arnaucube
/
cryptofun
mirror of https://github.com/arnaucube/cryptofun.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
20 Commits
1 Branch
0 Tags
100 KiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
cryptofun/README.md

463 lines
11 KiB
Raw Permalink Normal View History

add travis
4 years ago
rsa encrypt & decrypt, blind signatures, homomorphic multiplication
5 years ago
docs updated
5 years ago
BLS signatures
5 years ago
docs updated
5 years ago
bn128 G1 and G2 operations
5 years ago
rsa encrypt & decrypt, blind signatures, homomorphic multiplication
5 years ago
docs updated
5 years ago
rsa encrypt & decrypt, blind signatures, homomorphic multiplication
5 years ago
docs updated
5 years ago
bn128 G1 and G2 operations
5 years ago
paillier encrypt & decrypt, homomorphic addition
5 years ago
docs updated
5 years ago
rsa encrypt & decrypt, blind signatures, homomorphic multiplication
5 years ago
bn128 G1 and G2 operations
5 years ago
added Diffie-Hellman. Started impl ECC
5 years ago
shamir secret sharing: create secret sharing, and reconstruct secret from shares with Langrange Interpolation
5 years ago
docs updated
5 years ago
docs updated
5 years ago
docs updated
5 years ago
docs updated
5 years ago
docs updated
5 years ago
added Diffie-Hellman. Started impl ECC
5 years ago
bn128 G1 and G2 operations
5 years ago
added Diffie-Hellman. Started impl ECC
5 years ago
shamir secret sharing: create secret sharing, and reconstruct secret from shares with Langrange Interpolation
5 years ago
bn128 G1 and G2 operations
5 years ago
added Diffie-Hellman. Started impl ECC
5 years ago
added ECDSA Sign and Verify signature
5 years ago
added Diffie-Hellman. Started impl ECC
5 years ago
ECC fixed Add, added Mul
5 years ago
docs updated
5 years ago
added ECC ElGamal Encryption and Decryption
5 years ago
bn128 G1 and G2 operations
5 years ago
added ECC ElGamal Encryption and Decryption
5 years ago
docs updated
5 years ago
added ECDSA Sign and Verify signature
5 years ago
bn128 G1 and G2 operations
5 years ago
added ECDSA Sign and Verify signature
5 years ago
docs updated
5 years ago
Schnorr signature implemented. ECC point multiplication with big int. Refactor of the code.
5 years ago
bn128 G1 and G2 operations
5 years ago
Schnorr signature implemented. ECC point multiplication with big int. Refactor of the code.
5 years ago
added ECDSA Sign and Verify signature
5 years ago
bn128 finite fields operations
5 years ago
docs updated
5 years ago
bn128 finite fields operations
5 years ago
bn128 moved to it's own repository
5 years ago
BLS signatures
5 years ago
docs updated
5 years ago
bn128 pairing implemented
5 years ago
added ECC ElGamal Encryption and Decryption
5 years ago
ECC fixed Add, added Mul
5 years ago
  1. # cryptofun [![Go Report Card](https://goreportcard.com/badge/github.com/arnaucube/cryptofun)](https://goreportcard.com/report/github.com/arnaucube/cryptofun) [![Build Status](https://travis-ci.org/arnaucube/cryptofun.svg?branch=master)](https://travis-ci.org/arnaucube/cryptofun)
  4. Crypto algorithms from scratch. Academic purposes only.
  8. - [RSA cryptosystem & Blind signature & Homomorphic Multiplication](#rsa-cryptosystem--blind-signature--homomorphic-multiplication)
  9. - [Paillier cryptosystem & Homomorphic Addition](#paillier-cryptosystem--homomorphic-addition)
  10. - [Shamir Secret Sharing](#shamir-secret-sharing)
  11. - [Diffie-Hellman](#diffie-hellman)
  12. - [ECC](#ecc)
  13. - [ECC ElGamal](#ecc-elgamal)
  14. - [ECC ECDSA](#ecc-ecdsa)
  15. - [Schnorr signature](#schnorr-signature)
  16. - [Bn128 pairing](#bn128)
  17. - [BLS signature](#bls)
  19. ---
  21. ## RSA cryptosystem & Blind signature & Homomorphic Multiplication
  22. - https://en.wikipedia.org/wiki/RSA_(cryptosystem)#
  23. - https://en.wikipedia.org/wiki/Blind_signature
  24. - https://en.wikipedia.org/wiki/Homomorphic_encryption
  26. - [x] GenerateKeyPair
  27. - [x] Encrypt
  28. - [x] Decrypt
  29. - [x] Blind
  30. - [x] Blind Signature
  31. - [x] Unblind Signature
  32. - [x] Verify Signature
  33. - [x] Homomorphic Multiplication
  36. #### Usage
  37. - Key generation, Encryption, Decryption
  38. ```go
  39. // generate key pair
  40. key, err := GenerateKeyPair()
  41. if err!=nil {
  42. fmt.Println(err)
  43. }
  44. mBytes := []byte("Hi")
  45. m := new(big.Int).SetBytes(mBytes)
  47. // encrypt message
  48. c := Encrypt(m, key.PubK)
  50. // decrypt ciphertext
  51. d := Decrypt(c, key.PrivK)
  52. if m == d {
  53. fmt.Println("correctly decrypted")
  54. }
  55. ```
  57. - Blind signatures
  58. ```go
  59. // key generation [Alice]
  60. key, err := GenerateKeyPair()
  61. if err!=nil {
  62. fmt.Println(err)
  63. }
  65. // create new message [Alice]
  66. mBytes := []byte("Hi")
  67. m := new(big.Int).SetBytes(mBytes)
  69. // define r value [Alice]
  70. rVal := big.NewInt(int64(101))
  72. // blind message [Alice]
  73. mBlinded := Blind(m, rVal, key.PubK)
  75. // Blind Sign the blinded message [Bob]
  76. sigma := BlindSign(mBlinded, key.PrivK)
  78. // unblind the blinded signed message, and get the signature of the message [Alice]
  79. mSigned := Unblind(sigma, rVal, key.PubK)
  81. // verify the signature [Alice/Bob/Trudy]
  82. verified := Verify(m, mSigned, key.PubK)
  83. if !verified {
  84. fmt.Println("signature could not be verified")
  85. }
  86. ```
  88. - Homomorphic Multiplication
  89. ```go
  90. // key generation [Alice]
  91. key, err := GenerateKeyPair()
  92. if err!=nil {
  93. fmt.Println(err)
  94. }
  96. // define values [Alice]
  97. n1 := big.NewInt(int64(11))
  98. n2 := big.NewInt(int64(15))
  100. // encrypt the values [Alice]
  101. c1 := Encrypt(n1, key.PubK)
  102. c2 := Encrypt(n2, key.PubK)
  104. // compute homomorphic multiplication with the encrypted values [Bob]
  105. c3c4 := HomomorphicMul(c1, c2, key.PubK)
  107. // decrypt the result [Alice]
  108. d := Decrypt(c3c4, key.PrivK)
  110. // check that the result is the expected
  111. if !bytes.Equal(new(big.Int).Mul(n1, n2).Bytes(), d.Bytes()) {
  112. fmt.Println("decrypted result not equal to expected result")
  113. }
  114. ```
  116. ## Paillier cryptosystem & Homomorphic Addition
  117. - https://en.wikipedia.org/wiki/Paillier_cryptosystem
  118. - https://en.wikipedia.org/wiki/Homomorphic_encryption
  120. - [x] GenerateKeyPair
  121. - [x] Encrypt
  122. - [x] Decrypt
  123. - [x] Homomorphic Addition
  125. #### Usage
  126. - Encrypt, Decrypt
  127. ```go
  128. // key generation
  129. key, err := GenerateKeyPair()
  130. if err!=nil {
  131. fmt.Println(err)
  132. }
  134. mBytes := []byte("Hi")
  135. m := new(big.Int).SetBytes(mBytes)
  137. // encryption
  138. c := Encrypt(m, key.PubK)
  140. // decryption
  141. d := Decrypt(c, key.PubK, key.PrivK)
  142. if m == d {
  143. fmt.Println("ciphertext decrypted correctly")
  144. }
  145. ```
  147. - Homomorphic Addition
  148. ```go
  149. // key generation [Alice]
  150. key, err := GenerateKeyPair()
  151. if err!=nil {
  152. fmt.Println(err)
  153. }
  155. // define values [Alice]
  156. n1 := big.NewInt(int64(110))
  157. n2 := big.NewInt(int64(150))
  159. // encrypt values [Alice]
  160. c1 := Encrypt(n1, key.PubK)
  161. c2 := Encrypt(n2, key.PubK)
  163. // compute homomorphic addition [Bob]
  164. c3c4 := HomomorphicAddition(c1, c2, key.PubK)
  166. // decrypt the result [Alice]
  167. d := Decrypt(c3c4, key.PubK, key.PrivK)
  168. if !bytes.Equal(new(big.Int).Add(n1, n2).Bytes(), d.Bytes()) {
  169. fmt.Println("decrypted result not equal to expected result")
  170. }
  171. ```
  174. ## Shamir Secret Sharing
  175. - https://en.wikipedia.org/wiki/Shamir%27s_Secret_Sharing
  177. - [x] create secret sharing from number of secrets needed, number of shares, random point p, secret to share
  178. - [x] Lagrange Interpolation to restore the secret from the shares
  180. #### Usage
  181. ```go
  182. // define secret to share
  183. k := 123456789
  185. // define random prime
  186. p, err := rand.Prime(rand.Reader, bits/2)
  187. if err!=nil {
  188. fmt.Println(err)
  189. }
  191. // define how many shares want to generate
  192. nShares := big.NewInt(int64(6))
  194. // define how many shares are needed to recover the secret
  195. nNeededShares := big.NewInt(int64(3))
  197. // create the shares
  198. shares, err := Create(
  199. nNeededShares,
  200. nShares,
  201. p,
  202. big.NewInt(int64(k)))
  203. assert.Nil(t, err)
  204. if err!=nil {
  205. fmt.Println(err)
  206. }
  208. // select shares to use
  209. var sharesToUse [][]*big.Int
  210. sharesToUse = append(sharesToUse, shares[2])
  211. sharesToUse = append(sharesToUse, shares[1])
  212. sharesToUse = append(sharesToUse, shares[0])
  214. // recover the secret using Lagrange Interpolation
  215. secr := LagrangeInterpolation(sharesToUse, p)
  217. // check that the restored secret matches the original secret
  218. if !bytes.Equal(k.Bytes(), secr.Bytes()) {
  219. fmt.Println("reconstructed secret not correspond to original secret")
  220. }
  221. ```
  223. ## Diffie-Hellman
  224. - https://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange
  226. - [x] key exchange
  228. ## ECC
  229. - https://en.wikipedia.org/wiki/Elliptic-curve_cryptography
  231. - [x] define elliptic curve
  232. - [x] get point at X
  233. - [x] get order of a Point on the elliptic curve
  234. - [x] Add two points on the elliptic curve
  235. - [x] Multiply a point n times on the elliptic curve
  237. #### Usage
  238. - ECC basic operations
  239. ```go
  240. // define new ec
  241. ec := NewEC(big.NewInt(int64(0)), big.NewInt(int64(7)), big.NewInt(int64(11)))
  243. // define two points over the curve
  244. p1 := Point{big.NewInt(int64(4)), big.NewInt(int64(7))}
  245. p2 := Point{big.NewInt(int64(2)), big.NewInt(int64(2))}
  247. // add the two points
  248. q, err := ec.Add(p1, p2)
  249. if err!=nil {
  250. fmt.Println(err)
  251. }
  253. // multiply the two points
  254. q, err := ec.Mul(p, big.NewInt(int64(1)))
  255. if err!=nil {
  256. fmt.Println(err)
  257. }
  259. // get order of a generator point over the elliptic curve
  260. g := Point{big.NewInt(int64(7)), big.NewInt(int64(8))}
  261. order, err := ec.Order(g)
  262. if err!=nil {
  263. fmt.Println(err)
  264. }
  265. ```
  270. ## ECC ElGamal
  271. - https://en.wikipedia.org/wiki/ElGamal_encryption
  273. - [x] ECC ElGamal key generation
  274. - [x] ECC ElGamal Encrypton
  275. - [x] ECC ElGamal Decryption
  278. #### Usage
  279. - NewEG, Encryption, Decryption
  280. ```go
  281. // define new elliptic curve
  282. ec := ecc.NewEC(big.NewInt(int64(1)), big.NewInt(int64(18)), big.NewInt(int64(19)))
  284. // define new point
  285. g := ecc.Point{big.NewInt(int64(7)), big.NewInt(int64(11))}
  287. // define new ElGamal crypto system with the elliptic curve and the point
  288. eg, err := NewEG(ec, g)
  289. if err!=nil {
  290. fmt.Println(err)
  291. }
  293. // define privK&pubK over the elliptic curve
  294. privK := big.NewInt(int64(5))
  295. pubK, err := eg.PubK(privK)
  296. if err!=nil {
  297. fmt.Println(err)
  298. }
  300. // define point to encrypt
  301. m := ecc.Point{big.NewInt(int64(11)), big.NewInt(int64(12))}
  303. // encrypt
  304. c, err := eg.Encrypt(m, pubK, big.NewInt(int64(15)))
  305. if err!=nil {
  306. fmt.Println(err)
  307. }
  309. // decrypt
  310. d, err := eg.Decrypt(c, privK)
  311. if err!=nil {
  312. fmt.Println(err)
  313. }
  315. // check that decryption is correct
  316. if !m.Equal(d) {
  317. fmt.Println("decrypted not equal to original")
  318. }
  319. ```
  323. ## ECC ECDSA
  324. - https://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm
  326. - [x] define ECDSA data structure
  327. - [x] ECDSA Sign
  328. - [x] ECDSA Verify signature
  331. #### Usage
  332. ```go
  333. // define new elliptic curve
  334. ec := ecc.NewEC(big.NewInt(int64(1)), big.NewInt(int64(18)), big.NewInt(int64(19)))
  335. // define new point
  336. g := ecc.Point{big.NewInt(int64(7)), big.NewInt(int64(11))}
  338. // define new ECDSA system
  339. dsa, err := NewDSA(ec, g)
  340. if err!=nil {
  341. fmt.Println(err)
  342. }
  344. // define privK&pubK over the elliptic curve
  345. privK := big.NewInt(int64(5))
  346. pubK, err := dsa.PubK(privK)
  347. if err!=nil {
  348. fmt.Println(err)
  349. }
  351. // hash value to sign
  352. hashval := big.NewInt(int64(40))
  354. // define r
  355. r := big.NewInt(int64(11))
  357. // sign hashed value
  358. sig, err := dsa.Sign(hashval, privK, r)
  359. if err!=nil {
  360. fmt.Println(err)
  361. }
  363. // verify signature
  364. verified, err := dsa.Verify(hashval, sig, pubK)
  365. if err!=nil {
  366. fmt.Println(err)
  367. }
  368. if verified {
  369. fmt.Println("signature correctly verified")
  370. }
  371. ```
  373. ## Schnorr signature
  374. - https://en.wikipedia.org/wiki/Schnorr_signature
  376. - [x] Hash[M || R] (where M is the msg bytes and R is a Point on the ECC, using sha256 hash function)
  377. - [x] Generate Schnorr scheme
  378. - [x] Sign
  379. - [x] Verify signature
  382. #### Usage
  383. ```go
  384. // define new elliptic curve
  385. ec := ecc.NewEC(big.NewInt(int64(0)), big.NewInt(int64(7)), big.NewInt(int64(11)))
  386. // define new point
  387. g := ecc.Point{big.NewInt(int64(11)), big.NewInt(int64(27))} // Generator
  388. // define new random r
  389. r := big.NewInt(int64(23)) // random r
  391. // define new Schnorr crypto system using the values
  392. schnorr, sk, err := Gen(ec, g, r)
  393. if err!=nil {
  394. fmt.println(err)
  395. }
  397. // define message to sign
  398. m := []byte("hola")
  400. // also we can hash the message, but it's not mandatory, as it will be done inside the schnorr.Sign, but we can perform it now, just to check the function
  401. h := Hash([]byte("hola"), c)
  402. if h.String() != "34719153732582497359642109898768696927847420320548121616059449972754491425079") {
  403. fmt.Println("not correctly hashed")
  404. }
  406. s, rPoint, err := schnorr.Sign(sk, m)
  407. if err!=nil {
  408. fmt.println(err)
  409. }
  411. // verify Schnorr signature
  412. verified, err := Verify(schnorr.EC, sk.PubK, m, s, rPoint)
  413. if err!=nil {
  414. fmt.println(err)
  415. }
  416. if verified {
  417. fmt.Println("Schnorr signature correctly verified")
  418. }
  419. ```
  423. ## Bn128
  424. Implementation of the bn128 pairing.
  425. Code moved to https://github.com/arnaucube/go-snark/tree/master/bn128
  428. ## BLS
  429. Boneh–Lynn–Shacham (BLS) signature scheme implemented in Go.
  430. https://en.wikipedia.org/wiki/Boneh%E2%80%93Lynn%E2%80%93Shacham
  432. This package uses the BN128 Go implementation from https://github.com/arnaucube/go-snark/tree/master/bn128
  434. ### Usage
  435. ```go
  436. bls, err := NewKeys()
  437. assert.Nil(t, err)
  439. fmt.Println("privK:", bls.PrivK)
  440. fmt.Println("pubK:", bls.PubK)
  442. m := []byte("test")
  443. sig := bls.Sign(m)
  444. fmt.Println("signature:", sig)
  446. verified := bls.Verify(m, sig, bls.PubK)
  447. assert.True(t, verified)
  449. /* out:
  450. privK: 28151522174243194157727175362620544050084772361374505986857263387912025505082855947281432752362814690196305655335201716186584298643231993241609823412370437094839017595372164876997343464950463323765646363122343203470911131219733598647659483557447955173651057370197665461325593653581904430885385707255151472097067657072671643359241937143381958053903725229458882818033464163487351806079175441316235756460455300637131488613568714712448336232283394011955460567718918055245116200622473324300828876609569556897836255866438665750954410544846238847540023603735360532628141508114304504053826700874403280496870140784630677100277
  451. pubK: [528167154220154970470523315181365784447502116458960328551053767278433374201 18282159022449399855128689249640771309991127595389457870089153259100566421596 19728585501269572907574045312283749798205079570296187960832716959652451330253]
  452. signature: [[12832528436266902887734423636380781315321578271441494003771296275495461508593 6964131770814642748778827029569297554111206304527781019989920684169107205085] [6508357389516441729339280841134358160957092583050390612877406497974519092306 12073245715182483402311045895787625736998570529454024932833669602347318770866] [13520730275909614846121720877644124261162513989808465368770765804305866618385 19571107788574492009101590535904131414163790958090376021518899789800327786039]]
  453. verified: true
  454. */
  455. ```
  458. ---
  460. To run all tests:
  461. ```
  462. go test ./... -v
  463. ```