# Homework 2

# Exercise 1: ------------------------------------------------------------------------

1. Suppose a password is chosen as a concatenation of seven lower-case dictionary words. Each word is selected uniformly at random from a dictionary of size 50,000. An example of such a password is "mothercathousefivenextcrossroom". How many bits of entropy does this have?

2. Consider an alternative scheme where a password is chosen as a sequence of 10 random alphanumeric characters (including both lower-case and upper-case letters). An example is "dA3mG67Rrs". How many bits of entropy does this have?

3. Which password is better, the one from 1. or 2.?

### 1.1. Suppose a password is chosen as a concatenation of seven lower-case dictionary words. Each word is selected uniformly at random from a dictionary of size 50,000. An example of such a password is "mothercathousefivenextcrossroom". How many bits of entropy does this have?

To determine the number of bits of entropy, we first need to determine the total number of possible passwords that can be generated by this method and then take the logarithm base 2 of that number.

Given:
- **Dictionary size** = 50,000 words
- **Number of words in the password** = 7

The number of possible passwords is:
$50,000^{7}$

To calculate the entropy in bits, we take the base-2 logarithm of the total number of possibilities. 

Entropy $H = log_2(50,000^7)$

Using the property of logarithms, this becomes:

$H = 7 \times log_2(50,000)$

$H ≈ 7 \times 15.61$

$H ≈ 109.27$

So, a password chosen by this method has approximately 109.27 bits of entropy.



### 1.2. Consider an alternative scheme where a password is chosen as a sequence of 10 random alphanumeric characters (including both lower-case and upper-case letters). An example is "dA3mG67Rrs". How many bits of entropy does this have?

Number of possible alphanumeric characters = 26 lower-case letters + 26 upper-case letters + 10 digits = 62 characters.

For a sequence of 10 random alphanumeric characters, the number of possible passwords is: $62^{10}$

To calculate the entropy in bits, we take the base-2 logarithm of the total number of possibilities:

Entropy $H_2 = log_2(62^{10})$

Using the property of logarithms, this becomes:

$H_2 = 10 \times log_2(62)$

$H_2 ≈ 10 \times 5.954$

$H_2 ≈ 59.54$ bits of entropy (rounded off).



### 1.3. Which password is better, the one from 1. or 2.?
From our calculations:
- The password chosen from 7 dictionary words has an entropy of $H_1 ≈ 109.27$ bits.
- The password chosen from 10 random alphanumeric characters has an entropy of $H_2 ≈ 59.54$ bits.

**The password from the first question is better in terms of entropy, as it has nearly double the entropy of the password from the second question.**

## Exercise 2: ------------------------------------------------------------------------

1. Design a data verification system using hash functions. Explain the steps involved in the process.
2. Discuss the advantages and disadvantages of using hash functions for data verification.
3. Provide an example of a real-world application where a data verification system using hash functions is used.

### 2.1. Design a data verification system using hash functions. Explain the steps involved in the process.

To design a data verification system using hash functions, we need to follow these steps:

1. **Selection of Hash Function**: Choose a cryptographic hash function, such as SHA-256. The function should have properties like being collision-resistant, meaning two different inputs shouldn't produce the same output.
  
2. **Generation of Hash Value**: When original data is created or received, pass it through the selected hash function. This will generate a hash value or a "digest" of the original data.

3. **Transmission/Storage of Hash Value**: Alongside the original data, transmit or store the hash value. When transmitting, it's often sent separately or as a digital signature.

4. **Verification**: When the data needs to be verified (like after transmission or after a period of storage), pass it again through the same hash function to produce a new hash value.

5. **Comparison**: Compare the newly generated hash value with the previously stored/transmitted hash value. If they match, the data hasn't been tampered with. If they don't match, the data may have been altered.

### 2.2. Discuss the advantages and disadvantages of using hash functions for data verification.

**Advantages**:
- **Integrity**: Hash functions ensure the integrity of data as even a small change in the input results in a drastically different hash value.
  
- **Speed**: Hash functions are computationally efficient and can process large amounts of data quickly.
  
- **Fixed Size**: Regardless of the size of the input data, the hash value or digest is of a fixed size.
  
- **Non-reversible**: It's computationally infeasible to generate the original input from its hash value.

**Disadvantages**:
- **Collisions**: Though rare and unlikely, especially with modern cryptographic hash functions, two different inputs might produce the same hash value.
  
- **Security Concerns**: If a weak hash function is used, attackers might use methods like rainbow tables to find an input that produces a specific hash value.

- **Overhead**: There's computational overhead in generating and comparing hash values.

### 2.3. Provide an example of a real-world application where a data verification system using hash functions is used.

A common real-world application is the verification of software downloads. When downloading software from the internet, many developers provide a hash value (often SHA-256) of the software file. After downloading, users can compute the hash of the downloaded file and compare it to the provided hash. If they match, the file hasn't been tampered with and is genuine. This ensures that the software hasn't been replaced with a malicious version by a third party.


## Exercise 3: ------------------------------------------------------------------------

1. Define what a Message Authentication Code (MAC) is and how it is used in cryptography.
2. Explain the process of generating and verifying a MAC.
3. Discuss the importance of using MACs in secure communication systems.

### 3.1. Define what a Message Authentication Code (MAC) is and how it is used in cryptography:

A Message Authentication Code (MAC) is a short piece of information used to authenticate a message and confirm both its source and its integrity. In cryptography, MACs are often used alongside encryption to ensure that a message has not been tampered with during transmission. While encryption protects the content of a message, a MAC ensures its authenticity.

### 3.2. Explain the process of generating and verifying a MAC:

**Generation**:
1. **Key Selection**: Both the sender and the receiver agree upon a secret key.
  
2. **Message Processing**: The sender combines the message with the secret key, either by concatenating them or using another method.

3. **MAC Creation**: The combined message and key are passed through a cryptographic function (could be a hash function or another algorithm) to produce the MAC.

4. **Transmission**: The sender transmits both the original message and the MAC to the receiver.

**Verification**:
1. **Message Reception**: The receiver gets both the original message and the MAC.

2. **MAC Regeneration**: Using the same secret key (previously agreed upon), and the same process the sender used, the receiver generates a new MAC from the received message.

3. **Comparison**: The receiver then compares the newly generated MAC with the received MAC. If they match, the message is considered authentic and untampered. Otherwise, it's considered compromised.

### 3.3. Discuss the importance of using MACs in secure communication systems:

Using MACs in secure communication systems offers several advantages:
- **Message Integrity**: MACs ensure that the message hasn't been altered during transmission, protecting against unauthorized modifications.

- **Authentication**: With a MAC, the receiver can be confident about the source of the message, ensuring it's coming from the legitimate sender.

- **Non-repudiation**: The sender cannot later deny having sent the message since they were the only ones with the secret key to generate the MAC.

- **Protection against Replay Attacks**: MACs can be used with timestamps or sequence numbers to ensure a message isn't intercepted and resent by a malicious actor.

While encryption provides confidentiality, MACs provide a means to verify the integrity and authenticity of a message, making them crucial in secure communication systems.


## Exercise 4: ------------------------------------------------------------------------

Given the values of p = 17 and q = 23, generate a pair of keys for RSA.

### 1. First we compute $n$ and $\phi(n)$:

$n = p \times q$

$n = 17 \times 23$

$n = 391$

$\phi(n) = (p-1) \times (q-1)$

$\phi(n) = 16 \times 22$

$\phi(n) = 352$

### 2. Now we choose $e$:

We choose an integer $e$ such that $1 < e < \phi(n)$ and $gcd(e, \phi(n)) = 1$. 

A common choice is:

$e = 3$

Ensure $gcd(3, 352) = 1$.

### 3. Final calculations $d$:

To find $d$ such that $d \times e \equiv 1 \mod \phi(n)$, we use the Extended Euclidean Algorithm. 

The equation to solve is:

$3 \times d \equiv 1 \mod 352$

Upon solving, we find:

$d = 235$

Thus:

**n = 391**

**e = 3**

**d = 235**

- The **public key** is $(e, n) = (3, 391)$
- The **private key** is $(d, n) = (235, 391)$


## Exercise 5: ------------------------------------------------------------------------

1. Design a public key infrastructure (PKI) system. Explain the components and their roles in the system.
2. Discuss the advantages and challenges of implementing a PKI system.
3. Provide an example of a real-world application where a PKI system is used.

### 5.1. Design a public key infrastructure (PKI) system. Explain the components and their roles in the system:

A Public Key Infrastructure (PKI) system is designed to manage digital keys and certificates. The PKI uses a combination of hardware, software, policies, and standards to provide a foundation for secure communications.

**Components and their roles**:

- **Certificate Authority (CA)**: 
    This is a trusted entity that issues and manages digital certificates. The CA verifies the identity of the certificate requestor before issuing them a certificate.

- **Registration Authority (RA)**: 
    This entity acts as a verifier for the CA before the digital certificate is issued to the end user. It receives requests for digital certificates and verifies the individual's identity before the CA can issue the certificate.

- **Central Directory**: 
    This is a secure location where keys and certificates are stored. It ensures users can retrieve a particular certificate.

- **Certificate Management System**: 
    Manages tasks such as the storage, distribution, and revocation of digital certificates.

- **End Entities**: 
    End-users or devices that use the certificates for secure communications.

### 5.2. Discuss the advantages and challenges of implementing a PKI system:

**Advantages**:

- **Enhanced Security**: 
    PKI provides strong authentication and ensures the confidentiality, integrity, and non-repudiation of electronic data.

- **Digital Signatures**: 
    Ensures the authenticity and integrity of a message, software, or electronic document.

- **Scalability**: 
    Easily scalable to accommodate new users or devices.

- **Standardized**: 
    PKI follows standard protocols, making integration easier.

**Challenges**:

- **Complexity**: 
    Setting up a PKI system can be complex and requires specialized knowledge.

- **Cost**: 
    Initial setup and maintenance can be costly.

- **Revocation**: 
    Handling certificate revocations can be challenging, especially in large organizations.

- **Policy Management**: 
    Requires well-defined policies and practices which need regular updates.

### 5.3. Provide an example of a real-world application where a PKI system is used:

**E-Commerce**:
One of the most common real-world applications of PKI is in E-Commerce websites. When users make online transactions, they share sensitive data like credit card details. To ensure these details are securely transmitted, E-Commerce websites use SSL/TLS certificates issued by CAs. These certificates use PKI infrastructure to ensure that any data transmitted between the user's browser and the website's server is encrypted and secure from eavesdroppers.


## Exercise 6: ------------------------------------------------------------------------

Design a system for digital signatures based on public-key cryptography. Explain the steps involved in the process and the role of each component.

**Steps and components involved**:

1. **Key Generation**:
    - Each entity needs a pair of keys: a public key and a private key. The public key is distributed widely while the private key remains confidential to its respective owner.
    - The keys are generated using a secure algorithm, such as RSA, DSA, or ECDSA.

2. **Signing the Document**:
    - When the sender wants to send a digitally signed message, they use a cryptographic hash function (like SHA-256) on the message to create a fixed-size message digest.
    - This digest is then encrypted with the sender's private key to create the digital signature. 
    - The original message and its digital signature are then sent to the receiver.

3. **Verification**:
    - Upon receiving the message and its digital signature, the receiver applies the same cryptographic hash function to the received message to create a new message digest.
    - The received digital signature is decrypted using the sender's public key to reveal the original message digest.
    - If both message digests match, it verifies that:
        - The message has not been tampered with in transit.
        - The signature was indeed created by the holder of the private key and not someone impersonating them.

**Role of each component**:

- **Public and Private Key Pair**: 
    The foundation of a digital signature system. The private key is used for signing, and the public key is used for verifying the signature.

- **Cryptographic Hash Function**: 
    Produces a unique, fixed-size string of bytes from data of any size. It ensures that even a tiny change in the input data will produce a significantly different hash.

- **Signature Generating Algorithm**: 
    Uses the private key to create a digital signature from the message digest.

- **Signature Verifying Algorithm**: 
    Uses the public key to verify the authenticity of the digital signature attached with the message.

- **Certificate Authority (CA)**: 
    A trusted entity that can be used in a digital signature system to vouch for the identity of the individual or entity to which it has issued a certificate and the corresponding public key.
