<a href="https://colab.research.google.com/github/nadgc-CGDAN/Autenticacao-RSA/blob/main/AutenticarRSA.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [1]:
!pip install pycryptodome


Collecting pycryptodome
  Downloading pycryptodome-3.23.0-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.4 kB)
Downloading pycryptodome-3.23.0-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (2.3 MB)
[?25l   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m0.0/2.3 MB[0m [31m?[0m eta [36m-:--:--[0m[2K   [91m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m[91m╸[0m [32m2.3/2.3 MB[0m [31m79.8 MB/s[0m eta [36m0:00:01[0m[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m2.3/2.3 MB[0m [31m45.1 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: pycryptodome
Successfully installed pycryptodome-3.23.0


In [3]:
from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_OAEP
from Crypto.Signature import pkcs1_15
from Crypto.Hash import SHA256


#No contexto da criptografia com RSA em Python, "autenticar" uma mensagem significa que você quer verificar a origem da mensagem e garantir que ela não foi alterada.

# Isso é feito com assinatura digital:

#Quem envia usa a chave privada para assinar a mensagem.

#Quem recebe usa a chave pública para verificar a assinatura.



# Gerar par de chaves RSA
def generate_rsa_keys():
    key = RSA.generate(2048)
    private_key = key.export_key()
    public_key = key.publickey().export_key()
    return public_key, private_key

# Criptografar com a chave pública
def encrypt_rsa(plaintext: str, public_key: bytes) -> str:
    key = RSA.import_key(public_key)
    cipher = PKCS1_OAEP.new(key)
    ciphertext = cipher.encrypt(plaintext.encode())
    return ciphertext.hex()

# Descriptografar com a chave privada
def decrypt_rsa(ciphertext: str, private_key: bytes) -> str:
    key = RSA.import_key(private_key)
    cipher = PKCS1_OAEP.new(key)
    decrypted = cipher.decrypt(bytes.fromhex(ciphertext))
    return decrypted.decode()

# Assinar a mensagem com a chave privada
def sign_message(message: str, private_key: bytes) -> str:
    key = RSA.import_key(private_key)
    h = SHA256.new(message.encode())
    signature = pkcs1_15.new(key).sign(h)
    return signature.hex()

# Verificar assinatura com a chave pública
def verify_signature(message: str, signature_hex: str, public_key: bytes) -> bool:
    key = RSA.import_key(public_key)
    h = SHA256.new(message.encode())
    signature = bytes.fromhex(signature_hex)
    try:
        pkcs1_15.new(key).verify(h, signature)
        return True
    except (ValueError, TypeError):
        return False

# Teste
msg = "mensagem confidencial"
public_key, private_key = generate_rsa_keys()
encrypted = encrypt_rsa(msg, public_key)
decrypted = decrypt_rsa(encrypted, private_key)
signature = sign_message(msg, private_key)
is_valid = verify_signature(msg, signature, public_key)

# Mostrar resultados
print("Mensagem original:", msg)
print("Criptografada:", encrypted)
print("Descriptografada:", decrypted)
print("Assinatura:", signature)
print("Assinatura válida?", is_valid)


Mensagem original: mensagem confidencial
Criptografada: 747153b647bd3d2969a5baeff28af44fc763a3e9cd67cdc3929fcab1f5795a14ffe10011e94b48cbab777bcab5ba6a68d0443a223e60c95cd558dd5fd35d93bb6a9f438130bbe5728a871cb8f5f12c9306d485d4c9b8ebcf3f92734d9defc708b337b441183429118b792cbad95d8d7f8010b5be2e4b66986d11cf77bb56ce09b7dfc6802ca523c3b6f600bc3a3828f5acc6d535c821da508a1a8965e6dca25e5b0a55f5809e92951afa81fa24cfc79fb99c2b48c1e4cad925ba7f5387a7683ea6852923510687c356577f180cc81d090b1dc89baa44e1748929e64f28f14cec5d9b1583af1d9a6e42685c2a2eeaaf74f07b84e4aaf08c6016041e85ff720b2c
Descriptografada: mensagem confidencial
Assinatura: 4d71e960307ee0ed3843fc25a62a83fb7d88955b558f6c6606d72acbe133a4a06a1cdef0938368cf29b623b7aa8934be3b99876aeb37aa5fd36ceebbdd2c997d15b837c3de897514c67c43d761492dd6e4cea7e107d8fe39d575f3ef66ba988a961b39c256ade2ff16281e918fb9952974ebd0e8272196dc31268bc19932e6493e684dffba3d480640acb0698a185ae248902169cfba0a81717e804189ab39918a4311dd6c8ae51dabb264041a81e1d2b20bb186fe5258406f618fa7121