✍️ Digital Signature Digital Signature
A piece of math attached to a transaction that proves it really came from the holder of a specific private key — and that nobody changed a single character on the way.
🖊️ The simple version — a wax seal you can't fake
Picture an old letter sealed with wax and a unique stamp. Only you own that stamp (your private key), so only you can press the seal. Anyone who knows what your seal looks like (your public key) can recognize it, and if the envelope was opened, the seal is broken. A digital signature works the same way, except it's better: it's unforgeable and it also reveals if even one letter inside was edited.
⚙️ How it actually works
The data gets run through a hash function, which produces a small fixed-size fingerprint. The signer then signs that fingerprint with their secret private key. To check it, anyone runs the same data through the hash and verifies the signature with the matching public key. If even one character changed after signing, the fingerprint no longer matches and verification fails. The key trick: signing proves you hold the private key without ever revealing it.
🛡️ The three guarantees
| Guarantee | What it proves |
|---|---|
| 👤 Authentication | Who sent it — only the private-key holder could have produced the signature |
| 🧩 Integrity | The data was not altered after it was signed |
| 🔒 Non-repudiation | The signer can't later deny that they signed it |
🪙 Where you meet it in crypto
On a blockchain there is no login. Every transaction must be digitally signed with your private key to authorize spending, and the network checks that signature against your public key (your address) to confirm the rightful owner is the one moving the funds. As a beginner you meet this every time your wallet pops up asking you to "sign" or "confirm" — for a payment, or to sign in to a dApp. The wallet is building a digital signature behind the scenes.
🔗 Real examples
- ₿ Bitcoin — uses ECDSA on the secp256k1 curve, and added Schnorr signatures in the 2021 Taproot upgrade for better efficiency and the ability to combine several signers into one
- ⟠ Ethereum — also uses ECDSA (secp256k1) to sign transactions and messages
- 🔮 Looking ahead — post-quantum signature schemes are being researched so signatures stay safe against future quantum computers (not yet in mainstream use)
❓ FAQ
- Does signing reveal my private key?
- No. The whole point of a digital signature is that it proves you hold the private key without ever exposing it. Only the signature and your public key get shared; the private key stays secret on your side.
- Is a digital signature just a picture of my handwritten signature?
- No. It is not an image or a typed name. A digital signature is cryptographic math built from a private and public key pair. A pasted signature image is an electronic signature; a digital signature is the specific technology that proves a document is authentic and unaltered.
- Why does my wallet ask me to 'sign' something?
- There is no login on a blockchain. To authorize moving your coins or to prove who you are to a dApp, your wallet creates a digital signature with your private key. The network then checks it against your public key before letting the action through.