Techly NewsGet the app

Get the latest tech news

Digital signatures and how to avoid them


Wikipedia’s definition of a digital signature is: A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature on a messag…

We basically just replace the challenge part of the protocol with a cryptographic hash function, computed over the message we want to sign and the commitment public key: c = H(R, m). TLS also uses signatures for what is essentially an identification protocol, and similarly has had a range of bugs due to insufficient context binding information being included in the signed data. And in fact it is: such nonce-reuse bugs are extremely common in deployed signature systems, and have led to compromise of lots of private keys (eg Playstation 3, various Bitcoin wallets etc).

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Digital

Digital

Photo of Digital signatures

Digital signatures

Related news:

News photo

Digital ID, facial analysis and AI profiling to be considered in teen social media ban trial

News photo

Digital-only Xbox Series X release date announced, pre-orders open

News photo

Digital wallets can allow purchases with stolen credit cards

« GPU Debug Scopes
OpenAI expands o1 AI models to enterprise and education, competing directly with Anthropic »