# Criptografia assimétrica com Python

Esse roteiro foca em uso prático de criptografia assimétrica, um importante mecanismo de segurança para mecanismos de troca de chave como o TLS e mecanismos de autenticação em VPNs.
<br>
<br>
Para isso, utilizaremos a nossa conhecida **[cryptography](https://cryptography.io/en/latest/hazmat/primitives/asymmetric/rsa/)**. Também seguiremos as recomendações de algoritmos e tamanho de chave privada (RSA e 2048 bits).
<br>
<br>
Primeiro vamos importar a biblioteca.

In [None]:
!pip install cryptography

## Gerando par de chaves

Diferente da criptografia simétrica, não geramos a chave por fora e depois aplicamos no algoritmo. Utilizamos mecanismos da própria ferramenta para gerar a chave.
<br>
<br>
Primeiro devemos gerar a chave privada, usando o seguinte comando

In [None]:
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization


private_key = rsa.generate_private_key(
    public_exponent=65537, # número primo grande, no caso, esse é o F4 (número de Fermat)
                           # considerado um ponto ótimo entre eficiência e segurança
    key_size=2048, # o tamanho da chave privada
)

# Essa parte é só para mostrar a chave privada de maneira mais legível.
# Perceba que o método também é utilizado para formatar arquivos que
# podem ser gerados/salvos utilizando a função open('private_key.pem', 'wb')

private_key_pem = private_key.private_bytes(
    # Formato de arquivo que vai ser convertido
    encoding=serialization.Encoding.PEM,
    
    # Formato de chaves privadas
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    
    # Podemos cifrar a chave privada com uma chave simétrica
    encryption_algorithm=serialization.NoEncryption()
)

print("\n".join('%s' %line.decode() for line in private_key_pem.splitlines()))

-----BEGIN RSA PRIVATE KEY-----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Para derivar a chave pública, basta executar o método `.public_key()` da chave privada.

In [None]:
public_key = private_key.public_key()

# Essa parte é só para mostrar a chave pública de maneira mais legível
public_key_pem = public_key.public_bytes(
    # Formato de arquivo que vai ser convertido
    encoding=serialization.Encoding.PEM,
    
    # Formato de chaves públicas (os formatos da chave privada não são
    # compatíveis aqui e vice versa)
    format=serialization.PublicFormat.SubjectPublicKeyInfo,
)

print("\n".join('%s' %line.decode() for line in public_key_pem.splitlines()))

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhWA5iInnkWcdlieolBs
Io1gbATF7OjPU3Vz2Rjq7jqrBnoz7TRcc/R0e6qYl6bhQPFE7i3zRUpryVHiMPtf
cP/pQueNEQImcnCUsAvT4CwerRGt4qM9U7PIGWqQiSApgPpm6bA819w6/mvXA76s
A0IrbyO2+HvxOLnUG4taFQ2Q3eZLq14v5a2x3aqKVSOOU+0MA8Vz6z3mR8/pun8o
mFxCLv+n647vzceFV8nmjShAthUcJDay2ul1dFBKl1sl1zaz/48YlfAKeRxnrsOn
b89A+fpboAyRstjieoQQNwhGaxEikn6c444aoZ2egiuFzwAHNcp7G2yoTTJW760V
+wIDAQAB
-----END PUBLIC KEY-----


## Cifrando usando chave pública

Agora que temos nosso par de chaves podemos começar a cifrar e descifrar mensagens. Se usarmos o método `.encrypt(mesage: bytes, padding: Padding)`

In [None]:
from cryptography.hazmat.primitives.asymmetric.padding import OAEP, MGF1
from cryptography.hazmat.primitives import hashes

message = b"dado que vai ser cifrado"

cipher_text = public_key.encrypt(
    message,
    # Optimal Asymmetric Encryption Padding
    OAEP(
        mgf=MGF1(algorithm=hashes.SHA256()), # Uma instância de um mask generation function. 
        algorithm=hashes.SHA256(), # Algoritmo de hashing utilizado pelo OAEP.
        label=None
    )
)

print(cipher_text)

b'd\x11\x1dh\xd4\xb6\xdc\xa5\xef\xfbWz\xa1z\x9b6\xf7\x934\xfa\xe0\xf7\x9b\xec\xc67\x95u\x86BtH\\O\x1fytLE]\x87\x02\x8e\xbb\x02\xbd\x89,W\xd8\xa0k\x9c\xe8\xa9\xfb\xd6\x1dNQ\xac\xb0\xd0\r\xf3\x7fA\xab\xc5\x7fAM*_\xd3\xdaW\xfc\xcc\xa5kt*\xd5\x03\xa4\x1f>US\x8b\xeb\xf78"R\xb5/\xe7\x12\xd2K\x03w\xc3j\xb3\xb9V\xden\xd6\xf9{h\xe7\x19\xb0\x17\xa6>\xf6;\xea\x1f\xf4\xaf\x91\xe4\xca]\xb5\xb5\xd6\xd5\xa2\xfc\x83R\x9b0\xd8\x86\xa4|uKw!\xd8XP\xeb|\x85&\x19\x9e\xb3H5iZ5q\xb3\x033\xf9\xcbE\xc6u\xee=QP\x12\x14*$\xe6-\xca\x86E\xaaO\x89\x84\xc5\xa7\xf7H&\xa9\xde[\xd6\xfbe\xb8\x91\xfb]\t\n\xdc\x9b\xa8\x00\x8c\xde\x85\x84k\xf9\xdbW\x1c\x0bLd\x1f\xffQxt\xdd\xcd\\\xf5\xec\xd3\x85\x8f\xb0\xe7\r1\xf6Tllz5\x8c\xa3\xe6\xbd\xbc\x9b\x1e5 \xbc'


## Descifrar usando chave privada

Já aprendemos a cifrar usando a chave pública, agora vamos descifrar usando a chave privada correspondente a chave pública que utilizamos.

In [None]:
plaintext = private_key.decrypt(
    cipher_text,
    OAEP(
        mgf=MGF1(algorithm=hashes.SHA256()), # Uma instância de um mask generation function. 
        algorithm=hashes.SHA256(), # Algoritmo de hashing utilizado pelo OAEP.
        label=None
    )

)

print(plaintext)

b'dado que vai ser cifrado'


# Atividade

Utilizando a ferramenta OpenSSL, crie um par de chaves e cifre sua matrícula duas vezes: uma vez usando a chave pública e outra vez com a privada. Envie as chaves e os dois conteúdos cifrados [nesse formulário](https://forms.gle/SUBzewRkfQb74YH16).

In [None]:
private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
)

private_key_pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
)

print("\n".join('%s' %line.decode() for line in private_key_pem.splitlines()))
print()

public_key = private_key.public_key()

public_key_pem = public_key.public_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PublicFormat.SubjectPublicKeyInfo,
)

print("\n".join('%s' %line.decode() for line in public_key_pem.splitlines()))
print()

from cryptography.hazmat.primitives.asymmetric.padding import OAEP, MGF1
from cryptography.hazmat.primitives import hashes

message = b"118210822"

cipher_text = public_key.encrypt(
    message,
    OAEP(
        mgf=MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)

print(cipher_text)
print()

plaintext = private_key.decrypt(
    cipher_text,
    OAEP(
        mgf=MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )

)

print(plaintext)

-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEAl/PeI7pfMkbFTVPZ2darCSNguq0F/JGOZ3MuhpXeJSylbVf3
1XSaVwt3cVPEgZUPrs/Md3NoOURYYTN/A3gOjnnvjKpM4IwtpwTpE62SJjlyCLBg
cxPZbrXF0vjnp/RT+DAkpdohZ1URswcDNAK3cgKXf8AO48Xui13j89JBpzUfCykJ
gSanqyvH1SuJbcbYRMuH3hO7WB5SKtnT03XxH+AB9+a5KQIkgCkis1w1cPtvwY9w
eCyzC6Au0LDm6qjed8pOjXecs1Fp2MFLMvv7TNEgnN+w4PUq81+60XceA3c8+LPB
r+Jk9h3+M8nAWcJ0dblEO/t66ycQ9fAzcM9rCQIDAQABAoIBAATbrXEuyIb6Et1l
vjQEDeRuzToBEloG9oRH/yeBZVO1787YcaceIVmBsQtrNkylGeL1mzlnpxNLPcu5
xdu0CNWB5rVBTdAeDmjMTbFgRFxuS/JYK6hyOYQb63VTABqmdp4B2AiCoIlftswN
AAuEWYSB7bSnzMurRkGn0+pozf2NA7U8yksnbn1YniiLFVtyozNT0SyrXBeXJoA2
GtE8YQKduWWvKw9V0eXc7YBTZORczZGmh/5rXzlskuW+AYVBqeWRv1EDlU03il5n
Ej8qd/fndQXGmIS3KvXUVb2ziZ4Ohjjpc5qsa0awH42mq4TKrF2JoI7Wljk0+vu9
RfsP4TMCgYEAu++74ESOYVOPjZ9bBm07lEg8gueMA7CPt67uVtw3BLLTf7yhokVK
D9v9mRF+5AErLWhB+iPCcf9wZuB87pJADaVJPwroG4ZRFt6dlCctA3qBbM+CTlkU
JSMf5ZhDckOOq1YQMo3XpWYcfclbnQBgNpOY91VGX1sZ8woAhdcfUJ8CgYEAzvvw
+bEWsw8iHBX4QZioEb0ro6+2Iznu/axKH7blHe7lSbLZlFRYbFrorIHzv3

In [None]:
private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
)

private_key_pem = private_key.private_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PrivateFormat.TraditionalOpenSSL,
    encryption_algorithm=serialization.NoEncryption()
)

print("\n".join('%s' %line.decode() for line in private_key_pem.splitlines()))
print()

public_key = private_key.public_key()

public_key_pem = public_key.public_bytes(
    encoding=serialization.Encoding.PEM,
    format=serialization.PublicFormat.SubjectPublicKeyInfo,
)

print("\n".join('%s' %line.decode() for line in public_key_pem.splitlines()))
print()

from cryptography.hazmat.primitives.asymmetric.padding import OAEP, MGF1
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import padding
from cryptography.hazmat.primitives import hashes
from cryptography.exceptions import InvalidSignature


message = b"118210822"
signature = private_key.sign(message, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())
print(signature)
print()

try:
  public_key.verify(
      signature = signature,
      data = message,
      padding=padding.PSS(
          mgf=padding.MGF1(hashes.SHA256()),
          salt_length=padding.PSS.MAX_LENGTH
      ),
      algorithm=hashes.SHA256()
  )
  print("It's Ok")
except InvalidSignature:
  print("It's not Ok")

-----BEGIN RSA PRIVATE KEY-----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In [1]:
!openssl genrsa -out private_key.pem 2048
!openssl rsa -in private_key.pem -outform PEM -pubout -out public_key.pem
!echo "118210822" | openssl rsautl -encrypt -pubin -inkey ./public_key.pem > file.txt.enc
!openssl rsautl -decrypt -in ./file.txt.enc -out ./file_dec.txt -inkey ./private_key.pem

!echo "118210822" | openssl dgst -sha256 -sign ./private_key.pem -out file.txt.signature
!echo "118210822" | openssl dgst -sha256 -verify public_key.pem -signature file.txt.signature 

Generating RSA private key, 2048 bit long modulus (2 primes)
............................................+++++
.....+++++
e is 65537 (0x010001)
writing RSA key
Verified OK
