explain digital signature and pki
Question
explain digital signature and pki
Solution
Digital Signature: A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. It's a technique used to validate the authenticity and integrity of a message, software or digital document. It's the digital equivalent of a handwritten signature or stamped seal, but it offers far more inherent security. A digital signature is intended to solve the problem of tampering and impersonation in digital communications.
Steps involved in creating a digital signature:
- It begins with a message, which is then run through a hash function to produce a message digest.
- The message digest is then encrypted with the sender's private key to create the digital signature.
- The digital signature is attached to the message and both are sent to the recipient.
- Upon receipt, the recipient uses the sender's public key to decrypt the message digest.
- The recipient then runs the message through the same hash function to generate a new message digest.
- If the new message digest matches the one in the digital signature, it verifies that the message has not been tampered with and was indeed sent by the claimed sender.
PKI (Public Key Infrastructure): Public Key Infrastructure (PKI) is a set of roles, policies, hardware, software and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. The purpose of a PKI is to facilitate the secure electronic transfer of information for a range of network activities such as e-commerce, internet banking and confidential email.
Steps involved in PKI:
- A user applies for a digital certificate from a Certificate Authority (CA).
- The CA verifies the user's credentials. If the user's credentials are found to be correct, the CA issues a digital certificate to the user.
- This digital certificate contains a public key and a private key pair, along with the details of the user.
- The user can then use this digital certificate to encrypt data, decrypt data, sign digital signatures, and perform other cryptographic operations.
- When the user sends a message to another user, he/she also sends the digital certificate. The recipient can then use the public key in the digital certificate to decrypt the message.
- If the recipient wants to send an encrypted reply, he/she can use the public key in the sender's digital certificate to encrypt the message. The sender can then use his/her private key to decrypt this message.
Similar Questions
PKI has two purposes. One is to link users to public keys. What is the other?a.)Verifying a user’s identity using a CAb.)Generating symmetric keysc.)Creating a secure tunnel between two endpoints via the internetd.)Enforcing password complexity and age restrictions
A_________ provides a way to associate the message with the sender and is the equivalent of an ordinary signature Question 33Answer a. cyber signature b. SSL c. none of these d. Digital signature
What feature of digital certificates ensures that a message or document has not been altered since it was signed?Key escrowNon-repudiationIntegrityConfidentiality
Which feature of digital certificates prevents tampering and ensures data integrity?Expiration datesDigital signaturesEncryption algorithmsCertificate chains
PKI enables users of an insecure public network to securely exchange data and to some extent money Select one: True False
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.