A digital signature is a mathematical technique used to validate the authenticity and integrity of

a message, software or digital document. It's the digital equivalent of a handwritten signature or
stamped seal, but it offers far more inherent security. A digital signature is intended to solve the
problem of tampering and impersonation in digital communications.

Digital signatures can provide evidence of origin, identity and status of electronic documents,
transactions or digital messages. Signers can also use them to acknowledge informed consent.

In many countries, including the United States, digital signatures are considered legally
binding in the same way as traditional handwritten document signatures.

How do digital signatures work?

Digital signatures are based on public key cryptography, also known as asymmetric cryptography. Using
a public key algorithm, such as RSA (Rivest-Shamir-Adleman), two keys are generated, creating a
mathematically linked pair of keys, one private and one public.

Digital signatures work through public key cryptography's two mutually authenticating cryptographic
keys. The individual who creates the digital signature uses a private key to encrypt signature-related data,
while the only way to decrypt that data is with the signer's public key.

If the recipient can't open the document with the signer's public key, that's a sign there's a problem with
the document or the signature. This is how digital signatures are authenticated.

Digital signature technology requires all parties trust that the individual creating the signature has kept the
private key secret. If someone else has access to the private signing key, that party could create fraudulent
digital signatures in the name of the private key holder.