Digital signatures

What Are Digital Signatures?

Digital signatures are cryptographic constructs that bind a message or document to the private key of its originator, providing evidence of authorship, demonstrating that the content has not been altered since it was signed, and enabling a recipient to verify both properties using only publicly available information. They are the digital analog of a handwritten signature, but with a mathematical security guarantee that a handwritten signature cannot provide: forgery requires solving a computationally hard problem, not merely replicating an ink pattern. The field draws on public-key cryptography, hash function design, and number theory, and digital signatures underpin secure email, software distribution, electronic commerce, and the authentication protocols used across the internet.

The concept was formalized by Whitfield Diffie and Martin Hellman in their 1976 paper introducing public-key cryptography, and the first practical scheme, RSA, was published by Rivest, Shamir, and Adleman in 1978. Subsequent decades produced elliptic-curve variants and lattice-based constructions designed to resist attacks from quantum computers.

Public-Key Cryptographic Foundations

A digital signature scheme relies on a pair of mathematically linked keys: a private key known only to the signer, and a corresponding public key that is distributed freely. The signer computes a cryptographic hash of the message using a function such as SHA-256, producing a fixed-length digest that represents the message content, then applies the private key to that digest through a signature algorithm to produce the signature. Anyone holding the public key can apply the inverse operation to the signature, recover the expected digest, and compare it with a fresh hash of the received message. If the two hashes match, the signature is valid. The NIST Digital Signatures project page explains that a valid signature provides assurance that the claimed signatory signed the information and that the information was not modified after signature generation. The security of the scheme depends on the one-way nature of the hash function and on the computational hardness of inverting the signature algorithm without the private key.

Signature Algorithms and Standards

NIST's Federal Information Processing Standard FIPS 186-5, published in February 2023, specifies three approved signature techniques: RSA, which derives security from the difficulty of factoring large integers; ECDSA (Elliptic Curve Digital Signature Algorithm), which uses the discrete logarithm problem on elliptic curves over finite fields and achieves comparable security to RSA at much shorter key lengths; and EdDSA, a variant of the Schnorr signature based on twisted Edwards curves, designed for speed and resistance to implementation side channels. The NIST FIPS 186-5 publication is the current authoritative standard for federal digital signature use. Post-quantum signature schemes are under active standardization: FIPS 204 (ML-DSA, based on module lattices) and FIPS 205 (SLH-DSA, a stateless hash-based scheme) were approved by NIST in August 2024 to provide resistance to attacks from future quantum computers.

Verification and Non-Repudiation

The verification process is asymmetric: while signing requires the private key, verification requires only the signer's public key, which is available to any party. This asymmetry supports non-repudiation, the property that a signer cannot credibly deny having produced a valid signature, because the private key required to generate it is known only to the signer. In practice, public keys are distributed through public key infrastructure (PKI), where certificate authorities issue signed certificates that bind a public key to an identity. The NIST Cybersecurity and Privacy glossary definition of digital signature notes that digital signatures provide authenticity and integrity protection but not confidentiality, and that the effectiveness of non-repudiation depends on robust key management practices.

Applications

Digital signatures have applications in a wide range of disciplines, including:

  • Message authentication in email (S/MIME and PGP protocols)
  • Software and firmware code signing to verify authenticity before installation
  • Blockchain transaction signing and smart contract execution
  • Electronic document signing in legal and financial workflows
  • TLS/SSL certificate validation in web browser security
  • Secure boot processes for embedded systems and operating systems

Related Topics

Loading…