In [3]:
from cryptography.hazmat.primitives import hashes
from sympy import sieve
import random
import math
import binascii

#=====================================================
# Please do NOT modify the following code, but you are more than welcome to understand the code in detail

# Define a hash function class for Task C.
# The method get_hash_value(message) function return a hash value raning in [0, 365)
class HashFunctionTaskC:
    
    upper_bound = 1
    
    def __init__(self, upper_bound):
        self.upper_bound = upper_bound
    
    def get_hash_value(self, message = None):
        if(None==message):
            sys.exit("No message is given!")
            
        # Padding empty string
        if(len(message) == 0):
            message = "0"
        
        hash_value = ord(message[0])
    
        # The hash value is generated by taking the product (modulo 365) of the ordinal numbers of characters at the positions indexed by prime numbers
        for i in sieve.primerange(len(message)):
            hash_value = (ord(message[i-1])*hash_value)%self.upper_bound
    
        return hash_value


# Implement the birthday attack for a hash function
def birthday_attack(message_space, hash_function):
    
    has_collision = False
    tried_hash_values = set()
    collision_pair_1 = -1
    collision_pair_2 = -1
    
    random_index_samples = random.sample(range(len(message_space)), len(message_space)); # Random sampling without replacement
    
    for i in range(len(message_space)):   
        hash_value_1 = hash_function.get_hash_value(message_space[random_index_samples[0]])
        tried_hash_values.add(hash_value_1)
        for j in range(1, len(random_index_samples)):
            hash_value_2 = hash_function.get_hash_value(message_space[random_index_samples[j]])
            if hash_value_1 == hash_value_2:
                has_collision = True
                collision_pair_1 = random_index_samples[0]
                collision_pair_2 = random_index_samples[j]
                break
            else:
                tried_hash_values.add(hash_value_2)
                    
        if has_collision:
            break
        random_index_samples = random.sample(random_index_samples[1:], len(random_index_samples[1:]))
    
    if has_collision:
        return len(tried_hash_values), collision_pair_1, collision_pair_2
    else:
        print("No collision is found!")
        return -1, -1, -1    

    
# Examples of using this hash function
hash_function = HashFunctionTaskC(upper_bound=365)

example_message = "Hellow World, COMP2300/6300!"
print("Example message is: ", example_message)
print("Hash value of example message is: ", hash_function.get_hash_value(example_message))

modified_example_message = "Hell0w World, COMP2300/6300!"
print("Modified example message is: ", modified_example_message)
print("Hash value of modified example message is: ", hash_function.get_hash_value(modified_example_message))
print("")

# Example of perform birthday attack
# We use each line of the plain text in Task B.2 as a message. Then, the whole text can be regarded as a set of messages.
# Note that you need to replace the plain text file name (i.e., to replace <YourStudentID> with your own ID) to execute the program correctly
message_list  = None
with open("/Users/jenny/Documents/48001023_Task-B-2_plain-text.txt") as file:
    message_list = file.read().splitlines()

# Show the number of messages
print("Number of messages: ", len(message_list))

from sieve import sieve_of_eratosthenes

# Perform the birthday_attack to the hash function once. The upper bound of hash values are set as 365.
count, cp1, cp2 = birthday_attack(message_list, HashFunctionTaskC(upper_bound=365))
print("The number of examined hash values (NOT the number of examined messages) before the first collision: \n%i" %count)
print("Collided message 1: ", cp1)
print(message_list[cp1])
print("Collided message 2: ", cp2)
print(message_list[cp2])
print("")


#=====================================================
# Following area is for your to write or complete the code to achieve the answers to Task C

# Subtask C.1 (2 marks): Use the same setting as the example (i.e., the same hash function and the same message set from the same file "<YourStudentID>_Task-B-2_plain-text.txt").
# You are required to perform to the birthday attack multiple times (>=100), and calculate the average number of examined hash values before the first collision.
# Compare the empirical average number of examined hash values before the first collision with its theoretical value (i.e., sqrt(Pi/2*n), where n is the number of possible hash values) to check if the difference is significant.
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the rounds of birthday attacks of your choice, (2) the empirical average number of examined hash values before the first collision, (3) the theoretical value, and (4) the explanation on the difference between the empirical value and the theoretical value.

# TODO: Your code to achieve the subtask above



# Subtask C.2 (2 marks): Through understanding the construction of the hash function, you are requested to forge a message for a given message, i.e., to identify a second preimage.
# The given message is Line 5 in the file "<YourStudentID>_Task-B-2_plain-text.txt": "Creative Commons Corporation ("Creative Commons") is not a law firm and"
# The change should be minor with substitution of a few characters, and the modified version still produces the same hash value as the given message.
# Report (1) the forged message and (2) the explanation why the modification works as the answers to Task C.2 in the answer template.
print("Line 5 message: ", message_list[4])
print("Line 5 message hash value: ", hash_function.get_hash_value(message_list[4]))
print("")

# TODO: Your code to show how you obtain the forged message and check if it can produce the same hash value.




# Subtask C.3 (2 marks): Now, you are requested to employ SHA256 to generate the hash values for the Line 5 message and the forged message (the same as in Task C.2)
# How to use SHA256 to generate hash values can be found here: https://cryptography.io/en/latest/hazmat/primitives/cryptographic-hashes/#cryptography.hazmat.primitives.hashes.SHA256
# Compare the two hash values to see if they are equal to each other
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the hash values of the two messages, (2) the percentage of the overlap between the two hash values (in terms of bits, bytes, or hexadecimal numbers),
# and (3) which hash function has a stronger avalanche effect, SHA256 or the hash function we defined above?

# TODO: Your code to generate hash values and calculate the percentage of the overlap between the two hash values



Example message is:  Hellow World, COMP2300/6300!
Hash value of example message is:  120
Modified example message is:  Hell0w World, COMP2300/6300!
Hash value of modified example message is:  190

Number of messages:  1


ModuleNotFoundError: No module named 'sieve'

In [4]:
from cryptography.hazmat.primitives import hashes
from sympy import sieve
import random
import math
import binascii
def sieve_of_eratosthenes(n):
    primes = [True] * (n + 1)
    primes[0:2] = [False, False]  # 0 and 1 are not primes
    p = 2
    while p * p <= n:
        if primes[p]:
            for i in range(p * p, n + 1, p):
                primes[i] = False
        p += 1
    return [i for i in range(n + 1) if primes[i]]

# Example usage:
primes_up_to_100 = sieve_of_eratosthenes(100)
print(primes_up_to_100)


#=====================================================
# Please do NOT modify the following code, but you are more than welcome to understand the code in detail

# Define a hash function class for Task C.
# The method get_hash_value(message) function return a hash value raning in [0, 365)
class HashFunctionTaskC:
    
    upper_bound = 1
    
    def __init__(self, upper_bound):
        self.upper_bound = upper_bound
    
    def get_hash_value(self, message = None):
        if(None==message):
            sys.exit("No message is given!")
            
        # Padding empty string
        if(len(message) == 0):
            message = "0"
        
        hash_value = ord(message[0])
    
        # The hash value is generated by taking the product (modulo 365) of the ordinal numbers of characters at the positions indexed by prime numbers
        for i in sieve.primerange(len(message)):
            hash_value = (ord(message[i-1])*hash_value)%self.upper_bound
    
        return hash_value


# Implement the birthday attack for a hash function
def birthday_attack(message_space, hash_function):
    
    has_collision = False
    tried_hash_values = set()
    collision_pair_1 = -1
    collision_pair_2 = -1
    
    random_index_samples = random.sample(range(len(message_space)), len(message_space)); # Random sampling without replacement
    
    for i in range(len(message_space)):   
        hash_value_1 = hash_function.get_hash_value(message_space[random_index_samples[0]])
        tried_hash_values.add(hash_value_1)
        for j in range(1, len(random_index_samples)):
            hash_value_2 = hash_function.get_hash_value(message_space[random_index_samples[j]])
            if hash_value_1 == hash_value_2:
                has_collision = True
                collision_pair_1 = random_index_samples[0]
                collision_pair_2 = random_index_samples[j]
                break
            else:
                tried_hash_values.add(hash_value_2)
                    
        if has_collision:
            break
        random_index_samples = random.sample(random_index_samples[1:], len(random_index_samples[1:]))
    
    if has_collision:
        return len(tried_hash_values), collision_pair_1, collision_pair_2
    else:
        print("No collision is found!")
        return -1, -1, -1    

    
# Examples of using this hash function
hash_function = HashFunctionTaskC(upper_bound=365)

example_message = "Hellow World, COMP2300/6300!"
print("Example message is: ", example_message)
print("Hash value of example message is: ", hash_function.get_hash_value(example_message))

modified_example_message = "Hell0w World, COMP2300/6300!"
print("Modified example message is: ", modified_example_message)
print("Hash value of modified example message is: ", hash_function.get_hash_value(modified_example_message))
print("")

# Example of perform birthday attack
# We use each line of the plain text in Task B.2 as a message. Then, the whole text can be regarded as a set of messages.
# Note that you need to replace the plain text file name (i.e., to replace <YourStudentID> with your own ID) to execute the program correctly
message_list  = None
with open("/Users/jenny/Documents/48001023_Task-B-2_plain-text.txt") as file:
    message_list = file.read().splitlines()

# Show the number of messages
print("Number of messages: ", len(message_list))

from sieve import sieve_of_eratosthenes

# Perform the birthday_attack to the hash function once. The upper bound of hash values are set as 365.
count, cp1, cp2 = birthday_attack(message_list, HashFunctionTaskC(upper_bound=365))
print("The number of examined hash values (NOT the number of examined messages) before the first collision: \n%i" %count)
print("Collided message 1: ", cp1)
print(message_list[cp1])
print("Collided message 2: ", cp2)
print(message_list[cp2])
print("")


#=====================================================
# Following area is for your to write or complete the code to achieve the answers to Task C

# Subtask C.1 (2 marks): Use the same setting as the example (i.e., the same hash function and the same message set from the same file "<YourStudentID>_Task-B-2_plain-text.txt").
# You are required to perform to the birthday attack multiple times (>=100), and calculate the average number of examined hash values before the first collision.
# Compare the empirical average number of examined hash values before the first collision with its theoretical value (i.e., sqrt(Pi/2*n), where n is the number of possible hash values) to check if the difference is significant.
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the rounds of birthday attacks of your choice, (2) the empirical average number of examined hash values before the first collision, (3) the theoretical value, and (4) the explanation on the difference between the empirical value and the theoretical value.

# TODO: Your code to achieve the subtask above



# Subtask C.2 (2 marks): Through understanding the construction of the hash function, you are requested to forge a message for a given message, i.e., to identify a second preimage.
# The given message is Line 5 in the file "<YourStudentID>_Task-B-2_plain-text.txt": "Creative Commons Corporation ("Creative Commons") is not a law firm and"
# The change should be minor with substitution of a few characters, and the modified version still produces the same hash value as the given message.
# Report (1) the forged message and (2) the explanation why the modification works as the answers to Task C.2 in the answer template.
print("Line 5 message: ", message_list[4])
print("Line 5 message hash value: ", hash_function.get_hash_value(message_list[4]))
print("")

# TODO: Your code to show how you obtain the forged message and check if it can produce the same hash value.




# Subtask C.3 (2 marks): Now, you are requested to employ SHA256 to generate the hash values for the Line 5 message and the forged message (the same as in Task C.2)
# How to use SHA256 to generate hash values can be found here: https://cryptography.io/en/latest/hazmat/primitives/cryptographic-hashes/#cryptography.hazmat.primitives.hashes.SHA256
# Compare the two hash values to see if they are equal to each other
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the hash values of the two messages, (2) the percentage of the overlap between the two hash values (in terms of bits, bytes, or hexadecimal numbers),
# and (3) which hash function has a stronger avalanche effect, SHA256 or the hash function we defined above?

# TODO: Your code to generate hash values and calculate the percentage of the overlap between the two hash values



[2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47, 53, 59, 61, 67, 71, 73, 79, 83, 89, 97]
Example message is:  Hellow World, COMP2300/6300!
Hash value of example message is:  120
Modified example message is:  Hell0w World, COMP2300/6300!
Hash value of modified example message is:  190

Number of messages:  1


ModuleNotFoundError: No module named 'sieve'

In [11]:

from cryptography.hazmat.primitives import hashes
from sympy import sieve
import random
import math
import binascii
def sieve_of_eratosthenes(n):
    primes = [True] * (n + 1)
    primes[0:2] = [False, False]  # 0 and 1 are not primes
    p = 2
    while p * p <= n:
        if primes[p]:
            for i in range(p * p, n + 1, p):
                primes[i] = False
        p += 1
    return [i for i in range(n + 1) if primes[i]]

# Example usage:
primes_up_to_100 = sieve_of_eratosthenes(100)
print(primes_up_to_100)

#=====================================================
# Please do NOT modify the following code, but you are more than welcome to understand the code in detail

# Define a hash function class for Task C.
# The method get_hash_value(message) function return a hash value raning in [0, 365)
class HashFunctionTaskC:
    
    upper_bound = 1
    
    def __init__(self, upper_bound):
        self.upper_bound = upper_bound
    
    def get_hash_value(self, message = None):
        if(None==message):
            sys.exit("No message is given!")
            
        # Padding empty string
        if(len(message) == 0):
            message = "0"
        
        hash_value = ord(message[0])
    
        # The hash value is generated by taking the product (modulo 365) of the ordinal numbers of characters at the positions indexed by prime numbers
        for i in sieve.primerange(len(message)):
            hash_value = (ord(message[i-1])*hash_value)%self.upper_bound
    
        return hash_value


# Implement the birthday attack for a hash function
def birthday_attack(message_space, hash_function):
    
    has_collision = False
    tried_hash_values = set()
    collision_pair_1 = -1
    collision_pair_2 = -1
    
    random_index_samples = random.sample(range(len(message_space)), len(message_space)); # Random sampling without replacement
    
    for i in range(len(message_space)):   
        hash_value_1 = hash_function.get_hash_value(message_space[random_index_samples[0]])
        tried_hash_values.add(hash_value_1)
        for j in range(1, len(random_index_samples)):
            hash_value_2 = hash_function.get_hash_value(message_space[random_index_samples[j]])
            if hash_value_1 == hash_value_2:
                has_collision = True
                collision_pair_1 = random_index_samples[0]
                collision_pair_2 = random_index_samples[j]
                break
            else:
                tried_hash_values.add(hash_value_2)
                    
        if has_collision:
            break
        random_index_samples = random.sample(random_index_samples[1:], len(random_index_samples[1:]))
    
    if has_collision:
        return len(tried_hash_values), collision_pair_1, collision_pair_2
    else:
        print("No collision is found!")
        return -1, -1, -1    

    
# Examples of using this hash function
hash_function = HashFunctionTaskC(upper_bound=365)

example_message = "Hellow World, COMP2300/6300!"
print("Example message is: ", example_message)
print("Hash value of example message is: ", hash_function.get_hash_value(example_message))

modified_example_message = "Hell0w World, COMP2300/6300!"
print("Modified example message is: ", modified_example_message)
print("Hash value of modified example message is: ", hash_function.get_hash_value(modified_example_message))
print("")

# Example of perform birthday attack
# We use each line of the plain text in Task B.2 as a message. Then, the whole text can be regarded as a set of messages.
# Note that you need to replace the plain text file name (i.e., to replace <YourStudentID> with your own ID) to execute the program correctly
message_list  = None
with open("/Users/jenny/Documents/48001023_Task-B-2_plain-text.txt") as file:
    message_list = file.read().splitlines()

# Show the number of messages
print("Number of messages: ", len(message_list))

from sieve import sieve_of_eratosthenes

# Perform the birthday_attack to the hash function once. The upper bound of hash values are set as 365.
count, cp1, cp2 = birthday_attack(message_list, HashFunctionTaskC(upper_bound=365))
print("The number of examined hash values (NOT the number of examined messages) before the first collision: \n%i" %count)
print("Collided message 1: ", cp1)
print(message_list[cp1])
print("Collided message 2: ", cp2)
print(message_list[cp2])
print("")


#=====================================================
# Following area is for your to write or complete the code to achieve the answers to Task C

# Subtask C.1 (2 marks): Use the same setting as the example (i.e., the same hash function and the same message set from the same file "<YourStudentID>_Task-B-2_plain-text.txt").
# You are required to perform to the birthday attack multiple times (>=100), and calculate the average number of examined hash values before the first collision.
# Compare the empirical average number of examined hash values before the first collision with its theoretical value (i.e., sqrt(Pi/2*n), where n is the number of possible hash values) to check if the difference is significant.
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the rounds of birthday attacks of your choice, (2) the empirical average number of examined hash values before the first collision, (3) the theoretical value, and (4) the explanation on the difference between the empirical value and the theoretical value.

# TODO: Your code to achieve the subtask above



# Subtask C.2 (2 marks): Through understanding the construction of the hash function, you are requested to forge a message for a given message, i.e., to identify a second preimage.
# The given message is Line 5 in the file "<YourStudentID>_Task-B-2_plain-text.txt": "Creative Commons Corporation ("Creative Commons") is not a law firm and"
# The change should be minor with substitution of a few characters, and the modified version still produces the same hash value as the given message.
# Report (1) the forged message and (2) the explanation why the modification works as the answers to Task C.2 in the answer template.
print("Line 5 message: ", message_list[4])
print("Line 5 message hash value: ", hash_function.get_hash_value(message_list[4]))
print("")

# TODO: Your code to show how you obtain the forged message and check if it can produce the same hash value.




# Subtask C.3 (2 marks): Now, you are requested to employ SHA256 to generate the hash values for the Line 5 message and the forged message (the same as in Task C.2)
# How to use SHA256 to generate hash values can be found here: https://cryptography.io/en/latest/hazmat/primitives/cryptographic-hashes/#cryptography.hazmat.primitives.hashes.SHA256
# Compare the two hash values to see if they are equal to each other
# Report the following information as the answers to Task C.1 in the answer template:
# (1) the hash values of the two messages, (2) the percentage of the overlap between the two hash values (in terms of bits, bytes, or hexadecimal numbers),
# and (3) which hash function has a stronger avalanche effect, SHA256 or the hash function we defined above?

# TODO: Your code to generate hash values and calculate the percentage of the overlap between the two hash values



[2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47, 53, 59, 61, 67, 71, 73, 79, 83, 89, 97]
Example message is:  Hellow World, COMP2300/6300!
Hash value of example message is:  120
Modified example message is:  Hell0w World, COMP2300/6300!
Hash value of modified example message is:  190

Number of messages:  1


ModuleNotFoundError: No module named 'sieve'

In [6]:
def sieve_of_eratosthenes(n):
    primes = [True] * (n + 1)
    primes[0:2] = [False, False]  # 0 and 1 are not primes
    p = 2
    while p * p <= n:
        if primes[p]:
            for i in range(p * p, n + 1, p):
                primes[i] = False
        p += 1
    return [i for i in range(n + 1) if primes[i]]

# Example usage:
primes_up_to_100 = sieve_of_eratosthenes(100)
print(primes_up_to_100)


[2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47, 53, 59, 61, 67, 71, 73, 79, 83, 89, 97]


In [7]:
from sympy import sieve

In [10]:
message_list  = None
with open("/Users/jenny/Documents/48001023_Task-B-2_plain-text.txt") as file:
    message_list = file.read().splitlines()

# Show the number of messages
print("Number of messages: ", len(message_list))


# Perform the birthday_attack to the hash function once. The upper bound of hash values are set as 365.
count, cp1, cp2 = birthday_attack(message_list, HashFunctionTaskC(upper_bound=365))
print("The number of examined hash values (NOT the number of examined messages) before the first collision: \n%i" %count)
print("Collided message 1: ", cp1)
print(message_list[cp1])
print("Collided message 2: ", cp2)
print(message_list[cp2])
print("")
print("Line 5 message: ", message_list[4])
print("Line 5 message hash value: ", hash_function.get_hash_value(message_list[4]))
print("")

Number of messages:  1
No collision is found!
The number of examined hash values (NOT the number of examined messages) before the first collision: 
-1
Collided message 1:  -1
Hellow WorXd, COMP2300/6300!
Collided message 2:  -1
Hellow WorXd, COMP2300/6300!



IndexError: list index out of range