In [1]:
import rsa
import multiprocessing

Reference:

rsa: https://stuvel.eu/python-rsa-doc/usage.html#signing-and-verification  

cryptography: https://github.com/pyca/cryptography

# environment

## install rsa

`pip install rsa`

The RSA in pycryptodome is difficult to use

## install cryptography

`pip install cryptography`

# Generating keys

In [2]:
(pubkey, privkey) = rsa.newkeys(512)
print (pubkey)
print (privkey)

PublicKey(9014475625053293037336751028730198569599507629947467696733862626786053340105782977319289248030876317864604618317846487868195143057020309303695538890439731, 65537)
PrivateKey(9014475625053293037336751028730198569599507629947467696733862626786053340105782977319289248030876317864604618317846487868195143057020309303695538890439731, 65537, 2517814003030357340867742307107531391679799001574505946087147037296774437007345521358527902470630800359400746270816786042099998697619485792220958106245433, 6145094451772927469838362483996404678846175629973113678775502276541254255220052039, 1466938497983951650685788209979700374046892028900699226951745575863285429)


Another way to speed up the key generation process is to use multiple processes in parallel to speed up the key generation. Use no more than the number of processes that your machine can run in parallel; a dual-core machine should use poolsize=2; a quad-core hyperthreading machine can run two threads on each core, and thus can use poolsize=8.

In [3]:
(pubkey, privkey) = rsa.newkeys(512, poolsize=multiprocessing.cpu_count())
print (pubkey)
print (privkey)

PublicKey(8344253621212339319286681297742882060865107144100555208198857673447873755942818035336376770842072937358616162619967225752385880872743477607364810677344229, 65537)
PrivateKey(8344253621212339319286681297742882060865107144100555208198857673447873755942818035336376770842072937358616162619967225752385880872743477607364810677344229, 65537, 5717106677957454147335548626158485026458731801753928780898626823181254481881994443421136563650611482453952776737688449182043422007248416261580942934141569, 6324746416564097276163780685747390073594021029158765279302710526301763609690438753, 1319302478176719422945330644867251056089788346529411178672698493883263493)


# Encryption and decryption

To encrypt or decrypt a message, use rsa.encrypt() resp. rsa.decrypt().
Let’s say that Alice wants to send a message that only Bob can read.

1.Bob generates a keypair, and gives the public key to Alice. This is done such that Alice knows for sure that the key is really Bob’s (for example by handing over a USB stick that contains the key).

In [4]:
(bob_pub, bob_priv) = rsa.newkeys(512)

2.Alice writes a message, and encodes it in UTF-8. The RSA module only operates on bytes, and not on strings, so this step is necessary.

In [5]:
message = 'hello Bob!'.encode('utf8')

3.Alice encrypts the message using Bob’s public key, and sends the encrypted message.

In [6]:
crypto = rsa.encrypt(message, bob_pub)

4.Bob receives the message, and decrypts it with his private key.

In [7]:
message = rsa.decrypt(crypto, bob_priv)
print(message.decode('utf8'))

hello Bob!


*RSA can only encrypt messages that are smaller than the key. A couple of bytes are lost on random padding, and the rest is available for the message itself. *For example, a 512-bit key can encode a 53-byte message (512 bit = 64 bytes, 11 bytes are used for random padding and other stuff). See Working with big files for information on how to work with larger files.

# Signing and verification

create a detached signature
This hashes the message using SHA-1. Other hash methods are also possible
The RSA module only operates on bytes, and not on strings, so this step is necessary.

In [8]:
(pubkey, privkey) = rsa.newkeys(512)
message = 'Go left at the blue tree'
signature = rsa.sign(message.encode('utf8'), privkey, 'SHA-1')
print (signature)

b'9hE\'\xe1+"\xd8\xf2\xe6Q\xec.(\xc09\xc6\x0f\xec\xb7;\xe9y,][\rT\x14a\'\xe5\xfb\x19\xeb\xeb\xadd\xd4\xa2\xee\x1e\xc8\x91\x0b\xda\x9e\x9c\xb4+\xc5=\x83\xfaM[\xca\xc5(-~\xac2"'


verify the signature

In [9]:
message = 'Go left at the blue tree'
rsa.verify(message.encode('utf8'), signature, pubkey)

True

*Never display the stack trace of a rsa.pkcs1.VerificationError exception. It shows where in the code the exception occurred, and thus leaks information about the key. It’s only a tiny bit of information, but every bit makes cracking the keys easier.*

# ChaCha20

In [10]:
import os
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.backends import default_backend

key = os.urandom(32)
nonce = os.urandom(16)

algorithm = algorithms.ChaCha20(key, nonce)
cipher = Cipher(algorithm, mode=None, backend=default_backend())
encryptor = cipher.encryptor()

message = 'hello Bob你好!'.encode('utf8')
ct = encryptor.update(message)
decryptor = cipher.decryptor()
print(decryptor.update(ct).decode('utf8'))

hello Bob你好!


# Working with big files

RSA can only encrypt messages that are smaller than the key.The most common way to use RSA with larger files uses a block cypher like AES or DES3 to encrypt the file with a random key, then encrypt the random key with RSA. You would send the encrypted file along with the encrypted key to the recipient. The complete flow is:

## Generate a random key

In [11]:
import os
chacha20_key = os.urandom(32) # must be 32 bytes
nonce = os.urandom(16) # nonce

NameError: name 'aes_key' is not defined

## Use that key to encrypt the file with ChaCha20.

message.txt : original file  
encrypted.bin : encrypted file  
decrypted.txt: decrypted file

### Encrypt data with ChaCha20

In [None]:
with open('message.txt','rb') as f:
    data = f.read()
    f.close()
    
cipher = Cipher(algorithms.ChaCha20(key, nonce), mode=None, backend=default_backend())
encryptor = cipher.encryptor()
ct = encryptor.update(data)
with open('encrypted.bin','wb') as f:
    f.write(ct)
    f.close()



## Encrypt the ChaCha20 key with RSA

In [None]:
(public_rsa_key, privkey) = rsa.newkeys(512)
encrypted_chacha20_key = rsa.encrypt(chacha20_key, public_rsa_key)

4.Send the encrypted file together with encrypted_aes_key

5.The recipient now reverses this process to obtain the encrypted file.

In [None]:
key = rsa.decrypt(encrypted_chacha20_key,privkey)
cipher = Cipher(algorithms.ChaCha20(key, nonce), mode=None, backend=default_backend())
decryptor = cipher.decryptor()
with  open("encrypted.bin", "rb") as file_in:
    encrypted_data = file_in.read()
    file_in.close()

decrypted_data = decryptor.update(encrypted_data)
with open('decrypted.txt','wb') as f:
    f.write(decrypted_data)
    f.close()

In [None]:
print(data)

In [None]:
print(decrypted_data)