A digital signature is a cryptographic technique used to verify the authenticity and integrity of digital documents or messages. It provides assurance that the content has not been altered since it was signed and that it was indeed signed by the claimed sender.
Digital signature tokens are typically part of a Public Key Infrastructure (PKI), which includes a pair of cryptographic keys – a private key and a public key. The private key is securely stored on the token, and the public key is available to anyone who wishes to verify the signature.
The digital signature token securely stores the private key, ensuring that it cannot be easily accessed or copied by unauthorised users. This makes it a trusted device for generating digital signatures.
When a user wants to sign a document or message, they use the digital signature token to create a unique digital signature using their private key. The recipient can then verify the signature using the sender’s public key, which is usually available through a trusted certificate authority
Digital signatures also ensure the integrity of the document. If even a single character in the document is altered, the signature verification will fail, alerting the recipient to potential tampering