In [1]:
from __future__ import print_function
from base64 import b64encode, b64decode
import hashlib
import os
from binascii import hexlify, unhexlify
from cryptography.hazmat.primitives.ciphers.aead import AESGCM
import random
from Crypto.Protocol import KDF
import datetime
import time
from bluetooth import *


def deriveKey(passphrase, salt):
    return hashlib.pbkdf2_hmac("sha256", passphrase.encode("utf8"), salt, 1000)


def encrypt(key, plaintext) :
    aes = AESGCM(key)
    iv = os.urandom(12)
    plaintext = plaintext.encode("utf8")
    ciphertext = aes.encrypt(iv, plaintext, None)
    return "%s-%s-%s" % (hexlify(salt).decode("utf8"), hexlify(iv).decode("utf8"), hexlify(ciphertext).decode("utf8"))


def decrypt(key, ciphertext):
    salt, iv, ciphertext = map(unhexlify, ciphertext.split("-"))
    aes = AESGCM(key)
    plaintext = aes.decrypt(iv, ciphertext, None)
    return plaintext.decode("utf8")

def send_msg(sock, msg):
    # Prefix each message with a 4-byte length (network byte order)
    msg = struct.pack('>I', len(msg)) + msg
    sock.send(msg)

def recv_msg(sock):
    # Read message length and unpack it into an integer
    raw_msglen = recvall(sock, 4)
    if not raw_msglen:
        return None
    msglen = struct.unpack('>I', raw_msglen)[0]
    # Read the message data
    return recvall(sock, msglen)

def recvall(sock, n):
    # Helper function to recv n bytes or return None if EOF is hit
    data = b''
    while len(data) < n:
        packet = sock.recv(n - len(data))
        if not packet:
            return None
        data += packet
    return data

def utf8len(s):
    return len(s.encode('utf-8'))

#IOT Device predefined params
IDd = "id_device_1"
deviceModel = "device_1"
currentFirmware = "v1.4.2"
Urld = "localhost:7002"
blockID = "f2da93ab5b2d53b2b3d4a4c1409735b47aa89946eae77bcfb3917e2ed53c9bfb"
blockDate = "19-October-2018"
blockValue = "current_update=v1.3.3;;url=https://test.com/download/v1.3.3"
bobSecret = 15      # b

server_socket=BluetoothSocket( RFCOMM )
server_socket.bind(("", 3 )) #binding the socket to channel 3
server_socket.listen(1) #listen to the socket, equals true
client_socket, address = server_socket.accept() #start listening
startProt = time.time()
start = time.time()
data = client_socket.recv(4096) #receive the package
end = time.time()
print("Time for receiving M1: "+str(end-start))
if data != "None":
    array_data = data.split(',')
    if len(array_data) != 6 :
        print("M1 params length invalid")
        client_socket.close()
        server_socket.close()
        exit()
    sid = array_data[0]
    IDg = array_data[1]
    sharedBase = long(array_data[2])
    sharedPrime = long(array_data[3])
    A = long(array_data[4])
    hashed = array_data[5]
    salt = sid
    
    #verify the hash
    m1 = sid+","+IDg+","+str(sharedBase)+","+str(sharedPrime)+","+str(A)
    print(hashlib.sha256(b64encode(m1)).hexdigest())
    if(hashlib.sha256(b64encode(m1)).hexdigest() == hashed):
        client_socket.close()
        server_socket.close()
        print("M1 verified")
        
        #calculate the session_key
        session_key = str((A**bobSecret) % sharedPrime)
        key = deriveKey(session_key, sid)
        print("Derived key: "+str(b64encode(key)))
        
        #prepare m2
        B = (sharedBase ** bobSecret) % sharedPrime
        #prepare the data to be sent
        m2 = sid+","+IDd+","+str(B)+","+blockID+","+Urld
        digest = hashlib.sha256(b64encode(m2)) 

        M2 = m2+","+digest.hexdigest()
        print("M2 size in Byte"+str(utf8len(M2)))
        #run the client to send data####################################################
        # Create the client socket
        client_socket=BluetoothSocket( RFCOMM )
        client_socket.connect(("84:EF:18:46:C8:CC", 3)) #connect to server on spesific mac address and channel
        
        start = time.time()
        client_socket.send(M2)
        end = time.time()
        print("Time for sending M2: "+str(end-start))
        client_socket.close()
        
        
        #run the server listener############################################################
        server_socket=BluetoothSocket( RFCOMM )
        server_socket.bind(("", 3 ))
        server_socket.listen(1)
        client_socket, address = server_socket.accept()
        start = time.time()
        data = client_socket.recv(4096)
        end = time.time()
        print("Time for receiving M3: "+str(end-start))
        data = b64decode(data)
        if data != "None":
            M3 = decrypt(key, data)
            block = M3
            if blockDate not in block:
                print("block invalid ")
                client_socket.close()
                server_socket.close()
                exit()
            if blockValue not in block:
                print("block invalid")
                client_socket.close()
                server_socket.close()
                exit()
            print("Block Valid")
            client_socket.close()
            server_socket.close()
            
            #run the client to send data####################################################
            # Create the client socket
            client_socket=BluetoothSocket( RFCOMM )
            client_socket.connect(("84:EF:18:46:C8:CC", 3))
            m4 = deviceModel+","+currentFirmware
            M4 = b64encode(encrypt(key, m4))
            print("M4 size in Byte"+str(utf8len(M4)))
            start = time.time()
            client_socket.send(M4)
            end = time.time()
            print("Time for sending M4: "+str(end-start))
            client_socket.close()
            
             #run the server listener############################################################
            server_socket=BluetoothSocket( RFCOMM )
            server_socket.bind(("", 3 ))
            server_socket.listen(1)
            client_socket, address = server_socket.accept()

            start = time.time()
            data = client_socket.recv(4096)
            end = time.time()
            print("Time for receiving M5: "+str(end-start))
            data = b64decode(data)
            if data != "None":
                M5 = decrypt(key, data)
                end = time.time()
                print("Time for IOT to run bluetooth protocol: "+str(end-startProt))
                print("PROCESS DONE, DOWNLOADING THE REQUIRED UPDATE FROM", M5)
    else:
        print("M1 not verified")
        client_socket.close()
        server_socket.close()
        exit()
        
client_socket.close()
server_socket.close()
exit()

Time for receiving M1: 0.0120000839233
637c432d9d74595009a1e1ec8adc4329c3c49b5d063d9e9c79b071f9da937ea3
M1 verified
Derived key: WmbqEaj3LsWqX4uufZ1+ck5Qx2nDuiDZ3oKOINToizM=
M2 size in Byte181
Time for sending M2: 0.0
Time for receiving M3: 0.0170001983643
Block Valid
M4 size in Byte168
Time for sending M4: 0.0
Time for receiving M5: 0.0150001049042
Time for IOT to run bluetooth protocol: 0.487999916077
PROCESS DONE, DOWNLOADING THE REQUIRED UPDATE FROM https://test.com/download/v1.4.3



In [2]:
# # Begin
# print( "Publicly Shared Variables:")
# print( "    Publicly Shared Prime: " , sharedPrime )
# print( "    Publicly Shared Base:  " , sharedBase )
 
# # Alice Sends Bob A = g^a mod p
# A = (sharedBase**aliceSecret) % sharedPrime
# print( "\n  Alice Sends Over Public Chanel: " , A )
 
# # Bob Sends Alice B = g^b mod p
# B = (sharedBase ** bobSecret) % sharedPrime
# print( " Bob Sends Over Public Chanel: ", B )
 
# print( "\n------------\n" )
# print( "Privately Calculated Shared Secret:" )
# # Alice Computes Shared Secret: s = B^a mod p
# aliceSharedSecret = (B ** aliceSecret) % sharedPrime
# print( "    Alice Shared Secret: ", aliceSharedSecret )
 
# # Bob Computes Shared Secret: s = A^b mod p
# bobSharedSecret = (A**bobSecret) % sharedPrime
# print( "    Bob Shared Secret: ", bobSharedSecret )
import time
time.time()

1543943565.431