In [15]:
!cd ~/Documents/GitHub/cryptography

In [2]:
#import pycryptodome package
#https://stackoverflow.com/a/53049959/755046
#PyCryptodome does not support ECC encryption
import Crypto

In [3]:
from Crypto.PublicKey import ECC

In [4]:
mykey = ECC.generate(curve='p256')

In [5]:
pwd = b'secret'

In [6]:
with open("myprivatekey.pem", "wt") as f:
    data = mykey.export_key(format='PEM',
                                passphrase=pwd,
                                protection='PBKDF2WithHMAC-SHA512AndAES256-CBC',
                                prot_params={'iteration_count':131072})
    f.write(data)

In [7]:
!ls

LICENSE            ecc_examples.ipynb mypublickey.pem
README.md          myprivatekey.pem


In [8]:
cat myprivatekey.pem

-----BEGIN ENCRYPTED PRIVATE KEY-----
MIHrMFYGCSqGSIb3DQEFDTBJMCgGCSqGSIb3DQEFDDAbBAh814zJ4JhI4AIDAgAA
MAoGCCqGSIb3DQILMB0GCWCGSAFlAwQBKgQQbstSgC80zpAff5QlOPCYXwSBkCHL
NcCziXtj5w5nqR+aiZnvFNc5loXLf1Wnn+BuBXVWT1ft0Vyn7FrMKZTXvcLfqJJ2
XZ6gTsFBTS3mMBpZ9I8u39yKPOEdHAMRXs0ggEyfotWlNuah9+gjNrfHy9NntkWU
o/xApP6WJwQ7YFl5etdv9P40o1u75o6ImKxIgBHugaZwBKg4+eoczx4GXO1oLA==
-----END ENCRYPTED PRIVATE KEY-----

In [9]:
with open("myprivatekey.pem", "rt") as f:
    data = f.read()
    mykey = ECC.import_key(data, pwd)

In [10]:
mykey

EccKey(curve='NIST P-256', point_x=52064871255491070299434370403200913323298335969896443504740666332912998890198, point_y=75901643645633137800970126867850480290795615572317864823873108139039075089036, d=41583162952329990903569564191790122585178717277319585843576081966242412546699)

In [11]:
with open("mypublickey.pem", "wt") as f:
    data = mykey.public_key().export_key(format="PEM")
    f.write(data)

In [12]:
!ls

LICENSE            ecc_examples.ipynb mypublickey.pem
README.md          myprivatekey.pem


In [13]:
!cat mypublickey.pem

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEcxusPvTHCUXG0smEZZY3UeNtgcsi
x6On10MZYwiDOtanzs7Sk6DSL4mJ2eyTuOPc9ozrKHvwZK0LDU8uQtA6jA==
-----END PUBLIC KEY-----

In [12]:
#########################################################################################################
#FROM: Svetlin Nakov
#https://github.com/nakov/Practical-Cryptography-for-Developers-Book

In [21]:
pip install tinyec

Defaulting to user installation because normal site-packages is not writeable
Collecting tinyec
  Downloading tinyec-0.4.0.tar.gz (24 kB)
  Preparing metadata (setup.py) ... [?25ldone
[?25hBuilding wheels for collected packages: tinyec
  Building wheel for tinyec (setup.py) ... [?25ldone
[?25h  Created wheel for tinyec: filename=tinyec-0.4.0-py3-none-any.whl size=20892 sha256=bd020b9f0fb73ab872ab69e8b8a2cd8573e6eb2a401bd2947dc639ba9de4b2a4
  Stored in directory: /Users/jacksonwalters/Library/Caches/pip/wheels/40/b9/44/1115d191053b74c238a0c2c1c09f66d0e21186489af0fa33f4
Successfully built tinyec
Installing collected packages: tinyec
Successfully installed tinyec-0.4.0
Note: you may need to restart the kernel to use updated packages.


In [2]:
#note cofactor means rank here
from tinyec import registry

curve = registry.get_curve('secp192r1')
print('curve:', curve)

for k in range(0, 10):
    p = k * curve.g
    print(f"{k} * G = ({p.x}, {p.y})")

print("Cofactor =", curve.field.h)

print('Cyclic group order =', curve.field.n)

nG = curve.field.n * curve.g
print(f"n * G = ({nG.x}, {nG.y})")

curve: "secp192r1" => y^2 = x^3 + 6277101735386680763835789423207666416083908700390324961276x + 2455155546008943817740293915197451784769108058161191238065 (mod 6277101735386680763835789423207666416083908700390324961279)
0 * G = (None, None)
1 * G = (602046282375688656758213480587526111916698976636884684818, 174050332293622031404857552280219410364023488927386650641)
2 * G = (5369744403678710563432458361254544170966096384586764429448, 5429234379789071039750654906915254128254326554272718558123)
3 * G = (2915109630280678890720206779706963455590627465886103135194, 2946626711558792003980654088990112021985937607003425539581)
4 * G = (1305994880430903997305943738697779408316929565234787837114, 3981863977451150342116987835776121688410789618551673306674)
5 * G = (410283251116784874018993562136566870110676706936762660240, 1206654674899825246688205669651974202006189255452737318561)
6 * G = (4008504146453526025173196900303594155799995627910231899946, 326375930130517690699080663658783810002269009502

In [4]:
#generate private key (the multiplier d) and public key (the product n*d)
from tinyec import registry
import secrets

curve = registry.get_curve('secp192r1')

privKey = secrets.randbelow(curve.field.n)
pubKey = privKey * curve.g
print("private key:", privKey)
print("public key:", pubKey)

private key: 1940321826503790140425129347981835388094416673916832138500
public key: (5184113069428252731571124312488495701317047970365158202356, 5741578105805545385555779076154581521120305899860866570197) on "secp192r1" => y^2 = x^3 + 6277101735386680763835789423207666416083908700390324961276x + 2455155546008943817740293915197451784769108058161191238065 (mod 6277101735386680763835789423207666416083908700390324961279)


In [5]:
pip install nummaster

Defaulting to user installation because normal site-packages is not writeable
Collecting nummaster
  Downloading nummaster-0.1.1.tar.gz (4.7 kB)
  Preparing metadata (setup.py) ... [?25ldone
[?25hBuilding wheels for collected packages: nummaster
  Building wheel for nummaster (setup.py) ... [?25ldone
[?25h  Created wheel for nummaster: filename=nummaster-0.1.1-py3-none-any.whl size=5423 sha256=22885c1f86729513d01381a60c62db2e0659fae4bca1932c0a2caa4ebdae541a
  Stored in directory: /Users/jacksonwalters/Library/Caches/pip/wheels/97/57/de/fb5939bf17ef42d70a2e0903b1306d7340f7c32150cfeabdfe
Successfully built nummaster
Installing collected packages: nummaster
Successfully installed nummaster-0.1.1
Note: you may need to restart the kernel to use updated packages.


In [6]:
from nummaster.basic import sqrtmod

def compress_point(point):
    return (point[0], point[1] % 2)

def uncompress_point(compressed_point, p, a, b):
    x, is_odd = compressed_point
    y = sqrtmod(pow(x, 3, p) + a * x + b, p)
    if bool(is_odd) == bool(y & 1):
        return (x, y)
    return (x, p - y)

In [7]:
p, a, b = 17, 0, 7
point = (10, 15)
print(f"original point = {point}")
compressed_p = compress_point(point)
print(f"compressed = {compressed_p}")
restored_p = uncompress_point(compressed_p, p, a, b)
print(f"uncompressed = {restored_p}")

original point = (10, 15)
compressed = (10, 1)
uncompressed = (10, 15)


In [8]:
from tinyec.ec import SubGroup, Curve

# Domain parameters for the `secp256k1` curve
# (as defined in http://www.secg.org/sec2-v2.pdf)
name = 'secp256k1'
p = 0xfffffffffffffffffffffffffffffffffffffffffffffffffffffffefffffc2f
n = 0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141
a = 0x0000000000000000000000000000000000000000000000000000000000000000
b = 0x0000000000000000000000000000000000000000000000000000000000000007
g = (0x79be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798,
     0x483ada7726a3c4655da4fbfc0e1108a8fd17b448a68554199c47d08ffb10d4b8)
h = 1
curve = Curve(a, b, SubGroup(p, g, n, h), name)
print('curve:', curve)

privKey = int('0x51897b64e85c3f714bba707e867914295a1377a7463a9dae8ea6a8b914246319', 16)
print('privKey:', hex(privKey)[2:])

pubKey = curve.g * privKey
pubKeyCompressed = '0' + str(2 + pubKey.y % 2) + str(hex(pubKey.x)[2:])
print('pubKey:', pubKeyCompressed)

curve: "secp256k1" => y^2 = x^3 + 0x + 7 (mod 115792089237316195423570985008687907853269984665640564039457584007908834671663)
privKey: 51897b64e85c3f714bba707e867914295a1377a7463a9dae8ea6a8b914246319
pubKey: 02f54ba86dc1ccb5bed0224d23f01ed87e4a443c47fc690d7797a13d41d2340e1a


In [9]:
pip install pynacl

Defaulting to user installation because normal site-packages is not writeable
Collecting pynacl
  Downloading PyNaCl-1.5.0-cp36-abi3-macosx_10_10_universal2.whl.metadata (8.7 kB)
Downloading PyNaCl-1.5.0-cp36-abi3-macosx_10_10_universal2.whl (349 kB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m349.9/349.9 kB[0m [31m573.8 kB/s[0m eta [36m0:00:00[0ma [36m0:00:01[0m
[?25hInstalling collected packages: pynacl
Successfully installed pynacl-1.5.0
Note: you may need to restart the kernel to use updated packages.


In [10]:
from nacl.public import PrivateKey
import binascii

privKey = PrivateKey.generate()
pubKey = privKey.public_key

print("privKey:", binascii.hexlify(bytes(privKey)))
print("pubKey: ", binascii.hexlify(bytes(pubKey)))

privKey: b'9e642259af190d2889bcb41d8228a897109c01a01cc7ac1f1df13ed9cf6cde9f'
pubKey:  b'b20f6b9acfdd9718d82510241c62d7cf0201a18899cd5b055275db430fb08c63'


In [13]:
#ENCRYPTION AND DECRYPTION EXAMPLES
from tinyec import registry
import secrets

curve = registry.get_curve('brainpoolP256r1')

def compress_point(point):
    return hex(point.x) + hex(point.y % 2)[2:]

def ecc_calc_encryption_keys(pubKey):
    ciphertextPrivKey = secrets.randbelow(curve.field.n)
    ciphertextPubKey = ciphertextPrivKey * curve.g
    sharedECCKey = pubKey * ciphertextPrivKey
    return (sharedECCKey, ciphertextPubKey)

def ecc_calc_decryption_key(privKey, ciphertextPubKey):
    sharedECCKey = ciphertextPubKey * privKey
    return sharedECCKey

privKey = secrets.randbelow(curve.field.n)
pubKey = privKey * curve.g
print("private key:", hex(privKey))
print("public key:", compress_point(pubKey))

(encryptKey, ciphertextPubKey) = ecc_calc_encryption_keys(pubKey)
print("ciphertext pubKey:", compress_point(ciphertextPubKey))
print("encryption key:", compress_point(encryptKey))

decryptKey = ecc_calc_decryption_key(privKey, ciphertextPubKey)
print("decryption key:", compress_point(decryptKey))

private key: 0x9564352c81ecfed31dd8d21c3542b8572e7734871f52f2e712ee5999e1b55d8d
public key: 0x321db6e76cfeb6330b1ba15695577183f156cff0800ed974a2866ccaddebdae70
ciphertext pubKey: 0x1061411fade8c13ec18d190f0537dfe6c0a6cda376159d88e9d382efa74814341
encryption key: 0x4a596615673eb4f58c8a4a1626cbb2de34bfd2bbda52875f2032dd31496c1c3a1
decryption key: 0x4a596615673eb4f58c8a4a1626cbb2de34bfd2bbda52875f2032dd31496c1c3a1


In [14]:
#USING PYCRYPTODOME FOR AES-256-GCM SYMMETRIC CIPHER

In [15]:
from tinyec import registry
from Crypto.Cipher import AES
import hashlib, secrets, binascii

def encrypt_AES_GCM(msg, secretKey):
    aesCipher = AES.new(secretKey, AES.MODE_GCM)
    ciphertext, authTag = aesCipher.encrypt_and_digest(msg)
    return (ciphertext, aesCipher.nonce, authTag)

def decrypt_AES_GCM(ciphertext, nonce, authTag, secretKey):
    aesCipher = AES.new(secretKey, AES.MODE_GCM, nonce)
    plaintext = aesCipher.decrypt_and_verify(ciphertext, authTag)
    return plaintext

def ecc_point_to_256_bit_key(point):
    sha = hashlib.sha256(int.to_bytes(point.x, 32, 'big'))
    sha.update(int.to_bytes(point.y, 32, 'big'))
    return sha.digest()

curve = registry.get_curve('brainpoolP256r1')

def encrypt_ECC(msg, pubKey):
    ciphertextPrivKey = secrets.randbelow(curve.field.n)
    sharedECCKey = ciphertextPrivKey * pubKey
    secretKey = ecc_point_to_256_bit_key(sharedECCKey)
    ciphertext, nonce, authTag = encrypt_AES_GCM(msg, secretKey)
    ciphertextPubKey = ciphertextPrivKey * curve.g
    return (ciphertext, nonce, authTag, ciphertextPubKey)

def decrypt_ECC(encryptedMsg, privKey):
    (ciphertext, nonce, authTag, ciphertextPubKey) = encryptedMsg
    sharedECCKey = privKey * ciphertextPubKey
    secretKey = ecc_point_to_256_bit_key(sharedECCKey)
    plaintext = decrypt_AES_GCM(ciphertext, nonce, authTag, secretKey)
    return plaintext

msg = b'Text to be encrypted by ECC public key and ' \
      b'decrypted by its corresponding ECC private key'
print("original msg:", msg)
privKey = secrets.randbelow(curve.field.n)
pubKey = privKey * curve.g

encryptedMsg = encrypt_ECC(msg, pubKey)
encryptedMsgObj = {
    'ciphertext': binascii.hexlify(encryptedMsg[0]),
    'nonce': binascii.hexlify(encryptedMsg[1]),
    'authTag': binascii.hexlify(encryptedMsg[2]),
    'ciphertextPubKey': hex(encryptedMsg[3].x) + hex(encryptedMsg[3].y % 2)[2:]
}
print("encrypted msg:", encryptedMsgObj)

decryptedMsg = decrypt_ECC(encryptedMsg, privKey)
print("decrypted msg:", decryptedMsg)

original msg: b'Text to be encrypted by ECC public key and decrypted by its corresponding ECC private key'
encrypted msg: {'ciphertext': b'b11cf8cf507e4920caa6a42197e7bfb8f07ccddc20af4b6e647aa61ec6b355bc5f5f489ead5facbde3e92012b8387f2ae9a8d13c0d6ce86352ba4f79e3322dabfc136a50f43c520ece4eaaf2581d575e35c61d789b3cdbe769', 'nonce': b'ddfe1467c309517ae50dde7a1d3cf01a', 'authTag': b'64554e1c4a769c40add013862516b194', 'ciphertextPubKey': '0x4d1d3be6a12022969cbb1759b6b9a375e5d8269335291108700b8dc194d236340'}
decrypted msg: b'Text to be encrypted by ECC public key and decrypted by its corresponding ECC private key'
