Hacker Read

dozzie · 2017-05-10 12:57:03+00:00

The thing is, you are signing hash of a hash of data instead of simply hash of data.

syrrim | karma 1534 | avg karma 2.15 · | 2020-12-14 23:33:37+00:00

Usually, signing the whole damn thing is too computationally expensive, so you sign a hash instead.

AgentME | karma 4810 | avg karma 2.59 · | 2015-04-30 21:29:08+00:00

Don't most systems for signing files just sign the hash of the file anyway?

Zamicol | karma 931 | avg karma 2.02 · | 2018-02-10 02:05:56+00:00

Even then it doesn't matter because you are signing an insecure hash.

abiro | karma 533 | avg karma 3.31 · | 2022-03-15 10:54:45

Signing and hashing are specific cryptographic operations with well defined properties. You can’t use them interchangeably if you want to be taken seriously.

adrianN | karma 29995 | avg karma 2.78 · | 2017-05-10 06:16:21+00:00

Isn't signing a hash the standard procedure for signatures?

lgas | karma 1726 | avg karma 1.93 · | 2017-05-10 06:30:32+00:00

What would be the benefit of signing content instead of hashes?

ragona | karma 1090 | avg karma 6.94 · | 2020-09-29 14:14:43

My hope and suspicion is that they’re storing a one way hash of the data to create the signature.

bheadmaster | karma 5076 | avg karma 3.53 · | 2023-03-03 04:56:43

The usual process of signing a bunch of data is to hash it and then encrypt it with public key encryption, so the hash function is as important as the public key encryption scheme.

If the hash is weak, an attacker may be able to construct compromised data that hashes to the same hash, and the whole signature becomes worthless.

reply

eeZah7Ux | karma 2038 | avg karma 0.8 · | 2021-03-11 16:08:49+00:00

you are confusing encryption and signing

brabel | karma 6486 | avg karma 2.62 · | 2023-05-25 05:36:30

Signing is basically hashing + proof of who created the hash. You need either both, or a way to find which hash is correct according to someone, usually the owner of the artifact, and signing gives you just that.

icebraining | karma 48925 | avg karma 2.14 · | 2018-01-22 08:43:23+00:00

In this case, the hash is the message being encrypted. It's the (c), as I indicated in my previous post. The text being signed is not encrypted, but the signature still involves encryption.

HunterWare | karma 178 | avg karma 2.92 · | 2021-12-29 13:04:53

Yep. The signing is done with public/private (aka asymmetric) keys and some kind of hashing mechanism.

bluesign | karma 1261 | avg karma 2.17 · | 2021-05-13 10:56:45

it is about timestamping basically nothing else. basically that cannot sign something in the past. Though you can do the same with sequence number, and publicly publishing all signed hashes.

zhuzhuor | karma 980 | avg karma 19.22 · | 2018-04-07 11:49:50

The article is about hash-based signatures, not signatures in general or public-key signatures (DSA or RSA).

em-bee | karma 7577 | avg karma 1.36 · | 2019-09-29 02:12:06

data can still be signed.

swolchok | karma 1906 | avg karma 2.16 · | 2009-08-28 01:13:13+00:00

Don't forget to sign the hashes.

tedunangst | karma 26000 | avg karma 2.74 · | 2021-09-23 23:22:06

I think you meant to say can't sign the bytes?

upofadown | karma 5902 | avg karma 2.2 · | 2022-09-20 18:57:22

You could sign the data. Distribute the public key far and wide. Destroy the private key before you die. The advantage of this approach over just the hash is that you can sign an unlimited number of files and can verify them all with just one public key. It is all authenticated by your identity.

If your signature scheme is broken over the years then that means that people can tamper with the files. So you can use different schemes just as with the hashes.

Who is going to be able to verify your identity after 500 years and/or have a verified copy of the hashes? Without the concept of identity, it's all just a bunch of bits.

reply

acdha | karma 35410 | avg karma 2.73 · | 2021-05-13 11:36:50+00:00

Don’t signatures get you the same benefit? I don’t need to trust you simply to sign something saying “user X showed me hash Y at time Z”.