# Cryptography: Symmetric Ciphers

This series is intended to be a layperson friendly explantion of the basics of cryptography. 

As with anything complex, there is jargon that makes the topic seem inaccessible. You'll see the most import terms and their defintions in bold throughout this walk through. Like this! 
* **term** *definition*

Also! we will give you some extra info in blockquotes, like this 
> This info is good to know but dont worry no one is testing you on it 

Finally! There is no better way to learn then getting your hands dirty! We will ease you in by giving you 
```code snippets```
 but it will soak in a little better if you type it yourself instead of copying and pasting. 

## What is "cryptography"? 

The word "cryptography" comes from a combination of the Ancient Greek words kryptós for “hidden or secret” and graphein which is “to write”. At its most basic it is the ability to send and receive a private message. The *key* is that you want your recipient and only your recipient to be able to read the message. Therefore, in most cases cryptography is a 2-way street in hiding AND unhiding a communicated message.


## What is a cipher?

A cipher is a **cryptographic algorithm** that provides a way to encrypt as well as decrypt data. This allows someone to jumble up some info, send it safely without revealing the content, and have someone at the other end un-jumble it to see the original info.

But it’s useless if we can’t control who is able to decrypt the message. Fortunately, there is another input to a cipher – the **key**! This is the small piece of information that is necessary in order to encrypt and decrypt information with a cipher. Some ciphers require other small details as well such as an initialization vector, but we are not going to focus on those for now.

* **Cryptographic Algorithm** *is just a fancy term for jibberish instructions. It’s what we call the ruleset that is used to take data from one state to another and (most of the time) back.*

* A **key** *is a piece of information used as input into an encryption or decryption algorithm in addition to the data that needs to be transformed. The data cannot properly be transformed without the proper key data.*


## Let's make it easy!

In this walk through we will use the **Cryptographic Algorithms** implemented in the Python Cryptography Toolkit (pycrypto). Pycrypto is a collection of both secure hash functions (such as SHA256 and RIPEMD160), and various encryption algorithms (AES, DES, RSA, ElGamal, XOR, etc.). But mostly it means we don't have to code the hard stuff from scratch. 


## Getting Started

To use **symmetric ciphers** like AES, we put the **plaintext** and the **key** into the algorithm, tell the algorithim which direction we want to go (in this case encrypt), and it spits out **ciphertext** or encrypted message. 

* **Plaintext** *is your message, the content to be communicated and is understandable and readable.*
* **Ciphertext** *is your hidden message, the content after it has been hidden (encrypted) and is no longer understandable.*
* **Symmetric Ciphers** *are a family of ciphers that uses the same key to encrypt as it does to decrypt; these are sometimes referred to as secret key algorithms because if the key is the same on both sides, it needs to be kept secret so that not just anyone can decrypt it.*

Lets begin by importing the **symmetric cipher** AES. 

Type the following into the code box below:

```from Crypto.Cipher import AES```

In [1]:
from Crypto.Cipher import AES

We will use the **symmetric ciphers** AES to encrypt and decrypt. It requires we declare a **key** and **plaintext** variable, but also the *initialization vector (IV)* as another piece of input as well as what *mode* we want the AES algorithim to run in. We won't go into any detail here about IV or mode, for now you just need to know its required for the encryption to work. 

> A couple of well-known symmetric ciphers are AES and 3DES. AES stands for Advanced Encryption Standard and 3DES is also known as TDEA, Triple Data Encryption Algorithm. We will use AES in our examples with python below, since it is widely known.



### Lets declare our required variables!

Type the following into the code box below:

```key = b"testkey,testkey!"
plaintext = b"cryptography yay"
iv = b"randomIVrandomIV"
mode = AES.MODE_CBC
```

In [2]:
key = b"testkey,testkey!"
plaintext = b"cryptography yay"
iv = b"randomIVrandomIV"
mode = AES.MODE_CBC

To use the AES **symetric cipher** we need to intilaize a cipher object. All that means is we give AES a name so we can use it in our code, we will call ours encrypt_tool.

Typing the following into the code box below:

```encrypt_tool = AES.new(key, mode, iv)```

In [3]:
encrypt_tool = AES.new(key, mode, iv)

Now that we have intialized the cipher object lets use it to encrypt the **plaintext** to get the **ciphertext**

Type the following into the code box below:

```ciphertext = encrypt_tool.encrypt(plaintext)
```

In [4]:
ciphertext = encrypt_tool.encrypt(plaintext)

Lets look at our results!

Type the following into the code box below:

```print("AES encrypted data: ")
print(ciphertext)
```

In [5]:
print("AES encrypted data: ")
print(ciphertext)

AES encrypted data: 
b'G\x9a\xed\xadAp\xf4\x94\x1cx\xce\x9d\xc2\xf6\xccL'


### Okay now we have gobbledygook, lets get our message back!

Like before we will intialize a new instance of the cipher object.
* remember you need the same key, iv and mode to get your message back!

Typing the following into the code box below:

```decrypt_tool = AES.new(key, mode, iv)
```

In [6]:
decrypt_tool = AES.new(key, mode, iv)

Now that we have intialized the decryption object lets use it to decrypt the **ciphertext** to get the **plaintext**

Type the following into the code box below:

```decrypted_plaintext = decrypt_tool.decrypt(ciphertext)
```

In [7]:
decrypted_plaintext = decrypt_tool.decrypt(ciphertext)

Lets look at our results!

Type the following into the code box below:

```print("AES decrypted data: ")
print(decrypted_plaintext)
```

In [8]:
print("AES decrypted data: ")
print(decrypted_plaintext)

AES decrypted data: 
b'cryptography yay'


# You did it! 
## You have encrypted and decrypted!


# Messages are fun, but  is that it? Can we encrypt something else?

## YES! Encryption/decryption will work on **any** data

When you use a secure protocol on the internet it encrypts *everything* you share not just the text you send so lets look at how that might work on other data like a photo or picture. 

Before we get started lets look at the original **plaintext** image. You should be able to find a 'Tines.png' image in the same folder this notebook is in by returning to the file tree. You can click on the jupyter logo to get there. 

---

Welcome back! Did you see the picture? Good lets see what we can do with it!

This time we went ahead and put it all together and provided the code below but read through it to see parts of the code we used above! 

Do you recognize some of the same steps we did before? Can you find the function that encrypts? The function that decrypts?

When you are done reviewing run the code block:


In [1]:
from Crypto.Cipher import AES #Using Pycrypto so we dont have to code the hard stuff
import os, random, struct
from PIL import Image

#Declare or variables required by the AES cryptographic algoritim
key = b"testkey,testkey!"
plaintext = b"cryptography yay"
iv = b"randomIVrandomIV"
mode = AES.MODE_CBC

# AES CBC Encryption
def aes_cbc_encrypt(key, iv, data, mode=AES.MODE_CBC):
    aes_encrypt = AES.new(key, mode, iv) #Intilaize a encryption object
    new_data = aes_encrypt.encrypt(data) #Encrypt your data or plaintext
    return new_data

# AES CBC Decryption
def aes_cbc_decrypt(key, iv, data, mode=AES.MODE_CBC):
    aes_decrypt = AES.new(key, mode, iv) #Intilaize a decryption object
    new_data = aes_decrypt.decrypt(data) #Decrypt your data or ciphertext
    return new_data

# AES requires that plaintexts be a multiple of 16, so we add padding to data as needed
def pad(data):
    return data + b"\x00"*(16-len(data)%16) 

# Maps the Red/Green/Blue or RGB of picture 
# So we can create a picture from the resulting encrypted/decrypted data
def convert_to_RGB(data):
    r, g, b = tuple(map(lambda d: [data[i] for i in range(0,len(data)) if i % 3 == d], [0, 1, 2]))
    pixels = tuple(zip(r,g,b))
    return pixels

def encrypt_image(filename, filename_out=None ):
    format = "BMP"
    
    # Opens image and converts it to RGB format for PIL (python library)
    # Not prefect so you will see some data loss
    im = Image.open(filename)
    data = im.convert("RGB").tobytes() 
 
    # Since we will pad the data to satisfy AES's multiple-of-16 requirement, 
    # we will store the original data length and "unpad" it later.
    original = len(data) 
 
    # Encrypts using AES
    new = convert_to_RGB(aes_cbc_encrypt(key, iv, pad(data))[:original]) 
    
    #create a file name to save new data as if not set 
    if not filename_out:
        filename_out = os.path.splitext(filename)[0]+'.encoded'
        
    
    # Create a new PIL Image object and save the old image data into the new image.
    im2 = Image.new(im.mode, im.size)
    im2.putdata(new)
    
    #Save image
    im2.save(filename_out+"."+format, format)
    
def decrypt_image(filename, filename_out=None ):
    format = "BMP"
    
    # Opens image and converts it to RGB format for PIL (python library)
    im = Image.open(filename)
    data = im.convert("RGB").tobytes() 
 
    # Since we will pad the data to satisfy AES's multiple-of-16 requirement, we will store the original data length and "unpad" it later.
    original = len(data) 
 
    # Decrypts using AES
    new = convert_to_RGB(aes_cbc_decrypt(key, iv, pad(data))[:original]) 
    
    #create a file name out if not set 
    if not filename_out:
        filename_out = os.path.splitext(filename)[0]+'.decoded'
        
    
    # Create a new PIL Image object and save the old image data into the new image.
    im2 = Image.new(im.mode, im.size)
    im2.putdata(new)
    
    #Save image
    im2.save(filename_out+"."+format, format)


Now that we have all our functions and variables declared lets use the encrypt_image function to encrypt Tines.png

Type the following into the code box below:

``` encrypt_image('Tines.png')```

### Go Look at the encrypted image! Its got a new name!

Is it recognizable? is it jibberish just like when we encrypted text?

### OMG?!? Can we get it back?
Of course we can! if we use the same key, iv and mode!

Type the following into the code box below:

``` decrypt_image('Tines.encoded.BMP')```

## Congrats you did it!

Well done!