0 / 16 flipped
Non-Repudiation
Tap to reveal
Cannot deny an action you performed. Combines proof of integrity + proof of origin. Like signing a contract β you can't deny your signature.
Hash Function
Tap to reveal
Mathematical algorithm converting any data into a fixed-length hash value. Any change to input = completely different output. One-way function (cannot reverse-engineer data from hash).
Message Digest
Tap to reveal
Another name for a hash value. The fixed-length fingerprint output of a hash function.
Proof of Integrity
Tap to reveal
Evidence that data has not been changed. Achieved by hashing. If received hash = original hash, data is unchanged. Does NOT prove sender identity.
Proof of Origin
Tap to reveal
Evidence that data came from a specific sender. Achieved by digital signatures using the sender's private key. Anyone can verify with the public key.
Digital Signature
Tap to reveal
Hash encrypted with sender's PRIVATE key. Attached to the plaintext message. Receiver decrypts with sender's PUBLIC key and compares hashes. Proves both integrity and origin.
Private Key (signing)
Tap to reveal
The SECRET key used to CREATE (sign) a digital signature. Held only by the sender. No one else can produce the same signature.
Public Key (verifying)
Tap to reveal
The SHARED key used to VERIFY a digital signature. Available to anyone. Cannot be used to create a valid signature β only to check one.
Does hashing identify the sender?
Tap to reveal
NO. Hashing only proves data hasn't changed. It doesn't link the data to any specific person. You need a digital signature for sender identification.
Does the message need encryption for a digital signature to work?
Tap to reveal
NO. The plaintext can be sent as-is. The digital signature (encrypted hash) is attached separately. Non-repudiation works on unencrypted messages.
What happens if one character changes in the hashed data?
Tap to reveal
The resulting hash is completely different. Even a single bit change produces an entirely different hash output β making tampering immediately detectable.
Hash Collision
Tap to reveal
When two different inputs produce the same hash. A weakness in older algorithms (MD5, SHA-1). Modern algorithms (SHA-256) make collisions computationally infeasible.
Certificate Authority (CA)
Tap to reveal
Trusted entity that issues and signs digital certificates, binding a public key to a verified identity. Enables trust in digital signature systems at scale.
Asymmetric Encryption
Tap to reveal
Two mathematically related keys (public + private). What one encrypts, only the other decrypts. Basis for digital signatures. Private key signs, public key verifies.
What does non-repudiation provide beyond integrity?
Tap to reveal
Proof of ORIGIN β who sent the data. Integrity tells you data wasn't changed. Non-repudiation adds: and it came from THIS specific person, who cannot deny it.
Gutenberg Encyclopedia Hash Example
Tap to reveal
8.1MB encyclopedia file. Change ONE character β completely different hash. Same file size, impossible to spot manually, but instantly detected by hash comparison. Demonstrates hash sensitivity.