Peer review #1 #3
Comments
|
Hi there! Thank you so much for the useful feedback. I will look into clearing the terminal between the commands. I actually tend to run the program with something like I wasn't aware of the secrets module before, thank you for pointing this out. I will definitely look into it. Seems like it would be better suited for this kind of algorithm. I'm aware of the issue related to the key length. It is actually recommended that Other issues you pointed out will also be taken into account. Once again, thank you for the feedback, it was actually very useful! |
Repository was downloaded at 2022-10-06 13:47
General feedback
In general, the code is clear and readable. The overall structure of the program is clear and well designed.
Tests and functionality
The tests all passed and the coverage is perfect. They tested relevant functionality, though the key generator testing could be more thorough (I'll get back to this later). The UI is clear and easy to use and the program functions as it should. I tend to prefer CLIs that clear the screen between commands (you can look at my project for some sense of how I've usually implemented this), though this is of course a matter of personal preference.
Specific problems
Crashing
You've already mentioned the issue regarding long messages, but in general I would add exception handling so the whole program doesn't crash if you do something wrong. For example, trying to encrypt a message before generating keys causes the program to crash, instead of just giving an error message to the user.
Readability of
_egcdand_modinvI found these functions to be difficult to read, since I was not familiar with the algorithms beforehand. Mostly that is not something your code could or should fix, but I would like a comment/docstring explaining the functions' roles in the algorithm, much like you have done with
_miller_rabin.Use of the
randommoduleTo keep the project manageable, some shortcuts are reasonable, even if they make the algorithm technically less secure. However, I think you could just as easily use the cryptographically-secure
secretsmodule for generating random numbers. It doesn't actually matter in this case, of course, but would be in line with best practices.Lengths of numbers
The biggest flaw I found in your code is the way you are generating
pandq. Firstly, you have taken a numberbit_length=512, which is half of the intended key length of1024and setting the lengths ofpandqto be half of THAT, thus giving you an OVERALL key length<= 512. Assuming this was not intentional, this is where I think better testing would be useful. I would add tests for the keygen that verify the mathematical properties as well as possible (lengths are what they should be, possibly other easy-to-implement tests if you can think of them).In addition to this problem, the way you are choosing
pandqis flawed in another way. Generatingnrandom bits, does NOT give you a key length ofn, as the random bits can contain zeroes in the most significant bits (e.g. 00001011 is actually a 4 bit number). In practice the number of zeroes is limited by probability, but I was very quickly get the key length (length ofn) down from512to504with just a few tries. This StackOverflow answer contains useful information of choosingpandqand this one should be helpful in switching to thesecretsmodule, if you choose to do so.Conclusion
Overall you've done excellent work implementing a rather math-heavy algorithm, well done! You've also written clear instructions which made peer review a breeze. I hope I was able to provide some useful feedback to improve you're project further!
The text was updated successfully, but these errors were encountered: