In [1]:
from cryptography import x509
from cryptography.x509.oid import NameOID
from cryptography.hazmat.primitives.asymmetric import rsa, padding, dh
from cryptography.hazmat.primitives import hashes, serialization
from cryptography.hazmat.primitives.kdf.hkdf import HKDF
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.exceptions import InvalidSignature
import datetime
import base64

def verify_certificate ( cert : x509.Certificate, issuer : x509.Certificate):
  try:
    issuer.public_key().verify(cert.signature, cert.tbs_certificate_bytes, padding.PKCS1v15(), cert.signature_hash_algorithm)
    # cert.verify_directly_issued_by(issuer)
  except ValueError:
    print("Issuer does not match/Signature algorithm not supported")
  except TypeError:
    print("Public key type not supported")
  except InvalidSignature:
    print("Signature verification failed")
  else:
    print("Certificate validated successfully")

### Příprava
Načtení předem vytvořeného kořenového certifikátu a jeho soukromého klíče (v PEM formátu)

In [2]:
root_private_key_bytes = b'-----BEGIN RSA PRIVATE KEY-----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\nJOrr+4Hqcrunim+eRD9JobYZPNaZU4UafotVrrxbF6zuLWmyEIiDfYUe328=\n-----END RSA PRIVATE KEY-----\n'
root_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nq5Kh+mrtVOaupB19PuED\n-----END CERTIFICATE-----\n'

root_private_key = serialization.load_pem_private_key(root_private_key_bytes, None)
root_cert = x509.load_pem_x509_certificate(root_cert_bytes)

#### Výpis hodnot z RSA soukromého klíče

In [3]:
print(f"Modulus size: {root_private_key.key_size}b")
print(f"p = {root_private_key.private_numbers().p}")
print(f"q = {root_private_key.private_numbers().q}")
print(f"d = {root_private_key.private_numbers().d}")
print(f"dp = {root_private_key.private_numbers().dmp1}")
print(f"dq = {root_private_key.private_numbers().dmq1}")
print(f"qInv = {root_private_key.private_numbers().iqmp}")

Modulus size: 4096b
p = 32023942467893740721189568404315200685509161172169398124833342164338363811305629263403210621240478650763595808941703584176846640717390079216423911800286300576855114956423329849672195770654781670414536714356335086300408381537965692821347888029432155395636524598359856275120016497910210867821587950323649753254734214477050041262676516839281261104795238852429486561731373544198507197155234291992645735988866830800751726621109357491195937392204747092329504336301645851553995249030620889231653255575998988998034965980197470015772430407996881846351877546283758018793127534282921740593977839112157961055423727674465226043641
q = 272605958351894160099618342781539376149761054614454977712192114909044694908249563127832454523786456234503118604545481816371279000730889968388655005741292236991785609335739444529158311520158285991398579948874111348426263857619134900687698082748603897647807807961424967427762288882044924989634971128922023711586175946872863556830916881590497229311527167092

#### Informace o certifikátu

In [4]:
print(f"Vydavatel certifikatu: {root_cert.issuer.rfc4514_string()}")
print(f"Vlastnik certifikatu: {root_cert.subject.rfc4514_string()}")
print(f"Algoritmus podpisu: {root_cert.signature_algorithm_oid}")

Vydavatel certifikatu: CN=KAB root-certificate,L=Prague,C=CZ
Vlastnik certifikatu: CN=KAB root-certificate,L=Prague,C=CZ
Algoritmus podpisu: <ObjectIdentifier(oid=1.2.840.113549.1.1.11, name=sha256WithRSAEncryption)>


In [5]:
verify_certificate(root_cert, root_cert)

Certificate validated successfully


In [6]:
print(f"n = {root_cert.public_key().public_numbers().n}")
print(f"e = {root_cert.public_key().public_numbers().e}")

n = 872991752666609576932146013278860869227082214615646198896850717999760884443492260769073027893250410324667373408819902768413581941952147651232195076548983457653985415983700214528398795698703168324367860846275582768870286939387681192289809297055786954583827678716465868406817842898961846643421464713124897839963034687489363868281690788414944070180783996203140784822317343493406592221591730319852894147880410261844772722091754205788220597958288695736357331636383155511205506282486276385943102379516762626915664979542854299784438525688032608553158045678874479105910083975720228695447564758964480730133843609257591423984933452841568873297813839024352743362716263069070885710877443427074640790773385720732719161543936209390161934374760751739890583164023963699117705403624634284628139694659546881462411431264301158251992926557344209399193264881124015106488816292444329424354234003477484608029472985561024082261453534479067117464234165556813395564900646760905345179447959021747229123246197122951556796817

# Úkol

Pokračujte dále podle vytvořené šablony. Potřebujete:
* Vytvořit vlastní pár SK a VK pro RSA
* Vytvořit certifikát, kterým budete moci předat svůj VK kolegovi
** Certifikát bude popdepsaný soukromým klíčem CA (v tomto případě kořenová CA, jejíž certifikát a soukromý klíč máte načtený výše)
** V certifikátu musí být váš veřejný klíč, zadejte tam také své jméno (případně upravte jiné položky dle libosti)
* Vytvořit sdílený klíč pomocí DH algoritmu, vzájemně zasílané hodnoty podepište svým soukromým klíčem
* Poslat si zprávu zašifrovanou symetrickou šifrou, klíč použijte z kroku výše


#### Vytvoření soukromého klíče RSA

In [7]:
private_key = rsa.generate_private_key(public_exponent=65537, key_size=2048)
public_key = private_key.public_key()

In [8]:
print(f"Modulus size: {private_key.key_size}b")
print(f"n = {public_key.public_numbers().n}")
print(f"p = {private_key.private_numbers().p}")
print(f"q = {private_key.private_numbers().q}")
print(f"e = {public_key.public_numbers().e}")
print(f"d = {private_key.private_numbers().d}")
print(f"dp = {private_key.private_numbers().dmp1}")
print(f"dq = {private_key.private_numbers().dmq1}")
print(f"qInv = {private_key.private_numbers().iqmp}")

Modulus size: 2048b
n = 27601660837348654719306428807304330104796433175750542072371771733484235480019740543411839430082153046984667287229203027869429333418189247359757229960548084409833126606327212371963468130707741441737011623799307174258883716045425998605455502111750309647706161453026051535876243948502880658754687550510319168174917483642699756633108037773834382715803617155947959361993455343752872799476093522338315862185446567928826038083833900667368437939719084777794769064837455119852219075550715737606909976792173648905642174999283028344151697333982136234022354912594020232556035360183806235865475666611117999120744088370789756424067
p = 167201440018991918121005297211435057656724762902517678718788934539369621095954488251514962322987872070568823757688126045633206182485570270933941458801065799894092983776780737741339593361190393249051747472008157808602839651114545184723534180676776344323314691282017245555898911546176279381182059587207638612683
q = 1650802818098544098889411101878445672205

### Vytvoření vlastního certifikátu

In [9]:
subject = x509.Name([
    x509.NameAttribute(NameOID.COUNTRY_NAME, "CZ"),
    x509.NameAttribute(NameOID.LOCALITY_NAME, "Prague"),
    x509.NameAttribute(NameOID.ORGANIZATION_NAME, "FIT CVUT"),
    x509.NameAttribute(NameOID.COMMON_NAME, "STUDENT"), # Zde zadejte své jméno
])

cert = x509.CertificateBuilder().subject_name(
    subject
).issuer_name(
    root_cert.subject
).public_key(
    private_key.public_key() # Zde je námi vytvořený veřejný klíč
).serial_number(
    x509.random_serial_number()
).not_valid_before(
    datetime.datetime.now(datetime.timezone.utc)
).not_valid_after(
    datetime.datetime.now(datetime.timezone.utc) + datetime.timedelta(days=30)
).sign(root_private_key, hashes.SHA256()) # Podepisujeme soukromým klíčem CA

In [10]:
# Váš certifikát v PEM formátu (můžete poslat přímo v textové podobě kolegovi)
cert.public_bytes(encoding=serialization.Encoding.PEM)

b'-----BEGIN CERTIFICATE-----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\nk8cwwnKjoN9xQfjBx+dZqfWRVAsZOgaxIlizgFB/36PjR

In [11]:
# Ověření validity našeho certifikátu pomocí kořenového certifikátu (vyhodí výjimku při chybě, viz definice funkce na začátku)
verify_certificate(cert, root_cert)

Certificate validated successfully


------------------------------------------------------------------

### Vygenerování parametrů pro DH (Student A)

Jeden z dvojice začíná volbou (vygenerováním) parametrů pro DH.

In [12]:
dh_parameters = dh.generate_parameters(generator=2, key_size=2048)

In [13]:
print(f"p = {dh_parameters.parameter_numbers().p}")
print(f"g = {dh_parameters.parameter_numbers().g}")

p = 22640572506953730325513912471544186517676167321636272450574026926061350196234983085642111517123206127016554732078601398683080244792297658621514459782789914934684283587696132290078398018157386668079814255606496312786896496644211944653138058758930435217727612784452233274722090647275930454739938303713958800217625405923974014831349797086809979524943082704769937430721328481115147673689706945905218250336165276283563680619089099071986650335556020471289177724189179682192522398652652439972677147597245591954655877745821533124147358872249188908675218546431952218130840986849239739060101363539742050446411935288500934393519
g = 2


In [14]:
dh_private_key = dh_parameters.generate_private_key() # Vygenerování utajené hodnoty, pomocí které se umocňuje generátor a y od kolegy

In [15]:
print(dh_private_key.private_numbers().x)

11133032085125211136875705508394236309791724903322506457975981058839554364000461021468806016552542318693796538313645868080217059466131145944654902878830474620227823741295285054036574278821671512433188790028716151544451775326938969284184928053321474777942109378457059958087406415528574286724510480914146251861218873331690344437467409997823122556923333084219845836465839260276969225438102266831858102680999671642118738363628214968515161382185601781606715769318273236603862095030513775331630310280727715701336321879208650288222845496215318357558362335373309903898128255254178616307582902243267985086494848874228509131854


In [16]:
# Dopočtení hodnoty y pro výměnu s kolegou
dh_public = dh_private_key.public_key()

In [17]:
print(dh_public.public_numbers().y)

20512207097928148647842363090696097099267601369947266570497532122788168446955875354384914280090834752213221328664592160769778273590427581917044432773129917581008403846608186679494720587841511413071555533332956626576108788375028381315490034873372860040643146159846602453437592467992887030450913123331613754112563012136489441377815791108063107895212281541478227230694359226011913557756248564176587250623918983515361771567351759441329166807377442107254017534902048963614316967203469188807157839035537522136919039014162361847540037622624440217168445847099431059155823020865642471730729474403478994526959508006222553999110


In [18]:
dh_public_pem = dh_public.public_bytes(encoding=serialization.Encoding.PEM, format=serialization.PublicFormat.SubjectPublicKeyInfo)

In [19]:
dh_public_pem_signature = private_key.sign(dh_public_pem, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())
signature_b64 = base64.b64encode(dh_public_pem_signature)

### Zaslání hodnot kolegovi (Student A)

Nyní můžeme zaslat kolegovi náš certifikát, veřejné hodnoty pro DH (modul, generátor, y) a jejich podpis.
Certifikát a veřejné hodnoty DH jsou v PEM formátu, podpis je zakódovaný v base64

In [20]:
print(cert.public_bytes(encoding=serialization.Encoding.PEM))
print(dh_public_pem)
print(signature_b64)

b'-----BEGIN CERTIFICATE-----\nMIIEDDCCAfSgAwIBAgIUCov00gA81KchoxEH/ikyRQ3xeHMwDQYJKoZIhvcNAQEL\nBQAwPTELMAkGA1UEBhMCQ1oxDzANBgNVBAcMBlByYWd1ZTEdMBsGA1UEAwwUS0FC\nIHJvb3QtY2VydGlmaWNhdGUwHhcNMjQwNTA4MTAyOTM5WhcNMjQwNjA3MTAyOTM5\nWjBDMQswCQYDVQQGEwJDWjEPMA0GA1UEBwwGUHJhZ3VlMREwDwYDVQQKDAhGSVQg\nQ1ZVVDEQMA4GA1UEAwwHU1RVREVOVDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC\nAQoCggEBANqls4gszaIfsSICeUkN0MEAj89StNIuusE+yI4CjF3ldJellvzz1/cm\n9/Kk0Kz/5Y8mLPavgB7ejcHzb754/SIlvfB7+wmcc5b8yFthSs8QBJ3F2/MnQVRR\nyF6PPKhizt44ymkQwD/DX3d+IgQ/EcpYf687qQRPwjvSlrV9TrzmrqP83Sz7+oaR\n2OaD9Ej6A/WISEA6h23o3Jxhy3XhWX51L+qkzfYcWvJ2CKIox3b0vCBdxWmOF4Bt\nRsISNvFDznmbd1JNsMCkYB1K7mhnEwRJo3TYH0reRvg+F7keRWjRcUqi1UGw/93v\nRyrVqJu5xZSFTXilofFpYnXWEsCTz4MCAwEAATANBgkqhkiG9w0BAQsFAAOCAgEA\nrcJggLg78zy1WclcNnwUsfNiAgnclXtrbuCkncX2PKSUHE6J+A2yRf+7SEBVRwUh\nNywnDeWhfdE9HwqcbZc4Fw8R/ow+6+NV4EdAa1jsBEZH3tBmT4fW0N+fWEFznqVi\noQcC9lSPKD/9kuFPHZpHkR7QZhwDz4x+lYVqHd9s6L+nJeFLFWX5dYR8H/NWfLaN\nk8cwwnKjoN9xQfjBx+dZqfWRVAsZOgaxIlizgFB/36PjR

-----------------------------------------------------

### Příjem (Student B)

Nyní potřebujeme provést následující kroky:
* Ověřit získaný certifikát (vůči našemu kořenovému)
* Pomocí VK v certifikátu ověřit podpis DH
* Vygenerovat vlastní tajný klíč pro DH a dopočítat K a y pro kolegu
* (Můžeme rovnou zašifrovat zprávu pomocí získaného K)
* Kolegovi pošleme naše y a jeho podpis (případně rovnou i zašifrovanou zprávu)


In [None]:
# Zde nahraďte hodnotami získanými od kolegy
received_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nVKLa3qxOAKFNHvPyDFn07GzZtNNvyjJoY7S0KDaTDJ0=\n-----END CERTIFICATE-----\n'
received_dh_bytes = b'-----BEGIN PUBLIC KEY-----\nMIICJTCCARcGCSqGSIb3DQEDATCCAQgCggEBAPRKrtHwVG2+FQR5tDgaGLpwGkFn\nv5g7Mby/Bk5k1T4+iB1b5FZc9m0e9hzNR8yYuKLDOalRV8UF7lfS/z5J9Msxc8Bz\n9bjvYR+HYLJZxzDqQ3LQEOOzlQIRqrx1BHrMbmAmYliYxayJ4mNMf34HQi0R46Hb\n6+FY4gm49IGh9EFuCwp7Nhp9I1Blpk+Rh69E8kHm0+S2ugc5s1eV2PllGdqxsMq6\nIVRj3cd7JRE8vCgoTfUfSMWjC6aaDPhOWUB3ZHRZZacqxgLVhhPdJUoPw0QuSQmy\nRg5bdG1mJlF20XFA4kv3rSx9IOqY+ulru9mpakybJWvCwxdsxudTri32A+cCAQID\nggEGAAKCAQEA1zhtzHqW5wGYWE9bbnNrLsZMeLNX/3Dd8b7kvgKcgBC3XyJ07EqH\n3X53H3eRWmzsXzeA0bDTXU76nL/GQFArMeokEV2VVGEOQG2fblkTKxPALqLt93Lu\ng1xbdRp6hdLWg8mrM/4L8MfvVJO6yX14GBVEQy3Q6qnWHc16VVESPjTxzgEMfpUU\nb9Cf+VA/kb7dptQ7kAKAnTkhuqLHqd/tKUr2nC7uOgykgg5ojaC9N/0W5sV/UHJO\naRk5qwgMN3LWUDwHKyFfvSbrkYuxRlXdhO4GU3oT7E23IbSNCK+ZPovqsMhl1632\nPtj2CFqO0L0TNuPRN0fTjC8vEmJf6r4VSw==\n-----END PUBLIC KEY-----\n'
received_signature = b'aHj7gPuHFpRqsQlLhYjydACsn0zg0/3ceQY241LNMewSM5YffQxLZI/pUo3cxUwBqyQxTnN7f/q4PuH9I1e4nIRvu/WILRYHnSMczGN2VClNhrapB07ZmrPI8cz4ap6uJMTK7aQGNOHakJ4P/YFmqhBAqWwDt9nGt00pwTSNHqALzJou/ESr2RVmnM1mtqoyx6m18oeFtT/D6F5CEpHN/tIrOsu30xzOTTsFrG0+80PUtLSo++7wqHYoA9snNTGE2zw3UUN/xPrm0Eds0c1E5T7XsyYD/aWVLOoHSI29uAKlPxDH37OWNRhiaOTRvsgVUru6IptJ8tm3dw/l9E86Nw=='


In [None]:
# Načtení a ověření získaného certifikátu
received_cert = x509.load_pem_x509_certificate(received_cert_bytes)
verify_certificate(???, ???)

In [None]:
# Ověření podpisu
signature = base64.b64decode(received_signature)
received_cert.public_key().verify(signature, received_dh_bytes, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())

In [None]:
# Načtení parametrů pro DH od kolegy
received_dh_public = serialization.load_pem_public_key(received_dh_bytes)
print(f"p = {received_dh_public.parameters().parameter_numbers().p}")
print(f"g = {received_dh_public.parameters().parameter_numbers().g}")
print(f"y = {received_dh_public.public_numbers().y}")

In [None]:
# Vygenerování vlastní tajné hodnoty pro DH
dh_params = received_dh_public.parameters()
dh_private = dh_params.generate_private_key()

In [None]:
print(dh_private.private_numbers().x)

In [None]:
# Dopočtení hodnoty y pro odeslání kolegovi, dopočtení sdíleného klíče K na základě přijatých hodnot
dh_my_public = dh_private.public_key()
shared_key = dh_private.exchange(received_dh_public)
print(f"Dopoctene y k odeslani: {dh_my_public.public_numbers().y}")
print(f"Sdileny klic: {shared_key.hex()}")

In [None]:
# Vytvoření klíče pro AES-128
derived_key = HKDF(algorithm=hashes.SHA256(), length=16, salt=None, info=None,).derive(shared_key)
print(f"Odvozeny klic: {derived_key.hex()}")

In [None]:
# Zašifrování zprávy pomocí AES-128 ECB. Pozor, není zde padding, vstupní data musi být zarovnána
cipher = Cipher(algorithms.AES128(derived_key), modes.ECB())
encryptor = cipher.encryptor()
encrypted_message = encryptor.update(b"a secret message") + encryptor.finalize()

In [None]:
# Příprava dat pro zaslání kolegovi
dh_my_public_pem = dh_my_public.public_bytes(encoding=serialization.Encoding.PEM, format=serialization.PublicFormat.SubjectPublicKeyInfo)
dh_my_public_pem_signature = private_key.sign(dh_my_public_pem, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())
signature_b64 = base64.b64encode(dh_my_public_pem_signature)
encrypted_message_b64 = base64.b64encode(encrypted_message)
print(cert.public_bytes(encoding=serialization.Encoding.PEM))
print(dh_my_public_pem)
print(signature_b64)
print(encrypted_message_b64)

---------------------------------------------

### Příjem (Student A)

Potřebujeme:
* Ověřit získaný certifikát (vůči našemu kořenovému)
* Pomocí VK v certifikátu ověřit podpis DH
* Dopočítat K na základě y od kolegy
* Dešifrovat zprávu a (vizuálně) ověřit správnost sdíleného K

In [22]:
# Zde nahraďte hodnotami získanými od kolegy
received_cert_bytes = b'-----BEGIN CERTIFICATE-----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\nRSj+kga9qMMsKEZkq4eT7r2r1g/w4VOVl4S+HYWU1YI=\n-----END CERTIFICATE-----\n'
received_dh_bytes = b'-----BEGIN PUBLIC KEY-----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\nDhU0YtB2tIbrbG5jb6BSUlip0t7zEhYfjA==\n-----END PUBLIC KEY-----\n'
received_signature = b'Poae4/6qazWi9A2bDRrlO/8N2JARqkvg2pjWhKixm6yyiJRoX5s9gXREUzYVvA5KU61x4c0uVElbHURhqSNxT+3RgQMgKBxs6M15UMWIB7MnrN1NJgStFuwPAMkAylewwf4Lw86A3NY2LdXV3TRL3WbMwUKRaxk04cDraH4o+dQ54H8D3bATc5X+iJEbPaZ7N5AB1zc5G+tt/wPE653HQtSVOgD3u9RyqVLcCQyOcprl3cZHbOUlNOmNwmN5O5Hocf68pkyhNF4D+KL4EsWSP9uKZEvZZ7JRgSoL7SbjeCmqY7mwH93mZ+PUO4rJ0r6D2x5Qdtdxrt9pk8ygHTqd7A=='
received_encrypted_message = b'4NMkbOjVMPgnOWEAHxxewA=='

In [23]:
# Načtení a ověření získaného certifikátu
received_cert = x509.load_pem_x509_certificate(received_cert_bytes)
verify_certificate(received_cert, root_cert)

Certificate validated successfully


In [24]:
# Ověření podpisu
signature = base64.b64decode(received_signature)
received_cert.public_key().verify(signature, received_dh_bytes, padding.PSS(mgf=padding.MGF1(hashes.SHA256()), salt_length=padding.PSS.MAX_LENGTH), hashes.SHA256())

In [25]:
# Načtení parametrů pro DH od kolegy, dopočtení sdíleného klíče K
received_dh_public = serialization.load_pem_public_key(received_dh_bytes)
print(f"y = {received_dh_public.public_numbers().y}")
shared_key = dh_private_key.exchange(received_dh_public)
print(f"Sdileny klic: {shared_key.hex()}")

y = 16761630094972988827343271673288949357127071305980790340666181424419206122665402874741080064388709057807735332527717519988085229604346616969550046269874546524151543269340774450542961219189715492981733637402691657233931586983941629709728576309722508196628997143536355863909391420559222086858187966578195795319273238164484315563587760429918346005493866017828397418801909712662004023292269767695213266069182669600926009595281824641780753769948798787439642482068225785775106206871447368791968567172728653164591940988973786852923422766664308165128990841587214871656271889801985407925113661592125141223473837761824839573388
Sdileny klic: 21f42133eae246b7c35c8fe6791a197d4ee4ea04e97ac656b62a37da8b04cac0bb7901eafd9ca9b7bebc64e90de2a387ab63823485716a5163c5611a4dde8eca16ae425ba47437380d9d57b06f3e60fe6f8cbd76037a93ca579a37e4343daf2cfae80117354a2a35eb5d23c0f79c226390cd64dd47777873cba5c45c719222ecfffa8726c74598b2cd8ccd0fac541eaf75a7eb912ec0870953884d7934e1a129874cff3ac404cca995a86665e032180af966131d0b88

In [26]:
# Vytvoření klíče pro AES-128
derived_key = HKDF(algorithm=hashes.SHA256(), length=16, salt=None, info=None,).derive(shared_key)
print(f"Odvozeny klic: {derived_key.hex()}")

Odvozeny klic: 89fdd5c50be2eb6a87cd6de796a7037a


In [27]:
# Dešifrování přijaté zprávy pomocí AES-128 ECB
cipher = Cipher(algorithms.AES128(derived_key), modes.ECB())
decryptor = cipher.decryptor()
message = decryptor.update(base64.b64decode(received_encrypted_message)) + decryptor.finalize()

In [28]:
print(message)

b'a secret message'
