Security

Digital Signature

A cryptographic mechanism that verifies the authenticity and integrity of digital messages or documents, providing proof of origin and non-repudiation.

Also known as:Electronic SignatureCryptographic Signature

What is a Digital Signature?

A digital signature is a cryptographic technique that verifies the authenticity and integrity of a digital message, document, or software. It provides proof that the content was created by the claimed sender and hasn't been altered.

How It Works

  1. Signing

    • Hash the message
    • Encrypt hash with private key
    • Attach signature to message

  2. Verification

    • Decrypt signature with public key
    • Hash the received message
    • Compare hashes

Properties

Authentication Verifies sender identity.

Integrity Detects any modifications.

Non-repudiation Sender cannot deny signing.

Signature Algorithms

AlgorithmKey TypeSecurity
RSARSAWell-established
ECDSAElliptic CurveEfficient
EdDSAEdwards CurveModern, fast
DSADSALegacy

Use Cases

  • Code signing
  • Document signing
  • Email (S/MIME, PGP)
  • Blockchain transactions
  • API authentication
  • Software distribution

Standards

  • PKCS #7
  • XML DSig
  • PDF signatures
  • CMS (Cryptographic Message Syntax)

Best Practices

  • Protect private keys
  • Use strong algorithms
  • Include timestamps
  • Verify certificates
  • Maintain key security
Previous

Differential Privacy

Next

Disaster Recovery (DR)