In [7]:
import rsa
import multiprocessing

https://stuvel.eu/python-rsa-doc/usage.html#signing-and-verification

# Generating keys

In [12]:
(pubkey, privkey) = rsa.newkeys(512)
print (pubkey)
print (privkey)

PublicKey(9226091931019375146490932416037097680857923127843719281386695384533010863251728919722824438556845421286856674975695072721952814101266029368321771312914011, 65537)
PrivateKey(9226091931019375146490932416037097680857923127843719281386695384533010863251728919722824438556845421286856674975695072721952814101266029368321771312914011, 65537, 551422892317361070064314544053241857514388588000119755637146738807327212455696680172221369892660138699890441989788083179909730415324014680642746358542545, 7313767895115204771205007264330441603118532465374196400180626492245936768294175043, 1261469062640255948640173076277703427526019369695699544749323050478579977)


Another way to speed up the key generation process is to use multiple processes in parallel to speed up the key generation. Use no more than the number of processes that your machine can run in parallel; a dual-core machine should use poolsize=2; a quad-core hyperthreading machine can run two threads on each core, and thus can use poolsize=8.

In [11]:
(pubkey, privkey) = rsa.newkeys(512, poolsize=multiprocessing.cpu_count())
print (pubkey)
print (privkey)

PublicKey(7969323116056562323983465180657558189028189947570017844899297863218326554901758880913908094488162054976425913577151272531274818992097480060206125419698889, 65537)
PrivateKey(7969323116056562323983465180657558189028189947570017844899297863218326554901758880913908094488162054976425913577151272531274818992097480060206125419698889, 65537, 1394999386413795001003071738903268497864281170613901227042506448065072282486592788553856744446197385296893676053320811147447593258531148580182439624548353, 5274507172337608669022087994588214192969283542282843940969387783474290162730330761, 1510913314868929879756890168349631502897465665384603360768323864914435649)


# Encryption and decryption

To encrypt or decrypt a message, use rsa.encrypt() resp. rsa.decrypt().
Let’s say that Alice wants to send a message that only Bob can read.

1.Bob generates a keypair, and gives the public key to Alice. This is done such that Alice knows for sure that the key is really Bob’s (for example by handing over a USB stick that contains the key).

In [21]:
(bob_pub, bob_priv) = rsa.newkeys(512)

2.Alice writes a message, and encodes it in UTF-8. The RSA module only operates on bytes, and not on strings, so this step is necessary.

In [22]:
message = 'hello Bob!'.encode('utf8')

3.Alice encrypts the message using Bob’s public key, and sends the encrypted message.

In [23]:
crypto = rsa.encrypt(message, bob_pub)

4.Bob receives the message, and decrypts it with his private key.

In [24]:
message = rsa.decrypt(crypto, bob_priv)
print(message.decode('utf8'))

hello Bob!


*RSA can only encrypt messages that are smaller than the key. A couple of bytes are lost on random padding, and the rest is available for the message itself. *For example, a 512-bit key can encode a 53-byte message (512 bit = 64 bytes, 11 bytes are used for random padding and other stuff). See Working with big files for information on how to work with larger files.

# Signing and verification

create a detached signature
This hashes the message using SHA-1. Other hash methods are also possible
The RSA module only operates on bytes, and not on strings, so this step is necessary.

In [29]:
(pubkey, privkey) = rsa.newkeys(512)
message = 'Go left at the blue tree'
signature = rsa.sign(message.encode('utf8'), privkey, 'SHA-1')
print (signature)

b'\xa44+6\x04\xde\x02\xd7\xae\x80aL\xac\xc7\x07V\x94\x8f\xc7\xe47$\xee\xda\xcb\xee\xcd\xf0\x95|@\xb0\xe0@\x04\x8f\xe7\xae\xf0\xaeo\t\xbd\x9a\x87\x06I\x82/\x12,8\xec v?\x80\xa3\xaf\xc3\x98\x9d\x96W'


verify the signature

In [31]:
message = 'Go left at the blue tree'
rsa.verify(message.encode('utf8'), signature, pubkey)

True

*Never display the stack trace of a rsa.pkcs1.VerificationError exception. It shows where in the code the exception occurred, and thus leaks information about the key. It’s only a tiny bit of information, but every bit makes cracking the keys easier.*

# Working with big files

RSA can only encrypt messages that are smaller than the key.The most common way to use RSA with larger files uses a block cypher like AES or DES3 to encrypt the file with a random key, then encrypt the random key with RSA. You would send the encrypted file along with the encrypted key to the recipient. The complete flow is:

1.Generate a random key

In [33]:
import rsa.randnum
aes_key = rsa.randnum.read_random_bits(128)

2.Use that key to encrypt the file with AES.

3.Encrypt the AES key with RSA

In [35]:
encrypted_aes_key = rsa.encrypt(aes_key, public_rsa_key)

NameError: name 'public_rsa_key' is not defined

4.Send the encrypted file together with encrypted_aes_key

5.The recipient now reverses this process to obtain the encrypted file.