220.127.116.11 Digital Signatures
(Page 1 of 3)
A Digital Signature is an electronic signature of a document, created by using asymmetric encryption. A digital signature is different from a handwritten signature, because a handwritten signature tends to be the same over time, but a digital signature differs depending on the data being signed. A digital signature is used by a documents receiver to verify that:
the message has not been tampered with since it was signed (data integrity)
the person who supposedly sent the message really is who they say they are
Typically this is accomplished via encryption with a private key known only by the message sender, and decryption with the public key.
Keep in mind that it is computationally more expensive to encrypt a message than to apply a hashing algorithm to it, that messages sent between parties can be very large (such as file transfers), and the time taken to encrypt data increases the larger the amount of data is. This led researchers to combine the ideas of hashing (with an algorithm like MD5) and encryption, to create a digital signature by encrypting only the documents message digest hash value, rather than the entire contents of the message.
Home - Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.