Product
Introducing Rust Support in Socket
Socket now supports Rust and Cargo, offering package search for all users and experimental SBOM generation for enterprise projects.
By Trevor Norris - Jul 31, 2025
You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP →
- Maintainers
- 1
py-seccure
Simple Elliptic Curve Cryptography for Python compatible with the
excellent SECCURE_ command
line utility (version 0.5). It's licensed under LGPLv3. See LICENSE.
Do not use py-seccure when its operation can be timed by an
attacker. See timing attack_.
Usage
Public key from private
To get the public key from the private, you can use the original
commandline utility:
::
$ seccure-key
Assuming curve p160.
Enter private key: my private key
The public key is: 8W;>i^H0qi|J&$coR5MFpR*Vn
In Python:
.. code:: python
>>> import seccure
>>> str(seccure.passphrase_to_pubkey(b'my private key'))
'8W;>i^H0qi|J&$coR5MFpR*Vn'
Encrypting a string
~~~~~~~~~~~~~~~~~~~
To encrypt for a public key, one would use the original commandline
utility as follows.
::
$ seccure-encrypt -o private.msg '8W;>i^H0qi|J&$coR5MFpR*Vn'
Assuming MAC length of 80 bits.
Go ahead and type your message ...
This is a very very secret message!
^D
In Python:
.. code:: python
>>> ciphertext = seccure.encrypt(b'This is a very secret message\n', b'8W;>i^H0qi|J&$coR5MFpR*Vn')
>>> ciphertext
'\x00\x146\x17\xe9\xc1\x1a\x7fkX\xec\xa0n,h\xb4\xd0\x98\xeaO[\xf8\xfa\x85\xaa\xb37!\xf0j\x0e\xd4\xd0\x8b\xfe}\x8a\xd2+\xf2\xceu\x07\x90K2E\x12\x1d\xf1\xd8\x8f\xc6\x91\t<w\x99\x1b9\x98'
There is a shorthand to encrypt a file:
.. code:: python
>>> seccure.encrypt_file('/path/to/file', '/path/to/file.enc', '8W;>i^H0qi|J&$coR5MFpR*Vn')
Decrypting
~~~~~~~~~~
To decrypt the message with the original utility:
::
$ seccure-decrypt -i private.msg
Assuming MAC length of 80 bits.
Assuming curve p160.
Enter private key: my private key
This is a very very secret message!
Integrity check successful, message unforged!
In Python:
.. code:: python
>>> seccure.decrypt(ciphertext, b'my private key')
'This is a very secret message\n'
And to decrypt a file:
.. code:: python
>>> seccure.decrypt_file('/path/to/file.enc', '/path/to/file', b'my private key')
Creating a signature
~~~~~~~~~~~~~~~~~~~~
To create a signature:
::
$ seccure-sign
Assuming curve p160.
Enter private key: my private key
Go ahead and type your message ...
This message will be signed
^D
Signature: $HPI?t(I*1vAYsl$|%21WXND=6Br*[>k(OR9B!GOwHqL0s+3Uq
In Python:
.. code:: python
>>> seccure.sign(b'This message will be signed\n', b'my private key')
'$HPI?t(I*1vAYsl$|%21WXND=6Br*[>k(OR9B!GOwHqL0s+3Uq'
Verifying a signature
~~~~~~~~~~~~~~~~~~~~~
To verify a signature:
::
$ seccure-verify '8W;>i^H0qi|J&$coR5MFpR*Vn' '$HPI?t(I*1vAYsl$|%21WXND=6Br*[>k(OR9B!GOwHqL0s+3Uq'
Go ahead and type your message ...
This message will be signed
^D
Signature successfully verified!
In Python:
.. code:: python
>>> seccure.verify(b'This message will be signed\n', b'$HPI?t(I*1vAYsl$|%21WXND=6Br*[>k(OR9B!GOwHqL0s+3Uq', b'8W;>i^H0qi|J&$coR5MFpR*Vn')
True
Installation
------------
On Debian Wheezy
~~~~~~~~~~~~~~~~
::
$ apt-get install libgmp3-dev build-essential python-dev python-pip libmpfr-dev libmpc-dev
$ pip install seccure
On Ubuntu
~~~~~~~~~
::
$ apt-get install libgmp-dev build-essential python-dev python-pip libmpfr-dev libmpc-dev
$ pip install seccure
On Mac with MacPorts
~~~~~~~~~~~~~~~~~~~~
::
$ port install py27-gmpy2
$ pip install seccure
Please contribute!
------------------
To help out, you could:
1. Test and report any bugs or other difficulties.
2. Implement missing features, such as ``seccure-dh``,
``seccure-veridec`` and ``seccure-signcrypt``.
3. Package py-seccure (or the original SECCURE itself) for your
platform.
4. Write more unit tests.
.. image:: https://travis-ci.org/bwesterb/py-seccure.png
:target: https://travis-ci.org/py-seccure/py-seccure
.. _SECCURE: http://point-at-infinity.org/seccure/
.. _timing attack: http://en.wikipedia.org/wiki/Timing_attack
py-seccure Changelog
====================
0.5.0 (2020-02-04)
------------------
- Switch from PyCrypto to pycryptodome
- Add support for Python 3.8
0.4.1 (2020-02-04)
------------------
- Fix `generate_keypair`. #19 (Thanks-to: @Dschorim)
0.4.0 (2019-07-28)
------------------
- Use gmpy2 instead of gmpy
0.3.3 (2019-04-28)
------------------
- Bow to flake8
- py-seccure did not pad a signature with zeroes as seccure expected.
This caused some signatures generated by py-seccure not being accepted
by seccure. This has been fixed. Old unpadded signatures are still
accepted by py-seccure to keep backwards compatibility.
See #16 (Thanks-to: Tanner Collin)
- Add support for Python 3.7
- Drop support for Python 2.6 & Python 3.3
0.3.2 (2016-08-07)
------------------
- Add ``generate_keypair``
- Fix doubling of affine points. #10 (Thanks-to: Joep Peeters)
0.3.1.3 (2016-01-03)
--------------------
- Small fix for Python 2.6
0.3.1.2 (2015-12-29)
--------------------
- Use static __version__ attribute.
- Use RST for README
FAQs
SECCURE compatible Elliptic Curve cryptography
We found that seccure demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Announcing Precomputed Reachability Analysis in Socket
Socket’s precomputed reachability slashes false positives by flagging up to 80% of vulnerabilities as irrelevant, with no setup and instant results.
By Martin Torp - Jul 30, 2025
Product
Socket Now Protects the Chrome Extension Ecosystem
Socket is launching experimental protection for Chrome extensions, scanning for malware and risky permissions to prevent silent supply chain attacks.
By Mix Irving, Alexandros Kapravelos, Eli Insua - Jul 30, 2025