## Public Key Cryptography

### Public Key Blueprint

The keys that are used to encrypt and decrypt are different. 
* Anyone who wants to be a receiver needs to *publish* a key (public key).
* Anyone who wants to be a receiver needs a unique decryption key (private key).

It should not be possible to extract plaintext with the cipher text and public key. A private key must be presented to decrypt the cipher text.<br>

**Important question**:<br>
Do public key cipher systems solve all the problems of symmetric key cipher systems?<br>

**The answer is NO**. There are still issues faced in symmetric key cipher systems. For example, key exchange problems or trust issues when authenticating etc.<br>


#### One-Way Functions

They are **easy to implement** and **difficult to reverse.**

**OWFs:**
1. *Multiplying two primes*:<br>
    It is believed to be a one-way function. The reason we say "believed" is that no one has been able to prove that it is hard to factorise. If someone one day does find an efficient way of factorising, then it would cause major problems for encryption algorithms using this technique.
2. *Modular exponentiation*:<br>
    Exponentiation is described as raising a to the power of b. In other words, it is multiplying **a** by itself **b** times. Modular exponentiation is computing:
        
        a^b mod n
        
    It is again **easy to implement** but **hard to crack**.
3. Modular square roots
    (square root of a number) modulo some other number

### ElGamal

* Let *p* be a large prime.
* Select number *g*, which must be a primitive element modulo *p*.
* Select a private key x, which can be any number bigger than *1* and smaller than *p-1*
* Compute public key y from x, p and g
        y = g^x mod p


**ElGamal Example**:<br>
*Encryption*:<br>
Let *p* = 23, primitive *g* = 11, private key *x* = 6

    11^6 (mod 23)
    = 9

Public key is 9<br>
Private key is 6<br>

There are two ciphers generated C_1 = g^k mod p and C_2 = M x y^k mod p<br>

Encrypt M = 10 using public key 9

1. Generate random number k = 3
2. Compute 

        C_1 = 11^3 mod 23 = 20
        C_2 = 10 x 9^3 mod 23 = 22
        C = (20, 22)

*Decryption*:<br>
1. The receiver use their private key x to transform C_1
        
        C_1^x = (g^k)^x mod p

2. Then, divide this number by C_2 to get M.

        20^6 = 16 mod 23
        22 / 16 = 10 mod 23
        
        Plaintext = 10


#### Pros and Cons of ElGamal

ElGamal does not rely on factorisation being hard whereas it requires a random number generator and applies message expansion.

#### Diffie-Helman

Diffie-Helman is **not** an encryption algorithm. It is rather a key exchange method. It helps us exchange public (non-secret) information to obtain a shared secret.<br>

**What makes it useful?**:<br>
* Resulting shared secret cannot be computed without the cooperation of both parties.
* A third party cannot deduce the shared secret.

DH Key Exchange assumes that:
1. There is a public key cipher system
2. There is a public function which takes two parameters F(x,y) and returns a third number.

Diffie-Helman key exchange most commonly use ElGamal keys and a very simple function F.<br>

#### Summary
* RSA is generally favored over ElGamal for practical purposes. They both involve modular exponentiation.
* Public key systems solve the problem of distributing symmetric keys with one of the authenticating public keys