# Project - Breaking the Vigenere Cipher

This project demonstrates that the Vigenere Cipher -- while superior to a simple shift cipher -- is still not perfectly secure.

We will learn in later assignments that the issue with the Vigenere cipher is that the chosen key can have length smaller than the message. This allowance is what ends up leaking information: the repeated pattern of letters in the key is enough to help determine what the original message was. 

In our set up, we are given a cipher text initially. Taking advantage of the fact that english letters are not chosen in words uniformly, we will recover the key. The steps involved in attacking the Vigenere Cipher are as follows:

1. Determine the key length

2. Determine each byte of the key

Once the key is known, it can be used easily to decrypt the encrypted message.

Assumptions made:

* **The message is in english.** This assumption means we can use a chart of plaintext english letter frequencies to our advantage. More on this in a moment.

# Part 1 - Determine the Key Length

In [2]:
message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

In [3]:
#converting hex string to integer representation of each character
message_len = len(message)
print(message_len)

int_message = []

for i in range(0,message_len,2):
    int_message.append(int(message[i:i+2], base = 16))
    
print(int_message, len(int_message))

#will hold the max frequency sum which will be the closest match to the english letter frequency distribution
curr_max = 0

mess_len = len(int_message)

#freq_sums holds all possible frequency sums at each possible key so they can be compared visually and confirmed at the end
freq_sums = []

#testing key lengths from 1 to 13 (constraints of the assignment)
for key_len in range(1,14):
    
    #there is a new stream for each different possible key length
    stream = []
    
    #gather all integers belonging to the stream in the int_message list
    i= 0
    while i<mess_len:
        stream.append(int_message[i])
        i = i + key_len
    stream_len = len(stream)
    
    #calculate the sum of the frequencies by counting the occurrence of the integer value in the stream, out of the total length
    #of the stream. Square the value (I forget why)
    sum_up = 0
    for j in range(256):
        sum_up = sum_up + (stream.count(j)/stream_len)**2
    freq_sums.append(sum_up)
    
    #hold on to highest value of sum so far and the key length it occurs in
    if sum_up > curr_max:
        curr_max = sum_up
        match = key_len
        
print(match, curr_max) 
print(freq_sums)

940
[249, 109, 232, 194, 39, 162, 89, 200, 126, 225, 218, 42, 237, 87, 201, 63, 229, 218, 54, 237, 78, 200, 126, 242, 198, 58, 174, 91, 154, 126, 255, 214, 115, 190, 74, 207, 123, 232, 146, 60, 171, 30, 206, 122, 242, 218, 61, 164, 79, 207, 122, 226, 146, 53, 162, 76, 150, 63, 240, 223, 60, 163, 89, 154, 112, 229, 218, 54, 191, 30, 206, 119, 248, 220, 52, 190, 18, 154, 108, 244, 209, 38, 191, 91, 154, 124, 254, 223, 62, 184, 80, 211, 124, 240, 198, 58, 162, 80, 154, 118, 255, 146, 39, 165, 91, 154, 111, 227, 215, 32, 168, 80, 217, 122, 177, 221, 53, 237, 95, 206, 107, 240, 209, 56, 168, 76, 201, 49, 177, 241, 33, 180, 78, 206, 112, 246, 192, 50, 189, 86, 195, 63, 249, 211, 32, 237, 92, 223, 122, 255, 146, 38, 190, 91, 222, 63, 247, 221, 33, 237, 86, 207, 113, 245, 192, 54, 169, 77, 150, 63, 248, 212, 115, 163, 81, 206, 63, 229, 218, 60, 184, 77, 219, 113, 245, 193, 127, 237, 81, 220, 63, 232, 215, 50, 191, 77, 150, 63, 243, 199, 39, 237, 74, 200, 126, 245, 219, 39, 164, 81, 212, 126, 2

In [76]:
#converting hex string to integer representation of each character
message_len = len(message)


int_message = []

def key_subseq(message,skip):
    subseq = message[::skip]
    return subseq

def freq_lst(stream):
    freq_list = {}
    for i in range(256):
        if i not in freq_list:
            freq_list[i] = (stream.count(i)/256)**2
    return freq_list

def freq_lst1(stream):
    freq_list = {}
    for i in range(256):
        if i not in freq_list:
            freq_list[i] = (stream.count(i))#/256)**2
    return freq_list

def invariant(freq):
    hold = 0
    for i in freq.keys():
        hold = hold+freq[i]**2
    return hold

def freq_sum(freq_list):
    values = freq_list.values()
    sum_freq = sum(values)
    return sum_freq

for i in range(int(message_len/2)):
    int_message.append(int(message[i:i+2], base = 16))
    
curr_max = 0

for key_len in range(1,14):
    stream = key_subseq(int_message,key_len)
    let_freq = freq_lst(stream)
    #print(let_freq)
    sum_up = freq_sum(let_freq)
    #print(len(stream),sum_up)
    let_freq1 = freq_lst1(stream)
    inv=invariant(let_freq1)
    print(sum_up,inv)

0.026641845703125 1746
0.0111846923828125 733
0.0044708251953125 293
0.0032958984375 216
0.002471923828125 162
0.0021514892578125 141
0.00299072265625 196
0.0012359619140625 81
0.0009307861328125 61
0.0010528564453125 69
0.0007171630859375 47
0.000732421875 48
0.0006561279296875 43


# Observations

It appears that the key length that achieves a value closest to the expected frequency distribution of the english letter alphabet is a key length of 7, so we will work with this as our expected key length. This key length outputs a frequency sum of about 0.04 which is closer to the known frequency distribution sum of 0.065 for the english letter alphabet than any other frequency sum attempted. My concern, however, is that the other frequency sums are *close* to the standard frequency sum, or at least, what I think of as close. I would expect all other frequency sums to be much closer to 1/265, but this is not the case. This worries me that I made a misstep somewhere. I will keep an eye out for revision, but move forward using a key length of 7 presently.

# Update

After reviewing the cryptography lecture videos, the value 0.065 is specifically the frequency sum for *just* the lowercase english letters, so this isn't necessarily the value we are trying to get close to in our sum here.

# Part 2 - Determine the i-th byte of the Key

In [40]:
key_len = 7
poss_key_val = []

#Create an ith-byte stream: collect every 7th character, starting with i between 0 and 6
for i in range(6):
    stream = []
    k = i
    while k<mess_len:
        stream.append(int_message[k])
        k = k + key_len
    #try decrypting stream using every possible byte value B. When B is correct, all byte values will be between 32 and 127
    #AND lowercase english letter frequency sum should be close to 0.065. To check, tabulate freq q_a through q_z
    #then sum up the product of each freq q with expected frequency p for that letter. In practice, the value B that causes
    #the max of the sum will be the correct choice.
    
    for j in range(256):
        dec_stream = []
        for num in stream:
            dec_stream.append(num^j)
        if min(dec_stream)>31 and max(dec_stream)<128:
            poss_key_val.append(["stream "+str(i), "key_val: " + str(j)])
print(poss_key_val)

[]


In [4]:
eng_let_freq_text = {97: .082, 98: .015, 99: .028, 100: .043, 101: .13, 102: .022, 103: .02, 104: .061, 105: .07, 106: .0015, 107: .0077, 108: .04, 109: .024, 110: .067, 111: .075, 112: .019, 113: .00095, 114: .06, 115: .063, 116: .091, 117: .028, 118: .0098, 119: .024, 120: .0015, 121: .02, 122: .00074}
eng_let_freq_dict = {97: .078, 98: .02, 99: .04, 100: .038, 101: .11, 102: .014, 103: .03, 104: .023, 105: .086, 106: .0021, 107: .0097, 108: .053, 109: .024, 110: .067, 111: .075, 112: .019, 113: .00095, 114: .06, 115: .063, 116: .091, 117: .028, 118: .0098, 119: .024, 120: .0015, 121: .02, 122: .00074}
def sum_eng_freq(eng_let_freq):
    sum = 0
    for key in eng_let_freq:
        sum = sum + (eng_let_freq[key]**2)
    return sum

def create_stream(int_message,ith_byte,key_len):
    stream = int_message[ith_byte::key_len]
    return stream

def dec_poss(stream,j):
    dec_stream = []
    for num in stream:
        dec_stream.append(num^j)
    return dec_stream
    
poss_key_val=[]
for i in range(7):
    stream = create_stream(int_message,i,7)
    for j in range(256):
        dec_stm = dec_poss(stream,j)
        if min(dec_stm)>31 and max(dec_stm)<128:
            poss_key_val.append(["stream "+str(i), "key_val: " + str(j)])
#print(poss_key_val)


def count_dict(stream):
    count_dic={}
    for num in range(97,123):
        if num not in count_dic:
            count_dic[num] = stream.count(num)
    return count_dic

def freq_dict(count_dic, stream):
    freq_dic = {}
    for key in count_dic.keys():
        if key not in freq_dic:
            freq_dic[key] = (count_dic[key]/len(stream))
    return freq_dic

def sum_freq(freq_dic, stream, eng_let_freq_text):
    sum_up = 0
    for key in freq_dic:
            sum_up = sum_up + (freq_dic[key])*(eng_let_freq_text[key])
    return sum_up

stream = create_stream(int_message,1,7)
count_dic = count_dict(stream)
freq_dic = freq_dict(count_dic,stream)
#print(count_dic)
#print(freq_dict(count_dic,stream))
#print(sum_eng_freq(eng_let_freq_text))
#print(sum_freq(freq_dic, stream, eng_let_freq_text))

stream = create_stream(int_message,1,7)
check = []
for j in range(256):
    dec_stm = dec_poss(stream,j)
    char_cnt = count_dict(dec_stm)
    freq_cnt = freq_dict(char_cnt,dec_stm)
    sum_up_freq = sum_freq(freq_cnt, dec_stm, eng_let_freq_text)
    check.append(sum_up_freq)
print(check,max(check))

poss_key_val=[]
key = []
for i in range(7):
    stream = create_stream(int_message,i,7)
    curr_max = 0
    for j in range(256):
        dec_stm = dec_poss(stream,j)
        char_cnt = count_dict(dec_stm)
        freq_cnt = freq_dict(char_cnt,dec_stm)
        sum_up_freq = sum_freq(freq_cnt, dec_stm, eng_let_freq_text)
        if sum_up_freq > curr_max:
            curr_max = sum_up_freq
            B = j
    key.append(B)
print(key)

#decrypt by applying key again:
dec_message = ""
    
for k in range(len(int_message)):
    l = k % 7
    dec_message = dec_message + str(chr(int_message[k]^key[l]))
print(dec_message)

[0.007172985074626865, 0.006662537313432836, 0.02117820895522388, 0.01960731343283582, 0.017189552238805975, 0.017380597014925375, 0.010138358208955225, 0.00876865671641791, 0.02530134328358209, 0.021573880597014927, 0.022075671641791042, 0.008457761194029852, 0.01439820895522388, 0.014393880597014923, 0.03426567164179104, 0.01597089552238806, 0.014973134328358208, 0.015298507462686567, 0.02465970149253731, 0.028200597014925374, 0.027059701492537315, 0.02920507462686567, 0.017748358208955223, 0.019094626865671642, 0.023529104477611938, 0.029261194029850744, 0.010867910447761196, 0.03164776119402985, 0.015084328358208953, 0.019497462686567164, 0.025014179104477615, 0.04880298507462686, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 0.0, 2.835820895522388e-05, 0.0005671641791044776, 0.0018805970149253731, 0.0017910447761194028, 0.000835820895522388, 0.0029594029850746268, 0.0072835

In [101]:
print(249^186)
print(chr(249^186))

67
C
