Public/Private Key Encrypted Messenger

• Download demo project - 7.2 KB
• Download source - 30.9 KB

Introduction

I was sitting in my garden with my laptop when suddenly a random idea popped up into my mind. I wanted to make some sort of messenger that could send messages encrypted over the internet. This is probably not the newest idea, but it does combine some technologies that are very interesting.

1. Public private key encryption
2. Delegates and events
3. Thread-safe events (events that are called from other threads and have to make changes in the GUI)
4. TCP-IP connection

The beauty of public/private key encryption is that everyone at any time may be sniffing your network activity, but they cannot understand what you are sending. This is because the public key can be received by anyone; the message encrypted with it can only be decrypted with the private key, which is never sent over the network/internet.

Using the Code

The program has 4 main classes:

1. GUI class (form.cs)
2. ChatSession class
3. Message class
4. Encryption class

GUI Class

This class is the main class of the program. This code initializes the ChatSession class, giving the current GUI control with it. One of the most popular features of a chat application is being able to see what the other person is trying to say. Because we will be waiting for the messages on another thread, we need the control to invoke a method to display a message. That way, we are on the thread-safe side.

public Form1()
{
    InitializeComponent();
    //the form control is sent with it because we will 

    //need it later to do invokes on it (to be on the safe side of threading)

    session = new ChatSession(this);
    SetEvents();
}

//These are our events which will be giving the GUI information.

void SetEvents()
{
    session.gotmessage += new ChatSession.gotMessage(session_gotmessage);
    session.lostconnection += new ChatSession.Lostconnection(
        session_lostconnection);      
}   

void session_gotmessage(string message)
{
    txttext.Text += DateTime.Now.ToString("hh:mm:ss") + ">" + 
        message + "\r\n"; 
}

Now that we've got our ChatSession class initialized, we need to connect to the other peer. One has to be the host and the other will connect to it.

Host

private void btnhost_Click(object sender, EventArgs e)
{    
    session.port = int.Parse(txtport.Text);
    MethodInvoker invoker = new MethodInvoker(session.Host);
    //starting to listen on another thread.

    invoker.BeginInvoke(null, null);
    
    btnhost.Enabled = false;
    btnconnect.Enabled = false;
}

Connect

private void btnconnect_Click(object sender, EventArgs e)
{
    session.port = int.Parse(txtport.Text);
    session.host = txtip.Text;
    MethodInvoker invoker = new MethodInvoker(session.Connect);
    //Trying to connect on another thread

    invoker.BeginInvoke(null, null);
    
    btnhost.Enabled = false;
    btnconnect.Enabled = false;
}

ChatSession Class

This class will handle the communication between the host and the client. The flow control is as follows:

1. a) Host() waits for an incoming connection attempt
   b) Connect() tries to connect to the host
2. Initialize() will initialize the necessary stuff
3. a) getMessage() waits indefinitely for new messages and decrypts the messages
   b) SendMessage(string message) sends messages to the other peer and encrypts the messages

Host()

public void Host()
{
    try
    {
        TcpListener listener = new TcpListener(IPAddress.Any, port);
        listener.Start();
        SendMessageToControl("Starting to listen on port " + port);
        TcpClient client = listener.AcceptTcpClient();
        //this is blocked as long there is no connectien        

        SendMessageToControl("Connection established");
        Initialize(client);
        //When there is a connection all necessary streams have to be made.


    }
    catch (Exception ex)
    {
        MessageBox.Show("Unknown error occured:" + ex.Message);
    }
}

Connect()

public void Connect()
{
    try
    {
        TcpClient client = new TcpClient(host, port);
        SendMessageToControl("connecting to " + host + " on port " + port);
        Initialize(client);
    }
    catch
    {
        MessageBox.Show("Unknown error occured");
    }
}

Initialize()

This method does 4 things:

1. Initializes the encryption object, which generates a public/private key pair
2. Initializes the Message class to send and receive encrypted/unencrypted messages
3. Starts listening on another thread for new messages
4. Sends the public key to the other peer

The other peer is doing the exact the same thing. Both are waiting for messages and both will be sending their own public key, so both will be receiving the public key of their peer.

void Initialize(TcpClient client)
{
    encryption = new Encryption();          
    stream = client.GetStream();
    message = new Message(stream, encryption);
    //initialization of my message object        

    //starts accepting messages from the other peer

    MethodInvoker invoker = new MethodInvoker(getMessage); 
    invoker.BeginInvoke(null, null); // start listening for messages

    SendMessageToControl("Sending public key");
    //the public key has to be sent first (unencrypted of course)

    message.Send_Message(encryption.Get_This_Publickey(), false);
    SendMessageToControl("public key sent");
    connected = true;
}

SendMessageToControl

void SendMessageToControl(string message)
{
    control.BeginInvoke(gotmessage, new string[] { message });
}

Message Class

This class was a bit more tricky. To send the encrypted message, I stood with a dilemma. I could convert the bytes into a string and do a simple streamreader.writeLine or I could send the raw encrypted bytes.

If you use the first solution, first of all, your unencrypted message is converted to bytes. The bytes are encrypted and then converted to a string so you can do a streamwriter.writeLine. Then it's converted to bytes again by (I think) the transport OSI layer. After that, it's sent over the internet. The peer's transport layer converts it back to a string, which is then converted back to an array of bytes by your program. This is then decrypted and converted back to a string. That just doesn't sound logical :).

I found out that RSAcryptoprovider does not digest more than X number of elements in a byte array. If I want to send large text messages (more than 1 sentence) in one burst, I have to split my array of bytes, encrypt the split array and then send the split array to have it decrypted by the peer. Because we are dealing with random messages that could be encrypted or not, it's impossible to know how many bytes you are going to need. So, I thought of bringing in some robust protocol that could handle the transfer. It's as follows:

1 bit	4 bits	X bits	4 bits	END or NEXT
Type packet; could be encrypted or unencrypted (1 or 0)	Length of data packet that follows	Data packet	Length of following packet	...

If the length of the following packet is 0, then you know that it's the end of the message. If it's an unencypted message, no splitting has to be done, so the whole message can be sent in one piece. This is the function that sends the messages:

public void Send_Message(string message, bool encrypt)
{
    
    byte[] bytemessage = ByteConverter.GetBytes(message);
    if (encrypt)
    {
        stream.WriteByte(1); 
        //1 for encrypted message, 0 for unencrypted message

        int maxlength = 50; 
        //I will break my array in pieces of 50 elements


        for (int i = 0, 
            bytestosend = bytemessage.Length; bytestosend>0; i++, 
            bytestosend-=maxlength)
        {
            int lengthbytestoencrypt=Math.Min(bytestosend,maxlength);

            byte[] bytestoencrypt = new byte[lengthbytestoencrypt];
            Buffer.BlockCopy(bytemessage, i * maxlength, bytestoencrypt, 
                0, lengthbytestoencrypt);

            byte[] encryptedbytestosend = 
                encryption.EncryptOutgoingV2(bytestoencrypt);
            sendSize(encryptedbytestosend.Length);
            stream.Write(encryptedbytestosend, 0, 
                encryptedbytestosend.Length);
        }
    }
    else
    {
        stream.WriteByte(0);
        //1 for encrypted message, 0 for unencrypted message

        sendSize(bytemessage.Length);
        stream.Write(bytemessage, 0, bytemessage.Length);
        
    }
    stream.Write(new byte[4],0,4);
    //writing four 0s not to confuse the receiving side, 

    //which is expecting 4 (4 bytes =int)

    stream.Flush();

}

This is the function that will be receiving the messages:

public string Receive_Message()
{
    byte encryptedbyte = (byte)stream.ReadByte(); 
    //is the message encrypted or not?

    byte[] lengthbyte = new byte[4]; 
    ArrayList receivedbytestotal = new ArrayList();

    for (; ; )
    {
        stream.Read(lengthbyte, 0, lengthbyte.Length);
        //reading the length of the next data burst

        if (BitConverter.ToInt32(lengthbyte, 0) == 0)
        //if its the end of the stream the stop

            break;
        byte[] messagebyte = new byte0)>;
        stream.Read(messagebyte, 0, messagebyte.Length);

        if (encryptedbyte == 1) messagebyte = 
            encryption.DecryptIncomingV2(messagebyte); 
        //if it's an encrypted burst, decrypt first

        receivedbytestotal.AddRange(messagebyte); 
        //adding the additional bytes to the array

    }
    
    byte[] messageinbytes=new byte[receivedbytestotal.Count];
    for (int i = 0; i < messageinbytes.Length; i++)
        messageinbytes[i] = (byte)receivedbytestotal[i];
    return ByteConverter.GetString(messageinbytes);

}

Points of Interest

• TCP/IP sending controlled bytes over the internet
• Public/private key encryption
• Method invocation
• Delegates and events

History

12 September 2007 - 1^st release

You must Sign In to use this message board.

FAQ    Noise Tolerance Very HighHighMediumLowVery Low   Layout Expand Posts & RepliesThread ViewNo JavascriptNo JS + Preview   Per page 102550

Msgs 1 to 12 of 12 (Total in Forum: 12) (Refresh) FirstPrevNext

Man-in-the-middle attack & bandwidth Damage_Inc 2:15 18 Sep '07   From what I can see, this particular step: 4. Sends the public key to the other peer in the Initialize method is a problem. Specifically it's susceptible to man-in-the-middle attacks. Also, with regard to encrypting large byte arrays, usually the solution is to encrypt your data with a symmetric key (e.g. AES), encrypt the symmetric key with RSA and then send both the encrypted data and the encrypted symmetric key as your message. This should reduce network traffic and processing time. Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Michael Demeersseman 1:22 9 Oct '07   How would you solve the man in the middle issue? Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Damage_Inc 8:47 9 Oct '07   Can't say that I do. The only way I can think of it succeeding is if the key is not sent over the wire. Or if you follow the SSL methodology. I'm not really a security researcher so you would have to find something that has been vetted by the security community first. Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Mihailo 6:46 15 Oct '07   Damage_Inc, I totally agree with you that common practice is to use symmetric encryption for data and asymmetric just for the symmetric key. It's not just because of the performance, but I believe that there are attacks that can be used to compromise the private key if it's used on a sample larger than the length of the key. Man in the middle attack is not solvable using SSL methodology, and not sending the key over the wire might be one of the possible solutions but again it's not simple as that. Using PKI properly can solve the problem. Key generation should happen on the clients machine, servers certificate for the client and clients certificate for the server should be accessible through reliable sources, etc. And at the end if the client choses to trust unreliable source then even the best infrastructure and technology cannot prevent abuse. Remember that usually the problem is not in technology but in how it's used. The article is very good from the point of view of showing technology but it should not be taken as a guide on how to write secure applications, which I believe was not intention here. OK, that's all from me, hope this helps at least to make you interested in reading more on the topic Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Michael Demeersseman 7:06 15 Oct '07   Writing a secure application was a part of the intention. I'm still unsure how even ssl could hold back a man in the middle attack.But as you said, i'll have to read more about the topic. thx for your replies! Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Mihailo 7:19 15 Oct '07   No bother You should think then about this article as the first step of many I guess. I've been working in development of e-banking solutions for almost five years. I only scratched the surface of the problem during that time since we had dedicated guy who was working on the security. But he was exclusively doing that, I knew only as much as I needed and to bridge some gaps when he left until another guy filled the position - again full time on security. When you have thousands of users you need more planning and keeping focus on operations then on technology ... but that's a different topic. Anyway I wish you good luck, and keep posting new articles along the way. Cheers. Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth [modified] Damage_Inc 7:22 15 Oct '07   What Mihailo alludes to in his post is essentially SSL. Both client machines have a trusted certificate authority (e.g. Verisign, Thawte). When the client (you) connects to a server (www.paypal.com), it responds with a certificate containing its publickey, signed by the certificate authority. The client then validates the server's certificate using the certificate authority's public key. The client can then be assured that the server's certificate has not been tampered with and the public key is valid. At this point the the client can send the symmetric key for the session as it can be assured of the server's identity. The secret lies in the fact that the certificate authority's public key is already on the client's machine and never flows across the wire. I believe that if you were to modify your code to follow a similar system, it wouldn't be susceptible to man-in-the-middle attacks. The problem however is that now you get into scenarios like replay-attacks and who knows what else. The fact remains that, yes, this is a great project for showing the features of public/private cryptography but you should never think of making use of security systems that are not open and peer-reviewed. I feel it is important to highlight these facts lest other programmers think this is a good idea for production systems. Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Michael Demeersseman 7:46 15 Oct '07   so if i understand correctly, the only way to make an application secure is by sending the public key with the post(hoping that the postman doesn't compromise it ) ... or using verisign or thawte. If you use verisign or thawte. All public/private key traffic to send the symmetric key to eachother flows through verisign and thawte? From then on, the symmetric encrypted traffic is sent peer to peer?(so the symmetric key is sent through a trusted entity) Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Damage_Inc 7:12 15 Oct '07   Mihailo wrote: Man in the middle attack is not solvable using SSL methodology, and not sending the key over the wire might be one of the possible solutions but again it's not simple as that. I'm not quite sure what you mean by "not solvable". If you are saying that SSL is not foolproof "technically", then someone should probably tell Amazon, Ebay, Paypal or any one of the thousands of sites that use it to secure their transactions. If you meant "not solvable" from a user perspective I would think that goes without saying. The lock on your front door is useless unless you use it. Without proper user training, any security system can fall down. Sign In·View Thread·PermaLink Re: Man-in-the-middle attack & bandwidth Mihailo 7:35 15 Oct '07   Hi Damage_Inc, SSL is vulnerable to Man in the middle attack. Look at this: http://users.tkk.fi/~tkoponen/vaihe2/ssl-mitm.html It's just the first article I clicked on google. It is true that you need client cooperation to succeed in the attack - but remember how many times you pressed accept in the browsers dialog when it asked you if you wish to accept untrusted or expired SSL certificate? I did it a lot, but never when my credit card details were in question As I said, mostly it's not about technology but about how we use it - and who uses it. And you can't be more right with what you said: Without proper user training, any security system can fall down. Cheers, Mihailo Sign In·View Thread·PermaLink Multiple Clients? Jim Weiler 8:18 17 Sep '07   I have not gone through all of the code yet but this seems like a good approach. Kudos! It would be better though if the host was able to accept multiple connections. -Jim Sign In·View Thread·PermaLink 5.00/5 (1 vote) Re: Multiple Clients? Michael Demeersseman 9:29 17 Sep '07   you mean like in irc or like multiple peer to peer chatsessions? The second option is easily done by just adding Chatsession objects. Sign In·View Thread·PermaLink 2.00/5 (1 vote)

Last Visit: 16:18 8 Nov '09     Last Update: 16:18 8 Nov '09 1