In [1]:
# ecc_test.py
# ECC test: ECDSA signing/verifying + ECIES encryption/decryption
# Uses NIST P-256 (prime256v1) ‚Äî widely supported and still secure in 2025

from cryptography.hazmat.primitives import hashes, serialization
from cryptography.hazmat.primitives.asymmetric import ec
from cryptography.hazmat.primitives.kdf.hkdf import HKDF
from cryptography.hazmat.primitives.ciphers.aead import AESGCM
import os
import base64

# ============================
# 1. Generate ECC key pair (P-256)
# ============================
def generate_ecc_keys():
    private_key = ec.generate_private_key(ec.SECP256R1())
    public_key = private_key.public_key()

    # Serialize (PEM format)
    private_pem = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.PKCS8,
        encryption_algorithm=serialization.NoEncryption()
    )
    public_pem = public_key.public_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PublicFormat.SubjectPublicKeyInfo
    )
    return private_key, public_key, private_pem.decode(), public_pem.decode()


# ============================
# 2. ECDSA: Sign & Verify
# ============================
def ecc_sign(message: str, private_key) -> str:
    signature = private_key.sign(
        message.encode(),
        ec.ECDSA(hashes.SHA256())
    )
    return base64.b64encode(signature).decode()

def ecc_verify(message: str, signature_b64: str, public_key) -> bool:
    signature = base64.b64decode(signature_b64)
    try:
        public_key.verify(signature, message.encode(), ec.ECDSA(hashes.SHA256()))
        return True
    except:
        return False


# ============================
# 3. ECIES: Encrypt & Decrypt (hybrid: ECC + AES-GCM)
# ============================
def ecc_encrypt(message: str, recipient_public_key) -> str:
    # Ephemeral key pair
    ephemeral_private = ec.generate_private_key(ec.SECP256R1())
    shared_secret = ephemeral_private.exchange(ec.ECDH(), recipient_public_key)

    # Derive symmetric key using HKDF
    derived_key = HKDF(
        algorithm=hashes.SHA256(),
        length=32,
        salt=None,
        info=b'ECIES encryption',
    ).derive(shared_secret)

    # Encrypt with AES-GCM
    aesgcm = AESGCM(derived_key)
    iv = os.urandom(12)
    ciphertext = aesgcm.encrypt(iv, message.encode(), None)

    # Package: ephemeral_pub (33 bytes compressed) + iv + ciphertext
    ephemeral_pub_bytes = ephemeral_private.public_key().public_bytes(
        encoding=serialization.Encoding.X962,
        format=serialization.PublicFormat.CompressedPoint
    )
    package = ephemeral_pub_bytes + iv + ciphertext
    return base64.b64encode(package).decode()


def ecc_decrypt(encrypted_b64: str, recipient_private_key) -> str:
    package = base64.b64decode(encrypted_b64)

    # Unpack
    ephemeral_pub_bytes = package[:33]   # compressed point = 33 bytes
    iv = package[33:33+12]
    ciphertext = package[33+12:]

    # Reconstruct ephemeral public key
    ephemeral_pub = ec.EllipticCurvePublicKey.from_encoded_point(
        ec.SECP256R1(), ephemeral_pub_bytes
    )

    # Derive same shared secret
    shared_secret = recipient_private_key.exchange(ec.ECDH(), ephemeral_pub)
    derived_key = HKDF(
        algorithm=hashes.SHA256(),
        length=32,
        salt=None,
        info=b'ECIES encryption',
    ).derive(shared_secret)

    # Decrypt
    aesgcm = AESGCM(derived_key)
    plaintext = aesgcm.decrypt(iv, ciphertext, None)
    return plaintext.decode()


# ============================
# Demo
# ============================
if __name__ == "__main__":
    msg = "Secret ECC message ‚Äì only you can read this! üîê"

    print("Generating ECC (P-256) key pair...\n")
    priv, pub, priv_pem, pub_pem = generate_ecc_keys()

    print(f"Original message: {msg}\n")

    # 1. Digital signature
    sig = ecc_sign(msg, priv)
    print("ECDSA Signature (b64):")
    print(sig[:80] + "...\n")
    print(f"Verified: {ecc_verify(msg, sig, pub)}\n")

    # 2. Encryption with recipient's public key
    encrypted = ecc_encrypt(msg, pub)
    print("ECIES Encrypted (b64):")
    print(encrypted[:80] + "...\n")

    # 3. Decryption with private key
    decrypted = ecc_decrypt(encrypted, priv)
    print(f"Decrypted: {decrypted}")
    assert decrypted == msg
    print("\nAll ECC operations succeeded perfectly!")

Generating ECC (P-256) key pair...

Original message: Secret ECC message ‚Äì only you can read this! üîê

ECDSA Signature (b64):
MEUCIQCyV4z/yRd0nx69TkCTIk/aksH9LWWpx+BQHOZrzxicPwIgC/3d5MrO0B4i5muQuKRz+VVKrOzA...

Verified: True

ECIES Encrypted (b64):
Agd0suUZFHNtbw60cHX2sG+o9AcYNG1clvOxiNteJxdXWIG69BTNWfPDU5T/Ssz3GeqtLueATjP3oDmV...

Decrypted: Secret ECC message ‚Äì only you can read this! üîê

All ECC operations succeeded perfectly!
