<ul><li>A digital signature is a cryptographic mechanism used to verify the authenticity and integrity of digital data.</li><li>We may consider it as a digital version of the ordinary handwritten signatures, but with higher levels of complexity and security.</li><li>In simple terms, we may describe a digital signature as a code that is attached to a message or document. After generated, the code acts as proof that the message hasn’t been tampered with along its way from sender to receiver.</li></ul>

What Is A Digital Signature?

Public-key cryptography, or PKC, refers to a cryptographic system that makes use of a pair of keys:<ul><li>one public key</li><li>one private key.</li></ul>The two keys are mathematically related and can be used for both data encryption and digital signatures.

Public-key cryptography (PKC)

Let’s take an example to illustrate the whole process until the final step of verification. Imagine that Alice writes a message to Bob, hashes it, and then combines the hash value with her private key to generate a digital signature. The signature will work as a unique digital fingerprint of that particular message.

Verifying

After the information is hashed, the sender of the message needs to sign it. This is the moment where public-key cryptography comes into play. There are several types of digital signature algorithms, each with its own particular mechanism.But essentially, the hashed message will be signed with a private key, and the receiver of the message can then check its validity by using the corresponding public key (provided by the signer).

Signing

Digital signatures relate to one particular kind of electronic signatures - which refer to any electronic method of signing documents and messages. Thus, all digital signatures are electronic signatures, but the opposite isn’t always true.

Electronic signatures vs. digital signatures

In the context of cryptocurrencies, a digital signature system often consists of three basic steps:<ul><li>hashing</li><li>signing</li><li>Verifying.</li></ul>

How digital signatures work

Digital signatures can be applied to various kinds of digital documents and certificates. As such, they have several applications. Some of the most common use cases include: <ul><li>Information Technology. To enhance the security of Internet communication systems.</li><li>Finance. Digital signatures can be implemented to audits, expense reports, loan agreements, and much more.</li><li>Legal. Digital signing of all sorts of business contracts and legal agreements, including governmental papers.</li><li>Healthcare. Digital signatures can prevent fraud of prescriptions and medical records.</li><li>Blockchain.</li></ul>

Use cases

Digital signatures are often used to achieve three results:<ul><li>data integrity,</li><li>authentication,</li><li>non-repudiation.</li></ul>

Why are digital signatures important?

The major challenges faced by digital signature schemes rely on at least three requirements: <ul><li>Algorithm. The quality of the algorithms used in a digital signature scheme is important. This includes the choice of reliable <a href="https://academy.binance.com/en/articles/what-is-hashing">hash functions </a>and cryptographic systems.</li><li>Implementation. If the algorithms are good, but the implementation is not, the digital signature system will likely present flaws.</li><li>Private Key. If the private keys get leaked or somehow compromised, the properties of authenticity and non-repudiation will be invalidated.</li></ul>

Limitations

Hashing the data is not a must for producing a digital signature because one can use a private key to sign a message that wasn’t hashed at all.But for cryptocurrencies, the data is always hashed because dealing with fixed-length digests facilitates the whole process.

Hashing the data

Hash functions and public-key cryptography are at the core of digital signature systems, which are now applied to a wide range of use cases.

Signing

Similar ideas to Signing

Limitations