a1f0bad31bf6e76c07fa0b503f4ef18cee


# LAB 9: RSA with DSA

---
# Understanding How RSA Digital Signatures Work

## What is a Digital Signature?
A digital signature is a cryptographic technique used to ensure:
1. **Authenticity:** Confirms that the message came from the claimed sender.
2. **Integrity:** Ensures that the message has not been tampered with.
3. **Non-repudiation:** Prevents the sender from denying the message later.

## How Does RSA Digital Signature Work?

### 1. Key Pair Generation
- RSA generates two keys:
  - **Private Key:** Used for signing the message (kept secret).
  - **Public Key:** Used for verifying the signature (shared publicly).

### 2. Signing a Message
- The sender uses their **private key** to create a signature for the message:
  1. The message is hashed using a secure hashing algorithm (e.g., SHA-256).
  2. The hash is encrypted using the sender's private key, creating the signature.

### 3. Verifying the Signature
- The receiver verifies the signature using the sender’s **public key**:
  1. The signature is decrypted using the sender's public key to retrieve the hash.
  2. The receiver hashes the original message.
  3. If the two hashes match:
     - The signature is valid.
     - The message is authentic and unaltered.
  4. If they don’t match:
     - The signature is invalid (message may be tampered or not from the claimed sender).

## Why Use Digital Signatures?
- Ensures trust in communication.
- Protects sensitive data from tampering.
- Widely used in secure communications like emails, software distribution, and contracts.

## Key Steps in the Script
1. Generate an RSA key pair (private and public keys).
2. Use the private key to sign a predefined message.
3. Verify the signature using the public key.

This ensures that the message is from the original sender and has not been modified.



In [22]:
from cryptography.hazmat.primitives.asymmetric import dsa
from cryptography.hazmat.primitives import hashes
from cryptography.exceptions import InvalidSignature


def generate_dsa_keys():
    """
    Generate a new DSA private and public key pair.

    Returns:
        tuple: private_key, public_key
    """
    private_key = dsa.generate_private_key(key_size=2048)
    public_key = private_key.public_key()
    return private_key, public_key


def sign_message(private_key, message):
    """
    Sign a message using the DSA private key.

    Args:
        private_key: The DSA private key.
        message (bytes): The message to be signed.

    Returns:
        bytes: The generated signature.
    """
    return private_key.sign(
        message,
        hashes.SHA256()
    )


def verify_signature(public_key, message, signature):
    """
    Verify a signature using the DSA public key.

    Args:
        public_key: The DSA public key.
        message (bytes): The original message.
        signature (bytes): The signature to verify.

    Returns:
        None
    """
    try:
        public_key.verify(
            signature,
            message,
            hashes.SHA256()
        )
        print("Signature is valid.")
    except InvalidSignature:
        print("Signature is invalid.")


if __name__ == "__main__":
    # Generate DSA keys
    private_key, public_key = generate_dsa_keys()

    # Message to be signed
    message = b"Secure message using DSA"

    # Sign the message
    signature = sign_message(private_key, message)
    print("Signature:", signature)

    # Verify the signature
    verify_signature(public_key, message, signature)


Signature: b'0E\x02!\x00\xbf\xc4\x84M\x9b64 P\xa3AA\x9a\x94.\xe5\x0eP.o\x12\xeeT\xd1E\xcb\x82k\xb7O\xa7:\x02 i.v\xa2\xd0\xfc\xfa_V\xb3E\r(\x96\x1d\xebDA\xf8\xf3\xfaT\x95\x08\xb9\x1c\x90z\x9e:\xf5\x1a'
Signature is valid.


# LAB 10: DSA

---

# Understanding How DSA Digital Signatures Work

## What is a Digital Signature?
A digital signature is a cryptographic technique used to:
1. **Authenticate** the sender of a message.
2. **Ensure Integrity** of the message, confirming it hasn’t been tampered with.
3. **Provide Non-repudiation,** so the sender cannot deny signing the message.

## How Does DSA Digital Signature Work?

### 1. Key Pair Generation
- **DSA (Digital Signature Algorithm)** generates:
  - **Private Key:** Used by the sender to sign the message (kept secret).
  - **Public Key:** Used by the receiver to verify the signature (shared publicly).

### 2. Signing a Message
- The sender uses their **private key** to sign the message:
  1. The message is hashed using a secure hashing algorithm (e.g., SHA-256).
  2. DSA uses the private key and the hash to create a signature (mathematical operations ensure its uniqueness for this message).

### 3. Verifying the Signature
- The receiver verifies the signature using the sender’s **public key**:
  1. The signature is checked against the message hash using the public key.
  2. If the verification succeeds:
     - The signature is valid.
     - The message is authentic and unaltered.
  3. If the verification fails:
     - The signature is invalid (message may be tampered or not from the claimed sender).

## Why Use DSA for Digital Signatures?
- Provides a lightweight and efficient signature process.
- Ensures secure communication and message integrity.
- Commonly used in secure protocols like TLS and SSH.

## Key Steps in the Script
1. Generate a DSA key pair (private and public keys).
2. Use the private key to sign a message.
3. Verify the signature using the public key.

This guarantees that the message is authentic, originated from the sender, and remains unaltered during transmission.


In [18]:
import hashlib
import random

def generate_prime(bits):
    while True:
        n = random.getrandbits(bits)
        if is_prime(n):
            return n

def is_prime(n, k=5):
    if n <= 1 or n == 4:
        return False
    if n <= 3:
        return True
    
    def miller_rabin(d, s):
        a = 2 + random.randint(1, n - 4)
        x = pow(a, d, n)
        if x == 1 or x == n - 1:
            return True
        for _ in range(s - 1):
            x = pow(x, 2, n)
            if x == n - 1:
                return True
        return False
    
    s = 0
    d = n - 1
    while d % 2 == 0:
        d //= 2
        s += 1
    
    for _ in range(k):
        if not miller_rabin(d, s):
            return False
    return True

def dsa_generate_params(prime_bits=1024):
    q = generate_prime(160)
    p = generate_prime(prime_bits)
    g = random.randint(2, p-1)
    return p, q, g

def dsa_generate_key(p, q, g):
    x = random.randint(1, q-1)  # private key
    y = pow(g, x, p)  # public key
    return x, y

def dsa_sign(message, p, q, g, x):
    k = random.randint(1, q-1)
    r = pow(g, k, p) % q
    
    hash_value = int(hashlib.sha256(message.encode()).hexdigest(), 16)
    s = (pow(k, -1, q) * (hash_value + x * r)) % q
    
    return r, s

def dsa_verify(message, signature, p, q, g, y):
    r, s = signature
    
    if r <= 0 or r >= q or s <= 0 or s >= q:
        return False
    
    hash_value = int(hashlib.sha256(message.encode()).hexdigest(), 16)
    w = pow(s, -1, q)
    u1 = (hash_value * w) % q
    u2 = (r * w) % q
    
    v = ((pow(g, u1, p) * pow(y, u2, p)) % p) % q
    
    return v == r

# Example usage
p, q, g = dsa_generate_params()
x, y = dsa_generate_key(p, q, g)
message = "Hello, World!"
signature = dsa_sign(message, p, q, g, x)
verified = dsa_verify(message, signature, p, q, g, y)
print(f"Original Message: {message}")
print(f"Signature: {signature}")
print(f"Verified: {verified}")

Original Message: Hello, World!
Signature: (652582247315123441349785902436918166614556375488, 13468537776774530299588149087131112737453277693)
Verified: False
