7 - Digital Signatures Flashcards
1
Q
5 requirements for a digital signature
A
- Author Authentication
- Non-repudiation (signer cannot deny)
- Integrity (no changes)
- replay prevention (confirm time)
- Anyone can check
2
Q
General idea of signatures
A
- Message
- Apply hash function to get message digest
- “Decrypt” using Bob’s private key
- Which obtains Bob’s signature
- Send to Alice
- Alice receives both
- Apply same hash to recv message
- “Encrypt” signature with Bob’s public key
- Both message digests should equal.
3
Q
Digital Sig RSA example
Pub (e=3,n=33)
Private (d=7,q=3,q=11)
Message m
Hash h 13
A
Pub key (3,33)
Priv key (7,3,11)
message m
hash = 13
Bob sig:
s = h^7 mod 33 = 13^7 mod 33 = 7
publish m with sig 7
Alice does:
s^3 mod 33 = 7^3 mod 33 = 13
message digest of m
if equal then accepted.
4
Q
Are digital signatures legally accepted?
A
Yes. eIDAS, EU reg 2016