<a href="https://colab.research.google.com/github/taylan-sen/intro_jupyter_notebooks/blob/main/fernet_symmetric_encryption.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

### The python **cryptography** package:  


The cryptography package is a robust, well-documented library for cryptographic operations in Python. It provides various cryptographic recipes and primitives to implement secure encryption, decryption, hashing, and more.

Key Features:

* Symmetric Encryption: AES, ChaCha20, Fernet, etc.
* Asymmetric Encryption: RSA, DSA, Elliptic Curve Cryptography.
*  Key Derivation: PBKDF2, Scrypt, HKDF.
* Message Authentication: HMAC.
* Digital Signatures: RSA, DSA, ECDSA.
* Hashing Algorithms: SHA-256, SHA-512, BLAKE2.
* Certificate Management: X.509 certificates, TLS/SSL.  

<hr>

### python organization

* A python **class** is a combination of functions and variables into a unit (for following the *object oriented* coding paradigm).  

* A python **module** is a python file that can be *imported* to provide additional functions, classes, constants, or variables.

* A python **package** is a directory containing python modules along with any necessary initialization code.

* Classes, modules, and packages help organize code into meaningful reusable units.

<hr>

In the **cryptography** package, there are two moduels:  
 * cryptography.fernet: Module for symmetric encryption.
 * cryptography.hazmat: Module for low-level cryptographic primitives.




### **Fernet**
![](FernetImage.jpg)
Within the cryptography.fernet module is the **Fernet** class which provides a relatively simple-to-use symmetric encryption scheme.


* **encryption**
* **decryption**
* **plaintext**
* **ciphertext**
* **key**  
* **symmetric encryption** -encryption and decryption which uses the same key to encrypt and decrypt.





<h2>Confidentiality, Integrity, and Authentication</h2>


<table>
    <thead>
        <tr>
            <th>Aspect</th>
            <th>Definition</th>
            <th>Objective</th>
            <th>Example Techniques</th>
        </tr>
    </thead>
    <tbody>
        <tr>
            <td>Confidentiality</td>
            <td>Protects data from unauthorized access or disclosure.</td>
            <td>Ensures data privacy.</td>
            <td>Encryption (AES, RSA), Access Controls</td>
        </tr>
        <tr>
            <td>Integrity</td>
            <td>Ensures data is not altered or tampered with.</td>
            <td>Ensures data accuracy.</td>
            <td>Hashing (SHA-256), HMAC, Digital Signatures</td>
        </tr>
        <tr>
            <td>Authentication</td>
            <td>Verifies the identity of a user, system, or data source.</td>
            <td>Ensures data origin.</td>
            <td>Passwords, Public/Private Keys, Certificates</td>
        </tr>
    </tbody>
</table>


Fernet uses:
* Confidentiality: AES-128 encryption
* Integrity: HMAC-SHA256
* Authentication: HMAC with a secret key

In [23]:
# GENERATE KEY AND ENCRYPT

from cryptography.fernet import Fernet

key = Fernet.generate_key()
fernet = Fernet(key)
print(f'Key:  {key}')
msg = 'I like chicken'
encrypted = fernet.encrypt(msg.encode())

print(f'Encrypted: {encrypted}')


Key:  b'sYx-yIoC0l6eAm9fzFLC4VPioIWx8f0QiAVltUbexrQ='
Encrypted: b'gAAAAABoKhhKB6ELTGD9TSx6B9jdazVviHVXfZ-cXDNlY5AsMWULBxnBflqB2LRnH3Bqw3l_WkGhCvbUWWnTNCznlTc3jn1qCg=='


In [24]:
# DECRYPT (AFTER LOADING KEY AND CIPHERTEXT)
key = b'sYx-yIoC0l6eAm9fzFLC4VPioIWx8f0QiAVltUbexrQ='
encrypted = b'gAAAAABoKhhKB6ELTGD9TSx6B9jdazVviHVXfZ-cXDNlY5AsMWULBxnBflqB2LRnH3Bqw3l_WkGhCvbUWWnTNCznlTc3jn1qCg=='

fernet = Fernet(key)
decrypted = fernet.decrypt(encrypted).decode()
print(f'Decrypted: {decrypted}')


Decrypted: I like chicken


In [14]:
from cryptography.fernet import Fernet
from hashlib import sha256
from base64 import urlsafe_b64encode


password = 'Hello world'
salt = 'Lox is salty'
key = sha256((password + salt).encode()).digest()
#key = hashlib.pbkdf2_hmac('sha256', password.encode(), salt, 100000)
url_safe_key = urlsafe_b64encode(key)
fernet = Fernet(url_safe_key)
msg = 'I like chicken'
encrypted = fernet.encrypt(msg.encode())
decrypted = fernet.decrypt(encrypted).decode()

print(encrypted)
print(decrypted)

b'gAAAAABoKharjidDBQyIRTZUXnnz0xPv6rYGM1ZZkoVuuBc16f47zIPbheSXJXptnDa9Rhiz9kDDNpAhPhtdTZ3Zdd_Zmp0DPw=='
I like chicken
