How is a Digital Signature created and verified?

To create a Digital Signature, the signer creates a "hash", unique shortened version of the message, and then uses his private key to encrypt the hash. The encrypted hash is the digital signature. If the message is changed in any way, the hash result of the changed message would be different. The Digital Signature is unique to both the message and the private key used to create it, so it cannot be forged. The Digital Signature is then appended to the message and both are sent to the message recipient. The recipient recreates the hash from the received message, then uses the public key of the original sender to decrypt the hash included in the received message. If the two hash results are identical, two things have been verified : that the digital signature was created using the signer's private key (assurance that the public key corresponds to the signer's private key) - no one is pretending to be or masquerading as the signer. This verifies the authenticity of the signer, and the signer cannot claim to have not signed the message. that the message has not been changed. This verifies the integrity of the message.

You can also find this information on www.digitalehandtekening.be.

What are digital signatures?

What do data integrity and
confidentiality in a signed e-mail mean?

What is cryptography?

What kind of keys are used
in Digital Signatures?

What is a key?

What does authentication
in a signed e-mail mean?

What does non-repudiation
in a signed e-mail mean?

What is public key cryptography?

How is a Digital Signature
created and verified?