# Asymmetric Encryption

Asymmetric encryption, also known as Public-Key Cryptography, encrypts and decrypts the data using two separate cryptographic asymmetric keys. These two keys are known as a “public key” and a “private key”. One of the keys is used for the encryption of plaintext and the other key is used for decryption of the ciphertext. 

RSA, named after computer scientists Ron Rivest, Adi Shamir, and Leonard Adleman, is a popular algorithm used to encrypt data with a public key and decrypt with a private key for secure data transmission.

In [4]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding


### Generate Private Key

In [3]:
private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=2048,
        backend=default_backend()
    )
print(private_key)

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x0000023EC6304850>


### Generate Public Key

In [4]:
public_key = private_key.public_key()
print(public_key)

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x0000023EC6449F10>


### Store the keys

In [5]:
# Store the private key
pem = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.PKCS8,
        encryption_algorithm=serialization.NoEncryption()
    )
with open('private_key.pem', 'wb') as f:
    f.write(pem)

In [6]:
# Display private key
pem.splitlines()

[b'-----BEGIN PRIVATE KEY-----',
 b'MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQCY7K6T/yc5Ytby',
 b'WmIXaqzelzEQ8JbTnAi3mePrcImLzTbh7Bm6Q9doi+htp83E/RZjPErH0Q227WUS',
 b'SwIaMiyDfduxcxohEy+yip3g5192KSYZLMNse2CZec8TMqkw5vum0mE+8YdnIlw8',
 b'UfWQi5jdR5pjBmswFjctXhb8sOyKrwVhekxnS9RbjWbWcbVWAYA4V5HebpMlzS5C',
 b'EmUHQ3uEiN9/EnVax9yBhqDadCHzLGgiL7eIrr7blPuV0NQfXhfcuaOfmOKenkaU',
 b'j1XkyL60PG32RQo+FaVMZwN4CHI+YJ+aT/m+6Pp/mRsebX80qy4ztbfDU4hPMzjk',
 b'V/gAY089AgMBAAECggEAAz630E7QbO36qayJUFM51S9YId05FhxwLZUyZO3qZ/EJ',
 b'gm8Zd1O2inK4PTtw/lvF0dfsWPkdVWMMNgB+zEIsTPiquhqQf2CCLpkKaJoASJLu',
 b'9Vx3I8zVFpdNxuvYSJVeLwK1KuTCfsnCiJ/PRNXxfyCPLMgXa4R31JqehOuBhB/S',
 b'PPcjM3ovgBhu/MUn85CFg8VXwUFIdAknWgxnEihOjQysKmX9IXtEZdbzTbxwa2bV',
 b'uKMaMNKU8Jomi4vlgwaCnUPqi5QZ0UVCW4qynfCSf8j66CH7lIrZNtZRC6CyCzBP',
 b'LVf+jtG5vRPkMoPY1n0gPinx7rZ4+QnNnGfytuF9cQKBgQC+v2pUnONdl7clv+Sr',
 b'qUaYAKHHSrWsVlN6A1UrshCaCI5vfhSRqwkaL12uopQ/FAysO7MMrqmFP8/vbKbP',
 b'KZLU21hpzzVzeU7LwTgVjeTTh57FOrE4D77+wkWWQIaox/+lVQH8h0

In [7]:
# Store the public key
pem = public_key.public_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PublicFormat.SubjectPublicKeyInfo
    )
with open('public_key.pem', 'wb') as f:
    f.write(pem)

In [8]:
# Display public key
pem.splitlines()

[b'-----BEGIN PUBLIC KEY-----',
 b'MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOyuk/8nOWLW8lpiF2qs',
 b'3pcxEPCW05wIt5nj63CJi8024ewZukPXaIvobafNxP0WYzxKx9ENtu1lEksCGjIs',
 b'g33bsXMaIRMvsoqd4OdfdikmGSzDbHtgmXnPEzKpMOb7ptJhPvGHZyJcPFH1kIuY',
 b'3UeaYwZrMBY3LV4W/LDsiq8FYXpMZ0vUW41m1nG1VgGAOFeR3m6TJc0uQhJlB0N7',
 b'hIjffxJ1WsfcgYag2nQh8yxoIi+3iK6+25T7ldDUH14X3Lmjn5jinp5GlI9V5Mi+',
 b'tDxt9kUKPhWlTGcDeAhyPmCfmk/5vuj6f5kbHm1/NKsuM7W3w1OITzM45Ff4AGNP',
 b'PQIDAQAB',
 b'-----END PUBLIC KEY-----']

### Read stored keys 

In [9]:
# Reading the keys back in (for demonstration purposes)
with open("private_key.pem", "rb") as key_file:
        private_key = serialization.load_pem_private_key(
            key_file.read(),
            password=None,
            backend=default_backend()
        )
with open("public_key.pem", "rb") as key_file:
        public_key = serialization.load_pem_public_key(
            key_file.read(),
            backend=default_backend()
        )

### Encryption

In [10]:
message = b'This is a secret message!'
encrypted = public_key.encrypt(
        message,
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
    )

print(encrypted)

b'\t\x9df\x91:\xb3v\xacj\x18\xdc\xe0\xc43,*\x83\x06k\tB\x88\xc5\xaa\x1a\xdb:\xb2c\xb8\x86\xbd\x0c^\xdd\xce\xbb\xf4\x84H\x9f[\x0f:\x85\xa4\xe0C\xd0\xef\x0cD\xe9K\\]MQ=\xd6)x\xaat>J\x8b+\xea\nM\xca\xb2Z\xdf\x96\xfa\xabU\xc5\x10\x1e\x0e\xa73nZ.\x1b\xfc\x17\xb9\xf2\xfb`I\x1d\x1f\xc3\xc1h\xa1\xacg\xe39\xc4\xfe\n\xbaO_\xc9\xc2\xb3\xae\xf7g~\x1a\xda\x86OZU\xdc$x^\xe8\rS\x89+\xaa\xe1m"?\x1a\xbf$\xc6\x06,\xa9\xcd\xfd\xb0E\xa0\xdbK\x13\xf8\xb5\x84Z\xfcON3\xa4\xaa\x88\x10v#\x05\xbb\xb1\x1a\x8bh\x0f\xd7\xb3\xa3\x80!\xf1\x84\xc0\x84\x13\x171\x06\x19\xb8y~\x14x\xddJ\xb5\x12E\x8b\xd6,\x97\x8d\xb2\xfc\xd8\xfd\xf5P3S\x88\xf6\xde\xb8\x9b\t<7 \xe2\xe3\x99\x99\xf0\xb2e\x02\x1e(\xeb\xda\xbc\xc1CX\xba-\x17\x1a`\xe7\xabZ\xca\x03l\x1c\x83\x07\x1dlb\xb3\xe9'


### Decryption

In [11]:
# Decrypting
original_message = private_key.decrypt(
        encrypted,
        padding.OAEP(
            mgf=padding.MGF1(algorithm=hashes.SHA256()),
            algorithm=hashes.SHA256(),
            label=None
        )
    )

# Checking the results
print(original_message)

b'This is a secret message!'
