# RSA

In [20]:
from typing import Optional, Tuple

# Extended Euclid
# return integers (x,y,d) such that d = gcd(a,b)
# and d = ax + by
def mod_inv(a : int, b : int) -> Optional[int]:
    """
    Compute the modular inverse of a mod b if it exists
    :param a:  number  computing invers of
    :param b:  mod
    :return: modular inverse of a % b. If not exist then None.
    """
    def ext_gcd(a: int, b: int) -> Tuple[int,int,int]:
      if b == 0:
        return (a,1,0)   # the last row
      else:
        (d, x_, y_) = ext_gcd(b, a % b)
        (d,x,y) = (d, y_, x_ - a//b*y_)
        return (d,x,y)

    if gcd(a,b) != 1:
        return None
    else:
        (d,x,y) = ext_gcd(a,b)
        return x % b


In [10]:
def gcd(x: int, y: int) -> int:
    if y == 0:
        return x    # gcd(x, 0) = x
    else:
        return gcd(y, x % y)

In [4]:
# Compute x^y mod N in O(n^3) time
# where n is the length of the
# digits in bits
def modexp(x: int, y:int, m: int) -> int:
    if y == 0:
        return 1
    elif y & 1 == 0:
        tmp = modexp(x, y >> 1, m)
        return (tmp % m) * (tmp % m) %m
    else:
        tmp = modexp(x, y >> 1, m)
        return (x % m)*(tmp % m) * (tmp % m) % m


In [5]:
print(modexp(345,456,789) == 345**456 % 789)

True


The primality test in the inner function `primality` is the Converse of Fermat's Little Theorem. *if $N$ is prime then* $a^{N-1} \mbox{ mod } N = 1$

In [6]:
import random
def probablyPrime(N:int) -> bool:
    def primality(N : int) -> bool:
        """
        This is the primality test from page 27 of Dasgupta. It represents the
        converse of Fermat's Little Theorem.
        :param N:
        :return: False, N is definitely not prime.
                 True, N is prime with probability <= 1/2.
        """
        a = random.randrange(1,N)
        return modexp(a,N-1,N) == 1

    for i in range(200):
        if primality(N):
            continue
        else:
            return False
    return True

How many tries to find a 512 bit prime?

In [12]:
i = 0
while True:
    x = random.randrange(2**1023-1,2**1024)
    i += 1
    if probablyPrime(x):
        print(x)
        print("Found prime in", i, "attempts")
        break

175814744949498772418613855217264085558627069437678714358916351340670897861136317076289317374481587607173475272845840510534202920314098780544045619143727850214836702372587931092011295853738072790517585337481599413111859366962882989511708388377986491665549164421240532708888586074167140032382158261706087805027
Found prime in 393 attempts


In [24]:
from typing import Tuple

# encrypt
def E(m: int, en: Tuple[int,int]):
    (e,n) = en
    return modexp(m,e,n)

#decrypt
def D(c: int, dn: Tuple[int,int]) -> int:
    (d,n) = dn
    return modexp(c,d,n)


Encrypt the message 'elephant shoes'

In [31]:
Alice_Public = (3,391)
M = 'elephant shoes'
Ms = [ord(ch) for ch in M]
C = [E(x, Alice_Public) for x in Ms]
#Send C to Alice some how


In [33]:
Alice_Private = (235, 391)
"".join([chr(cp) for cp in [D(x, Alice_Private) for x in C]])


'elephant shoes'

In [35]:
gcd(11,(630*420))

1

In [36]:
Bob_Public = (11, 265651)
Bob_Private = (216491,265651)