Digital Signatures and Digital Certificates
Vložit
- čas přidán 7. 04. 2019
- This video explains the purpose of digital signatures and how they work. It begins by reviewing encryption and decryption using an asymmetric pair of keys, and then explains the significance of this when it comes to digital signatures, namely that it doesn’t matter which of the key pair is made public and which is kept private. The video then illustrates the digital signing process. Specifically, the creation of a hash value for the document (also known as a digest) using a hash algorithm such as SHA256 (which was created by the National Security Agency). It shows how document digest is then encrypted using the sender’s private key before being attached to the document. When the document is received, the recipient decrypts the digest using the sender’s public key. The recipient also recalculates the hash. If the hash values match, the recipient can be confident that document has not been tampered with in transit. The role of a certification authority is also covered. A certification authority issues its customer with a special file called a digital certificate which binds their public key to identifying information. This video also mentions the importance of digital signatures which it comes to cryptocurrencies. A cryptocurrency such as Bitcoin requires a secure mechanism for updating its decentralised ledger.
This is by far the most simple explanation of the presented concepts - in a way that everyone understands it and from then can move on to the more complicated parts. Excellent.
this is the only video you need to watch if you want a practical understanding of digital signatures
Wow! This might be the best video on data integrity and data authentication
- digital signatures rely on asymmetric cryptography.
This is the single best illustration/explanation of this concept on the internet. Keep making these videos man, you've got talent.
Thank you :)KD
Such an explanation with downgraded complexity, but with an upgraded realization. Exceptionally wonderful.
Thank you :)KD
Used this video to get my Sec+ a few years back now... Back to refresh myself on this for my SSCP. Awesome video. Thank you so much!
Studying for CCNA Cyberops , the Cisco documentation on this is a complete mess. This video is pure gold , incredibly simple and clear. Thank you sir , keep up the great work . On more subscriber for your great channel :)
Exactly here for the same reason, good luck on you exam.
Done thanks
0:15 explaining RSA
1:30 digital signatures: it doesn’t matter what key we encrypt with (public or private) the message can only be decrypted with the other key. A message can be digitally signed by encrypting it with the private key and then others can verify the signature by decrypting with public key.
3:58 digital signature example
5:40 sender hashes the message, encrypts the hash with their private key. Receiver decrypts the hash with the sender’s public key, and if it matches the message then receiver knows message came from sender
7:00 why we need digital certificates on top of digital signatures. Someone could be pretending to be the sender, and digitally signs the message. The receiver has no way of verifying the sender’s identity.
Digital certificates is how the receiver can verify that a public key actually belongs to the sender
8:00 how certificate authority works
You deserve an Oscar for that kind of explanation .
Thank you. I'll start writing my speech. :)KD
2 days on the internet trying to understand this subject , your 11 min video made it , thank you alot !
Glad to be of service :)KD
I love the narration, the humour, the analogies and the simple and easily understandable format. Thank you!
You are most welcome :)KD
@@ComputerScienceLessonsthe explanation is phenomenal sir. I wish you could make more videos on cybersecurity topics esp security+. I'd gladly join your patteon
Amazing teaching. After viewing this video, finally I can understand the concept clearly.
Thank you for simplifying the concept of digital keys and explaining the role of hashing in it. Your explanation has made it easy for anyone to understand these complex theories.
You are most welcome :)KD
Perfect! At 6:19 I first thought you made a mistake but after finnishing the whole video you carefully explain how a CA works. Brilliant. Thank you.
You are very welcome.
You have talent to explain concepts...Thank you
You're very kind. Thanks for the comment. :)KD
10 from 10! so easy to understand, A good lesson for other CZcamsrs talking about Digital Signature!
This is by far the best explanation i've ever seen of this. Thanks a lot :D.
It's crystal clear the way you explain and demonstrate with animation.
Thank you :)KD
This channel is underrated!
Thank you :)KD
What a brilliant work !
wow! that is very well made. direct, clear and no annoying repetitions
Thank you :)KD
Finally, you explain it crystal clear! Thanks you very much!
You're most welcome. Thanks for commenting :)KD
This is the best explanation of digital certificates and digital signature i have come across. Thank you :)
Thank you :)KD
Such a clear explanation - thank you !
thanks a lot for the explanation! I finally I understand all the topics mentioned in the video. Big thanks!
Thanks for the video. Keep up the good work 👍
I think I attained Nirvana after watching this!
Thank you!!
It's been a while since I've done that for anyone. You are very welcome :)KD
i just saw this one video, but this is enough reason to subscribe. whatever you post I'm gonna watch it. damn
Welcome aboard :)KD
Finally, thank you so much I've been trying to understand this for a while now.
You're most welcome. :)KD
THanks so much for this video, Fought hours to understand this
Best explanation ever. Thank you Sir.
Excellent!! Explained in such a simple way. Thanks!
Thank you too :)KD
finally, someone who puts it clearly and totally
Thanks for the comment. Really appreciated. :)KD
I cannot thank you enogh for this video.
You explained it without extra info
Thanks alot 👍👍👍
You welcome. Thanks for the lovely comment. :)KD
Thank for this breakdown, it gave me a better understanding of the entire concept.
You are most welcome :)KD
you took 10 minutes to teach me whatever my teacher trying to teach me in 3 hours, damn !!!
Glad to help :)KD
This is so lucid. Beautifully explained
Thank you :)KD
This video is really nice! However there is one part I can't wrap my head around. From my understanding:
1: Person A types a message
2: Person A generates a hash of the message using sha
3: Person A encrypts the generated hash using their private key
4: Person A appends the encrypted hash to the message as a signature, and sends it to person B
5: Person B receives the message along with the signature
6: Person B decrypts the signature (encrypted hash) using person A's public key
7: Person B runs sha on the message to generate a hash.
8: Person B compares the resulting hash from the message to the hash from decrypting the signature
9: If they are the same, it;s been verified successfully.
So, what's the point of the sha layer exactly? Why not simply add the message encrypted with person A's private key as a signature? In both cases only person A's public key would be able to decrypt it so I can't see how running it through sha would make a difference.
Nice question. One of the key features of a hash algorithm is that it produces a hash value of a fixed size. SHA256 for example will produce a hash value that is always 256 bits long, no matter how big the original message. This ensures that the digital signature is a manageable size, regardless of the document being signed. You might like my series on cryptocurrency which also explains the benefits of hashing.
czcams.com/play/PLTd6ceoshprd7UngbhRHMgKXcWz4PIBEe.html
:)KD
exceptionally clear and easy to understand
Thank you :)KD
Best video about digital certificates ever.
Thank you so much :)KD
This is best and simplest explanation. Thanks
Great Explanation! Much appreciated
You're very welcome :)KD
Very helpful, thanks a lot !
Very impressive explanation
Really great video! Explained the things clearly.
Delighted to help :)KD
Love this video. 100 out of 10 ( ten, yes ), you deciphered it properly.
Thank you so much :)KD
fabulous explanation, simple and clear.
Finally I got this concept!!! Thanks!!
Delighted to help - it's actually a brilliantly simple idea isn't it!? :)KD
Thank you for that. The certification authority is the bit missing from most other explanations!
You are very welcome. :)KD
great content. I wonder if it calculates different hash for different data so digital signature is changed everytime on certificates or not ?
Thank you very much for clearing the concept
You are most welcome :)KD
Great job 👍 amazing explanation 👏 thank you so much .
You're very welcome. 😳 :)KD
Wts thats just genius 👏 how people come out with these stuff
Amazing explanation. Thanks
Ugh, this is great thank you so much!
You're welcome. :)KD
Thank you so much!!!! This was SOO helpful.
You are very welcome :)KD
That was all I ever needed thank you so much for explaining with that great tone!
You made my day :)
Thanks for the complement :)KD
This is really a great explanation, Question: If we talk about a real scenario, A client browser want to access some webpage and send a request, what would be the actual message first time from client and what will be the revert from the server?
In the example, The message is the actual document but what would be in the actual scenario? is it certificate itself from the web server?, that's what I can guess.
Thanks for this amazing video, it helped me understand digital signature more better
Nice way of explaining through graphics....
simple explanation. all i can say is wow!!!!
Thank you :)KD
Wonderful video!! Thanks a lot for great explanation
You're most welcome. Thanks for the lovely comment. :)KD
The research has came to an end
Very good and clear explanation.
Best explanation ever ❤ thanks bro
Thank you so much :)KD
Good freaking job mate, thanks.
TY :)KD
Awesome explanation.best video found on this topic
Thank you.
Best video on the topic
Thank you :)KD
Fantastic, thank you
This is Gold!
Thanks. I appreciate the comment. :)KD
6:44 What is the use of encrypting the hash value here using BOB Private key and sending, As however it can be decrypted by BOB's public key which is available to everyone
You can directly send the hash value or use Gill public key and encrypt and send right?
Excellent video!!!
Thx :) KD
Excellent lesson!
Thank you :)KD
outstanding video
excellent explanation!!!
Thanks for saying so. :)KD
so we use the same private key to encrypt data as well as to sign or better use different pairs?
Bob looks like the POTUS 45
Best explanation I have seen!😁
Thank you :)KD
This is Bob, Bob is builder !!! caught me so off guard ahahhaahah
He says he's a builder, but he's really a con artist :)KD
For the past fews months I'm looking for something on cryptography and i found this finally thanks
The presentation is really clean.
Thank you :)KD
Very helpful thanks!
You are welcome. :)KD
Lovely work well done.
Thank you. Lovin' your name :)KD
Pretty good, thanks a lot!
Thank you :)KD
"This is Bob. Bob's a builder"
Man/Woman of culture, I see.
Oh yes. I'm currently in talks wit the Teletubbies. :)KD
if someone was in the middle of a digital signature between person a and b couldnt they(person m) hash the email/text and sign it with their own key and send that to person b. Then when person b sends an email back to a, person m can hash the email and send a resigned version back to a?
Amazing explanation TQ
You're most welcome :)KD
Amazing explanation :-)
Thank you :)KD
Is the Digital Certificate embedded in the document that is being sent or attached to the email message with the document? What prevents a bad guy from obtaining a copy of someone else's digital certificate and using it to pass himself off as the rightful owner of the digital certificate?
fantastic channel i love it
Thank you. That's music to my ears :)KD
Thank you !!!
You are most welcome :)KD
thank you!
Very well explained
Thank you :)KD
this is the easiest explanation , because the author used the stories and pics.
Glad you like my pics.
great explanation
Thank you. You might like my crypto videos :)KD
If the public key has the algorithm to encrypt a message if someone has the same public key can't he reverse engineer it and decrypt it?
Does Jill contact the certificate authority to make sure the public key on the certificate (that is sent to her by jack) is the same as the one in the certificate authorities database? If not, surely the digital certificate could just be ‘forged’
the certificate is signed by the CA. if the signature isn't valid it's forged
@6:12 If How does Jill know that she cannot decrypt Jacks signature with his Public Key? Does the attempted decryption show a 'fail' message or code?
This functionality is built into software such as a web browser. Jill will get a message like 'could not logon' or 'transaction failed' depending on what she is trying to do. :)KD
@@ComputerScienceLessons Thanks, this video was helpful!
Good Explanation
Thank you :)KD
thanks it helps a lot
You're welcome :)KD