Heng Kiong teaches Information Technology, including business analytics and management information systems, at a tertiary institute.
Check out the full set of articles:
- What is Blockchain?
- Centralised vs. Decentralised Databases
- Digital Signatures
- Private-key Cryptography
- Public-key Cryptography
- Cryptography and Digital Signatures
The previous two articles have provided us with a broad introduction to cryptography before we jump right into the discussion of digital signatures.
Digital signature and its verification is one of the main key concepts behind Blockchain where cryptocurrency applications such as Bitcoin are based upon.
In a Blockchain network, it is important to be able to correctly identify the participants in a transaction by proving that the signature came from the holder of the private key, and that the transaction is valid.
Digital signatures provide authentication, data integrity, and non-repudiation, all of which are critical to a Blockchain network. As a result, anyone on the network can trust the transactions even without an intermediary.
Encryption and Digital Signature
Like what we saw in the previous article, a public key cryptography creates an encrypted message while a private key creates a digital signature.
Beyond encryption and decryption of data, public-key cryptography can be used to create a digital signature to provide authentication, data integrity, and non-repudiation in a Blockchain network.
The following steps explain the process for a digital signature model based upon public key cryptography depicted in the following diagram:
- All participating nodes on the Blockchain network have a Private-Public key pair, generated mathematically.
- The message in its plaintext form is fed into a Hashing algorithm to generate a hashed message, also known as a Message Digest. In a cryptocurrency application such as Bitcoins, the message contains the transaction issued by the sender.
- The hashed message is then signed by the Sender's Private key, and sent over the Blockchain network, together with the message in plaintext format.
- The participating nodes on the Blockchain network will now try to validate the message by checking the digital signature to verify that it matches the public key of the address from which the message was being sent by passing through a verification algorithm.
- Since the digital signature was created using the sender's Private key, the network can easily prove that the signature came from the holder of the private key by using the corresponding sender's Public key.
- The plaintext message is fed through another Hashing algorithm to generate a hash value. This hash value is compared with the hash value from the output of the verification algorithm above. Validation is performed without the sender having to reveal its Private key.
In the case of Bitcoins, the network also verifies that the sender does possess sufficient bitcoins to send, and that the sender has not already sent it to another receiver. This is achieved by running through the transaction history, which is public on the bitcoin ledger.
Instead of digitally signing the plaintext message directly, the digital signature is formed with the hash of data. The hashed message is an unique representation but relatively smaller digest of the data. This makes the blockchain more efficient.
Achieving Message Security
Let us now go through why it is so important to use Digital Signatures in Blockchain:
- Integrity: Digital signatures and the hashing algorithm ensure that the data has not been illegally accessed and modified by any attackers. This means that data cannot be altered without detection.
- Authentication: Digital signatures establish trust between a sender and a receiver in a Blockchain network. The receiver can be sure that only the sender could have sent this message.
- Non-repudiation: The sender cannot deny sending the message as the digital signature can only be created by a sender who possesses the corresponding Private key and no one else.
We have not talked much about hashing as it will be covered in the next article. For now, we just need to know that Hashing is a mathematical algorithm or function that maps data of arbitrary size to a hash of a fixed size. Example,
In summary, Hashing verifies that data has not been modified or tampered with.
- Unblocking the Blockchain: Public-Key Cryptography
Blockchain uses Public-key Cryptography (asymmetric key algorithms) to protect transaction messages across the network. In Blockchain, digital signatures based upon public-key cryptography are used to prove that a message originates from a specific p
- Unblocking the Blockchain: Hashing
There are two fundamental cryptographic concepts holding the Blockchain together. Digital Signature and Hashing ensure that the transactions on a Blockchain are only carried out by legitimate persons, and that the records remain free from manipulatio
This article is accurate and true to the best of the author’s knowledge. Content is for informational or entertainment purposes only and does not substitute for personal counsel or professional advice in business, financial, legal, or technical matters.
© 2018 Heng Kiong Yap