In [1]:
import tkinter as tk
from tkinter import scrolledtext, messagebox
from cryptography import x509
from cryptography.hazmat.backends import default_backend
from datetime import datetime, timedelta
from cryptography.hazmat.primitives import serialization



In [4]:


def generate_certificate(name):
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=2048,
        backend=default_backend()
    )

    public_key = private_key.public_key()

    subject = issuer = x509.Name([
        x509.NameAttribute(x509.oid.NameOID.COMMON_NAME, name),
    ])

    builder = x509.CertificateBuilder().subject_name(
        subject
    ).issuer_name(
        issuer
    ).public_key(
        public_key
    ).serial_number(
        x509.random_serial_number()
    ).not_valid_before(
        datetime.utcnow()
    ).not_valid_after(
        datetime.utcnow() + timedelta(days=365)
    ).add_extension(
        x509.BasicConstraints(ca=True, path_length=None), critical=True,
    ).add_extension(
        x509.SubjectKeyIdentifier.from_public_key(public_key), critical=False,
    ).add_extension(
        x509.KeyUsage(
            digital_signature=True, key_encipherment=True, content_commitment=True,
            data_encipherment=True, key_agreement=True, encipher_only=True, decipher_only=True
        ), critical=True
    )

    certificate = builder.sign(private_key, hashes.SHA256(), default_backend())

    # Serialize private key and certificate
    private_key_pem = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.TraditionalOpenSSL,
        encryption_algorithm=serialization.NoEncryption()
    ).decode()

    certificate_pem = certificate.public_bytes(serialization.Encoding.PEM).decode()

    return private_key_pem, certificate_pem

def eap_tls_authentication(client_certificate, server_certificate):
    client_cert = x509.load_pem_x509_certificate(client_certificate.encode(), default_backend())
    server_cert = x509.load_pem_x509_certificate(server_certificate.encode(), default_backend())

    if not is_certificate_valid(client_cert) or not is_certificate_valid(server_cert):
        raise Exception("Certificate validation failed.")

    print("EAP-TLS Authentication Successful!")

def is_certificate_valid(certificate):
    return certificate.not_valid_after > datetime.utcnow() > certificate.not_valid_before

class EapTlsApp:
    def __init__(self, root):
        self.root = root
        self.root.title("EAP-TLS Authentication Simulation")

        # Create labels
        self.client_label = tk.Label(root, text="Client Certificate:")
        self.server_label = tk.Label(root, text="Server Certificate:")

        # Create scrolled text widgets
        self.client_certificate_text = scrolledtext.ScrolledText(root, width=50, height=10)
        self.server_certificate_text = scrolledtext.ScrolledText(root, width=50, height=10)

        # Create authentication button
        self.authenticate_button = tk.Button(root, text="Authenticate", command=self.authenticate)

        # Pack widgets
        self.client_label.pack(pady=5)
        self.client_certificate_text.pack(pady=5)
        self.server_label.pack(pady=5)
        self.server_certificate_text.pack(pady=5)
        self.authenticate_button.pack(pady=10)

    def authenticate(self):
        client_certificate = self.client_certificate_text.get("1.0", "end-1c")
        server_certificate = self.server_certificate_text.get("1.0", "end-1c")

        try:
            eap_tls_authentication(client_certificate, server_certificate)
            messagebox.showinfo("Authentication", "EAP-TLS Authentication Successful!")
        except Exception as e:
            messagebox.showerror("Authentication Error", f"Authentication failed: {e}")

def main():
    root = tk.Tk()
    app = EapTlsApp(root)
    root.mainloop()



In [None]:
if __name__ == "__main__":
    main()
