In [1]:
from notebook.services.config import ConfigManager
cm = ConfigManager()
cm.update('livereveal', {
              'width': 1000,
              'height': 1000,
              'scroll': True,
})

{'width': 1000, 'height': 1000, 'scroll': True}

# Interaction of Parsed Data, Hashes, and Deployed Contracts
### GE Cybersecurity Project
<hr/>

# Prototype of System
![Prototype](./1.png)

# High-Level Software Interactions
![Image](./2.png)

# Program Flowchart
<img src="./3.png" height=600>

## Set up Environment and Load the Contract from Memory
Our setup consists of:
- Importing all required packages
- Loading the environment variables from ```.env```
- Setting the paths for GE files
- Loading the deployed contract into memory

In [2]:
# web3.../deploy.py
import json
from web3 import Web3
from dotenv import load_dotenv, find_dotenv
import os
from dateutil.parser import parse

# load from .env file
load_dotenv(find_dotenv())

import hashlib

# Constants
LOG_TXT_PATH = 'logfiles/workstationLog.txt'
DEVICE_XML_PATH = 'logfiles/Device.xml'
MAKO_TCW_PATH = 'logfiles/makoTest2.tcw'

# Run module to load contract
%run ./loadContract.ipynb

## Query Blockchain and Log File to Compare Hashes
The following functions are used to generate the hash of the stored configuration file and comparing it with the hash that is stored on-chain. Here are the steps involved:
1. Query the on-chain hash of the specified log file
2. Generate the hash of the file that is on our local filesystem
3. Compare the two:
    - If they are the same, no action is taken
    - If they differ, a new block is appended to the chain with the updated hash and other metadata
        - Includes time configuration was changed and computer/user ID of person who changed it

In [3]:
def fileParser(file):
    # Gather pertinent info from log file
    computer_name = None
    config_pushed = False
    config_complete = None
    with open(file, 'r') as file:
        for line in file.readlines():
            # print(line)
            # Extract computer name
            if 'desktop' in line.lower() and '.' not in line:
                computer_name = line.split(' ')[-1][:-1]
            if 'starting publish' in line.lower():
                pass# print(line)
            if 'download complete' in line.lower():
                # print(line)
                config_pushed = True
                config_complete = parse(line[:line.index(',')])
    if computer_name and config_pushed:          
        # print('Computer name: ' + computer_name)
        # print('Configuration changed on: ' + str(config_complete))
        return computer_name, str(config_complete)

In [4]:
# Read file in chunks (future-proofing) and generate hash:
def hashGenerator(file, buffer_size = 65536):
    """
    This function reads a given file in chunks and generates a corresponding
    SHA256 hash.

    Parameters
    ----------
    file : type 'str'
        relative path to file to hash
    buffer_size : {65536, 'other'}, optional
        number of bytes to read, by default 65536

    Returns
    -------
    file_hash
        the SHA256 hash of the file provided

    Raises
    ------
    N/A
    """
    file_hash = hashlib.sha256()
    # Read file as binary
    with open(file, 'rb') as f:
        chunk = f.read(buffer_size)
        # Keep reading and updating hash as long as there is more data:
        while len(chunk) > 0:
            file_hash.update(chunk)
            chunk = f.read(buffer_size)
    return file_hash

In [5]:
# Function to update blockchain
def updateBlockChain(date, new_hash, computer_id, pvsTx):
    """
    This function updates the blockchain by calling the 'store' function of the
    smart contract.

    Parameters
    ----------
    new_hash : type 'str'
        hash of file obtained from hashGenerator function
    date : type 'str'
        date the configuration was changed
    computer_id : type 'str'
        ID of the computer/user. Found in the top line of the log file
    Returns
    -------
    None

    Raises
    ------
    N/A
    """
    print("Updating contract...")

    # Get latest transaction:
    nonce = w3.eth.getTransactionCount(
        my_address
    )  # gives our nonce - number of transactions
    # Store new value for hashNumber:
    store_transaction = hash_storage.functions.addHash(date, new_hash, computer_id, pvsTx).build_transaction(
        {
            "gasPrice": w3.eth.gas_price,
            "chainId": chain_id,
            "from": my_address,
            "nonce": nonce,
        }
    )
    signed_store_tx = w3.eth.account.sign_transaction(
        store_transaction, private_key=private_key
    )
    send_store_tx = w3.eth.send_raw_transaction(signed_store_tx.rawTransaction)
    tx_receipt = w3.eth.wait_for_transaction_receipt(send_store_tx)
    print("Updated!")
    print(
        "New value of hash: " + hash_storage.functions.retrieve().call()[0]
    )

Encryption/Decryption Functions

In [6]:
from cryptography.fernet import Fernet
def encrypt(paramToEncrypt):
    # Read the key
    with open('mykey.key', 'rb') as mykey:
        key = mykey.read()
    # Encrypt the value
    f = Fernet(key)
    encryptedParam = f.encrypt(bytes(paramToEncrypt, 'utf-8'))
    return encryptedParam

def decrypt(paramToDecrypt):
    # Read the key
    with open('mykey.key', 'rb') as mykey:
        key = mykey.read()
        
    f = Fernet(key)
    decryptedParam = f.decrypt(paramToDecrypt).decode()
    return decryptedParam
    
    

In [7]:
# Query the hash stored on the blockchain
on_chain_hash = hash_storage.functions.retrieve().call()[0]
print('On-chain hash: {}'.format(on_chain_hash))
# Generate the hash of the log file
device_hash = '0x' + hashGenerator(DEVICE_XML_PATH).hexdigest()
print('Local hash: {}'.format(device_hash))
# compare the two - if different, update the blockchain!
if on_chain_hash != device_hash:
    # Gather metadata:
    computer_id, date_changed = fileParser(LOG_TXT_PATH)
    # Get previous tx hash
    previousTxHash = w3.eth.get_block('latest')['transactions'][0].hex()
    # Encrypt the metadata before updating the chain
    computer_id, date_changed = encrypt(computer_id), encrypt(date_changed)
    # Update blockchain
    updateBlockChain(date_changed, device_hash, computer_id, previousTxHash)
else:
    print('No change detected. Exiting program.')

On-chain hash: 0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149
Local hash: 0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149
No change detected. Exiting program.


## Demo - See all Previous Transactions on Our Contract and the Metadata Associated with Each

In [8]:
# ONLY RUN THIS FOR DEMO PURPOSES
computer_id, date_changed = fileParser(LOG_TXT_PATH)
# Encrypt the metadata before updating the chain
computer_id, date_changed = encrypt(computer_id), encrypt(date_changed)
blockNum = w3.eth.block_number
for i in range(blockNum, 0, -1):
    toContract = w3.eth.get_transaction_by_block(i, 0)['to']
    if toContract == hash_storage.address:
        # Get previous tx hash
        previousTxHash = w3.eth.get_block(i)['transactions'][0].hex()
        
        # Update blockchain
        updateBlockChain(date_changed, device_hash, computer_id, previousTxHash)
        break

Updating contract...
Updated!
New value of hash: 0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149


In [9]:
pvsTx = hash_storage.functions.retrieve().call()[3]
history = []
while pvsTx:
    tx = w3.eth.get_transaction(pvsTx)
    try:
        obj, params = hash_storage.decode_function_input(tx['input'])
        params['_time'] = decrypt(params['_time'])
        params['_userID'] = decrypt(params['_userID'])
        pvsTx = params['_previousTx']
        history.append(params)
    except:
        pvsTx = False        

In [10]:
hash_storage.address

'0xaF88D78e60A7fe5061213681D513caba046B94cd'

In [31]:
import pandas as pd
df = pd.DataFrame(history)
df = df[['_time', '_userID', '_hashNumber', '_previousTx']]
df.rename(columns={'_time': 'Date', '_userID': 'User ID', '_hashNumber': 'Hash', '_previousTx': 'Previous Transaction'}, inplace=True)
# df.set_index('_time', inplace=True)
headers = []
data = []
for item in history:
    row = ()
    for key in item:
        row += item[key],
    data.append(row)
for item in df.columns:
    headers.append(item)
data

[('2022-07-04 17:49:11',
  '0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149',
  'DESKTOP-V8GI6RV',
  '0x2d390a10bb93c044a71734c1e87dfe7569f27cb539e42b16bc02e09087671636'),
 ('2022-07-04 17:49:11',
  '0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149',
  'DESKTOP-V8GI6RV',
  '0xb7795ef98a132a90f90748a47d5c65e52d8d987f52d85edf1a1601f3a4dd354f'),
 ('2022-07-04 17:49:11',
  '0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149',
  'DESKTOP-V8GI6RV',
  '0xcf8f64f944e563c500048fded6d131edb8aa137d6d9280c8b858615985f1a3d2'),
 ('2022-07-04 17:49:11',
  '0xfcf9b277a29ca61e5661ff86a2ce053748b0ca0abf7c887a98c78ec84094a149',
  'DESKTOP-V8GI6RV',
  '0x14627426ba68b49c8c0a9bb409c566dda85773e487178d3b45f43609cd969f1a')]

In [12]:
hash_storage.address

'0xaF88D78e60A7fe5061213681D513caba046B94cd'