+ Reply to Thread
Results 1 to 2 of 2
  1. Senior Member /usr's Avatar
    Join Date
    Dec 2003
    Location
    West Virginia
    Posts
    1,776
    #1

    Default Digital Signature question

    I feel dumb for asking this, but this CEH book has me confused.

    I understood a digital signature to be as follows. You encrypt the hash of a message with your private key. The receiver performs the same hash on the message he receives, decrypts your hash, and compares the two.

    The CEH material is fuzzy, but it appears they are saying the message is hashed WITH the private key. In which case, the receiver would not be able to obtain a hash which would match up.
    Reply With Quote Quote  

  2. Junior Member
    Join Date
    Nov 2004
    Location
    St. Louis MO
    Posts
    11

    Certifications
    A+, Network+, Security+, CWNA, CWSP, 70-270, 70-685, 70-680, 70-640, 70-642, 70-646, 70-687, 70-688
    #2
    The message digest is encrypted with your private key and sent with the message. Your friend uses the same algorithm to create a message digest as you, decrypts your message digest using your public key, and then compares the two. This shows that your unique private key is a mate of the openly available public key and authenticates you to him. Prevents man-in-the-middle attacks because the private key is kept secret the entire time.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks