In [1]:
import galois

KeyboardInterrupt: 

## The Galois Field in Cryptography
Research about the uses of the Galois field. What are its properties? How can it be used in cryptography? Write a simple cryptosystem based on the field. Research production-grade systems based on the Galois field.

You can use the following questions to facilitate your research:
* What is a field?
* What is GF(2)? Why is it an algebraic field?
* How and why do we extend the field to have more elements, like GF(3), GF(4), etc.? Do they have any practical applications?
* What is perfect secrecy? How does it relate to the participants in the conversation, and to the outside eavesdropper?
    * https://www.youtube.com/watch?v=ColSUxhpn6A
* How to encrypt one-bit messages?
* How to extend the one-bit encryption system to many buts?
* Why is the system decryptable? How do the participants decrypt the encrypted messages?
* Why isn't the eavesdropper able to decrypt?
* What is a one-time pad?
    * How does the one-time pad achieve perfect secrecy?
* What happens if we try to use a one-time pad many times?
    * Provide an example where you break the "many-time pad" security
* What are some current enterprise-grade applications of encryption over GF(2)?
* Implement a cryptosystem based on GF(2). Show correctness on various test cases
* What is symmetrical encryption?

## 11.1. What happens if we try to use a one-time pad many times?

Using a one-time pad multiple times violates the fundamental principle that the key must be used only once. This leads to significant vulnerabilities and compromises the security of the encrypted messages. Here’s what happens if the same one-time pad is reused:

### Scenario with Two Messages

Suppose Alice sends two different messages, \(M_1\) and \(M_2\), to Bob using the same one-time pad \(K\). The ciphertexts \(C_1\) and \(C_2\) are generated as follows:
- \(C_1 = M_1 \oplus K\)
- \(C_2 = M_2 \oplus K\)

Where \(\oplus\) denotes the XOR operation.

An eavesdropper intercepting both ciphertexts \(C_1\) and \(C_2\) can perform the following analysis:
- Compute \(C_1 \oplus C_2\)
- \(C_1 \oplus C_2 = (M_1 \oplus K) \oplus (M_2 \oplus K)\)
- Using the property of XOR: \(C_1 \oplus C_2 = M_1 \oplus M_2\)

### Consequences

1. **Recovering Plaintexts**: The result \(M_1 \oplus M_2\) is the XOR of the two plaintexts. While this does not directly reveal \(M_1\) or \(M_2\), it provides a significant clue. If the eavesdropper knows or can guess part of one plaintext, they can potentially recover part or all of the other plaintext.

2. **Statistical Analysis**: If the messages are in natural language or have predictable patterns, the eavesdropper can use statistical analysis to deduce the plaintexts. For example, common words or phrases might be easily recognizable in the XOR of the messages.

3. **Known-plaintext Attack**: If the eavesdropper knows one of the plaintexts (a known-plaintext attack), they can easily recover the key and subsequently decrypt the other message:
   - Suppose \(M_1\) is known.
   - Then \(K = C_1 \oplus M_1\).
   - The eavesdropper can now use \(K\) to decrypt any other message encrypted with the same key: \(M_2 = C_2 \oplus K\).



## 11.2. Provide an example where you break the "many-time pad" security

### Example

Consider Alice sends two messages "HELLO" and "WORLD" using the same one-time pad key. The corresponding ciphertexts are:
- \(C_1 = M_1 \oplus K\) (HELLO)
- \(C_2 = M_2 \oplus K\) (WORLD)

An eavesdropper intercepts both \(C_1\) and \(C_2\) and calculates:
- \(C_1 \oplus C_2 = (HELLO \oplus K) \oplus (WORLD \oplus K) = HELLO \oplus WORLD\)

The eavesdropper now has the XOR of two meaningful plaintexts, which can be exploited to uncover the original messages, especially if the content is predictable or if parts of the messages are known.

### Conclusion

Reusing a one-time pad key more than once compromises the security of the encrypted messages, rendering the cryptographic system vulnerable to various attacks. This is why it is crucial to adhere to the one-time usage rule of the one-time pad to maintain perfect secrecy.

<p align="center">
  <img src="./data/Principle-of-symmetric-key-encryption.png" width="1600" heght="1600"/>
  
</p>
<div align="center">Fig. 3.1 Principle of symmetric-key encryption</div>

[Download Link](https://www-users.cse.umn.edu/~brubaker/docs/152/152groups.pdf)

In [2]:
! pip install galois

Defaulting to user installation because normal site-packages is not writeable
Collecting galois
  Using cached galois-0.3.10-py3-none-any.whl.metadata (14 kB)
Using cached galois-0.3.10-py3-none-any.whl (4.2 MB)
Installing collected packages: galois
Successfully installed galois-0.3.10


### 2.4. Galois Fields Modular Polynomial Arithmetic - Python Implementation

To demonstrate Galois Fields (GF) modular polynomial arithmetic in Python, we will use the `sympy` library, which has good support for polynomial arithmetic and finite fields. Below is an example that showcases how to perform basic operations in Galois Fields, specifically focusing on polynomial arithmetic.

In [1]:
import sympy as sp
from sympy.abc import x
from sympy.polys.rings import ring

# Define the finite field GF(p), where p is a prime number
p = 5  # You can change this to any prime number
GF = sp.GF(p)

# Define the polynomial ring over GF(p)
#x = sp.symbols('x')
R = ring(x, GF)


# Define polynomials in R
poly1 = R.convert(sp.Poly(x**3 + 2*x**2 + 3*x + 4, x))
poly2 = R.convert(sp.Poly(x**2 + 4*x + 1, x))

# Print the polynomials
print(f"Polynomial 1: {poly1}")
print(f"Polynomial 2: {poly2}")

# Perform polynomial addition
sum_poly = poly1 + poly2
print(f"Sum: {sum_poly}")

# Perform polynomial subtraction
sub_poly = poly1 - poly2
print(f"Subtraction: {sub_poly}")

# Perform polynomial multiplication
mul_poly = poly1 * poly2
print(f"Multiplication: {mul_poly}")

# Define a modulus polynomial for reduction
mod_poly = R.convert(sp.Poly(x**3 + x + 1, x))

# Perform polynomial division
quotient, remainder = divmod(mul_poly, mod_poly)
print(f"Quotient: {quotient}")
print(f"Remainder: {remainder}")

# Perform polynomial division with remainder
reduced_poly = mul_poly % mod_poly
print(f"Reduced Polynomial: {reduced_poly}")


AttributeError: 'tuple' object has no attribute 'convert'

**Explanation:**

1. **Defining the Finite Field and Polynomial Ring**:
   - We define a finite field \( \text{GF}(p) \) where \( p \) is a prime number.
   - We create a polynomial ring \( R \) over \( \text{GF}(p) \) with indeterminate \( x \).

2. **Defining Polynomials**:
   - We define two polynomials `poly1` and `poly2` in the polynomial ring \( R \).

3. **Polynomial Arithmetic**:
   - We perform addition, subtraction, and multiplication of these polynomials.

4. **Modular Reduction**:
   - We define a modulus polynomial `mod_poly` for reduction.
   - We perform polynomial division to obtain the quotient and remainder.
   - We also show the reduced polynomial by taking the remainder of the division.

### Running the Code

This code will output the results of the various polynomial operations in the specified Galois Field.

By modifying the polynomials and the modulus polynomial, you can experiment with different examples of modular polynomial arithmetic in Galois Fields.

