The document provides an introduction to public key cryptography (PKC), including key generation, usage, and algorithms like RSA and Diffie-Hellman. It outlines two major use cases: encrypting messages and signing digital documents, along with examples and best practices for implementation in Python. Additionally, it emphasizes the importance of key size for security and mentions everyday applications such as TLS, Bitcoin, and SSH.

1. 🔒 Practical Cryptography 🔐
@KelleyRobinson
PyGotham 2018

3. @kelleyrobinson
https://twitter.com/mshelton/status/1047556643389468672

4. 🔒 Practical Cryptography 🔐
Introduction to Public Key Cryptography

5. @kelleyrobinson
☎ 🔐👋 %

6. @kelleyrobinson
Meet Alice and Bob
🔐 🔐
💬🤷

7. @kelleyrobinson

8. What is Public Key Crypto?
Each entity has ( keys
Public Key - to be shared
Private Key - to be kept secret

9. @kelleyrobinson

10. Asymmetric Crypto == Public Key Crypto == PKC

11. RSA algorithm
(there are other algorithms, we'll get to that)

12. What is Public Key Crypto?
Two major use cases (for RSA):
1. Encrypting with Public Key
2. Sign with Private Key

13. @kelleyrobinson
Encrypting with Public Key
...only Bob can decode the cyphertext

14. @kelleyrobinson
Signing with Private Key
...only Alice can be the author

15. @kelleyrobinson
How are keys generated?
TL;DR: math

16. How are keys generated?
@kelleyrobinson

17. @kelleyrobinson
Trapdoor Functions

18. @kelleyrobinson
Trapdoor Functions
Which is easier?
1. Find the two prime factors of 4,757
2. Multiply 67 and 71

19. RSA Algorithm Example# Chosen inputs
p, q, e = 67, 71, 37
https://github.com/robinske/rsa-example
# Calculated
n = p*q
x = (p - 1)*(q - 1)
d = inverse_mod(e, x) # modular multiplicative inverse
public_key = (e, n)
private_key = (d, n)
message = 123
encrypted = pow(message, e, n)
decrypted = pow(encrypted, d, n) # == message 🤯
These are all trapdoor functions!

20. Other Common
Algorithms

21. Diffie-Hellman Key Exchange
@kelleyrobinson

22. Elliptic-Curve Cryptography (ECC)
y2 = x3 + ax + b
Elliptic Curve Addition (Image By SuperManu [GFDL or CC BY-SA 3.0], via Wikimedia Commons)

23. @kelleyrobinson
What is Key Size?
https://xkcd.com/538/

24. Impacts security strength, measured in bits of security
What is Key Size?
RSA key size of 2048
RSA key size of 3072
ECC key size of 256
112 bits of security
128 bits of security
128 bits of security

25. @kelleyrobinson
What is Security Strength?
- NIST Recommendation for Key Management
“a number associated with the amount of work
that is required to break a cryptographic
algorithm or system.
”

26. PKC in Python

27. @kelleyrobinson
PKC in Python
# pip install cryptography
from cryptography.hazmat.primitives.asymmetric import rsa
private_key = rsa.generate_private_key(
public_exponent=65537,
key_size=2048,
...
)

28. @kelleyrobinson
PKC in Python
https://cryptography.io/en/latest/hazmat/primitives/asymmetric/rsa/

29. @kelleyrobinson
Encrypting
public_key = private_key.public_key()
ciphertext = public_key.encrypt(message, ...)
plaintext = private_key.decrypt(ciphertext, ...)
# returns True
message == plaintext

30. @kelleyrobinson
Signing
public_key = private_key.public_key()
signature = private_key.sign(message, ...)
# throws exception if not verified
public_key.verify(signature, message, ...)

31. Everyday Uses of Public Key Cryptography
Authy!
PGP and GPG
TLS (HTTPS)
Bitcoin
SSH

32. @kelleyrobinson
]

33. @kelleyrobinson
]
@kelleyrobinson
Public key
on the Authy
servers

34. @kelleyrobinson
]
@kelleyrobinson
Private key
on your device

35. @kelleyrobinson
]
@kelleyrobinson
Your device
signs with your
private key

36. @kelleyrobinson

37. @kelleyrobinson
Algorithm

38. @kelleyrobinson
Key SizeAlgorithm

39. @kelleyrobinson

40. @kelleyrobinson

41. https://xkcd.com/1181/

42. @kelleyrobinson
__________________
| |
Don't roll
your own crypto!
|__________________|
(__/) ||
(•ㅅ•) ||
/ づ
@kelleyrobinson

43. @kelleyrobinson
twilio.com/blog/what-is-public-key-cryptography
Further Reading

44. @kelleyrobinson
astonishinglegends.com
Further Listening

45. @kelleyrobinson
THANK YOU!
@kelleyrobinson