implemented AES algorithm in GCM mode which provides both confidentiality and data integrity

In [None]:
!pip install pycryptodome

from Crypto.Cipher import AES
from Crypto.Random import get_random_bytes

def encrypt(plaintext, key):
    cipher = AES.new(key, AES.MODE_GCM)
    ciphertext, tag = cipher.encrypt_and_digest(plaintext.encode('utf-8'))
    return cipher.nonce, ciphertext, tag

def decrypt(nonce, ciphertext, tag, key):
    cipher = AES.new(key, AES.MODE_GCM, nonce=nonce)
    try:
        plaintext = cipher.decrypt_and_verify(ciphertext, tag)
        return plaintext.decode('utf-8')
    except ValueError as e:
        print("Decryption failed:", e)
        return None

def get_key(key_size):
    if key_size not in [128, 192, 256]:
        raise ValueError("Invalid key size. Choose 128, 192, or 256 bits.")
    return get_random_bytes(key_size // 8)  #bits to bytes


Collecting pycryptodome
  Downloading pycryptodome-3.22.0-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.4 kB)
Downloading pycryptodome-3.22.0-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (2.3 MB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m2.3/2.3 MB[0m [31m30.2 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: pycryptodome
Successfully installed pycryptodome-3.22.0


In [None]:
def main():
    key = None  # Store key for session use

    while True:
        print("\n=== AES Encryption/Decryption using GCM Mode ===")
        print("1. Encrypt")
        print("2. Decrypt")
        print("3. Exit")
        ch = input("Enter your choice: ")

        if ch == '1':
            pt = input("Enter the plaintext: ")
            try:
                key_size = int(input("Enter key size (128, 192, 256): "))
                key = get_key(key_size)
            except ValueError as e:
                print("Error:", e)
                continue

            nonce, ct, tag = encrypt(pt, key)
            print("\n--- Encryption Successful ---")
            print("Key (hex):", key.hex())
            print("Nonce (hex):", nonce.hex())
            print("Ciphertext (hex):", ct.hex())
            print("Tag (hex):", tag.hex())

        elif ch == '2':
            if key is None:
                print("No key stored. Please enter the correct key manually.")
            key_hex = input("Enter key (hex): ").strip()
            nonce_hex = input("Enter nonce (hex): ").strip()
            ct_hex = input("Enter ciphertext (hex): ").strip()
            tag_hex = input("Enter tag (hex): ").strip()

            try:
                key = bytes.fromhex(key_hex)
                nonce = bytes.fromhex(nonce_hex)
                ct = bytes.fromhex(ct_hex)
                tag = bytes.fromhex(tag_hex)
            except ValueError:
                print("Invalid hex input. Please try again.")
                continue

            pt = decrypt(nonce, ct, tag, key)
            if pt:
                print("Decrypted plaintext:", pt)
            else:
                print("Decryption failed! Incorrect key, nonce, or tag.")

        elif ch == '3':
            break

        else:
            print("Invalid choice. Please try again.")

if __name__ == '__main__':
    main()


=== AES Encryption/Decryption using GCM Mode ===
1. Encrypt
2. Decrypt
3. Exit
Enter your choice: Khelesh, This is your World!
Invalid choice. Please try again.

=== AES Encryption/Decryption using GCM Mode ===
1. Encrypt
2. Decrypt
3. Exit
Enter your choice: 256
Invalid choice. Please try again.

=== AES Encryption/Decryption using GCM Mode ===
1. Encrypt
2. Decrypt
3. Exit
Enter your choice: 1
Enter the plaintext: Khelesh, This is Your World!
Enter key size (128, 192, 256): 256

--- Encryption Successful ---
Key (hex): 4e64db771867c09fb213bd6fca74e2cbdf5e0b02963d4d7c3809dbc34bdefd20
Nonce (hex): 6d5916ae4d5775d7c6f242661d9abe6f
Ciphertext (hex): d91da63ff9ef1cf28a405b4aa04498aecd316cdd4e048a15aaca1f65
Tag (hex): b19872171566d96224320e523ad3ce45

=== AES Encryption/Decryption using GCM Mode ===
1. Encrypt
2. Decrypt
3. Exit
Enter your choice: 2
Enter key (hex): 4e64db771867c09fb213bd6fca74e2cbdf5e0b02963d4d7c3809dbc34bdefd20
Enter nonce (hex): 6d5916ae4d5775d7c6f242661d9abe6f
Enter c

In [None]:
#This is same code with comments
!pip install pycryptodome

# Import necessary modules from the pycryptodome library
from Crypto.Cipher import AES
from Crypto.Random import get_random_bytes

# Encrypt function using AES in GCM mode
def encrypt(plaintext, key):
    # Create a new AES cipher object in GCM mode
    cipher = AES.new(key, AES.MODE_GCM)
    # Encrypt the plaintext and generate the authentication tag
    ciphertext, tag = cipher.encrypt_and_digest(plaintext.encode('utf-8'))
    # Return the nonce, ciphertext, and tag
    return cipher.nonce, ciphertext, tag

# Decrypt function using AES in GCM mode
def decrypt(nonce, ciphertext, tag, key):
    # Create a new AES cipher object in GCM mode with the given nonce
    cipher = AES.new(key, AES.MODE_GCM, nonce=nonce)
    try:
        # Decrypt the ciphertext and verify the tag
        plaintext = cipher.decrypt_and_verify(ciphertext, tag)
        # Return the decoded plaintext
        return plaintext.decode('utf-8')
    except ValueError as e:
        print("Decryption failed:", e)
        return None

# Function to generate a random key of specified size
def get_key(key_size):
    # Ensure the key size is valid (128, 192, or 256 bits)
    if key_size not in [128, 192, 256]:
        raise ValueError("Invalid key size. Choose 128, 192, or 256 bits.")
    # Return a random key of the specified size in bytes
    return get_random_bytes(key_size // 8)  # Convert bits to bytes

# Main function to run the AES encryption and decryption interface
def main():
    key = None  # Variable to store the key for the session

    # Loop for the user interface
    while True:
        print("\n=== AES Encryption/Decryption using GCM Mode ===")
        print("1. Encrypt")  # Option for encryption
        print("2. Decrypt")  # Option for decryption
        print("3. Exit")  # Option to exit the program
        ch = input("Enter your choice: ")  # User choice

        if ch == '1':  # Encryption option
            pt = input("Enter the plaintext: ")  # Input plaintext
            try:
                # Get the key size from the user (128, 192, or 256 bits)
                key_size = int(input("Enter key size (128, 192, 256): "))
                # Generate the key based on the provided key size
                key = get_key(key_size)
            except ValueError as e:  # Handle invalid key size input
                print("Error:", e)
                continue  # Restart the loop if there's an error

            # Perform encryption and get the nonce, ciphertext, and tag
            nonce, ct, tag = encrypt(pt, key)
            print("\n--- Encryption Successful ---")
            print("Key (hex):", key.hex())  # Print key in hexadecimal
            print("Nonce (hex):", nonce.hex())  # Print nonce in hexadecimal
            print("Ciphertext (hex):", ct.hex())  # Print ciphertext in hexadecimal
            print("Tag (hex):", tag.hex())  # Print authentication tag in hexadecimal

        elif ch == '2':  # Decryption option
            if key is None:  # Check if no key is stored
                print("No key stored. Please enter the correct key manually.")
            key_hex = input("Enter key (hex): ").strip()  # Input key in hex
            nonce_hex = input("Enter nonce (hex): ").strip()  # Input nonce in hex
            ct_hex = input("Enter ciphertext (hex): ").strip()  # Input ciphertext in hex
            tag_hex = input("Enter tag (hex): ").strip()  # Input tag in hex

            try:
                # Convert hex inputs back to bytes
                key = bytes.fromhex(key_hex)
                nonce = bytes.fromhex(nonce_hex)
                ct = bytes.fromhex(ct_hex)
                tag = bytes.fromhex(tag_hex)
            except ValueError:  # Handle invalid hex input
                print("Invalid hex input. Please try again.")
                continue  # Restart the loop if there's an error

            # Decrypt the ciphertext with the provided key, nonce, and tag
            pt = decrypt(nonce, ct, tag, key)
            if pt:
                print("Decrypted plaintext:", pt)  # Print decrypted plaintext
            else:
                print("Decryption failed! Incorrect key, nonce, or tag.")  # Decryption failed

        elif ch == '3':  # Exit option
            break  # Exit the loop and end the program

        else:  # Invalid input
            print("Invalid choice. Please try again.")  # Ask for valid input again

# Entry point of the program
if __name__ == '__main__':
    main()  # Run the main function

"""
Here’s a concise **concept note** explaining the key technical terms used in your AES-GCM encryption/decryption code:

---

### 🔐 **Concept Notes: AES-GCM Encryption/Decryption**

#### 1. **AES (Advanced Encryption Standard)**
- A symmetric encryption algorithm used worldwide for secure data encryption.
- It uses the same key for both encryption and decryption.
- Common key sizes: **128-bit**, **192-bit**, **256-bit**.

---

#### 2. **GCM (Galois/Counter Mode)**
- A **mode of operation** for AES.
- Provides both **confidentiality (encryption)** and **integrity (authentication)**.
- Fast and secure, widely used in modern cryptography (e.g., TLS/HTTPS).

---

#### 3. **Key**
- A **binary string** used to encrypt and decrypt the message.
- Must be of exact length:
  - 128-bit → 16 bytes
  - 192-bit → 24 bytes
  - 256-bit → 32 bytes

> Example (Hexadecimal): `f3c28a19a4e5b3d1c2e7f84a7be9d01c`

---

#### 4. **Nonce (Number used ONCE)**
- A **random, unique value** generated during encryption.
- Ensures that the same plaintext encrypted twice gives different ciphertexts.
- GCM mode uses this **nonce** as a starting value for encryption.
- **Important:** The nonce must be unique **per encryption** but doesn't need to be secret.

> Example (Hex): `63e1b9dfc3a3471a9e813b`

---

#### 5. **Ciphertext**
- The **encrypted form** of plaintext.
- Unreadable without the correct key and nonce.
- Must be converted back (decrypted) using the original key, nonce, and tag.

---

#### 6. **Tag (Authentication Tag)**
- Generated during encryption.
- Used to **verify the integrity and authenticity** of the message during decryption.
- If the tag doesn’t match, the message may have been tampered with or the key is incorrect.

---

#### 7. **Hex (Hexadecimal)**
- A base-16 number system using digits `0–9` and letters `A–F`.
- Commonly used to represent binary data in a readable format.
- Each byte = **2 hex digits**.

> Example: `b'\\x1f\\x02'` (binary) → `'1f02'` (hex)

---

### 💡 Summary Flow of AES-GCM Encryption
```
Input: Plaintext + Key
⬇️
AES-GCM ➡️ Generates:
   🔹 Ciphertext
   🔹 Nonce
   🔹 Tag
⬇️
Output: Send/store all 3 values
```

### 🔁 Decryption Requires:
- **Key**
- **Nonce**
- **Ciphertext**
- **Tag**

If all are correct → Get back the original plaintext.

---

### 🔸 **Basic Viva Questions & Answers**

#### 1. **What is AES?**
**Answer:**
AES stands for Advanced Encryption Standard. It is a symmetric encryption algorithm used to securely encrypt and decrypt data using the same key.

---

#### 2. **What do you mean by symmetric encryption?**
**Answer:**
Symmetric encryption means the same key is used for both encryption and decryption.

---

#### 3. **What is GCM in AES-GCM?**
**Answer:**
GCM stands for Galois/Counter Mode. It is a mode of AES that provides both data confidentiality and integrity (authentication).

---

#### 4. **What is a key in encryption?**
**Answer:**
A key is a random sequence of bytes used in encryption and decryption. Its size determines the strength of encryption (128, 192, or 256 bits).

---

#### 5. **What is a nonce?**
**Answer:**
A nonce (number used once) is a random value generated during encryption. It ensures that the same plaintext gives different ciphertexts each time.

---

#### 6. **What is ciphertext?**
**Answer:**
Ciphertext is the encrypted form of the original data (plaintext). It is not understandable without decryption.

---

#### 7. **What is a tag in AES-GCM?**
**Answer:**
The tag is used to verify the integrity of the message during decryption. If the tag is wrong, decryption fails.

---

#### 8. **Why do we convert keys and outputs to hex?**
**Answer:**
Hexadecimal makes binary data readable and easier to display, copy, and share.

---

#### 9. **What happens if the wrong key is used for decryption?**
**Answer:**
Decryption fails, and the data cannot be retrieved. In AES-GCM, it may raise an error or return incorrect results.

---

#### 10. **What library is used in this program for encryption?**
**Answer:**
We use the `pycryptodome` library, which provides cryptographic functions like AES.


"""

In [19]:
#coded by scratch coding

import base64
# AES constants
Nb = 4  # block size in 32-bit words
Nk = 4  # key size in 32-bit words (128 bits)
Nr = 10  # number of rounds

# AES S-box (partial, for full implementation use the complete S-box)
s_box = [
    0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5, 0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76,
    0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0, 0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0,
    0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc, 0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15,
    0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a, 0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75,
    0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0, 0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84,
    0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b, 0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf,
    0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85, 0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8,
    0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5, 0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2,
    0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17, 0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73,
    0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88, 0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb,
    0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c, 0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79,
    0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9, 0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08,
    0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6, 0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a,
    0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e, 0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e,
    0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94, 0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf,
    0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68, 0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16
]

# Rcon (round constant)
r_con = [0x00, 0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80, 0x1B, 0x36]

# Padding
def pad(plaintext):
    pad_len = 16 - len(plaintext) % 16
    return plaintext + chr(pad_len) * pad_len

# Core AES operations
def sub_bytes(state):
    return [[s_box[b] for b in row] for row in state]

def shift_rows(state):
    for i in range(1, 4):
        state[i] = state[i][i:] + state[i][:i]
    return state

def xtime(a):
    return (((a << 1) ^ 0x1B) & 0xFF) if (a & 0x80) else (a << 1)

def mix_single_column(a):
    t = a[0] ^ a[1] ^ a[2] ^ a[3]
    u = a[0]
    a[0] ^= t ^ xtime(a[0] ^ a[1])
    a[1] ^= t ^ xtime(a[1] ^ a[2])
    a[2] ^= t ^ xtime(a[2] ^ a[3])
    a[3] ^= t ^ xtime(a[3] ^ u)
    return a

def mix_columns(state):
    for i in range(4):
        col = [state[j][i] for j in range(4)]
        col = mix_single_column(col)
        for j in range(4):
            state[j][i] = col[j]
    return state

def add_round_key(state, round_key):
    for i in range(4):
        for j in range(4):
            state[i][j] ^= round_key[i][j]
    return state

def key_expansion(key):
    key_symbols = [ord(symbol) for symbol in key]
    key_schedule = [[0] * 4 for _ in range(4 * (Nr + 1))]
    for r in range(Nk):
        for c in range(4):
            key_schedule[r][c] = key_symbols[r * 4 + c]
    for r in range(Nk, Nb * (Nr + 1)):
        temp = key_schedule[r - 1][:]
        if r % Nk == 0:
            temp = [s_box[b] for b in temp[1:] + temp[:1]]
            temp[0] ^= r_con[r // Nk]
        for c in range(4):
            key_schedule[r][c] ^= key_schedule[r - Nk][c]
    round_keys = []
    for r in range(0, len(key_schedule), 4):
        round_keys.append([key_schedule[r], key_schedule[r + 1], key_schedule[r + 2], key_schedule[r + 3]])
    return round_keys

def text_to_matrix(text):
    matrix = []
    for i in range(0, len(text), 4):
        matrix.append([ord(text[i]), ord(text[i+1]), ord(text[i+2]), ord(text[i+3])])
    return matrix

def aes_encrypt_block(block, round_keys):
    state = text_to_matrix(block)
    state = add_round_key(state, round_keys[0])
    for i in range(1, Nr):
        state = sub_bytes(state)
        state = shift_rows(state)
        state = mix_columns(state)
        state = add_round_key(state, round_keys[i])
    state = sub_bytes(state)
    state = shift_rows(state)
    state = add_round_key(state, round_keys[Nr])
    return ''.join(chr(state[i][j]) for j in range(4) for i in range(4))


def aes_encrypt_long(plaintext, key):
    plaintext = pad(plaintext)
    round_keys = key_expansion(key)
    ciphertext = ''
    for i in range(0, len(plaintext), 16):
        block = plaintext[i:i+16]
        ciphertext += aes_encrypt_block(block, round_keys)
    # Convert string to bytes, then base64 encode
    encrypted_bytes = ciphertext.encode('latin1')  # latin1 maps 0–255 directly
    return base64.b64encode(encrypted_bytes).decode()


plaintext = "This is Khelesh's World"
key = "This is my key123"  # Must be 16 chars (128-bit key)

ciphertext = aes_encrypt_long(plaintext, key)
print("Encrypted:", ciphertext)



Encrypted: KatAz3K9Qb4giALZ1aHGGWlDhYwRtI7vq6bicymt2NU=
