Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
afnan47
GitHub Repository: afnan47/sem7
 Path: blob/main/MC/2. Implement GSM Security algorithms/A3_A8.py
426 views
1
#COMP128 Algorithm Converted from C to Python. 

2
# Original is from Marc Briceno, Ian Goldberg, and David Wagner.

3
# Original C can be found at the end of this file, 

4
# including the error where key and rand are swapped

5
# in the main function. 

6


7
s_table = [

8
  [ 102,177,186,162,  2,156,112, 75, 55, 25,  8, 12,251,193,246,188,

9
    109,213,151, 53, 42, 79,191,115,233,242,164,223,209,148,108,161,

10
    252, 37,244, 47, 64,211,  6,237,185,160,139,113, 76,138, 59, 70,

11
     67, 26, 13,157, 63,179,221, 30,214, 36,166, 69,152,124,207,116,

12
    247,194, 41, 84, 71,  1, 49, 14, 95, 35,169, 21, 96, 78,215,225,

13
    182,243, 28, 92,201,118,  4, 74,248,128, 17, 11,146,132,245, 48,

14
    149, 90,120, 39, 87,230,106,232,175, 19,126,190,202,141,137,176,

15
    250, 27,101, 40,219,227, 58, 20, 51,178, 98,216,140, 22, 32,121,

16
     61,103,203, 72, 29,110, 85,212,180,204,150,183, 15, 66,172,196,

17
     56,197,158,  0,100, 45,153,  7,144,222,163,167, 60,135,210,231,

18
    174,165, 38,249,224, 34,220,229,217,208,241, 68,206,189,125,255,

19
    239, 54,168, 89,123,122, 73,145,117,234,143, 99,129,200,192, 82,

20
    104,170,136,235, 93, 81,205,173,236, 94,105, 52, 46,228,198,  5,

21
     57,254, 97,155,142,133,199,171,187, 50, 65,181,127,107,147,226,

22
    184,218,131, 33, 77, 86, 31, 44, 88, 62,238, 18, 24, 43,154, 23,

23
     80,159,134,111,  9,114,  3, 91, 16,130, 83, 10,195,240,253,119,

24
    177,102,162,186,156,  2, 75,112, 25, 55, 12,  8,193,251,188,246,

25
    213,109, 53,151, 79, 42,115,191,242,233,223,164,148,209,161,108,

26
     37,252, 47,244,211, 64,237,  6,160,185,113,139,138, 76, 70, 59,

27
     26, 67,157, 13,179, 63, 30,221, 36,214, 69,166,124,152,116,207,

28
    194,247, 84, 41,  1, 71, 14, 49, 35, 95, 21,169, 78, 96,225,215,

29
    243,182, 92, 28,118,201, 74,  4,128,248, 11, 17,132,146, 48,245,

30
     90,149, 39,120,230, 87,232,106, 19,175,190,126,141,202,176,137,

31
     27,250, 40,101,227,219, 20, 58,178, 51,216, 98, 22,140,121, 32,

32
    103, 61, 72,203,110, 29,212, 85,204,180,183,150, 66, 15,196,172,

33
    197, 56,  0,158, 45,100,  7,153,222,144,167,163,135, 60,231,210,

34
    165,174,249, 38, 34,224,229,220,208,217, 68,241,189,206,255,125,

35
     54,239, 89,168,122,123,145, 73,234,117, 99,143,200,129, 82,192,

36
    170,104,235,136, 81, 93,173,205, 94,236, 52,105,228, 46,  5,198,

37
    254, 57,155, 97,133,142,171,199, 50,187,181, 65,107,127,226,147,

38
    218,184, 33,131, 86, 77, 44, 31, 62, 88, 18,238, 43, 24, 23,154,

39
    159, 80,111,134,114,  9, 91,  3,130, 16, 10, 83,240,195,119,253

40
  ] , 

41
  [

42
     19, 11, 80,114, 43,  1, 69, 94, 39, 18,127,117, 97,  3, 85, 43,

43
     27,124, 70, 83, 47, 71, 63, 10, 47, 89, 79,  4, 14, 59, 11,  5,

44
     35,107,103, 68, 21, 86, 36, 91, 85,126, 32, 50,109, 94,120,  6,

45
     53, 79, 28, 45, 99, 95, 41, 34, 88, 68, 93, 55,110,125,105, 20,

46
     90, 80, 76, 96, 23, 60, 89, 64,121, 56, 14, 74,101,  8, 19, 78,

47
     76, 66,104, 46,111, 50, 32,  3, 39,  0, 58, 25, 92, 22, 18, 51,

48
     57, 65,119,116, 22,109,  7, 86, 59, 93, 62,110, 78, 99, 77, 67,

49
     12,113, 87, 98,102,  5, 88, 33, 38, 56, 23,  8, 75, 45, 13, 75,

50
     95, 63, 28, 49,123,120, 20,112, 44, 30, 15, 98,106,  2,103, 29,

51
     82,107, 42,124, 24, 30, 41, 16,108,100,117, 40, 73, 40,  7,114,

52
     82,115, 36,112, 12,102,100, 84, 92, 48, 72, 97,  9, 54, 55, 74,

53
    113,123, 17, 26, 53, 58,  4,  9, 69,122, 21,118, 42, 60, 27, 73,

54
    118,125, 34, 15, 65,115, 84, 64, 62, 81, 70,  1, 24,111,121, 83,

55
    104, 81, 49,127, 48,105, 31, 10,  6, 91, 87, 37, 16, 54,116,126,

56
     31, 38, 13,  0, 72,106, 77, 61, 26, 67, 46, 29, 96, 37, 61, 52,

57
    101, 17, 44,108, 71, 52, 66, 57, 33, 51, 25, 90,  2,119,122, 35

58
  ], 

59
  [

60
     52, 50, 44,  6, 21, 49, 41, 59, 39, 51, 25, 32, 51, 47, 52, 43,

61
     37,  4, 40, 34, 61, 12, 28,  4, 58, 23,  8, 15, 12, 22,  9, 18,

62
     55, 10, 33, 35, 50,  1, 43,  3, 57, 13, 62, 14,  7, 42, 44, 59,

63
     62, 57, 27,  6,  8, 31, 26, 54, 41, 22, 45, 20, 39,  3, 16, 56,

64
     48,  2, 21, 28, 36, 42, 60, 33, 34, 18,  0, 11, 24, 10, 17, 61,

65
     29, 14, 45, 26, 55, 46, 11, 17, 54, 46,  9, 24, 30, 60, 32,  0,

66
     20, 38,  2, 30, 58, 35,  1, 16, 56, 40, 23, 48, 13, 19, 19, 27,

67
     31, 53, 47, 38, 63, 15, 49,  5, 37, 53, 25, 36, 63, 29,  5,  7

68
  ], 

69
  [   

70
      1,  5, 29,  6, 25,  1, 18, 23, 17, 19,  0,  9, 24, 25,  6, 31,

71
     28, 20, 24, 30,  4, 27,  3, 13, 15, 16, 14, 18,  4,  3,  8,  9,

72
     20,  0, 12, 26, 21,  8, 28,  2, 29,  2, 15,  7, 11, 22, 14, 10,

73
     17, 21, 12, 30, 26, 27, 16, 31, 11,  7, 13, 23, 10,  5, 22, 19

74
  ],

75
  [   

76
     15, 12, 10,  4,  1, 14, 11,  7,  5,  0, 14,  7,  1,  2, 13,  8,

77
     10,  3,  4,  9,  6,  0,  3,  2,  5,  6,  8,  9, 11, 13, 15, 12

78
  ]

79
]

80
  

81
def comp128(rand, key) :

82
  #Byte x[32], bit[128];

83
  x = [0]*32 

84
  bit = [0]*128

85
  simoutput = [0]*12

86


87
  #/* ( Load RAND into last 16 bytes of input ) */

88
  for i in range(16,32) :

89
    x[i] = rand[i-16];

90
 

91
  #/* ( Loop eight times ) */

92
  for i in range (1,9) : 

93
    #/* ( Load key into first 16 bytes of input ) */

94
      for j in range(0,16) :

95
        x[j] = key[j]

96
      #/* ( Perform substitutions ) */

97
      for j in range(0,5) :

98
        for k in range(0,1<<j) :

99
          for l in range(0, 1<<(4-j)) :

100
            m = l + k*(1<<(5-j))

101
            n = m + (1<<(4-j))

102
            y = (x[m]+2*x[n]) % (1<<(9-j))

103
            z = (2*x[m]+x[n]) % (1<<(9-j))

104
            x[m] = s_table[j][y]

105
            x[n] = s_table[j][z]

106
      #/* ( Form bits from bytes ) */

107
      for j in range(0,32) :

108
        for k in range(0,4) :

109
          bit[4*j+k] = (x[j]>>(3-k)) & 1

110
      #/* ( Permutation but not on the last loop ) */

111
      if (i < 8) :

112
        for j in range(0,16) :

113
          x[j+16] = 0

114
          for k in range(0,8) :

115
            next_bit = ((8*j + k)*17) % 128

116
            x[j+16] |= bit[next_bit] << (7-k)

117


118
  #/*

119
  # * ( At this stage the vector x[] consists of 32 nibbles.

120
  # *   The first 8 of these are taken as the output SRES. )

121
  # */

122
  

123
  #/* The remainder of the code is not given explicitly in the

124
  # * standard, but was derived by reverse-engineering.

125
  # */

126


127
  for i in range(0,4) :

128
    simoutput[i] = (x[2*i]<<4) | x[2*i+1]

129
  for i in range(0,6) :

130
    simoutput[4+i] = (x[2*i+18]<<6) | (x[2*i+18+1]<<2) | (x[2*i+18+2]>>2)

131
    simoutput[4+6] = (x[2*6+18]<<6) | (x[2*6+18+1]<<2)

132
    simoutput[4+7] = 0

133


134
  #simoutput can be larger than a byte so truncate

135
  simoutput = [0xFF & _ for _ in simoutput]

136
  return simoutput

137


138


139
#Test

140


141
key   = "0x048BC1EA93B0F82733D67C19267C91D6"

142
rand1 = "0x1D000000000000009900000000000000"

143
rand2 = "0x3E00000000000000C100000000000000"

144


145
#Compare with Original C version

146
import subprocess

147


148
def callOriginal(r, k) :

149
    sout = ""

150
    proc = subprocess.Popen(["./main", r, k], stdout=subprocess.PIPE)

151
    try:

152
        sout, serr = proc.communicate(timeout=5) #5 seconds should be good?

153
    except TimeoutExpired:

154
        proc.kill() #kill the process

155
        sout, serr = proc.communicate()

156
        print("Process Killed")

157
        print("stdout")

158
        print(sout)

159
        print("stderr")

160
        print(serr)

161
    return sout

162


163
oout1 = callOriginal(rand1, key)

164
oout2 = callOriginal(rand2, key)

165


166


167
key_ia = [int(_) for _ in bytearray.fromhex(key[2:])]

168
rand1_ia = [int(_) for _ in bytearray.fromhex(rand1[2:])]

169
rand2_ia = [int(_) for _ in bytearray.fromhex(rand2[2:])]

170
out1 = comp128(rand1_ia, key_ia)

171
out2 = comp128(rand2_ia, key_ia)

172


173
key_hex   = [format(_, "02X") for _ in key_ia]

174
rand1_hex = [format(_, "02X") for _ in rand1_ia]

175
rand2_hex = [format(_, "02X") for _ in rand2_ia]

176
out1_hex  = [format(_, "02X") for _ in out1]

177
out2_hex  = [format(_, "02X") for _ in out2]

178
key_str   = "".join(key_hex)

179
rand1_str = "".join(rand1_hex)

180
rand2_str = "".join(rand2_hex)

181
out1_str  = "".join(out1_hex)

182
out2_str  = "".join(out2_hex)

183


184
print ("Output from original program")

185
print ("A3A8(%s,%s) = %s" % (rand1_str, key_str, (oout1.decode("ascii")))) #Print it out as ascii

186
print ("A3A8(%s,%s) = %s" % (rand2_str, key_str, (oout2.decode("ascii")))) #Print it out as ascii

187


188
print ("Output from this script")

189
print ("A3A8(%s,%s) = %s" % (rand1_str, key_str, out1_str))

190
print ("A3A8(%s,%s) = %s" % (rand2_str, key_str, out1_str))

191


192


193


194


195
  

196
 

197


198