**Name:** **Syed Muhammad Naqi Raza**

**Registration Number:** **2022574**

**Faculty:** **Cyber Security**

**Course:** **CY-312**



**Pretty Good Privacy(PGP):**

Pretty Good Privacy (PGP) is a cryptographic protocol designed for secure communication and data protection. It combines various encryption and hashing techniques to ensure:



*   **Confidentiality:** Messages are encrypted using the recipient's public key, so only the recipient can decrypt them using their private key.
*   **Authentication:** Digital signatures verify the sender's identity, ensuring the message comes from the claimed source.
*   **Integrity:** Hashing ensures the message is not altered during transmission.

PGP is widely used in email encryption, file protection, and digital communication to provide privacy and security.





**Explanation of Libraries/Modules**


In [8]:
# Importing necessary libraries
import rsa  # For generating RSA key pairs, encryption, and decryption

**1- rsa:**


*   Used for generating RSA key pairs (public and private keys).
*   Provides methods for encrypting, decrypting, signing, and verifying data.
*   Core of the PGP algorithm to ensure secure communication and authenticity.



In [9]:
import hashlib  # For creating digital signatures using hash functions

**2- hashlib:**



*   Provides hash functions like SHA-256.
*    Used to create a digest of the message for generating digital signatures.
*   Ensures data integrity by hashing the message.





In [10]:
import base64  # For encoding and decoding data for secure transmission

**3- base64:**


*   Encodes and decodes data in Base64 format for secure transmission.
*   Helps ensure that encrypted and signed data can be safely sent over text-based protocols like email.



**Steps in the Code:**

**Step 1:**

The generate_keys() function creates a pair of cryptographic keys using the RSA algorithm:


*   **Public Key:** Used for encrypting messages or verifying digital signatures. This key can be shared publicly.
*   **Private Key:** Used for decrypting messages or signing data. This key is kept secret by the owner.

The function uses rsa.newkeys(2048) to generate a 2048-bit RSA key pair, balancing strong security with computational efficiency. It returns both keys for secure communication or data authentication.




In [3]:
# Step 1: Generate RSA Key Pairs
def generate_keys():
    """
    Generate a public-private key pair using the RSA algorithm.
    Returns:
        (public_key, private_key): A tuple containing the generated RSA keys.
    """
    public_key, private_key = rsa.newkeys(2048)  # Generate 2048-bit RSA keys
    return public_key, private_key

**Step 2:**

The encrypt_message() function secures a plaintext message by encrypting it using the recipient's public key:

**Input:**


*   **message:** The plaintext message to be encrypted.
*   **public_key:** The recipient's public RSA key used for encryption.

**Process:**


*   The message is converted to bytes using .encode().
*   It is encrypted with rsa.encrypt(), ensuring only the recipient (who has the private key) can decrypt it.
*   The encrypted data is encoded in Base64 using base64.b64encode() for safe transmission over text-based systems.

**Output:**

*   The encrypted message is returned as a Base64-encoded string.




In [4]:
# Step 2: Encrypt Message
def encrypt_message(message, public_key):
    """
    Encrypt a message using the recipient's public key.
    Args:
        message (str): The plaintext message to encrypt.
        public_key: The recipient's public RSA key.
    Returns:
        str: The encrypted message in base64 format.
    """
    encrypted_message = rsa.encrypt(message.encode(), public_key)
    return base64.b64encode(encrypted_message).decode()  # Encode to base64 for transmission

**Step 3:**

The decrypt_message() function decodes and decrypts an encrypted message using the recipient's private key:

**Input:**

*   **encrypted_message:** The Base64-encoded string of the encrypted message.
*   **private_key:** The recipient's private RSA key for decryption.

**Process:**

*   **Decode Base64:** Converts the Base64 string back into its original encrypted byte format using base64.b64decode().
*   **Decrypt:** Decrypts the byte data using rsa.decrypt(), which applies the recipient's private key.
*   **Decode to String:** Converts the decrypted byte data back into a readable plaintext message.

**Output:**

*   The original plaintext message is returned.

In [5]:
# Step 3: Decrypt Message
def decrypt_message(encrypted_message, private_key):
    """
    Decrypt a message using the recipient's private key.
    Args:
        encrypted_message (str): The encrypted message in base64 format.
        private_key: The recipient's private RSA key.
    Returns:
        str: The decrypted plaintext message.
    """
    encrypted_data = base64.b64decode(encrypted_message)  # Decode base64
    decrypted_message = rsa.decrypt(encrypted_data, private_key).decode()  # Decrypt and decode
    return decrypted_message

**Step 4:**

The sign_message() function creates a digital signature for a message using the sender's private key:

**Input:**

*   **message:** The plaintext message to be signed.
*   **private_key:** The sender's private RSA key for signing.

**Process:**


*   **Hash the Message:** Generates a SHA-256 hash of the message using hashlib.sha256(). This ensures data integrity.
*   **Sign the Hash:** Uses rsa.sign() to encrypt the hash with the sender's private key, creating the digital signature.
*   **Base64 Encode:** Encodes the signature into a Base64 string using base64.b64encode() for secure transmission.

**Output:**

The Base64-encoded digital signature is returned, which ensures the message's authenticity and integrity.









In [6]:
# Step 4: Generate Digital Signature
def sign_message(message, private_key):
    """
    Generate a digital signature for a message using the sender's private key.
    Args:
        message (str): The plaintext message to sign.
        private_key: The sender's private RSA key.
    Returns:
        str: The digital signature in base64 format.
    """
    message_hash = hashlib.sha256(message.encode()).digest()  # Create a SHA-256 hash of the message
    signature = rsa.sign(message_hash, private_key, 'SHA-256')  # Sign the hash
    return base64.b64encode(signature).decode()  # Encode to base6

The provided code demonstrates a PGP (Pretty Good Privacy) workflow, showcasing how encryption, decryption, signing, and signature verification work:

**Key Generation:**

RSA key pairs are generated for both the sender and the recipient using generate_keys().

**Encryption:**

*   The sender encrypts the plaintext message with the recipient's public key using encrypt_message().
*   The encrypted message ensures confidentiality and is printed.

**Decryption:**

*   The recipient decrypts the encrypted message using their private key with decrypt_message().
*   The original plaintext message is recovered and printed.

**Signing:**

*   The sender signs the plaintext message with their private key using sign_message().
*   The generated digital signature ensures authenticity and is printed.

**Signature Verification:**

*   The recipient verifies the sender's signature using the sender's public key with verify_signature().
*   If the signature matches, it confirms the sender's identity and message integrity, and a validity status is printed.

This demonstration ensures:

*   **Confidentiality:** Encryption protects the message.
*   **Authenticity and Integrity:** Signing and verification confirm the sender and ensure the message is untampered.















In [11]:

# Demonstration of the PGP Algorithm
if __name__ == "__main__":
    # Generate key pairs for sender and recipient
    sender_public, sender_private = generate_keys()
    recipient_public, recipient_private = generate_keys()

    # Original message
    message = "Hello, this is a PGP implementation demo."

    # Step 1: Encrypt the message with the recipient's public key
    encrypted_message = encrypt_message(message, recipient_public)
    print("Encrypted Message:", encrypted_message)

    # Step 2: Decrypt the message with the recipient's private key
    decrypted_message = decrypt_message(encrypted_message, recipient_private)
    print("Decrypted Message:", decrypted_message)

    # Step 3: Sign the message with the sender's private key
    signature = sign_message(message, sender_private)
    print("Digital Signature:", signature)

    # Step 4: Verify the signature with the sender's public key
    is_valid = verify_signature(message, signature, sender_public)
    print("Signature Valid:", is_valid)

Encrypted Message: lDyH1FDjExZeznwkY5YMMk9khTDUiCE64KM1GAHua8EB0EcjqobcMrL4Bp9Bk5z1RVbmvekUXuYByk1isbWxm6InaL9PiwyFroeB2R/WZ3W5PwDzYd3lkvWRmzKU/b3u3uYGT3DppOjzLDDZvzlxyR3RE6NaNU74LGWzjOhLZ0zr8dYC07A4Dtk/HcqxFqiDJ+i2gDEt9aGbumOHJdu6YpB7wf0rpzD9A7FxasgZFYUlFbKAvJfvTj0wqSel8dYetZ9h4ccDrR+utjhpcowApUBHiMbq1h1U1PvTCRph+e6ap8BBfFVbNb+fiNPchiZcOunKpGjC8vse0VOXfRGKAA==
Decrypted Message: Hello, this is a PGP implementation demo.
Digital Signature: Ez1it4opfGF/JqcElV8dQ9AmocHuBs51zfFFcqYYqE9lfEGZm16kEndqUjz8ArLET3aZ7n1fq/zFuI1I5vkOSjSpRLMT54HEz7vc++RAWlJYsszvbpWnbQZHTacipEMrIRsqYwzwY/G8VbgVuzZi0TMeilZNIF95B0spVciLlwTppYEcVl0bJZ+xspRTVForzy63NzLjA9VJxXmLMceUGzXfYm+bZSJP8cJ9UEzyxUCWdRFUnVOkANb5ZY21gHdNzutVbGLH/5yAGduRx8MoQFNdSabPw63zbhcpPQu+ACrnhOh8YOOkRu+jXG+T5KjMNurKuy5s9BTDWZ23sDjfOA==
Signature Valid: True
