Colaboratory では，毎回 PyCryptodome ライブラリをインストールしないといけない．

In [1]:
pip install pycryptodome

Collecting pycryptodome
  Downloading pycryptodome-3.21.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.4 kB)
Downloading pycryptodome-3.21.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (2.3 MB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m2.3/2.3 MB[0m [31m21.9 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: pycryptodome
Successfully installed pycryptodome-3.21.0


SHA256 というハッシュ関数を用いて，いろいろなデータから一定長の「ハッシュ値」を作ってみる．data の部分をいろいろ変えてハッシュ値の変化の様子を見てみよ．

In [14]:
from Crypto.Hash import SHA256

In [15]:
hash_object_u = SHA256.new(data='ハッシュ値'.encode(encoding='utf-8'))
hash_object_a = SHA256.new(data=b'The code in the previous section contains three subtle but important design decisions: the nonce of the cipher is authenticated, the authentication is performed after encryption, and encryption and authentication use two uncorrelated keys. It is not easy to securely combine cryptographic primitives, so more modern cryptographic cipher modes have been created such as, the OCB mode (see also other authenticated encryption modes like EAX, GCM, CCM, SIV).')

.digest() でハッシュ値を バイトオブジェクトで表示する．

In [16]:
print(hash_object_u.digest())
print(hash_object_a.digest())

b'\xa6(\xef\xd2\xf1\xe8\xbf\x9bM\xc9\xbd\xe5\x9cR\xdcI\xb7\xaf\x14f\x98!\xa07\x81\x9f \x82|\xf6~\xe7'
b'\xa3\x8e\x16W\xd8\xfa\xaa#!\xc7\xed\x81\xa5\xd5i\xd7\xe6\xcd\xda\xc6a\xaaNF\xef\x88\x8f8TA\xef\xdb'


.hexdigest() でハッシュ値を16進法で表されて1つの整数として表示する．

In [17]:
print(hash_object_u.hexdigest())
print(hash_object_a.hexdigest())

a628efd2f1e8bf9b4dc9bde59c52dc49b7af14669821a037819f20827cf67ee7
a38e1657d8faaa2321c7ed81a5d569d7e6cddac661aa4e46ef888f385441efdb




---


RSA暗号の公開鍵と秘密鍵を生成し，それを用いてデジタル署名を行う．

In [18]:
from Crypto.PublicKey import RSA
from Crypto.Signature import pkcs1_15

鍵の生成

In [19]:
def generate_rsa_keys(key_size):
    key = RSA.generate(key_size)
    private_key = key.export_key()
    public_key = key.publickey().export_key()
    return private_key, public_key

def sign_data(data, private_key):
    key = RSA.import_key(private_key)
    hash_obj = SHA256.new(data)
    signature = pkcs1_15.new(key).sign(hash_obj)
    return signature

In [20]:
private_key, public_key = generate_rsa_keys(2048)

鍵がどのようなものか見てみる．

In [21]:
print(private_key)

b'-----BEGIN RSA PRIVATE KEY-----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\nr3q7nhBhtwnO1Q30SQDatp9BVhARtJZCWn4Buomhq

In [23]:
RSA.import_key(private_key)

RsaKey(n=28292171750174522055769695206001337575863145276854451895109121951944317228748201213534888226560532094323919883646795348770952661816867627465669405260134373474888980068736562719843594423984942706824289360690800736194298605308203769916574294492001775482447786590554549364424534525736303098636296408786433484262985883364935836599302676941188659037675723293207528881159987069483213448318198827113751137337492175626380781619894077093884470869588540817154917973528311467444805493988369403971354254899492383144861137413393730231247936131543950840151423026544766645751950729483351515625277511746633876260522804574920419805221, e=65537, d=2942019782373916532799341941634483048957189603762196769232169096884210780382364027499584406732227996747143049072324187891939551555334435222523719377570162736032598366852917816435511176884162908692914414652910676673697987322816251765894896271770024564946239004144670246098436040601384036761010727159917972980910848033266345270357644599405450880984032581074269994

秘密鍵を使って，data から署名を生成する．

In [28]:
data = b'This is a signed message'
signature = sign_data(data, private_key)

print("Data: ", data)
print("Signature: ", signature.hex())

Data:  b'This is a signed message'
Signature:  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


data と一緒に受け取った signature が公正なものかを公開鍵を使って確かめる．

In [30]:
def verify_signature(data, signature, public_key):
    key = RSA.import_key(public_key)
    hash_obj = SHA256.new(data)
    try:
        pkcs1_15.new(key).verify(hash_obj, signature)
        return True
    except (ValueError, TypeError):
        return False

In [31]:
is_valid = verify_signature(data, signature, public_key)
print("Valid signature: ", is_valid)

Valid signature:  True


data を改竄してみる．

In [32]:
data = b'This is an altered message'
is_valid = verify_signature(data, signature, public_key)
print("Valid signature: ", is_valid)

Valid signature:  False




---



パスワードのハッシュ化

In [None]:
from Crypto.Random import get_random_bytes

salt と呼ばれるランダムなバイト列をパスワードにふりかけ，ハッシュ関数 SHA256 を用いてハッシュ化する．

In [33]:
def hash_password(password, salt=None):
    if salt is None:
        salt = get_random_bytes(16)
    hash_obj = SHA256.new(salt + password.encode())
    return salt, hash_obj.digest()
def verify_password(password, salt, hashed_password):
    hash_obj = SHA256.new(salt + password.encode())
    return hash_obj.digest() == hashed_password

In [34]:
password = "my_very_secret_long_password"
salt, hashed_password = hash_password(password)
print("Salt: ", salt.hex())
print("Hashed password: ", hashed_password.hex())

Salt:  a64e9babbaeb834b2a6c1d652f00c789
Hashed password:  61e9ddc46999f9c003addc092b46194fe6ebc7085c9de1da99dc4d86f70fe7d2


In [35]:
is_valid = verify_password("my_very_secret_long_password", salt, hashed_password)
print("Valid password: ", is_valid)

Valid password:  True


パスワードを間違えると…．

In [36]:
is_valid = verify_password("my_very_secret_password", salt, hashed_password)
print("Valid password: ", is_valid)

Valid password:  False


パスワードの長さを変えても，ハッシュ化されたパスワードの長さはいっていであることみる．

In [None]:
password = "my_passwd"
salt, hashed_password = hash_password(password)
print("Salt: ", salt.hex())
print("Hashed password: ", hashed_password.hex())
is_valid = verify_password("my_passwd", salt, hashed_password)
print("Valid password: ", is_valid)

Salt:  53d51a8c8f2d0bd2bd8942e6e65f6f77
Hashed password:  137122f1d20579543c989918d44b816af2651f541e718f93d690ce123efe300a
Valid password:  True
