### Crypto Basics

You need to install pycrypto if not previously installed:
```
!pip install pycryptodome
```
See: https://www.pycryptodome.org/

### Public and Private Key

RSA is a type of algorithm for public key encryption.

In [None]:
from Crypto.PublicKey import RSA
key = RSA.generate(2048) #sample do not use this method in actual use

Write the keys to file using PEM format. PEM stands for Privacy Enhanced Mail; it simply indicates a base64 encoding with header and footer lines.

In [None]:
#private key
with open('private.pem','wb') as f:
    f.write(key.exportKey('PEM'))

In [None]:
#public key
with open('public.pem','wb') as f:
    f.write(key.publickey().exportKey('PEM'))

Read back the keys

In [None]:
with open('private.pem') as f:
    key = RSA.importKey(f.read())
print(key.exportKey('PEM'))

In [None]:
pubkey = key.publickey()
print(pubkey.exportKey('PEM'))

Notes: Bytes literals are always prefixed with 'b' or 'B'; they produce an instance of the bytes type instead of the str type. They may only contain ASCII characters; bytes with a numeric value of 128 or greater must be expressed with escapes.



### Encrypt & Decrypt 
Using Public Key and Private Key (Assymetric Encryption)

`PKCS#1 OAEP` is an asymmetric cipher based on RSA and the OAEP padding. `PKCS#1 OAEP` does not guarantee authenticity of the message you decrypt. Since the public key is not secret, everybody could have created the encrypted message. Asymmetric encryption is typically paired with a digital signature.

Encrypt with Public Key

In [None]:
from Crypto.Cipher import PKCS1_OAEP, PKCS1_v1_5
from Crypto.PublicKey import RSA

message = b'You can attack now!'
key = RSA.importKey(open('public.pem').read())
cipher = PKCS1_OAEP.new(key)
ciphertext = cipher.encrypt(message)
ciphertext

Decrypt with Private Key

In [None]:
key = RSA.importKey(open('private.pem').read())
cipher = PKCS1_OAEP.new(key)
message = cipher.decrypt(ciphertext)
message

### Try it yourself

Use the private key to encrypt and decrypt with the public key.

### HASH

It is a one-way function, that is, a function which is practically infeasible to invert. 

Create a hash object using :
```
    hashlib.sha256()
    ```
You can now feed this object with bytes-like objects (normally bytes) using the update() method to calculate its hash. At any point you can ask it for the digest (the output of the hash) of the concatenation of the data fed to it so far using the digest() or hexdigest() methods.

In [None]:
from Crypto.Hash import SHA256
h=SHA256.new()
m=b'hello i am ok'
h.update(m)
print(h.hexdigest())

In [None]:
h2=SHA256.new()
m=b'hello i am ok' #add a full after it 
h2.update(m)
print(h2.hexdigest())

### Try it yourself

Compare the hash digest of two nearly the same message text, i.e difference by one full stop. Are you able to deduce the difference in the text by looking a the hash digest?

### Digital Signature


Digital signatures are based on public key cryptography: the party that signs a message holds the private key, the one that verifies the signature holds the public key.

Signing the message creates two documents: 
1. the original message
2. the signature (which uses the private key to encrypt the hash digest of the message)

You send the message with the signature. 

The Crypto.Signature package contains algorithms for performing digital signatures, used to guarantee integrity and non-repudiation.

In [None]:
from Crypto.Hash import SHA256
message=b"I come in Peace."
h3=SHA256.new()
h3.update(message)
print(h3.hexdigest())

In [None]:
from Crypto.Signature import PKCS1_PSS, PKCS1_v1_5
sgn = PKCS1_v1_5.new(key) # we use the RSA key we created earlier
sig=sgn.sign(h3) #signature
with open('mess.sig', 'wb') as f:
    f.write(sig)

Verifying the signature.

Suppose the message and the signature is received, in this case :

1. message
2. sig

You must also have the public key of the sender. 

First we compute the hash digest of the message. Then use the signature to verify by first reading in the public key. 

The public key is used to decrypt the signature to obtain the hash digest of the message. If the digest matches than the signature is verified. 

In [None]:
h=SHA256.new()
h.update(message)

In [None]:
with open('public.pem') as f:
  ikey = RSA.importKey(f.read())

In [None]:
vrf = PKCS1_v1_5.new(ikey)
if vrf.verify(h, sig):
  print('signature verified.')
else:
  print('signature incorrect.')

### Try It Yourself

Create a simple text file. Create a digital signature. Email text file, public key and signature as attachments to a friend. Ask him/her to verify the text in the email.

Technical note: 
1. Write the message to file using 'wb' with message as b-string
1. After reading the message from the file, the message read must be encoded. For example if the text is read into 'm', the you have to use 'm.encode()' to hash it. 

### Bitcoin Address 

import cryptos
`!pip install bitcoinaddress` . Run only once!

Bitcoin uses the similar ideas from public key cryptography except that instead of RSA it uses a different scheme.

Note: WIF: wallet Import Format 

In [None]:
!pip install bitcoinaddress 


In [None]:
from bitcoinaddress import Wallet

wallet = Wallet('5HqrbgkWPqBy6dvCE7FoUiMuiCfFPRdtRsyi6NuCM2np8qBZxq5')
print(wallet)