cryptography_examples

This repo is a sample of some basic encryption methods, and some references for further reading. It is the public half of an interactive unit on encryption being developed for an undergraduate elective course. The full unit includes PPT slides, other VSCode examples*, and several group assignments.

Within the ./src directory are groups of encryption methods sorted into categories such as substitution, transposition and grids. The public version of this repo does not go into modern encryption methods, such as AES.

Each encryption method has its own folder with the following:

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

These four files are the core demonstration of each algorithm. In some directories there may be additional files such as decrypt_improved.py or decrypt_improved_test.py. The contents of additional files are discussed in the Discussion Section under their specific algorithm.

Claude AI was used to generate the test cases for the public version of this repo, in order to not give away any hints for the group assignments or demos. Claude AI also inserts extra commentary and examples, which is pretty fun for creating samples. NOTE: these test examples are very different in format from the PPT slides and demos, and shouldn't be used as a starting point for the group work. The encrypt and decrypt classes are currently 1:1 with the demos. For details on AI Usage and how it performed, see the Notes on AI as an Instructional Tool

*VSCode is the 'default' IDE to match the Python virtual environment tutorial that is shared between the tutorial units. Other IDEs and setups can be used if you have a preferred setup.

Table of Contents

• What is Encryption?
• Requirements
• Implementation
• Included in this Project
  • Substitution Ciphers
  • Transposition Ciphers
  • Grid Ciphers
  • Stream Ciphers
• Some Algorithm Discussion
  • Substitution
  • Transposition
  • Grid
  • Stream and Hash
• Notes on AI as an Instructional Tool
  • Tool Disclosure
  • Goal for Using AI
  • [Incorporation and Testing](#incorporation -and-testing)
  • What Worked
  • What Did Not Work
• References

What is Encryption?

A message encrypted using a public key and decrypted using a private key

Encryption is a method of making transmitted information unreadable to anyone who is not the intended sender or recipient(s). These transmissions can be text, images, raw data, or any kind of information that can be digitized and sent between at least two points.

Algorithms for obfuscating text have been around for thousands of years. The 'Ceasar Cipher', where a message is encrypted with a shifted dictionary, is one of the most well-known early examples of a substitution cipher. Physical methods, such as using a scytale wrapped with pieces of parchment or leather to encode and decode messages in a transposition cipher have also existed for at least as long as substitution ciphers. There also exists entire secret languages that have been used in both spoken and written forms to communicate. (It turns out people have always been clever about sending secret messages!)

Why all the effort? When using complex algorithms, encryption ensures that even if the data is intercepted, it remains secure. This makes it essential for maintaining privacy and security in communications, including across the internet in the modern day.

In the figure above, Hello World! is encrypted with a public key, and then sent as EBIIL TLOIA!. The intended receiver, who has the private key, is able to decrypt the message into the original Hello World!.

This image, while simple, is a good introduction for several complex topics:

• Public key cryptography, also called asymmetric cryptography, uses a pair of keys in order to encode and decode messages. This is what is depicted in the image above. When the cryptographic algorithm is created, two keys are generated. One of these keys is the public key while the other is the private key. The public key is known by anyone and everyone, and can be used to verify the message sender (the owner of the public key). The private key is known only by the intended message recipients, and is used to decode the message. There are several methods of combining public and private key usage in order to securely encrypt and decrypt messages. See the References for further reading.

• With the existence of asymmetric cryptography, it makes sense that there is also symmetric cryptography. Symmetric key algorithms are algorithms that use the same key for encryption and decryption. This is the oldest and the most straightforward type of encryption. The keys can be identical, or they may have a simple reversal in order to 'undo' the encryption. This key should be thought of as a private key, and should only be shared between the sender and intended recipients. Having the private, shared, key is considered validation for this method. This method is less secure, but noticeably faster for encryption and transmission, which makes it appealing.

• There also exists various hybrid methods (hybrid cryptosystems), which combine the benefits of both public key cryptography and symmetric cryptography. These are beyond this introduction, but have some reading in the References section.

• Hashing, or hash functions, is another topic that may come up, and is a form of encryption that is intended to go in one direction, unlike symmetric and asymmetric methods, which are bidirectional. Hashing is intended for verification, not decryption. For example, passwords submitted on a banking app may be stored in a database as a generated hash value rather than storing a password directly. When a user logs in to the app, the entered password is converted to a hash and then compared to the hash value in the database. The raw text of the password is not sent. This method is outside the scope of this introduction, but may appear in some demos.

The Hello World! text in the figure in this section was created using the included Ceasar Cipher, making the text actually from a symmetric encryption method as the private key is a simple reversal of the public key.

Requirements

This repository was built and tested on Python 3.12. While effort was put into keeping the tools used in the example as generic as possible, at least Python 3.6 is needed in order to run some of the random and pseudo-random number generation functions properly.

pandas
numpy

Optionally, requirements can be installed manually with:

pip install pandas, numpy

This is an example for if you've had a difficult time with the requirements.txt file. Sometimes libraries are packaged together.

Implementation

Each encryption method has its own folder with the following:

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

encrypt.py and decrypt.py are stand alone and do not need the other to work. The test files use either the encrypt or decrypt classes to demonstrate how encryption and brute force encryption are used. The brute force method shown in this repo are not the only way the decrypt these, but they made good examples for the process.

In some repositories there may be a decrypt_improved.py and matching decrypt_improved_test.py, these are more detailed in their brute force attempts, but may only be more accurate or improved under specific conditions. They are considered experimental and for educational purposes outside of the main demonstration.

Regarding non-English dictionaries, there are some hooks for that integration, but it is not fully implemented into these samples to keep them simple. A directory of default_dictionaries has been included for generating different ASCII and Unicode dictionaries, but this is exploratory. They're also AI generated, which makes them fun to play with, but not particularly useful at this time.

Included in this Repository

Discussion of ciphers and history are included in the non-public half of this material; this repository is focused on the demo code.

Substitution Ciphers

In a substitution cipher, each letter (or symbol) in the plaintext is replaced by a corresponding letter (or symbol) in the ciphertext. The simplest of these are vulnerable to decryption even without having a private key due to frequency analysis. Some methods exist to make frequency analysis less effective.

1. Ceasar Cipher
   • This cipher is attributed to Julius Ceasar, and involves and alphabetical shift. The cipher is created by taking the plaintext and shifting it by a certain number of positions down or up the alphabet. It is one of the most common 'starting' ciphers used to introduce the topic of cryptography.
2. Bacon Cipher
   • Created by Francis Bacon in 1605, this is a type of steganography rather than just a cipher. Using this method, letters are encoded rather than the message. This method works like binary representation, where two characters (typically 'A' and 'B') are used in a series of 5 to represent a numerical value of a letter.
3. Monoalphabetic Cipher
   • This cipher creates a new dictionary with the same 1:1 relation as a Caesar Cipher, but the letters in the cipher dictionary can be randomly matched to their plaintext equivalent rather than determined by shifting.
   • This is the most difficult of the substitution ciphers in this section to brute force, and requires some tuning. HOWEVER, even when it does not preform perfectly, it often results in a starting point for further analysis. For example, a high-scoring but incorrect result is still partialy readable.

Transposition Ciphers

A transposition cipher uses the message itself as a form of obfuscation. Rather than changing the letters (substituting), the letters in the message are rearranged to make the message unreadable.

1. Rail Fence
   • This cipher is named for its distinctive 'zig zag' pattern where the plaintext is written up and down columns ('rails') and then read across the rows to create the cipher text. This can be brute forced by reconstructing the zigzag pattern.
2. Block
   • A block cipher ia s symmetric algorithm that encrypt data in 'blocks' rather than one at a time (as in a stream cipher). This algorithm is a foundational model used in the DES algorithm.
   • The 'block' cipher in this example is a Feistel cipher (also known as Luby–Rackoff block cipher). It was named after Horst Feistel, who was a physicist and cryptographer working at IBM.

Grid Ciphers

The grid ciphers in this section have some relation to the substitution and transposition ciphers in the previous sections, but are notable for their distinctive grid pattern used in the encoding.

1. Polybius

   • A Polybius cipher uses a 5x5 grid in order to encode letters into numerical coordinates of a grid. This is a type of substitution cipher.
   • Attributed to the Green historian Polybius.

2. ADFGVX

   • This is a WW1 cipher used to send encrypted messages over radiotelegraphy/wireless telemetry. It is a revised version of the earlier ADFGV cipher and uses a modified Polybius square (6x6 compared to the 5x5).
   • This is a transposition cipher but is in this section due to the grid used in the algorithm. This grid form made it possible to implement manually.

Stream Ciphers

1. RC4

   • RC4 is a once-popular stream cipher designed in 1987. It has since fallen into disuse due to discovered vulnerabilities. Attacks against this cipher include the 2001 Fluhrer-Mantin-Shamir attack and attacks against biases in the keystream, and the 2005 attack by Andreas Klein, which builds upon previous attacks. Later attacks are not examined here.

2. ChaCha20

   • ChaCha20 generates a pseudo-random keystream which is then XOR'ed with the plaintext to encrypt it. This method requires a key and a nonce. This cipher originated in 2008 as a family of ciphers.
   • Key: a secret value, typically 32 byte/256 bits, used to initialize a cipher's state
   • Nonce: an 8-byte, 12-byte, or 24-byte number used only once with any given key. ChaCha20 typically uses 12 bytes/96 bits.

NOTE about the included stream ciphers:

• Decryption on a stream cipher is non-trivial, so the included decrypt.py for each example uses a small selection of common attacks (e.g., dictionary attacks, frequency analysis, true 'try all combinations' brute force) that are discussed in terms of analysis. In some cases where the cipher algorithm has been completely broken, an example of that attack may be implemented. There are no 'test' attacks on algorithms included in this repository.

Some Algorithm Discussion

This section discusses the general operation of the algorithms in terms of the input, output, and some tuning. In-depth discussion is reserved for the PPTs and group assignments.

Accuracy could be improved for all of these algorithms by implementing a dictionary or spellcheck program to identify actual English. This would slow automated detection drastically, however. It is also beyond the scope of this introduction.

Substitution

1. Ceasar Cipher

This is one of the easier algorithms to brute force given the limited solution space. The alphabet can only shift left or right, not scramble. A brute force decryption for a Ceasar Cipher involves trying every possible combination and then scoring based on English (in this case) letter frequency.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

Encryption:

=== Encryption Dictionary ===
Original:  ABCDEFGHIJKLMNOPQRSTUVWXYZ
Encrypted: XYZABCDEFGHIJKLMNOPQRSTUVW

=== Encryption Examples ===
'ABC' -> 'XYZ'
'HELLO' -> 'EBIIL'
'WORLD' -> 'TLOIA'
'HELLO WORLD!' -> 'EBIIL TLOIA!'
'ABC123' -> 'XYZ123'
'ZEBRA' -> 'WBYOX'

Decryption:

============================================================
TEST CASE 1: 'KHOOR ZRUOG'
============================================================
Trying offsets 0 to 51...
============================================================

Top 3 most likely decryptions:
============================================================
1. Offset 16 (Score: -800.8): aXeeh phkeW
2. Offset 42 (Score: -800.8): AxEEH PHKEw
3. Offset 20 (Score: -878.3): ebiil tloia

Most likely decryption: 'aXeeh phkeW'

============================================================
TEST CASE 2: 'WKH TXLFN EURZQ IRA MXPSV RYHU WKH ODCB GRJ'
============================================================
Trying offsets 0 to 51...
============================================================

Top 3 most likely decryptions:
============================================================
1. Offset 23 (Score: -171.8): the quick brown foX jumps over the laZY dog
2. Offset 49 (Score: -171.8): THE QUICK BROWN FOx JUMPS OVER THE LAzy DOG
3. Offset 13 (Score: -291.8): jXU gkYSa Rhemd VeN Zkcfi elUh jXU bQPO TeW

Most likely decryption: 'the quick brown foX jumps over the laZY dog'

============================================================
TEST CASE 3: 'JBHF GUVF VF N GRKF ZRFFNTR'
============================================================
Trying offsets 0 to 51...
============================================================

Top 3 most likely decryptions:
============================================================
1. Offset 13 (Score: -495.1): WOUS ThiS iS a TeXS meSSage
2. Offset 39 (Score: -495.1): wous tHIs Is A tExs MEssAGE
3. Offset  9 (Score: -596.8): SKQO PdeO eO W PaTO iaOOWca

Most likely decryption: 'WOUS ThiS iS a TeXS meSSage'

2. Bacon Cipher

The Bacon Cipher is another relatively straightforward cipher to brute force. It has a limited dictionary and can still be broken with frequency analysis. Each single character is replaced with a binary representation (with ‘1’ and ‘0’ replaced with any arbitrary 2 symbols), and the text is not scrambled.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

Encryption:

=== Encryption Dictionary ===
Baconian cipher mapping (using 'A' and 'B'):
Variant: 26-letter (all separate)
  A -> AAAAA
  B -> AAAAB
  C -> AAABA
  D -> AAABB
  E -> AABAA
  F -> AABAB
  G -> AABBA
  H -> AABBB
  I -> ABAAA
  J -> ABAAB

=== Encryption Examples ===
'ABC' -> 'AAAAAAAAABAAABA'
'HELLO' -> 'AABBBAABAAABABBABABBABBBA'
'WORLD' -> 'BABBAABBBABAAABABABBAAABB'
'HELLO WORLD' -> 'AABBBAABAAABABBABABBABBBA BABBAABBBABAAABABABBAAABB'
'ABC123' -> 'AAAAAAAAABAAABA123'
'ZEBRA' -> 'BBAABAABAAAAAABBAAABAAAAA'


=== Different Symbol Sets ===
Symbols '0'/'1': 'HELLO' -> '0011100100010110101101110'
Symbols '.'/'-': 'HELLO' -> '..---..-...-.--.-.--.---.'
Symbols '*'/'#': 'HELLO' -> '**###**#***#*##*#*##*###*'
Symbols 'X'/'O': 'HELLO' -> 'XXOOOXXOXXXOXOOXOXOOXOOOX'

Decryption:

================================================================================
TEST CASE 1: 'AABBBAABAAABABBABABBABBBA'
(Expected: HELLO)
================================================================================

Top 3 most likely decryptions:
================================================================================
1. Symbols: 'A'/'B' (26-letter) - Score: -1600.8
   Result: HELLO

2. Symbols: 'B'/'A' (24-letter) - Score: -1728.7
   Result: ASZKKBBBA

3. Symbols: 'B'/'A' (26-letter) - Score: -1815.1
   Result: YAXJJBBBA

Most likely decryption: 'HELLO'

================================================================================
TEST CASE 2: '100100010000010100010010010011'
(Expected: SECRET)
================================================================================

Top 3 most likely decryptions:
================================================================================
1. Symbols: '0'/'1' (26-letter) - Score: -813.2
   Result: SECRET

2. Symbols: '0'/'1' (24-letter) - Score: -891.7
   Result: TECSEU

3. Symbols: '1'/'0' (26-letter) - Score: -8343.9
   Result: 10010001A10100010010010011

Most likely decryption: 'SECRET'

================================================================================
TEST CASE 3: '....-........-..---..--.-'
(Expected: BACON)
================================================================================

Top 3 most likely decryptions:
================================================================================
1. Symbols: '.'/'-' (26-letter) - Score: -1035.9
   Result: BACON

2. Symbols: '.'/'-' (24-letter) - Score: -1186.6
   Result: BACPO

3. Symbols: '-'/'.' (26-letter) - Score: -2957.8
   Result: ...X....WG-.-

Most likely decryption: 'BACON'

================================================================================
TEST CASE 4: 'BAABBAABAABAABABAABB'
(Expected: TEST)
================================================================================

Top 3 most likely decryptions:
================================================================================
1. Symbols: 'B'/'A' (24-letter) - Score: -1621.6
   Result: NAYAXABB

2. Symbols: 'B'/'A' (26-letter) - Score: -1661.4
   Result: MAWAVABB

3. Symbols: 'A'/'B' (26-letter) - Score: -2078.8
   Result: TEST

3. Monoalphabetic Cipher

The Monoalphabetic cipher is the most difficult substitution example in this collection and requires some tuning. However, even when it does not perform perfectly, it often results in a starting point for further analysis. For example, a high-scoring but incorrect result is still partially readable. What’s happening is that the text is English-like statistically with the frequency of letter distribution, even if it is very distinctly not English. To improve the decryption, context dependent words can be added to the dictionary.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption
• decrypt_improved_test.py - an LLM generated test case for decryption
• decrypt_improved.py - The original decrypt.py class for this cipher uses a 'hill climbing' approach, which only accepts new solutions that are BETTER than the previous answer. This can cause the algorithm to get stuck in a local optimum since it cannot 'backtrack'. This algorithm allows for backtracking. There is a noticeable improvement in general decryption accuracy, but it is less accurate than adding context-specific words to the dictionary (see the decryption results with ['CRYPTOGRAPHY','SUBSTITUTION','CIPHER','METHOD','ENCRYPT'] added to the dictionary). These results are not surprising. A more intelligent algorithm may be able to more accurately predict the text without dictionary additions.

Encryption:

=== Encryption Examples ===
Using random key (seed=42):
'ABC' -> 'IQA'
'HELLO' -> 'BLMME'
'WORLD' -> 'KEWMY'
'HELLO WORLD' -> 'BLMME KEWMY'
'ABC123' -> 'IQA123'
'ATTACKATDAWN' -> 'IZZIACIZYIKD'

Using custom key (alphabet backwards):
'ABC' -> 'ZYX'
'HELLO' -> 'SVOOL'
'WORLD' -> 'DLIOW'
'HELLO WORLD' -> 'SVOOL DLIOW'
'ABC123' -> 'ZYX123'
'ATTACKATDAWN' -> 'ZGGZXPZGWZDM'

Decryption Test Case 5, Encrypted Text:

================================================================================
TEST CASE 5: '''RM XIBKGLTIZKSB Z HFYHGRGFGRLM XRKSVI RH Z NVGSLW LU VMXIBKGRMT 
RM DSRXS FMRGH LU KOZRMGVCG ZIV IVKOZXVW DRGS GSV XRKSVIGVCG RM Z WVURMVW NZMMVI 
DRGS GSV SVOK LU Z PVB GSV FMRGH NZB YV HRMTOV OVGGVIH GSV NLHG XLNNLM KZRIH 
LU OVGGVIH GIRKOVGH LU OVGGVIH NRCGFIVH LU GSV ZYLEV ZMW HL ULIGS GSV IVXVREVI
WVXRKSVIH GSV GVCG YB KVIULINRMT GSV RMEVIHV HFYHGRGFGRLM KILXVHH GL VCGIZXG 
GSV LIRTRMZO NVHHZTV HFYHGRGFGRLM XRKSVIH XZM YV XLNKZIVW DRGS GIZMHKLHRGRLM 
XRKSVIH RM Z GIZMHKLHRGRLM XRKSVI GSV FMRGH LU GSV KOZRMGVCG ZIV IVZIIZMTVW
RM Z WRUUVIVMG ZMW FHFZOOBJFRGV XLNKOVC LIWVI YFG GSV FMRGH GSVNHVOEVH ZIV 
OVUG FMXSZMTVW YB XLMGIZHG RM Z HFYHGRGFGRLM XRKSVI GSV FMRGH LU GSV KOZRMGVCG 
ZIV IVGZRMVW RM GSV HZNV HVJFVMXV RM GSV XRKSVIGVCG YFG GSV FMRGH GSVNHVOEVH ZIV 
ZOGVIVW'''
(Expected: IN CRYPTOGRAPHY A SUBSTITUTION CIPHER... [long text])

Iteration with 'default' dictionary. Score: 2269.6

'''ON CRBUTPKRAUHB A IMWITOTMTOPN COUHER OI A GETHPD PL ENCRBUTONK ON XHOCH MNOTI 
PL USAONTEFT ARE REUSACED XOTH THE COUHERTEFT ON A DELONED GANNER XOTH THE HESU PL 
A QEB THE MNOTI GAB WE IONKSE SETTERI THE GPIT CPGGPN UAORI PL SETTERI TROUSETI PL 
SETTERI GOFTMREI PL THE AWPVE AND IP LPRTH THE RECEOVER DECOUHERI THE TEFT WB
 UERLPRGONK THE ONVERIE IMWITOTMTOPN URPCEII TP EFTRACT THE PROKONAS GEIIAKE 
 IMWITOTMTOPN COUHERI CAN WE CPGUARED XOTH TRANIUPIOTOPN COUHERI ON A TRANIUPIOTOPN 
 COUHER THE MNOTI PL THE USAONTEFT ARE REARRANKED ON A DOLLERENT AND MIMASSBJMOTE 
 CPGUSEF PRDER WMT THE MNOTI THEGIESVEI ARE SELT MNCHANKED WB CPNTRAIT ON A 
 IMWITOTMTOPN COUHER THE MNOTI PL THE USAONTEFT ARE RETAONED ON THE IAGE IEJMENCE 
 ON THE COUHERTEFT WMT THE MNOTI THEGIESVEI ARE ASTERED'''
  
Key sample: P->Q, J->J, B->B, K->U, Z->A, W->D, N->G, S->H, E->V, H->I...

Iteration with ['SUBSTITUTION','METHOD'] added to the dictionary. Score: 2490.9

'''IN CRBSTOGRASHB A DJKDTITJTION CISHER ID A METHOP OU ENCRBSTING IN WHICH JNITD OU 
SLAINTEFT ARE RESLACEP WITH THE CISHERTEFT IN A PEUINEP MANNER WITH THE HELS OU A QEB 
THE JNITD MAB KE DINGLE LETTERD THE MODT COMMON SAIRD OU LETTERD TRISLETD OU LETTERD
MIFTJRED OU THE AKOVE ANP DO UORTH THE RECEIVER PECISHERD THE TEFT KB SERUORMING THE
INVERDE DJKDTITJTION SROCEDD TO EFTRACT THE ORIGINAL MEDDAGE DJKDTITJTION CISHERD CAN 
KE COMSAREP WITH RANDSODITION CISHERD IN A TRANDSODITION CISHER THE JNITD OU THE 
SLAINTEFT ARE REARRANGEP IN A PIUUERENT ANP JDJALLBXJITE COMSLEF ORPER KJT THE JNITD 
THEMDELVED ARE LEUT JNCHANGEP KB CONTRADT IN A DJKDTITJTION CISHER THE JNITD OU THE 
SLAINTEFT ARE RETAINEP IN THE DAME DEXJENCE IN THE CISHERTEFT KJT THE JNITD THEMDELVED 
ARE ALTEREP'''

Key sample: R->I, B->B, F->J, O->L, D->W, G->T, S->H, I->R, Z->A, H->D...

Iteration with ['CRYPTOGRAPHY','SUBSTITUTION','CIPHER','METHOD','ENCRYPT'] added to the dictionary. Score: 2706.2

'''IN CRYPTOGRAPHY A UMKUTITMTION CIPHER IU A SETHOD OF ENCRYPTING IN WHICH MNITU OF 
PLAINTEXT ARE REPLACED WITH THE CIPHERTEXT IN A DEFINED SANNER WITH THE HELP OF A BEY 
THE MNITU SAY KE UINGLE LETTERU THE SOUT COSSON PAIRU OF LETTERU TRIPLETU OF LETTERU 
SIXTMREU OF THE AKOVE AND UO FORTH THE RECEIVER DECIPHERU THE TEXT KY PERFORSING THE 
INVERUE UMKUTITMTION PROCEUU TO EXTRACT THE ORIGINAL SEUUAGE UMKUTITMTION CIPHERU CAN
KE COSPARED WITH RANUPOUITION CIPHERU IN A TRANUPOUITION CIPHER THE MNITU OF THE
PLAINTEXT ARE REARRANGED IN A DIFFERENT AND MUMALLYJMITE COSPLEX ORDER KMT THE MNITU 
THESUELVEU ARE LEFT MNCHANGED KY CONTRAUT IN A UMKUTITMTION CIPHER THE MNITU OF THE 
PLAINTEXT ARE RETAINED IN THE UASE UEJMENCE IN THE CIPHERTEXT KMT THE MNITU 
THESUELVEU ARE ALTERED'''

Key sample: Z->A, R->I, M->N, G->T, S->H, V->E, I->R, H->U, L->O, K->P...

Transposition

1. Rail Fence

The Rail Fence cipher can be brute forced by working backwards from the length of the message to the number of rails. One difficulty here is that the letter frequency is preserved due to the words being scrambled. An exhaustive search is possible, given that the maximum number of rails in a text of length N is N rails. However, pattern analysis will likely yield results quicker.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

Encryption:

=== 3 Rails, Direction: down, Remove Spaces: True ===
Rail Fence cipher with 3 rails:
Direction: down
Text length: 10

Rail visualization:
Rail 0: H   O   L
Rail 1:  E L W R D
Rail 2:   L   O

Rail pattern: [0, 1, 2, 1, 0, 1, 2, 1, 0, 1]

Original:  'HELLO WORLD'
Encrypted: 'HOLELWRDLO'
Decrypted: 'HELLOWORLD'
Match: True

=== 4 Rails, Direction: down, Remove Spaces: True ===
Rail Fence cipher with 4 rails:
Direction: down
Text length: 10

Rail visualization:
Rail 0: H     O
Rail 1:  E   W R
Rail 2:   L O   L
Rail 3:    L     D

Rail pattern: [0, 1, 2, 3, 2, 1, 0, 1, 2, 3]

Original:  'HELLO WORLD'
Encrypted: 'HOEWRLOLLD'
Decrypted: 'HELLOWORLD'
Match: True

Decryption:

Detailed analysis of: 'HOLELWRDLO'
(Correct encryption of 'HELLOWORLD' with 3 rails)
=== Detailed Analysis: 2 Rails ===
Encrypted:  'HOLELWRDLO'
Decrypted:  'HWORLDELLO'
Score:      -900.0
Text length: 10
Pattern period: 2
Rail distribution: {0: 5, 1: 5}
Pattern sample: [0, 1, 0, 1, 0, 1, 0, 1, 0, 1]

Rail visualization:
Rail 0: H O L E L
Rail 1:  W R D L O

=== Detailed Analysis: 3 Rails ===
Encrypted:  'HOLELWRDLO'
Decrypted:  'HELLOWORLD'
Score:      -870.0
Text length: 10
Pattern period: 4
Rail distribution: {0: 3, 1: 5, 2: 2}
Pattern sample: [0, 1, 2, 1, 0, 1, 2, 1, 0, 1]

Rail visualization:
Rail 0: H   O   L
Rail 1:  E L W R D
Rail 2:   L   O

=== Detailed Analysis: 4 Rails ===
Encrypted:  'HOLELWRDLO'
Decrypted:  'HLWLREOLDO'
Score:      -918.0
Text length: 10
Pattern period: 6
Rail distribution: {0: 2, 1: 3, 2: 3, 3: 2}
Pattern sample: [0, 1, 2, 3, 2, 1, 0, 1, 2, 3]

Rail visualization:
Rail 0: H     O
Rail 1:  L   E L
Rail 2:   W R   D
Rail 3:    L     O

=== Detailed Analysis: 5 Rails ===
Encrypted:  'HOLELWRDLO'
Decrypted:  'HLWDOLREOL'
Score:      -913.0
Text length: 10
Pattern period: 8
Rail distribution: {0: 2, 1: 3, 2: 2, 3: 2, 4: 1}
Pattern sample: [0, 1, 2, 3, 4, 3, 2, 1, 0, 1]

Rail visualization:
Rail 0: H       O
Rail 1:  L     E L
Rail 2:   W   R
Rail 3:    D L
Rail 4:     O

2. Block

Classical ciphers have search space of 26! ≈ 4×10²⁶, but this type of cipher has a search space on the scale of 2¹²⁸ ≈ 3×10³⁸ (AES-128), making it impossible to attempt an exhaustive search on your average computer. Instead, more intelligent attacks must be utilized to get the key for decryption. The decryption files included for this example only provide an analysis of a sample of search results based on user settings. This algorithm is a good comparison, however, because it is the backbone of modern-day encryption.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption
• decrypt_improved_test.py - an LLM generated test case for decryption
• decrypt_improved.py - The 'improved' version of this algorithm was created by letting Claude AI make changes in order to make the decryption algorithm more accurate. It added a very specific dictionary so that the test cases passed more often. There are several group questions comparing & contrasting results and methods. Otherwise, the decryption typically fails.

Encryption:

================================================================================
CONFIGURATION 1
================================================================================
Block Cipher Configuration:
  Block size: 8 bytes
  Number of rounds: 3
  Key: 0123456789ABCDEF
  Padding mode: PKCS7
  Output format: hex

S-box (first 16 values): ['0xe4', '0x6', '0x4f', '0xce', '0x75', '0xb9', '0xf2', '0xa7', '0x9', '0x1e', '0xb4', '0xde', '0xe6', '0xd9', '0x88', '0x44']     
P-box (bit positions): [0, 1, 3, 7, 4, 2, 5, 6]

Round keys:
  Round 1: 2344658AAFC8E906
  Round 2: 44678AA9C8EB0625
  Round 3: 658AABCCE9062740

=== Testing Messages ===
'HELLO' -> '84448CA0F2AD4F7D' -> 'HELLO' (Match: True)
'HELLO WORLD' -> '84448CA0F254C2B0F4B508E07FB449A3' -> 'HELLO WORLD' (Match: True)
'THE QUICK BROWN FOX JUMPS OVER THE LAZY DOG' -> '1D246C09677927883482F6C1F24362D44449BE097B7910811482C6A6DBE0EBF68444D0A0ED6B95D4C749B8E07FB449A3' -> 'THE 
QUICK BROWN FOX JUMPS OVER THE LAZY DOG' (Match: True)

Decryption (attempt. There are no results here):

=== Analysis of Unknown Ciphertext ===
Ciphertext: A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890
=== Comprehensive Block Cipher Cryptanalysis ===
Analyzing 8 blocks of 8 bytes each

============================================================
=== Statistical Randomness Tests ===
Chi-square test (byte frequency):
  Chi-square statistic: 1922.00
  Expected for random: ~255
  Assessment: FAIL

Runs test (consecutive bytes):
  Observed runs: 63
  Expected runs: 31.5
  Deviation: 1.000
  Assessment: FAIL

Autocorrelation test (lag=1):
  Correlation coefficient: 0.2946
  Assessment: FAIL

============================================================
=== Frequency Analysis Attack ===
Analyzed 8 ciphertext blocks
Block frequency analysis:
  a1b2c3d4e5f67890: 8 times (100.000%)

Repeated blocks (ECB vulnerability): 1

Byte frequency by position:
  Position 0: 0xA1 appears 8 times (100.000%)
  Position 1: 0xB2 appears 8 times (100.000%)
  Position 2: 0xC3 appears 8 times (100.000%)
  Position 3: 0xD4 appears 8 times (100.000%)
  Position 4: 0xE5 appears 8 times (100.000%)
  Position 5: 0xF6 appears 8 times (100.000%)
  Position 6: 0x78 appears 8 times (100.000%)
  Position 7: 0x90 appears 8 times (100.000%)

============================================================
=== Exhaustive Key Search (max 1000 keys) ===
Key space: 2^16 = 65,536 total keys
Testing only 1,000 keys for demonstration...
Found 0 candidate keys

Grid

1. Polybius

The Polybius cipher is possible to brute force due to its size (5x5 or 6x6), making an exhaustive search possible. While the Polybius Square can be randomized, there are still a limited number of cells. Frequency analysis can also be used to decode this cypher without reconstructing the original grid. This makes the decryption methods similar to the Monoalphabetic cipher shown earlier.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

Encryption:

================================================================================
CONFIGURATION 1
================================================================================
Polybius Square (5x5):
Combined letters: IJ
Number base: 1 (1-based)
    1  2  3  4  5
 1  F  U  Y  R  H
 2  Q  Z  X  G  V
 3  P  S  K  A  L
 4  N  D  T  C  B
 5  W  O  E  M

Coordinate examples:
  A → 34
  E → 53
  M → 54
  Z → 22

Grid Statistics:
  grid_size: 5x5
  total_positions: 25
  filled_positions: 24
  keyword_used: False
  combine_letters: IJ
  number_base: 1
  separator: ' '

=== Testing Messages ===
'HELLO' -> '15 53 35 35 52' -> 'HELLO' (Match: True)
'HELLO WORLD' -> '15 53 35 35 52   51 52 14 35 42' -> 'HELLOWORLD' (Match: False)
  Note: J→I substitution expected with IJ combination
'ATTACK AT DAWN' -> '34 43 43 34 44 33   34 43   42 34 51 41' -> 'ATTACKATDAWN' (Match: False)
  Note: J→I substitution expected with IJ combination

================================================================================
CONFIGURATION 3
================================================================================
Polybius Square (5x5):
Combined letters: IJ
Number base: 0 (0-based)
    0  1  2  3  4
 0  B  F  C  R  A
 1  S  E  T  P  O
 2  K  U  X  W  L
 3  N  Q  H  Z  M
 4  D  V  Y  G

Coordinate examples:
  A → 04
  E → 11
  M → 34
  Z → 33

Grid Statistics:
  grid_size: 5x5
  total_positions: 25
  filled_positions: 24
  keyword_used: False
  combine_letters: IJ
  number_base: 0
  separator: '-'

=== Testing Messages ===
'HELLO' -> '32-11-24-24-14' -> 'HELLO' (Match: True)
'HELLO WORLD' -> '32-11-24-24-14- -23-14-03-24-40' -> 'HELLO WORLD' (Match: True)
'ATTACK AT DAWN' -> '04-12-12-04-02-20- -04-12- -40-04-23-30' -> 'ATTACK AT DAWN' (Match: True)

Decryption:

=== CREATING PROPER TEST CASES ===
Standard grid coordinate mapping:
  H → 23
  E → 15
  L → 25
  O → 33
  W → 51
  R → 41
  D → 14

'HELLO WORLD' encrypts to: 23 15 25 25 33 51 33 41 25 14

SECRET grid coordinate mapping:
  S → 11
  E → 12
  C → 13
  R → 14
  T → 15

'SECRET' encrypts to: 11 12 13 14 12 15

============================================================
TEST: Standard Grid - HELLO WORLD
============================================================
=== Ciphertext Analysis ===
Text: 23 15 25 25 33 51 33 41 25 14
Length: 29
Possible separators found: [' ']
Coordinate pairs found: 10
Sample pairs: ['23', '15', '25', '25', '33', '51', '33', '41', '25', '14']
Row coordinates: 1 to 5
Col coordinates: 1 to 5
Likely 1-based numbering
Suggested grid size: 5x5
Suggested number base: 1

Correct Grid Configuration:
Polybius Square (5x5):
Standard alphabetical arrangement
Combined letters: IJ
Number base: 1 (1-based)
    1  2  3  4  5
 1  A  B  C  D  E
 2  F  G  H  K  L
 3  M  N  O  P  Q
 4  R  S  T  U  V
 5  W  X  Y  Z

Coordinate examples:
  11 → A
  15 → E
  31 → M
  54 → Z

Known decryption: 'HELLOWORLD'
Expected: 'HELLOWORLD'
Match: True

2. ADFGVX

The use of a 2-step substitution and transposition (or the reverse, depending on if you're encrypting or decrypting) makes this trickier to decode than the Polybius Cipher even though they may take up the same physical size for the grid. However, this algorithm is still possible to brute force through an exhaustive search or frequency analysis.

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption

Encryption:

================================================================================
CONFIGURATION 1
================================================================================
ADFGVX Cipher Configuration:
Random Grid (seed: 42)
Transposition Keyword: 'SECRET'
Transposition Order: [4, 2, 1, 3, 5]

Substitution Grid (6x6):
   A  D  F  G  V  X
A   J  M  F  1  6  T
D   4  Z  W  0  5  K
F   L  2  I  U  Q  9
G   G  Y  A  8  N  S
V   C  7  3  V  D  X
X   E  O  P  R  B  H

Substitution Examples:
  A → GF
  E → XA
  M → AD
  Z → DD
  5 → DV
  9 → FX

Cipher Statistics:
  cipher_type: ADFGVX
  grid_size: 6x6
  total_characters: 36
  grid_keyword_used: False
  grid_keyword: None
  transposition_keyword: SECRET
  transposition_length: 5
  transposition_order: [4, 2, 1, 3, 5]
  random_seed: 42
  separator: ''

=== Testing Messages ===
'HELLO' -> 'XAXFAXXAFD'
'HELLO WORLD' -> 'XAXAXFFFAXDVXADGFDXV'
'ATTACK AT DAWN' -> 'AFGVGFGXVFXVFGVGXDXDAAAFX'

Decryption:

=== CREATING PROPER TEST CASES ===
Test cipher configuration:        
ADFGVX Cipher Configuration:      
Random Grid (seed: 42)
Transposition Keyword: 'KEY'      
Transposition Order: [2, 1, 3]    

Substitution Grid (6x6):
   A  D  F  G  V  X
A   J  M  F  1  6  T 
D   4  Z  W  0  5  K 
F   L  2  I  U  Q  9 
G   G  Y  A  8  N  S 
V   C  7  3  V  D  X
X   E  O  P  R  B  H

Coordinate examples:
  GF → A
  XA → E
  AD → M
  DD → Z
  DV → 5
  FX → 9

=== MANUAL ENCRYPTION TRACE (for testing) ===
Let's trace how 'HELLO' would be encrypted with this configuration:
Grid lookup (manual):
Character → Coordinate mapping:
  H → XX
  E → XA
  L → FA
  L → FA
  O → XD
After substitution: 'XXXAFAFAXD'
Transposition keyword: 'KEY'
Alphabetical order: [2, 0, 1]
Padded substituted text: 'XXXAFAFAXDXX'
Row 1: X X X
Row 2: A F A
Row 3: F A X
Row 4: D X X
Column E: 'XFAX'
Column K: 'XAFD'
Column Y: 'XAXX'
Simulated encrypted result: 'XFAX XAFD XAXX'

=== TESTING DECRYPTION ===
Decrypted result: 'HELLO'
Original message: 'HELLO'
Match: True

=== STEP-BY-STEP DEMONSTRATION ===
=== ADFGVX CIPHER DECRYPTION DEMONSTRATION ===
Encrypted text: 'XFAX XAFD XAXX'
ADFGVX Cipher Configuration:
Random Grid (seed: 42)
Transposition Keyword: 'KEY'
Transposition Order: [2, 1, 3]

Substitution Grid (6x6):
   A  D  F  G  V  X
A   J  M  F  1  6  T
D   4  Z  W  0  5  K
F   L  2  I  U  Q  9
G   G  Y  A  8  N  S
V   C  7  3  V  D  X
X   E  O  P  R  B  H

Coordinate examples:
  GF → A
  XA → E
  AD → M
  DD → Z
  DV → 5
  FX → 9

=== STEP 1: REVERSE TRANSPOSITION ===
After reversing transposition: 'XXXAFAFAXD'

=== STEP 2: REVERSE SUBSTITUTION ===
Coordinate pairs to decode:
  XX → H
  XA → E
  FA → L
  FA → L
  XD → O
Final decrypted text: 'HELLO'
Demo result: 'HELLO'

Stream and Hash

1. RC4

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption
• key_comparison_demo.py - a demonstration of how dictionaries with partial keys in a brute force attack might preform
• klein_demo.py - a demo of the Klein attack for real decryption of RC4

The decryption attempts below using key_comparison_demo.py shows that during the brute force attempt with the 18 keys, it is possible to decrypt a message from this algorithm by running down the list in the dictionary. Notice that keys using repeating dictionary words are able to be decrypted, but deviations from the dictionary mean that the message may not (and probably not) be decrypted.

Encryption:

RC4 State Information:
  Key: 'SECRET'

=== Testing Messages ===
'HELLO' → D42B203340
'RC4' → CE2D58
'HELLO WORLD' → D42B203340007487B02AF8

RC4 State Information:
  Key: 'ThisIsALongerSecretKey123'

=== Testing Messages ===
'HELLO' → 3099B29409
'RC4' → 2A9FCA
'HELLO WORLD' → 3099B2940970426389CECB

Cipher symmetry demo (not decryption):

============================================================
RC4 SYMMETRY DEMONSTRATION
============================================================
=== RC4 SYMMETRY DEMONSTRATION ===
Plaintext: 'SECRET'
Key: 'KEY'

--- Step 1: Encryption ---
=== RC4 Key Scheduling Algorithm (KSA) for Decryption ===
Key: 'KEY' = 4B4559
Key length: 3 bytes
Initial S-box: [0, 1, 2, ..., 255]
i=  0: j=(0+0+75)%256= 75, swap S[0]↔S[75]
i=  1: j=(76+1+69)%256=145, swap S[1]↔S[145]
i=  2: j=(147+2+89)%256=236, swap S[2]↔S[236]
i=  3: j=(-17+3+75)%256= 58, swap S[3]↔S[58]
i=  4: j=(62+4+69)%256=131, swap S[4]↔S[131]
i=  5: j=(136+5+89)%256=225, swap S[5]↔S[225]
i=  6: j=(-25+6+75)%256= 50, swap S[6]↔S[50]
i=  7: j=(57+7+69)%256=126, swap S[7]↔S[126]
Final S-box first 16 values: [28, 170, 236, 58, 131, 225, 50, 126, 223, 214, 96, 52, 61, 143, 246, 32]
Final S-box last 16 values:  [173, 55, 99, 75, 196, 124, 102, 82, 91, 135, 87, 149, 23, 212, 114, 108]

=== RC4 Pseudo-Random Generation Algorithm (PRGA) for Decryption ===
Generating 6 keystream bytes...
Step | i   | j   | S[i] | S[j] | S[i]+S[j] | S[sum] | Keystream
-----------------------------------------------------------------
   0 |   1 | 170 |  81  | 170  |      251 | 149    | 0x95
   1 |   2 | 150 |  30  | 236  |       10 |  96    | 0x60
   2 |   3 | 208 |  60  |  58  |      118 | 252    | 0xFC
   3 |   4 |  83 |  31  | 131  |      162 |  84    | 0x54
   4 |   5 |  52 | 230  | 225  |      199 | 182    | 0xB6
   5 |   6 | 102 | 219  |  50  |       13 | 143    | 0x8F
Ciphertext: C625BF06F3DB

--- Step 2: Decryption ---
=== RC4 Key Scheduling Algorithm (KSA) for Decryption ===
Key: 'KEY' = 4B4559
Key length: 3 bytes
Initial S-box: [0, 1, 2, ..., 255]
i=  0: j=(0+0+75)%256= 75, swap S[0]↔S[75]
i=  1: j=(76+1+69)%256=145, swap S[1]↔S[145]
i=  2: j=(147+2+89)%256=236, swap S[2]↔S[236]
i=  3: j=(-17+3+75)%256= 58, swap S[3]↔S[58]
i=  4: j=(62+4+69)%256=131, swap S[4]↔S[131]
i=  5: j=(136+5+89)%256=225, swap S[5]↔S[225]
i=  6: j=(-25+6+75)%256= 50, swap S[6]↔S[50]
i=  7: j=(57+7+69)%256=126, swap S[7]↔S[126]
Final S-box first 16 values: [28, 170, 236, 58, 131, 225, 50, 126, 223, 214, 96, 52, 61, 143, 246, 32]
Final S-box last 16 values:  [173, 55, 99, 75, 196, 124, 102, 82, 91, 135, 87, 149, 23, 212, 114, 108]

=== RC4 Pseudo-Random Generation Algorithm (PRGA) for Decryption ===
Generating 6 keystream bytes...
Step | i   | j   | S[i] | S[j] | S[i]+S[j] | S[sum] | Keystream
-----------------------------------------------------------------
   0 |   1 | 170 |  81  | 170  |      251 | 149    | 0x95
   1 |   2 | 150 |  30  | 236  |       10 |  96    | 0x60
   2 |   3 | 208 |  60  |  58  |      118 | 252    | 0xFC
   3 |   4 |  83 |  31  | 131  |      162 |  84    | 0x54
   4 |   5 |  52 | 230  | 225  |      199 | 182    | 0xB6
   5 |   6 | 102 | 219  |  50  |       13 | 143    | 0x8F
Decrypted: 'SECRET'

--- Verification ---
Keystream 1: 9560FC54B68F
Keystream 2: 9560FC54B68F
Keystreams identical: True
Decryption successful: True # NOT REAL DECRYPTION!! This re-used a function call to compare the two, but they SHOULD match because this algorithm is symmetric

Decryption with key_comparison_demo.py:

STEP 1: ENCRYPTING MESSAGES
==================================================
1. 'HELLO' + key 'KEY' → DD25B018F9
2. 'SECRET' + key 'ABC' → 9D611DC10AFA
3. 'TEST' + key '123' → 07B5ECD6
4. 'RC4' + key 'X' → B7C3C5
5. 'BRUTE' + key 'PASS' → C2D2A9DEB6
6. 'TESTTESTTESTTESTTESTTEST' + key 'PEANUTBUTTER' → B901B1D905B94619715026232C779904EE2A80F5B99DFDAA
7. 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' + key 'QUICKBROWNFOX' → 4D2F0712D8C84303DF0E8AEEFA73ACC5CEFBE9CA9CE3B9EACF309A80674C65E984DE5730BC6BA6F7636FA6548. 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' + key 'FOXFOXFOXFOX' → 7447591A0418A1EA1FABAAAC2FE8B73423BCA23F6FD72419ABB46A9FBF396B2CC7C72983CDFE31D35A5BF81B 
9. 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' + key 'F' → C11C78918F720AA0A34130F8A8894E81EA0C2A3EAD9A7F2F8504E094617CB50D3D7A1698606D38BDB2C8EB65
10. 'THIS is a LONGER PHRASE with mixed letters' + key 'KEYKEYKEYKEYKEY' → C128B50796E637D857A4B7C9BE18967F566530651DE0D0008151C5E0C2AAB12207559CB8F9F93AF3275B   
11. 'THIS is a LONGER PHRASE with mixed letters' + key 'AMOREDIFFICULTKEY' → F01C043F1FE9CC68EAEA4C50DECBE16AA85C79D44C0DC1A93EF1CA16AFAE863D820D6036690A532CD666 

STEP 2: BRUTE FORCE DECRYPTION ATTEMPTS
==================================================

1. Brute forcing: DD25B018F9
   (Original: 'HELLO' with key 'KEY')
SUCCESS! Key 'KEY' → 'HELLO' (attempt 7)

2. Brute forcing: 9D611DC10AFA
   (Original: 'SECRET' with key 'ABC')
SUCCESS! Key 'ABC' → 'SECRET' (attempt 8)

3. Brute forcing: 07B5ECD6
   (Original: 'TEST' with key '123')
SUCCESS! Key '123' → 'TEST' (attempt 9)

4. Brute forcing: B7C3C5
   (Original: 'RC4' with key 'X')
SUCCESS! Key 'X' → 'RC4' (attempt 4)

5. Brute forcing: C2D2A9DEB6
   (Original: 'BRUTE' with key 'PASS')
SUCCESS! Key 'PASS' → 'BRUTE' (attempt 10)

6. Brute forcing: B901B1D905B94619715026232C779904EE2A80F5B99DFDAA
   (Original: 'TESTTESTTESTTESTTESTTEST' with key 'PEANUTBUTTER')
NO KEY: Key not found in 18 attempts

7. Brute forcing: 4D2F0712D8C84303DF0E8AEEFA73ACC5CEFBE9CA9CE3B9EACF309A80674C65E984DE5730BC6BA6F7636FA654
   (Original: 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' with key 'QUICKBROWNFOX')
NO KEY: Key not found in 18 attempts

8. Brute forcing: 7447591A0418A1EA1FABAAAC2FE8B73423BCA23F6FD72419ABB46A9FBF396B2CC7C72983CDFE31D35A5BF81B
   (Original: 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' with key 'FOXFOXFOXFOX')
NO KEY: Key not found in 18 attempts

9. Brute forcing: C11C78918F720AA0A34130F8A8894E81EA0C2A3EAD9A7F2F8504E094617CB50D3D7A1698606D38BDB2C8EB65
   (Original: 'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG' with key 'F')
NO KEY: Key not found in 18 attempts

10. Brute forcing: C128B50796E637D857A4B7C9BE18967F566530651DE0D0008151C5E0C2AAB12207559CB8F9F93AF3275B
   (Original: 'THIS is a LONGER PHRASE with mixed letters' with key 'KEYKEYKEYKEYKEY')
SUCCESS! Key 'KEY' → 'THIS is a LONGER PHRASE with mixed letters' (attempt 7)

11. Brute forcing: F01C043F1FE9CC68EAEA4C50DECBE16AA85C79D44C0DC1A93EF1CA16AFAE863D820D6036690A532CD666
   (Original: 'THIS is a LONGER PHRASE with mixed letters' with key 'AMOREDIFFICULTKEY')
NO KEY: Key not found in 18 attempts

Decryption (short printout), klein_demo.py:

NOTE: everything is compared to the ground truth value of the key byte to make this readable. Pay close attention to the appears X/Y times. That is relative to the total samples.

This algorithm works on VERY SUBTLE differences. Below shows the occurrence of the TARGET value in the location. For the top example, K appeared in position 0 only 391 times out of 100k. That's only 0.391 percent. For very small keys, there really wasn't a statistically noticeable difference.

Analyzing keystream position 0:
    Key[0] = 0x4B ('K') appears 391/100000 times (prob: 0.0039, bias: 1.00x)
    Key[1] = 0x45 ('E') appears 196/100000 times (prob: 0.0020, bias: 0.50x)
    Key[2] = 0x59 ('Y') appears 488/100000 times (prob: 0.0049, bias: 1.25x)

Analyzing keystream position 1:
    Key[0] = 0x4B ('K') appears 195/100000 times (prob: 0.0019, bias: 0.50x)

Analyzing keystream position 2:
    Key[0] = 0x4B ('K') appears 195/100000 times (prob: 0.0019, bias: 0.50x)
    Key[1] = 0x45 ('E') appears 194/100000 times (prob: 0.0019, bias: 0.50x)
    Key[2] = 0x59 ('Y') appears 196/100000 times (prob: 0.0020, bias: 0.50x)

However, with longer keys there were some values that began to stand out. That means that this is NOT perfectly random, and that there is something that can be pulled out of this algorithm. 450k samples were run, and some threshold values may need to be tuned, but there are several statistically significant values.

The following is run over the first 16 bytes. Kline discovered that there was the strongest correlation in the first 16-32 bytes.

Analyzing keystream position 0:
    Key[0] = 0x4C ('L') appears 1760/450000 times (prob: 0.0039, bias: 1.00x)
    Key[1] = 0x4F ('O') appears 1758/450000 times (prob: 0.0039, bias: 1.00x)
    Key[2] = 0x4E ('N') appears 1758/450000 times (prob: 0.0039, bias: 1.00x)
    Key[3] = 0x47 ('G') appears 880/450000 times (prob: 0.0020, bias: 0.50x)
    Key[4] = 0x50 ('P') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[5] = 0x41 ('A') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[6] = 0x53 ('S') appears 879/450000 times (prob: 0.0020, bias: 0.50x)
    Key[7] = 0x53 ('S') appears 879/450000 times (prob: 0.0020, bias: 0.50x)
    Key[8] = 0x57 ('W') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[9] = 0x4F ('O') appears 1758/450000 times (prob: 0.0039, bias: 1.00x)
    Key[10] = 0x52 ('R') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 39257/450000 times (prob: 0.0872, bias: 22.33x)  # NOTE THIS VALUE!!

Analyzing keystream position 3:
    Key[0] = 0x4C ('L') appears 1759/450000 times (prob: 0.0039, bias: 1.00x)
    Key[1] = 0x4F ('O') appears 38819/450000 times (prob: 0.0863, bias: 22.08x)
    Key[3] = 0x47 ('G') appears 439/450000 times (prob: 0.0010, bias: 0.25x)
    Key[4] = 0x50 ('P') appears 439/450000 times (prob: 0.0010, bias: 0.25x)
    Key[6] = 0x53 ('S') appears 2199/450000 times (prob: 0.0049, bias: 1.25x)
    Key[7] = 0x53 ('S') appears 2199/450000 times (prob: 0.0049, bias: 1.25x)
    Key[8] = 0x57 ('W') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[9] = 0x4F ('O') appears 38819/450000 times (prob: 0.0863, bias: 22.08x) # AND THIS VALUE!
    Key[10] = 0x52 ('R') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 1318/450000 times (prob: 0.0029, bias: 0.75x)

Analyzing keystream position 8:
    Key[1] = 0x4F ('O') appears 1318/450000 times (prob: 0.0029, bias: 0.75x)
    Key[2] = 0x4E ('N') appears 1317/450000 times (prob: 0.0029, bias: 0.75x)
    Key[3] = 0x47 ('G') appears 879/450000 times (prob: 0.0020, bias: 0.50x)
    Key[4] = 0x50 ('P') appears 1317/450000 times (prob: 0.0029, bias: 0.75x)
    Key[5] = 0x41 ('A') appears 879/450000 times (prob: 0.0020, bias: 0.50x)
    Key[6] = 0x53 ('S') appears 1756/450000 times (prob: 0.0039, bias: 1.00x)
    Key[7] = 0x53 ('S') appears 1756/450000 times (prob: 0.0039, bias: 1.00x)
    Key[8] = 0x57 ('W') appears 57570/450000 times (prob: 0.1279, bias: 32.75x) # LETTER NUMBER 3!
    Key[9] = 0x4F ('O') appears 1318/450000 times (prob: 0.0029, bias: 0.75x)
    Key[10] = 0x52 ('R') appears 439/450000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 440/450000 times (prob: 0.0010, bias: 0.25x)

Analyzing keystream position 15:
    Key[0] = 0x4C ('L') appears 1317/450000 times (prob: 0.0029, bias: 0.75x)
    Key[1] = 0x4F ('O') appears 56250/450000 times (prob: 0.1250, bias: 32.00x)  #HERE!
    Key[2] = 0x4E ('N') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[3] = 0x47 ('G') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[4] = 0x50 ('P') appears 880/450000 times (prob: 0.0020, bias: 0.50x)
    Key[5] = 0x41 ('A') appears 1756/450000 times (prob: 0.0039, bias: 1.00x)
    Key[6] = 0x53 ('S') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[7] = 0x53 ('S') appears 440/450000 times (prob: 0.0010, bias: 0.25x)
    Key[8] = 0x57 ('W') appears 1756/450000 times (prob: 0.0039, bias: 1.00x)
    Key[9] = 0x4F ('O') appears 56250/450000 times (prob: 0.1250, bias: 32.00x) # AND HERE!
    Key[10] = 0x52 ('R') appears 879/450000 times (prob: 0.0020, bias: 0.50x)
    Key[11] = 0x44 ('D') appears 1317/450000 times (prob: 0.0029, bias: 0.75x)

Doing a second analysis for the first 32 bytes and increasing the number of samples from 450k to 500k showed:

Analyzing keystream position 0:
    Key[0] = 0x4C ('L') appears 1955/500000 times (prob: 0.0039, bias: 1.00x)
    Key[1] = 0x4F ('O') appears 1952/500000 times (prob: 0.0039, bias: 1.00x)
    Key[2] = 0x4E ('N') appears 1953/500000 times (prob: 0.0039, bias: 1.00x)
    Key[3] = 0x47 ('G') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[4] = 0x50 ('P') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[5] = 0x41 ('A') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[6] = 0x53 ('S') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[7] = 0x53 ('S') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[8] = 0x57 ('W') appears 489/500000 times (prob: 0.0010, bias: 0.25x)
    Key[9] = 0x4F ('O') appears 1952/500000 times (prob: 0.0039, bias: 1.00x)
    Key[10] = 0x52 ('R') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 43618/500000 times (prob: 0.0872, bias: 22.33x) # 22x HIGHER!

Analyzing keystream position 3:
    Key[0] = 0x4C ('L') appears 1955/500000 times (prob: 0.0039, bias: 1.00x)
    Key[1] = 0x4F ('O') appears 43130/500000 times (prob: 0.0863, bias: 22.08x)
    Key[3] = 0x47 ('G') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[4] = 0x50 ('P') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[6] = 0x53 ('S') appears 2443/500000 times (prob: 0.0049, bias: 1.25x)
    Key[7] = 0x53 ('S') appears 2443/500000 times (prob: 0.0049, bias: 1.25x)
    Key[8] = 0x57 ('W') appears 489/500000 times (prob: 0.0010, bias: 0.25x)
    Key[9] = 0x4F ('O') appears 43130/500000 times (prob: 0.0863, bias: 22.08x) # 22x HIGHER!
    Key[10] = 0x52 ('R') appears 489/500000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)

Analyzing keystream position 8:
    Key[1] = 0x4F ('O') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[2] = 0x4E ('N') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[3] = 0x47 ('G') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[4] = 0x50 ('P') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[5] = 0x41 ('A') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[6] = 0x53 ('S') appears 1952/500000 times (prob: 0.0039, bias: 1.00x)
    Key[7] = 0x53 ('S') appears 1952/500000 times (prob: 0.0039, bias: 1.00x)
    Key[8] = 0x57 ('W') appears 63966/500000 times (prob: 0.1279, bias: 32.75x) # 32x HIGHER!
    Key[9] = 0x4F ('O') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[10] = 0x52 ('R') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[11] = 0x44 ('D') appears 489/500000 times (prob: 0.0010, bias: 0.25x)

] = 0x4C ('L') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[1] = 0x4F ('O') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[2] = 0x4E ('N') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[3] = 0x47 ('G') appears 3905/500000 times (prob: 0.0078, bias: 2.00x) #<- that would be worth investigating, but is likely too low
    Key[4] = 0x50 ('P') appears 1953/500000 times (prob: 0.0039, bias: 1.00x)
    Key[5] = 0x41 ('A') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[6] = 0x53 ('S') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[7] = 0x53 ('S') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[9] = 0x4F ('O') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[11] = 0x44 ('D') appears 976/500000 times (prob: 0.0020, bias: 0.50x)

Analyzing keystream position 23:
    Key[0] = 0x4C ('L') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[2] = 0x4E ('N') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[3] = 0x47 ('G') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[5] = 0x41 ('A') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[6] = 0x53 ('S') appears 1953/500000 times (prob: 0.0039, bias: 1.00x)
    Key[7] = 0x53 ('S') appears 1953/500000 times (prob: 0.0039, bias: 1.00x)
    Key[8] = 0x57 ('W') appears 42644/500000 times (prob: 0.0853, bias: 21.83x) # 21x HIGHER!
    Key[11] = 0x44 ('D') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)

Analyzing keystream position 24:
    Key[0] = 0x4C ('L') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[1] = 0x4F ('O') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[2] = 0x4E ('N') appears 1466/500000 times (prob: 0.0029, bias: 0.75x)
    Key[3] = 0x47 ('G') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[4] = 0x50 ('P') appears 62500/500000 times (prob: 0.1250, bias: 32.00x) #32x HIGHER!
    Key[5] = 0x41 ('A') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[8] = 0x57 ('W') appears 42643/500000 times (prob: 0.0853, bias: 21.83x) #21x HIGHER!
    Key[9] = 0x4F ('O') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[10] = 0x52 ('R') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[11] = 0x44 ('D') appears 977/500000 times (prob: 0.0020, bias: 0.50x)

Analyzing keystream position 28:
    Key[0] = 0x4C ('L') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[1] = 0x4F ('O') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[2] = 0x4E ('N') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[3] = 0x47 ('G') appears 1467/500000 times (prob: 0.0029, bias: 0.75x)
    Key[5] = 0x41 ('A') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[6] = 0x53 ('S') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[7] = 0x53 ('S') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[8] = 0x57 ('W') appears 42643/500000 times (prob: 0.0853, bias: 21.83x) #21x HIGHER!
    Key[9] = 0x4F ('O') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[10] = 0x52 ('R') appears 1954/500000 times (prob: 0.0039, bias: 1.00x)
    Key[11] = 0x44 ('D') appears 976/500000 times (prob: 0.0020, bias: 0.50x)

Analyzing keystream position 30:
    Key[0] = 0x4C ('L') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[1] = 0x4F ('O') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[3] = 0x47 ('G') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[4] = 0x50 ('P') appears 1954/500000 times (prob: 0.0039, bias: 1.00x)
    Key[5] = 0x41 ('A') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[6] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
    Key[7] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
    Key[8] = 0x57 ('W') appears 976/500000 times (prob: 0.0020, bias: 0.50x)
    Key[9] = 0x4F ('O') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[10] = 0x52 ('R') appears 2930/500000 times (prob: 0.0059, bias: 1.50x)
    Key[11] = 0x44 ('D') appears 2928/500000 times (prob: 0.0059, bias: 1.50x)

Analyzing keystream position 31:
    Key[0] = 0x4C ('L') appears 1465/500000 times (prob: 0.0029, bias: 0.75x)
    Key[1] = 0x4F ('O') appears 978/500000 times (prob: 0.0020, bias: 0.50x)
    Key[2] = 0x4E ('N') appears 4393/500000 times (prob: 0.0088, bias: 2.25x) <- that is worth looking at a little closer, but too low individually
    Key[3] = 0x47 ('G') appears 1464/500000 times (prob: 0.0029, bias: 0.75x)
    Key[4] = 0x50 ('P') appears 488/500000 times (prob: 0.0010, bias: 0.25x)
    Key[8] = 0x57 ('W') appears 977/500000 times (prob: 0.0020, bias: 0.50x)
    Key[9] = 0x4F ('O') appears 978/500000 times (prob: 0.0020, bias: 0.50x)
    Key[10] = 0x52 ('R') appears 2441/500000 times (prob: 0.0049, bias: 1.25x)
    Key[11] = 0x44 ('D') appears 977/500000 times (prob: 0.0020, bias: 0.50x)

So we start feeling pretty good about the following parts of the key:

• Key[1] = 0x4F ('O') appears 62500/500000 times (prob: 0.1250, bias: 32.00x) # 32x HIGHER!
• Key[4] = 0x50 ('P') appears 62500/500000 times (prob: 0.1250, bias: 32.00x) #32x HIGHER!
• Key[6] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
• Key[7] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
• Key[8] = 0x57 ('W') appears 63966/500000 times (prob: 0.1279, bias: 32.75x) # 32x HIGHER!, 21x HIGHER!, 21x HIGHER!, 21x HIGHER! (this many? This is W.)
• Key[9] = 0x4F ('O') appears 43130/500000 times (prob: 0.0863, bias: 22.08x) # 22x HIGHER!, 32x HIGHER!
• Key[11] = 0x44 ('D') appears 43618/500000 times (prob: 0.0872, bias: 22.33x) # 22x HIGHER!

KEY PROGRESS: ?O??P?SSWO?D

And we've got some suspicions of two positions:

• Key[2] = 0x4E ('N') appears 4393/500000 times (prob: 0.0088, bias: 2.25x) <- that is worth looking at a little closer, but too low individually
• Key[3] = 0x47 ('G') appears 3905/500000 times (prob: 0.0078, bias: 2.00x) #<- that would be worth investigating, but is likely too low

But that doesn't mean we've found our key! We're working from an inherently biased point of view because the klein_demo.py compares the results to the ground truth (our secret key). In a real situation, we would look at the statistical significance over that 16-32 bytes (or longer), and use that to choose characters with the highest probability. Those instances where 'O' is in position 9 43130 times out of 500000 (8.63%)? That is statistically highly significant, even if it doesn't happen every time. Those letters would be likely to be part of the key.

The situations where 'N' is in position 2 and 'G' is in position 3? Those may not be statistically significant at all. Mathematically, you would analyze what characters might be more significant and collect a few of those to try. Because if you have as much data as it takes to run a Klein attack, then you have enough data to test out a few keys and see if you've decrypted it.

However, also consider that if a key is generated by a person rather than a computer it's going to have some patterns. So for something that looks like "?O??P?SSWO?D", where the last part looks a lot like "PASSWORD"? You may be able to look at the key and guess.

2. ChaCha20

• encrypt.py - the encryption class, standardized input.
• decrypt.py - the brute force decryption class, standardized input.
• encrypt_test.py - an LLM generated test case for encryption
• decrypt_test.py - an LLM generated test case for decryption, shows highlights of the UNBROKEN algorithm
• alg_analysis.py - LLM generated techniques for analysis of methods that could be used to detect anomalies in this algorithm (DOES NOT BRUTE FORCE DECRYPT)

The ChaCha20 cipher has not been broken (unlike RC4), and is resilient against related-key attacks. However, it is a popular algorithm and has been included in this set as a demo to contrast with other stream ciphers. Interestingly, The ChaCha family of ciphers use both a Key and a Nonce. The Key can be reused, but the Nonce (remember this with "number used once") is used only once! This is part of what makes it strong against related-key attacks.

The decryption highlight below shows several steps for working the encryption process backwards (decryption_test.py), but it is not a brute force attack. ChaCha20 is a symmetrical algorithm, meaning that the encryption and decryption process are the same (That's due to the XOR usage!). Due to the use of both a KEY and a single-use NONCE, ChaCha 20 remains unbroken.

Encryption:

ChaCha20 State Information:
  Key: 'SECRET' (6 chars)
  Nonce: 'nonce123' (8 chars)
  Counter: 0
  Output format: HEX
  Initialized: False

=== Testing Messages ===
'HELLO' → 050124EBD0
'HELLO WORLD!' → 050124EBD05543194917D4B7
'THE QUICK BROWN FOX JUMPS OVER THE LAZY DOG' → 190C2D87CE205D15507BD2C4195C4FDFBFC39A61DA088D44F72D7CD10593999D27322AA2766BDC25ED0BEF

Decryption Highlights:

--- Basic Short Message ---
Original message: 'HELLO WORLD'
Message length: 11 characters
Encrypted: 72BE1AF8C5FB7AC40C7401
Ciphertext length: 22 hex characters (11 bytes)

Using base test case: Basic Short Message 'HELLO WORLD'
Correct parameters: key='TESTKEY', nonce='testnonce', counter=0

--- Testing Wrong Key ---
With wrong key: '8A31BDEF5664FB892A11AC'
❌ Should produce garbage (not original message)

--- Testing Wrong Nonce ---
With wrong nonce: '14B6B381BCFD98DDCCE7AA'
❌ Should produce garbage (not original message)

--- Testing Wrong Counter ---
With wrong counter: '3C120D609C7FE1DFE20251'
❌ Should produce garbage (not original message)

Notes on AI as an Instructional Tool

Tool Disclosure

A paid version of Claude AI (https://claude.ai) was used in this project as detailed below. To keep things consistent, no other AI tools were used.

Goal for Using AI

1. Evaluate the viability of using an AI tool to generate examples & toy problems for demonstrations on this topic.

   • Is it efficient?
   • Is it accurate?
   • Is it readable and easy to follow?

2. Given a template and limited instruction, can an AI tool be used to

   • Does this make this topic more accessible to students?
   • Does this provide more experimental opportunities?
   • Could students use this tool to reasonably test their own ciphers with a similar format?
   • At what algorithm complexity (or type of algorithm), does the AI tool usage conflict with goal 1?

Incorporation and Testing

• Claude AI was provided the Ceasar Cipher encryption and brute force decryption algorithms as a template/starting point. I wrote the initial version of those algorithms and then asked Claude to improve on the structure and readability. It took several iterations to get a balance between extra features and the format that I wanted for modularity purposes (see the Pandas dataframe for importing algorithm specific variables for the encrypt class). The substitution ciphers were written prior to this exercise, though not in the current class structure.

• The bulk of the encrypt and decrypt classes were written first locally, and then the AI tool was used to:

• 1. Create some consistency between naming within a class, and across the different algorithms
• 2. Add (and spell check) comments, though this took manual editing to add some information relating to the unit material this repo was developed for
• 3. Make minor edits when the encryption and decryption algorithms were slow or did not appear to output correctly.
  • The algorithms were overall correct, though the stream ciphers had some minor errors.
  • Claude AI's preview/debug of algorithm steps where the visual representation is printed out were a vast improvement on mine.

• Claude AI was used to generate the encrypt_test.py and decrypt_test.py classes. I made very few edits to those (primarily to correct some factual errors or non-existent function calls)

• For comparison purposes, Claude AI was told to make a version of transposition/block/decrypt.py and corresponding test function where it could make changes, additions, and commentary to improve the accuracy of the brute force decryption.

  • This had an increased PASS rate of test cases, but upon closer inspection this is because specific words unique to the testcases were inserted into the dictionary by Claude AI.
  • On the given test cases there was no noticeable improvement on the brute force algorithm in general.

• Overall, an AI tool was useful, but it had a tendency to insert excessive commentary, remove key comments in the code about modification, and make edits to the code to falsely increase the pass rate of test cases. These algorithms are also very well known, so there were no issues with training data behind the LLM.

What Worked

1. From a programming and editing perspective:

   • The function renaming to be a common structure was appreciated. This made the process of checking that all functions were consistently named very fast. The code also looks cleaner
   • Asking Claude AI to comment, or to increase the number of comments in the code I provided it was ultimately mixed. It added a lot of comments that were distracting from the actual implementation. This was rolled back.
     • Comments provided on the encrypt_test.py functions as these are relatively self contained and don't need to be included in every use of the algorithms, these were largely left as-is.

2. From a content perspective:

   • Generating the test cases for encryption and decryption was overall a positive experience. The test cases are unique enough from my demonstrations that they can be released publicly and still demonstrate the encryption and decryption process. They also included display and analysis that I was not expecting.
   • The commentary, when in the test files, was overall interesting and did explain individual algorithm steps fairly well
   • Some of the code generation was just for algorithm explanation and previewing internal steps/process. This was useful for demonstration in this use case, but would be excessive in normal use.

3. Debug and preview

   • Claude AI's printout of algorithm progress, and the visualization of the algorithms were better than mine, no competition. This was especially true with the Rail Fence and grid algorithms that required some ASCII art.

What Did Not Work

1. Surprise code & comment changes

   • Claude AI tended to change code even when instructed not to. Some of this was for readability, or to increase modularity. Other times it was additional to the initial algorithm.
   • In many cases, Claude AI removed my comments completely or replaced them with function descriptions. While this is not an instant negative thing, it did notably remove algorithm discussion and some troubleshooting tips relevant to lesson materials.
   • Some additions were overly specific to the test cases that Claude AI generated for the test scripts. While this increased the pass rate of the test cases, it did not actually improve the algorithm.

2. AI edits to falsely pass test cases

   • Somewhat expected, Claude would make edits to the dictionaries in the decryption process (and sometimes the code structure itself) for the test cases to pass.

3. AI Generated Commentary

   • (disclaimer: no attempt was made to instruct otherwise)
   • Claude inserted a lot of commentary into the test cases for encryption and decryption, some of which was off topic.
   • When fed multiple algorithms in the same chat, it would begin to compare them unprompted. This was not a bad thing, but discussion was intended to be reserved for outside the encryption and decryption process. When Claude was allowed to make modifications (See transposition/block/decrypt_improved_test.py), it inserted a lot of commentary and tended to make modifications that did not apply to the current problem/topic, or code was modified to allow test cases to pass.

References

These are general references. As related tutorials and some demos become public, information will be added.

Types of Encryption:

1. Wikipedia, “Public-key cryptography,” Wikipedia, Jul. 19, 2019. https://en.wikipedia.org/wiki/Public-key_cryptography

   • Has links to other pages of interest, and some history. Current (6/2025) images are also good.

2. pago, “‘Symmetric, Asymmetric, and Hashing: Exploring the Different Types of Cryptography,’” Medium, Mar. 21, 2023. https://pagorun.medium.com/symmetric-asymmetric-and-hashing-exploring-the-different-types-of-cryptography-c4b5b9590b44

3. ClickSSL, “What is Encryption? – A Detailed Guide,” ClickSSL, Feb. 11, 2024. https://www.clickssl.net/blog/what-is-encryption

   • Explanation of different types of encryption, some examples for both.

4. R. Awati, “What is a Public Key and How Does it Work?,” SearchSecurity. https://www.techtarget.com/searchsecurity/definition/public-key

5. Wikipedia, “Public-key cryptography,” Wikipedia, Jul. 19, 2019. https://en.wikipedia.org/wiki/Public-key_cryptography

6. GeeksforGeeks, “Difference between Private key and Public key,” GeeksforGeeks, May 13, 2019. https://www.geeksforgeeks.org/computer-networks/difference-between-private-key-and-public-key/

7. GeeksforGeeks, “What is Hashing?,” GeeksforGeeks, Jun. 12, 2014. https://www.geeksforgeeks.org/dsa/what-is-hashing/ (accessed Jun. 25, 2025).

   • This is an explanation of Hashing in terms of the process and as data storage. The process of generating a hash is covered, but not in terms of usage with passwords.

8. C. Crane, “What Is a Hash Function in Cryptography? A Beginner’s Guide,” Hashed Out by The SSL StoreTM, Jan. 25, 2021. https://www.thesslstore.com/blog/what-is-a-hash-function-in-cryptography-a-beginners-guide/

History, Cryptography, and Ciphers

9. J. Schneider, “The History of Cryptography | IBM,” Ibm.com, Jul. 17, 2024. https://www.ibm.com/think/topics/cryptography-history

   • A sample of cryptography through history, includes some of IBM's ideas on quantum computing

10. H. Sidhpurwala, “A Brief History of Cryptography,” www.redhat.com, Jan. 12, 2023. https://www.redhat.com/en/blog/brief-history-cryptography

11. Wikipedia, “History of cryptography,” Wikipedia, Apr. 07, 2019. https://en.wikipedia.org/wiki/History_of_cryptography

    • As always, not a primary source itself, but inlusdes a collection of interesting references and links to many, many interesting related topics

12. T. M. P. Reader, “The Clue to the Labyrinth: Francis Bacon and the Decryption of Nature,” The MIT Press Reader, Feb. 27, 2023. https://thereader.mitpress.mit.edu/the-clue-to-the-labyrinth-francis-bacon-and-the-decryption-of-nature/

13. GeeksforGeeks, “Baconian Cipher,” GeeksforGeeks, Jun. 27, 2017. https://www.geeksforgeeks.org/python/baconian-cipher/

    • Includes code example

14. “Baconian Cipher - Francis Bacon Code AABAA - Online Decoder, Solver,” www.dcode.fr. https://www.dcode.fr/bacon-cipher

    • Life demo encocde and decode from a website that has a large selection of ciphers, games, and cryptography facts

15. GeeksForGeeks, “Caesar Cipher in Cryptography,” GeeksforGeeks, Jun. 02, 2016. https://www.geeksforgeeks.org/caesar-cipher-in-cryptography/

    • Good explanation, demonstration, and code example

16. “Mono-Alphabetic Substitution Cipher,” 101 Computing, Nov. 09, 2019. https://www.101computing.net/mono-alphabetic-substitution-cipher/

    • Life demo website for testing monoalphabetic ciphers

17. “Monoalphabetic Substitution Cipher - Online Cryptogram Decoder, Solver,” www.dcode.fr. https://www.dcode.fr/monoalphabetic-substitution

    • Life demo encocde and decode from a website that has a large selection of ciphers, games, and cryptography facts

18. GeeksforGeeks, “What is Monoalphabetic Cipher?,” GeeksforGeeks, May 07, 2024. https://www.geeksforgeeks.org/computer-networks/what-is-monoalphabetic-cipher/

    • Also includes affine cipher definition

19. GeeksforGeeks, “Difference between Monoalphabetic Cipher and Polyalphabetic Cipher,” GeeksforGeeks, Jun. 08, 2020. https://www.geeksforgeeks.org/computer-networks/difference-between-monoalphabetic-cipher-and-polyalphabetic-cipher/

20. “Rail Fence Cipher,” Crypto Corner, 2017. https://crypto.interactive-maths.com/rail-fence-cipher.html

    • Interactive encode and decode

21. “Rail Fence,” rumkin.com. https://rumkin.com/tools/cipher/rail-fence/

    • Interactive encode and decode

22. “Rail Fence Cipher - Encryption and Decryption,” GeeksforGeeks, Jan. 20, 2017. https://www.geeksforgeeks.org/rail-fence-cipher-encryption-decryption/

    • Good explanation, demonstration, and code example

23. “Polybius square cipher – Encrypt and decrypt online,” cryptii. https://cryptii.com/pipes/polybius-square

    • Online encryption and decryption

24. “Polybius Square Cipher - GeeksforGeeks,” GeeksforGeeks, Feb. 18, 2018. https://www.geeksforgeeks.org/polybius-square-cipher/

    • Good explanation, demonstration, and code example

25. Wikipedia, “Feistel cipher,” Wikipedia, Nov. 25, 2019. https://en.wikipedia.org/wiki/Feistel_cipher

    • The block cipher used in this repo

26. GeeksforGeeks, “Feistel Cipher,” GeeksforGeeks, Mar. 02, 2020. https://www.geeksforgeeks.org/python/feistel-cipher/ (accessed Jun. 25, 2025).

27. “ADFGVX cipher,” Wikipedia, Feb. 24, 2022. https://en.wikipedia.org/wiki/ADFGVX_cipher

28. “ADFGVX Cipher - Decoder, Encoder, Solver, Translator,” www.dcode.fr. https://www.dcode.fr/adfgvx-cipher

    • Online encryption and decryption

29. “ADFGVX Cipher,” Crypto Corner. https://crypto.interactive-maths.com/adfgvx-cipher.html

    • Good explanation, demonstration, and code example. Links on website to other interesting ciphers

30. “Practical Cryptography,” Practicalcryptography.com, 2009. http://practicalcryptography.com/ciphers/adfgvx-cipher/

31. GeeksforGeeks, “RC4 Encryption Algorithm,” GeeksforGeeks, Mar. 23, 2018. https://www.geeksforgeeks.org/rc4-encryption-algorithm/

32. “RC4 Cipher - ArcFour - Online Decoder, Encryption,” Dcode.fr, 2025. https://www.dcode.fr/rc4-cipher

33. Wikipedia, “RC4,” Wikipedia, Dec. 31, 2019. https://en.wikipedia.org/wiki/RC4

34. “The ChaCha family of stream ciphers,” Cr.yp.to, 2024. https://cr.yp.to/chacha.html

35. Wikipedia, “Salsa20,” Wikipedia, Mar. 16, 2023. https://en.wikipedia.org/wiki/Salsa20

36. “Salsa20 — PyCryptodome 3.23.0 documentation,” Readthedocs.io, 2025. https://pycryptodome.readthedocs.io/en/latest/src/cipher/salsa20.html (accessed Jun. 25, 2025).

    • Example implementation for generating and using Salsa20 from the Cipher library in Python

37. GeeksforGeeks, “Stream Ciphers,” GeeksforGeeks, Oct. 09, 2020. https://www.geeksforgeeks.org/computer-networks/stream-ciphers/