You can't view the source code of the site.
There is nothing on earth that can stop me from viewing the html source of a webpage.
<!DOCTYPE html>
<html lang="en-US" xmlns:fb="http://ogp.me/ns/fb#" xmlns:addthis="http://www.addthis.com/help/api-spec" prefix="og: http://ogp.me/ns#">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
<title>Jean-Paul Sartre, Signing and Significance - Dr. Craig Wright BlogDr. Craig Wright Blog</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="shortcut icon" href="http://www.drcraigwright.net/content/uploads/2016/04/favicon_cw.png" />
<link rel="alternate" type="application/rss+xml" title="Dr. Craig Wright Blog RSS Feed" href="http://www.drcraigwright.net/feed/" />
<link rel="alternate" type="application/atom+xml" title="Dr. Craig Wright Blog Atom Feed" href="http://www.drcraigwright.net/feed/atom/" />
<link rel="pingback" href="http://www.drcraigwright.net/wp/xmlrpc.php" />
<!-- This site is optimized with the Yoast SEO plugin v3.2.3 - https://yoast.com/wordpress/plugins/seo/ -->
<meta name="description" content="Dr. Craig Wright explains the process of verifying a set of cryptographic keys."/>
<meta name="robots" content="noodp"/>
<link rel="canonical" href="http://www.drcraigwright.net/jean-paul-sartre-signing-significance/" />
<meta property="og:locale" content="en_US" />
<meta property="og:type" content="article" />
<meta property="og:title" content="Jean-Paul Sartre, Signing and Significance - Dr. Craig Wright Blog" />
<meta property="og:description" content="Dr. Craig Wright explains the process of verifying a set of cryptographic keys." />
<meta property="og:url" content="http://www.drcraigwright.net/jean-paul-sartre-signing-significance/" />
<meta property="og:site_name" content="Dr. Craig Wright Blog" />
<meta property="article:section" content="Analysis" />
<meta property="article:published_time" content="2016-05-02T00:11:54+01:00" />
<meta property="article:modified_time" content="2016-05-02T02:08:14+01:00" />
<meta property="og:updated_time" content="2016-05-02T02:08:14+01:00" />
<meta property="og:image" content="http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost.jpg" />
<meta property="og:image:width" content="1920" />
<meta property="og:image:height" content="700" />
<meta name="twitter:card" content="summary" />
<meta name="twitter:description" content="Dr. Craig Wright explains the process of verifying a set of cryptographic keys." />
<meta name="twitter:title" content="Jean-Paul Sartre, Signing and Significance - Dr. Craig Wright Blog" />
<meta name="twitter:image" content="http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost.jpg" />
<!-- / Yoast SEO plugin. -->
<link rel="alternate" type="application/rss+xml" title="Dr. Craig Wright Blog » Feed" href="http://www.drcraigwright.net/feed/" />
<link rel="alternate" type="application/rss+xml" title="Dr. Craig Wright Blog » Comments Feed" href="http://www.drcraigwright.net/comments/feed/" />
<link rel="alternate" type="application/rss+xml" title="Dr. Craig Wright Blog » Jean-Paul Sartre, Signing and Significance Comments Feed" href="http://www.drcraigwright.net/jean-paul-sartre-signing-significance/feed/" />
<script type="text/javascript">
window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/72x72\/","ext":".png","source":{"concatemoji":"http:\/\/www.drcraigwright.net\/wp\/wp-includes\/js\/wp-emoji-release.min.js?ver=4.5.1"}};
!function(a,b,c){function d(a){var c,d,e,f=b.createElement("canvas"),g=f.getContext&&f.getContext("2d"),h=String.fromCharCode;if(!g||!g.fillText)return!1;switch(g.textBaseline="top",g.font="600 32px Arial",a){case"flag":return g.fillText(h(55356,56806,55356,56826),0,0),f.toDataURL().length>3e3;case"diversity":return g.fillText(h(55356,57221),0,0),c=g.getImageData(16,16,1,1).data,d=c[0]+","+c[1]+","+c[2]+","+c[3],g.fillText(h(55356,57221,55356,57343),0,0),c=g.getImageData(16,16,1,1).data,e=c[0]+","+c[1]+","+c[2]+","+c[3],d!==e;case"simple":return g.fillText(h(55357,56835),0,0),0!==g.getImageData(16,16,1,1).data[0];case"unicode8":return g.fillText(h(55356,57135),0,0),0!==g.getImageData(16,16,1,1).data[0]}return!1}function e(a){var c=b.createElement("script");c.src=a,c.type="text/javascript",b.getElementsByTagName("head")[0].appendChild(c)}var f,g,h,i;for(i=Array("simple","flag","unicode8","diversity"),c.supports={everything:!0,everythingExceptFlag:!0},h=0;h<i.length;h++)c.supports[i[h]]=d(i[h]),c.supports.everything=c.supports.everything&&c.supports[i[h]],"flag"!==i[h]&&(c.supports.everythingExceptFlag=c.supports.everythingExceptFlag&&c.supports[i[h]]);c.supports.everythingExceptFlag=c.supports.everythingExceptFlag&&!c.supports.flag,c.DOMReady=!1,c.readyCallback=function(){c.DOMReady=!0},c.supports.everything||(g=function(){c.readyCallback()},b.addEventListener?(b.addEventListener("DOMContentLoaded",g,!1),a.addEventListener("load",g,!1)):(a.attachEvent("onload",g),b.attachEvent("onreadystatechange",function(){"complete"===b.readyState&&c.readyCallback()})),f=c.source||{},f.concatemoji?e(f.concatemoji):f.wpemoji&&f.twemoji&&(e(f.twemoji),e(f.wpemoji)))}(window,document,window._wpemojiSettings);
</script>
<style type="text/css">
img.wp-smiley,
img.emoji {
display: inline !important;
border: none !important;
box-shadow: none !important;
height: 1em !important;
width: 1em !important;
margin: 0 .07em !important;
vertical-align: -0.1em !important;
background: none !important;
padding: 0 !important;
}
</style>
<link rel='stylesheet' id='contact-form-7-css' href='http://www.drcraigwright.net/content/plugins/contact-form-7/includes/css/styles.css?ver=4.4.1' type='text/css' media='all' />
<link rel='stylesheet' id='sp_style-css' href='http://www.drcraigwright.net/content/themes/hemlock/style.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='sp_responsive-css' href='http://www.drcraigwright.net/content/themes/hemlock/css/responsive.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='bxslider-css-css' href='http://www.drcraigwright.net/content/themes/hemlock/css/jquery.bxslider.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='slicknav-css-css' href='http://www.drcraigwright.net/content/themes/hemlock/css/slicknav.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='owl-css-css' href='http://www.drcraigwright.net/content/themes/hemlock/css/owl.carousel.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='owl-theme-css-css' href='http://www.drcraigwright.net/content/themes/hemlock/css/owl.theme.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='font-awesome-css' href='//maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='default_headings_font-css' href='http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400italic%2C700italic%2C400%2C700%2C300&subset=latin%2Ccyrillic-ext&ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='default_body_font-css' href='http://fonts.googleapis.com/css?family=Crimson+Text%3A400%2C700%2C400italic%2C700italic&ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='wp-cookies-popup-css' href='http://www.drcraigwright.net/content/plugins/easy-wp-cookie-popup/css/popup.css?ver=1.5' type='text/css' media='screen' />
<link rel='stylesheet' id='wp-cookies-fontawesome-css' href='//maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css?ver=1.5' type='text/css' media='screen' />
<script type='text/javascript' src='http://www.drcraigwright.net/wp/wp-includes/js/jquery/jquery.js?ver=1.12.3'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.0'></script>
<link rel='https://api.w.org/' href='http://www.drcraigwright.net/wp-json/' />
<link rel="EditURI" type="application/rsd+xml" title="RSD" href="http://www.drcraigwright.net/wp/xmlrpc.php?rsd" />
<link rel="wlwmanifest" type="application/wlwmanifest+xml" href="http://www.drcraigwright.net/wp/wp-includes/wlwmanifest.xml" />
<meta name="generator" content="WordPress 4.5.1" />
<link rel='shortlink' href='http://www.drcraigwright.net/?p=593' />
<link rel="alternate" type="application/json+oembed" href="http://www.drcraigwright.net/wp-json/oembed/1.0/embed?url=http%3A%2F%2Fwww.drcraigwright.net%2Fjean-paul-sartre-signing-significance%2F" />
<link rel="alternate" type="text/xml+oembed" href="http://www.drcraigwright.net/wp-json/oembed/1.0/embed?url=http%3A%2F%2Fwww.drcraigwright.net%2Fjean-paul-sartre-signing-significance%2F&format=xml" />
<style type="text/css">
#logo { padding:px 0; }
#navigation, .slicknav_menu { background:#003d6a; }
#navigation .menu li a, .slicknav_nav a { color:; }
#navigation .menu li a:hover { color:; }
.slicknav_nav a:hover { color:; background:none; }
#navigation .menu .sub-menu, #navigation .menu .children { background: ; }
#navigation ul.menu ul a, #navigation .menu ul ul a { border-color: ; color:; }
#navigation ul.menu ul a:hover, #navigation .menu ul ul a:hover { color: ; background:; }
#top-social a i { color:#ffffff; }
#top-social a:hover i { color: }
#top-search a { background: }
#top-search a { color: }
#top-search a:hover { background:; }
#top-search a:hover { color:; }
.widget-title { background:; color:; }
#sidebar .widget-title { background:; color:; }
#footer-social { background:; }
#footer-logo { background:; }
#footer-logo p { color:; }
#footer-copyright { background:; }
#footer-copyright p { color:; }
a, #footer-logo p i { color:#003d6a; }
.post-entry blockquote p { border-left:3px solid #003d6a; }
.post-header h1 a, .post-header h2 a, .post-header h1 { color: }
.share-box { background:; border-color:; }
.share-box i { color:#003d6a; }
.share-box:hover { background:; border-color:; }
.share-box:hover > i { color:; }
</style>
<style type="text/css">.recentcomments a{display:inline !important;padding:0 !important;margin:0 !important;}</style>
</head>
<!-- oncontextmenu="return false" -->
<body class="single single-post postid-593 single-format-standard" oncontextmenu="return false">
<nav id="navigation">
<div class="menu-mobile"></div>
<div class="container">
<div id="navigation-wrapper">
<ul id="menu-header" class="menu"><li id="menu-item-40" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-40"><a href="/">Home</a></li>
<li id="menu-item-14" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-14"><a href="http://www.drcraigwright.net/about/">About</a></li>
<li id="menu-item-99" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-99"><a href="http://www.drcraigwright.net/posts/">Posts</a></li>
<li id="menu-item-438" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-438"><a href="http://www.drcraigwright.net/forum/">Forum</a></li>
</ul> </div>
<div id="top-search">
<a href="#"><i class="fa fa-search"></i></a>
</div>
<div class="show-search">
<form role="search" method="get" id="searchform" action="http://www.drcraigwright.net/">
<div>
<input type="text" placeholder="Search and hit enter..." name="s" id="s" />
</div>
</form> </div>
<div id="top-social">
<div class="addthis_toolbox">
<a class="addthis_button_more"><i class="fa icon-share2"></i></a>
</div>
</div>
</div>
</nav>
<header id="header">
<div class="container">
<div id="logo">
<h2><a href="http://www.drcraigwright.net"><img src="http://www.drcraigwright.net/content/themes/hemlock/img/logo.png" alt="Dr. Craig Wright Blog" /></a></h2>
</div>
</div>
</header>
<div class="container ">
<div id="main">
<article id="post-593" class="post-593 post type-post status-publish format-standard has-post-thumbnail hentry category-papers category-featured">
<div class="post-header margin-top">
<span class="cat"><a href="http://www.drcraigwright.net/category/papers/" title="View all posts in Analysis" >Analysis</a></span>
<h1>Jean-Paul Sartre, Signing and Significance</h1>
<span class="date">May 2, 2016</span>
</div>
<div class="post-image">
<a href="http://www.drcraigwright.net/jean-paul-sartre-signing-significance/"><img width="940" height="343" src="http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost-940x343.jpg" class="attachment-full-thumb size-full-thumb wp-post-image" alt="jeanpaulsarte-blogpost" srcset="http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost-940x343.jpg 940w, http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost-300x109.jpg 300w, http://www.drcraigwright.net/content/uploads/2016/04/jeanpaulsarte-blogpost-1024x373.jpg 1024w" sizes="(max-width: 940px) 100vw, 940px" /></a>
</div>
<div class="post-entry">
<!-- AddThis Sharing Buttons above --><h5 style="text-align: center;"><span style="line-height: 1.5;">“If I sign myself Jean-Paul Sartre it is not the same thing as if I sign myself Jean-Paul Sartre, Nobel Prizewinner”</span></h5>
<h5 style="padding-left: 120px; text-align: center;">– Jean-Paul Sartre, 1964</h5>
<p> </p>
<p><span style="line-height: 1.5;">I remember reading that quote many years ago, and I have carried it with me uncomfortably ever since. However, after many years, and having experienced the ebb and flow of life those years have brought, I think I am finally at peace with what he meant. If I sign <em>Craig Wright</em>, it is not the same as if I sign <em>Craig Wright, Satoshi</em>.</span></p>
<p><span style="line-height: 1.5;">I think this is true, but in my heart I wish it wasn’t.</span></p>
<pre style="padding-left: 30px;"><span style="line-height: 1.5;">IFdyaWdodCwgaXQgaXMgbm90IHRoZSBzYW1lIGFzIGlmIEkgc2lnbiBDcmFpZyBXcmlnaHQsIFNh
dG9zaGkuCgo= </span></pre>
<p> </p>
<p>I have been staring at my screen for hours, but I cannot summon the words to express the depth of my gratitude to those that have supported the bitcoin project from its inception – too many names to list. You have dedicated vast swathes of your time, committed your gifts, sacrificed relationships and REM sleep for years to an open source project that could have come to nothing. And yet still you fought. This incredible community’s passion and intellect and perseverance has taken my small contribution and nurtured it, enhanced it, breathed life into it. You have given the world a great gift. Thank you.</p>
<p>Be assured, just as you have worked, I have not been idle during these many years. Since those early days, after distancing myself from the public persona that was Satoshi, I have poured every measure of myself into research. I have been silent, but I have not been absent. I have been engaged with an exceptional group and look forward to sharing our remarkable work when they are ready.</p>
<p>Satoshi is dead.</p>
<p>But this is only the beginning.</p>
<h3>Key Verification</h3>
<p>In the remainder of this post, I will explain the process of verifying a set of cryptographic keys.</p>
<p>To ensure that we can successfully sign and validate messages using the correct elliptic curve parameters in OpenSSL, it is necessary to ensure that the secp256k1 curve is loaded. This is not the default on Centos Linux. I will not detail this process here. I do point out that <a href="http://repoforge.org/use/">RPMForge</a> maintains binaries that have already been patched. My recommendation would be to download both the source files from the OpenSSL website and the patch, if, like me you’re running Centos.</p>
<p>I will also point the reader to the following websites for some preliminary reading:</p>
<ul>
<li><a href="https://wiki.openssl.org/index.php/Command_Line_Elliptic_Curve_Operations">https://wiki.openssl.org/index.php/Command_Line_Elliptic_Curve_Operations</a></li>
<li><a href="http://www.secg.org/sec2-v2.pdf">http://www.secg.org/sec2-v2.pdf</a></li>
<li><a href="https://www.openssl.org/">https://www.openssl.org/</a></li>
<li><a href="https://www.bfccomputing.com/bitcoin-and-curve-secp256k1-on-fedora/">https://www.bfccomputing.com/bitcoin-and-curve-secp256k1-on-fedora/</a></li>
</ul>
<p>The first stage of this exercise will be to explain hash functions. In the figure below we’re displaying a file called “sn7-message.txt”.</p>
<div id="attachment_583" style="width: 951px" class="wp-caption aligncenter"><img class="size-full wp-image-583" src="http://www.drcraigwright.net/content/uploads/2016/04/1.png" alt="Script fragment regarding hash functions" width="941" height="423" srcset="http://www.drcraigwright.net/content/uploads/2016/04/1.png 941w, http://www.drcraigwright.net/content/uploads/2016/04/1-300x135.png 300w, http://www.drcraigwright.net/content/uploads/2016/04/1-940x423.png 940w" sizes="(max-width: 941px) 100vw, 941px" /><p class="wp-caption-text">Script fragment</p></div>
<p>The series of <a href="https://en.wikipedia.org/wiki/Hexadecimal">hexadecimal</a> values displayed in the figure above represents the <a href="https://en.wikipedia.org/wiki/Secure_Hash_Algorithm">SHA256</a> hash of an input value. A good hash algorithm will produce a large string of values that cannot be determined in advance. The amount of information and possible permutations always exceeds the range of imitations that can be output from any hash function and as a result, collisions will always exist. What makes a hash function such as SHA256 useful and considered “secure” is that it is infeasible given the current state of technology to determine and find a set of input values to the hash function that collides with the same value that is returned as output.</p>
<p>The SHA256 algorithm provides for a maximum message size of <script type="text/katex" display="false">\left (2^{128}-1\right )</script> bits of information whilst returning 32 bytes or 256 bits as an output value. The number of possible messages that can be input into the SHA256 hash function totals <script type="text/katex" display="false">\left (2^{128}-1\right )!</script> possible input values ranging in size from 0 bits through to the maximal acceptable range that we noted above.</p>
<p>In determining the possible range of collisions that would be available on average, we have a <a href="https://en.wikipedia.org/wiki/Binomial_coefficient">binomial coefficient</a> <script type="text/katex" display="false">\binom{n}{k}</script> that determines the permutations through a process known as combinatorics [1].</p>
<p>I will leave it to a later post to detail the mathematics associated with collision detection. It is important to note though that there are an incredibly large number of colliding values associated with each hash but that the probability of finding two colliding values or determining them in advance is infinitesimally small. Next week, I will follow-up with a post based on combinatorics and probability theory demonstrating the likelihood of finding collisions for “secure” hashing algorithms.</p>
<h3>Hashing</h3>
<p>Hash functions are relatively simple and <a href="http://www.righto.com/2014/09/mining-bitcoin-with-pencil-and-paper.html">can be done by hand</a>. This of course belies the complexity that is required to reverse them. A good hash function is simple to use and yet is infeasible to reverse. In the figure below we have run the Linux hash routine “sha256sum”. This simple program will return a unique value that corresponds to a set and fixed input.</p>
<div id="attachment_584" style="width: 951px" class="wp-caption aligncenter"><img class="size-full wp-image-584" src="http://www.drcraigwright.net/content/uploads/2016/04/2.bmp" alt="Script fragment" width="941" height="423" srcset="http://www.drcraigwright.net/content/uploads/2016/04/2.bmp 941w, http://www.drcraigwright.net/content/uploads/2016/04/2-300x135.bmp 300w, http://www.drcraigwright.net/content/uploads/2016/04/2-940x423.bmp 940w" sizes="(max-width: 941px) 100vw, 941px" /><p class="wp-caption-text">Script fragment</p></div>
<p>In the figure above, we have run this on several files including one that we are using for this OpenSSL signature exercise. The particular file that we will be using is one that we have called Sartre. The contents of this file have been displayed in the figure below.</p>
<div id="attachment_585" style="width: 951px" class="wp-caption aligncenter"><img class="size-full wp-image-585" src="http://www.drcraigwright.net/content/uploads/2016/04/3.png" alt="Script output" width="941" height="423" srcset="http://www.drcraigwright.net/content/uploads/2016/04/3.png 941w, http://www.drcraigwright.net/content/uploads/2016/04/3-300x135.png 300w, http://www.drcraigwright.net/content/uploads/2016/04/3-940x423.png 940w" sizes="(max-width: 941px) 100vw, 941px" /><p class="wp-caption-text">Script output</p></div>
<p>Digital signature algorithms sign the hash of the message. It is possible to sign the message itself but in signing the hash it is possible to ensure the integrity of the message and validate that the message has not changed. If even a single space or “.” was to be altered, the hash will be radically different to the value returned initially.</p>
<p>In order write this value and save it to a file, we can use the Linux command, <a href="http://linuxcommand.org/man_pages/xxd1.html">xxd</a>. This will write the ASCII values into a hexadecimal binary file. In the command below we would be writing a string of zeros into a file called “file.name”.</p>
<pre style="padding-left: 60px;">echo '000...000' | xxd -r -p > file.name</pre>
<p> </p>
<p>In doing this, we can change the string we received as output from the hashing algorithm into a hex encoded file. This will be the message we can sign and verify. It is important to validate the string of numbers that you are putting into the echo command above. If a single digit has been typed incorrectly then the message will not verify.</p>
<h3>Public Keys</h3>
<p>In order to verify a digitally signed message we need number of components. These include:</p>
<ul>
<li>The algorithm,</li>
<li>the public key of the signing party that we wish to verify,</li>
<li>the message that has been signed, and</li>
<li>the digital signature file.</li>
</ul>
<p>The first part of this, the algorithm is obtained through the installation of OpenSSL with the incorporation of the secp256k1 curve patch. In the step above we covered the creation of a hashed message. In the next section we will cover the use of ECDSA public keys.</p>
<div id="attachment_586" style="width: 951px" class="wp-caption aligncenter"><img class="size-full wp-image-586" src="http://www.drcraigwright.net/content/uploads/2016/04/4.png" alt="Script fragment" width="941" height="683" srcset="http://www.drcraigwright.net/content/uploads/2016/04/4.png 941w, http://www.drcraigwright.net/content/uploads/2016/04/4-300x218.png 300w, http://www.drcraigwright.net/content/uploads/2016/04/4-940x682.png 940w" sizes="(max-width: 941px) 100vw, 941px" /><p class="wp-caption-text">Script fragment</p></div>
<p>For this exercise I am using a public-private key pair that is saved is a PEM file in OpenSSL. <a href="http://davidederosa.com/basic-blockchain-programming/elliptic-curve-keys/">David Derosa</a> has written an excellent page defining the creation of an elliptic curve key pair in OpenSSL. In the figure above you can see the particular PEM format public key that is associated with the key pair used in signing the message in this exercise. A thorough reading of <a href="http://davidederosa.com/basic-blockchain-programming/elliptic-curve-keys/">David’s page</a> will provide all of the information for the reader detailing how a private key pair used in bitcoin transaction can be formatted as a PEM file. This page details the creation of a new private key and not how an existing private key can be imported into OpenSSL. I shall cover this additional process and demonstrate how an existing private key pair based on elliptic curve cryptography can be imported into a ASN.1 format for use with OpenSSL directly.</p>
<p>The command to export our public key is given below.</p>
<pre style="padding-left: 60px;">openssl ec -in sn-pub.pem -pubin -text -noout</pre>
<pre style="padding-left: 120px;">0411db93e1dcdb8a016b49840f8c53
bc1eb68a382e97b1482ecad7b148a6
909a5cb2e0eaddfb84ccf9744464f8
2e160bfa9b8b64f9d4c03f999b8643
f656b412a3
</pre>
<p>The string returned is the public key value used by programs including bitcoin for the verification and addressing of the signing function.</p>
<p><a href="https://casascius.wordpress.com/2013/01/26/bitcoin-address-utility/">Casascius</a> has developed a nifty tool that will help you decode this public key and return the associated bitcoin address that it maps to. We have a blog on this site that will help you understand the technical aspects of how bitcoin addresses derived from the public and private keys. Several <a href="http://bitcoinvalued.com/tools.php">online tools</a> are also available that can calculate the bitcoin address from the public key.</p>
<h3>Signing</h3>
<p>The process of digitally signing a message using OpenSSL requires that the party signing the message has access to the private key. I will document and cover this process further in a later post. In recent sessions, I have used a total of 10 private keys are associated with bitcoin addresses. These were loaded into <a href="https://electrum.org/#home">Electrum</a>, an SPV wallet. In one of the exercises, I signed messages that I will not detail on this post for a number of individuals. These were not messages that I personally selected, but rather ones that other people had selected. In some instances, we ensure the integrity of the process by downloading a new version of the electrum program, installing it on a fresh laptop that has just been unboxed having been purchased that afternoon and validating the signed messages on the new machine.</p>
<p>The version of electrum that I run is on Centos Linux v7 and runs via Python. For the exercise I noted above we used Windows 7 and Windows 10 on different occurrences.</p>
<h3>Signature Verification</h3>
<p>The final component that we need to cover is the signature itself. We will be using the following command to convert our base64 format signature into a file format that can be loaded into OpenSSL.</p>
<pre style="padding-left: 60px;">>> base64 --decode signature > sig.asn1 & openssl dgst -verify sn-pub.pem -signature sig.asn1 sn7-message.txt
</pre>
<p>The signature filed we will be verifying contains the following data.</p>
<pre style="padding-left: 60px;">------------------------- Signature File -------------------------
MEUCIQDBKn1Uly8m0UyzETObUSL4wYdBfd4ejvtoQfVcNCIK4AIgZmMsXNQWHvo6KDd2Tu6euEl1
3VTC3ihl6XUlhcU+fM4=
------------------------- End Signature --------------------------
</pre>
<p>In the figure below we display the signature file as it is stored on the computer that was used for this process and we see the result of the verification exercise. In saving this file, you could cut-and-paste the encoded signature and insert it into a saved file using an editor program such as vim. Not that I’m looking at getting into a holy war over the choice of editing programs.</p>
<div id="attachment_587" style="width: 951px" class="wp-caption aligncenter"><img class="size-full wp-image-587" src="http://www.drcraigwright.net/content/uploads/2016/04/5.png" alt="Script fragment" width="941" height="423" srcset="http://www.drcraigwright.net/content/uploads/2016/04/5.png 941w, http://www.drcraigwright.net/content/uploads/2016/04/5-300x135.png 300w, http://www.drcraigwright.net/content/uploads/2016/04/5-940x423.png 940w" sizes="(max-width: 941px) 100vw, 941px" /><p class="wp-caption-text">Script fragment</p></div>
<p>There are two possible outputs from this process that concern us. OpenSSL will either return as “Verified OK” where we have validly verified the signature. All of the information that is required to import the public key, the message and the message signature used in this post is available on this post.</p>
<p>I could have simply signed a message in electrum as I did in private sessions. Loading such a message would have been far simpler. I am known for a long history of “being difficult” and disliking being told what “I need to do”. The consequence of all of this is that I will not make it simple.</p>
<h3>Some scripts</h3>
<p>In order to simplify this process, I have included two shell scripts. For variations on scripts like these, please visit a site such as the one hosted by <a href="http://www.zimuel.it/">Enrico Zimuel</a>. This site is not particularly focused on elliptic curve cryptography but it is not too difficult to update his code for the use on a bitcoin based system.</p>
<h3>Signing</h3>
<p>For you to try and test this at your leisure I have included the signing script below. To use this script, the input consists of the variable <file> which signifies the file that you desire to sign using a selected <private_key> under your control. In this command, the <private_key> variable represents the file containing the private key to be used in signing the message and which will output the signature.</p>
<pre style="padding-left: 60px;">EcDSA.Sign.sh <file> <private_key>
</pre>
<p>The output from this shell script consists of the signature saved as a Base64 encoded file. This will be saved to your hard drive or other location using Base64 format as a file named <signature.der>.</p>
<div id="attachment_589" style="width: 724px" class="wp-caption aligncenter"><img class="size-full wp-image-589" src="http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.sign_.png" alt="EcDSA.sign.sh" width="714" height="427" srcset="http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.sign_.png 714w, http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.sign_-300x179.png 300w" sizes="(max-width: 714px) 100vw, 714px" /><p class="wp-caption-text">EcDSA.sign.sh</p></div>
<h3>Verification</h3>
<p>We can use a similar process to verify the signature we have created using the script that I have included below.</p>
<pre style="padding-left: 60px;">EcDSA.Verify.sh <file> <signature> <public_key>
</pre>
<p>In this commandline, the variable <file> is used to signify the name of the file we seek to verify. The variable <signature> represents the file where we have saved the signature (and coded using Base64), and the final variable, <public_key> contains the PEM formatted public key. We use these files together and if they are valid and correct they will allow us to successfully to verify the digital signature.</p>
<div id="attachment_588" style="width: 694px" class="wp-caption aligncenter"><img class="size-full wp-image-588" src="http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.verify.png" alt="Shell script" width="684" height="536" srcset="http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.verify.png 684w, http://www.drcraigwright.net/content/uploads/2016/04/EcDSA.verify-300x235.png 300w" sizes="(max-width: 684px) 100vw, 684px" /><p class="wp-caption-text">EcDSA.verify.sh</p></div>
<h3>Choices on formatting</h3>
<p>The signature format used within bitcoin is based on DER encoding. Other methods have been applied in the original code has changed significantly in the last seven years. The choice of DER encoding for the signatures and other information was based on a desire to ensure that information could be shared between incompatible systems. It is not the most efficient means of storing information but it does allow for disparate systems to communicate efficiently.</p>
<p>Like many open source projects, OpenSSL is poorly documented in many areas. bitcoin addressing and the storage of key pairs could have been far more efficient and the code has been updated to ensure that this is now the case. But like every new system it is far better to have something that is working on something that is not available but is aiming at perfection.</p>
<p>Security is always a risk function and not an absolute.</p>
<h3>References</h3>
<p>[1] Lovasz, Laszlo (1979) “Combinatorial Problems and Exercises” North Holand Publishing Co. Amsterdam</p>
<!-- AddThis Sharing Buttons below -->
<div class="post-tags">
</div>
</div>
<!-- INTERACTIVE ADD AREA -->
<div class="post-share">
<a target="_blank" href="https://www.facebook.com/sharer/sharer.php?u=http://www.drcraigwright.net/jean-paul-sartre-signing-significance/"><span class="share-box"><i class="fa fa-facebook"></i></span></a>
<a target="_blank" href="https://twitter.com/intent/tweet/?text=Check%20out%20this%20article:%20Jean-Paul+Sartre%2C+Signing+and+Significance%20-%20http://www.drcraigwright.net/jean-paul-sartre-signing-significance/"><span class="share-box"><i class="fa fa-twitter"></i></span></a>
<a class="addthis_button_linkedin"><span class="share-box"><i class="fa fa-linkedin"></i></span></a>
<a class="addthis_button_more"><span class="share-box"><i class="fa icon-share2"></i></span></a>
</div>
<div class="post-comments" id="comments">
<div class='comments'></div><div id='comments_pagination'></div>
</div> <!-- end comments div -->
<!-- -->
<script type="text/javascript">
jQuery('document').ready(function($){
// Get the comment form
var commentform=$('#commentform');
// Add a Comment Status message
commentform.append('<div id="comment-status" ></div>');
// Defining the Status message element
var statusdiv=$('#comment-status');
commentform.submit(function(){
// Serialize and store form data
var formdata=commentform.serialize();
//Add a status message
statusdiv.html('<p class="ajax-placeholder">Processing...</p>');
//Extract action URL from commentform
var formurl=commentform.attr('action');
//Post Form with data
$.ajax({
type: 'post',
url: formurl,
data: formdata,
error: function(XMLHttpRequest, textStatus, errorThrown){
statusdiv.html('<p class="ajax-error" >Thank you. Your comment has been received. It will appear on this site, once it has been approved.</p>');
},
success: function(data, textStatus){
if(data=="success")
statusdiv.html('<p class="ajax-success" >Thank you. Your comment has been received. It will appear on this site, once it has been approved.</p>');
else
statusdiv.html('<p class="ajax-error" >Thank you. Your comment has been received. It will appear on this site, once it has been approved.</p>');
commentform.find('textarea[name=comment]').val('');
}
});
return false;
});
});
</script>
<div class="post-related"><div class="post-box"><h4 class="post-box-title">You Might Also Like</h4></div>
<div class="item-related">
<a href="http://www.drcraigwright.net/social-choice-bitcoin-arrows-theorem/"><img width="150" height="100" src="http://www.drcraigwright.net/content/uploads/2016/04/BLOG-PPR-002v2-440x294.jpg" class="attachment-thumb size-thumb wp-post-image" alt="BLOG-PPR-002v2" /></a>
<h3><a href="http://www.drcraigwright.net/social-choice-bitcoin-arrows-theorem/">Social choice, bitcoin, and Arrow’s theorem</a></h3>
<span class="date">April 28, 2016</span>
</div>
<div class="item-related">
<a href="http://www.drcraigwright.net/bitcoin-costs-consumption/"><img width="150" height="100" src="http://www.drcraigwright.net/content/uploads/2016/04/BLOG-BOOK-001v2-440x294.jpg" class="attachment-thumb size-thumb wp-post-image" alt="BLOG-BOOK-001v2" /></a>
<h3><a href="http://www.drcraigwright.net/bitcoin-costs-consumption/">Bitcoin and the costs of consumption</a></h3>
<span class="date">April 28, 2016</span>
</div>
<div class="item-related">
<a href="http://www.drcraigwright.net/beyond-moores-law/"><img width="150" height="100" src="http://www.drcraigwright.net/content/uploads/2016/04/BLOG-TECH-001v2-440x294.jpg" class="attachment-thumb size-thumb wp-post-image" alt="BLOG-TECH-001v2" /></a>
<h3><a href="http://www.drcraigwright.net/beyond-moores-law/">What happens after Moore’s Law….</a></h3>
<span class="date">April 28, 2016</span>
</div>
</div>
<div class="post-pagination">
<div class="prev-post">
<a href="http://www.drcraigwright.net/beyond-moores-law/">
<div class="arrow">
<i class="fa fa-angle-left"></i>
</div>
<div class="pagi-text">
<span>Previous Post</span>
<h5>What happens after Moore’s Law….</h5>
</div>
</a>
</div>
</div>
</article>
<script language="javascript" type="text/javascript">
function resizeIframe(obj) {
obj.style.height = obj.contentWindow.document.body.scrollHeight + 'px';
}
</script>
</div>
<!-- END CONTAINER -->
</div>
<footer id="footer-copyright">
<div class="container">
<p>© 2016 Dr. Craig Wright</p>
<div class="go-to-top">
<a href="#" class="to-top">Back to top <i class="fa fa-angle-double-up"></i></a>
</div>
<div class="footer-nav">
<a href="/contact/">Contact</a>| <a href="/terms-of-use/">Terms Of Use</a> </div>
</div>
</footer>
<div id="eu-cookie" class="bottom">
<div class="popup-wrapper">
<a href="javascript:void(0)" class="close-icon"><i class="fa fa-times"></i><span>Close cookie popup</span></a>
<p><h5>This website uses cookies</h5>
<p>I have read and agree to the site’s Cookies Policy</p>
<a href="" class="cookie-btn agree">I Agree </a><a class="cookie-btn" href="/terms-of-use">Read More</a></p>
</div>
</div>
<script data-cfasync="false" type="text/javascript">
var addthis_config = {"data_track_clickback":true,"ui_atversion":300,"services_compact":"linkedin,facebook,google_plusone_share,twitter,mailto","ignore_server_config":true};
var addthis_share = {};
</script>
<!-- AddThis Settings Begin -->
<script data-cfasync="false" type="text/javascript">
var addthis_product = "wpp-5.3.2";
var wp_product_version = "wpp-5.3.2";
var wp_blog_version = "4.5.1";
var addthis_plugin_info = {"info_status":"enabled","cms_name":"WordPress","cms_version":"4.5.1","plugin_name":"Share Buttons by AddThis","plugin_version":"5.3.2","anonymous_profile_id":"wp-cbfa21fce47ef9a83c21743f7ccccfb9","plugin_mode":"WordPress","select_prefs":{"addthis_per_post_enabled":true,"addthis_above_enabled":true,"addthis_below_enabled":false,"addthis_sidebar_enabled":false,"addthis_mobile_toolbar_enabled":false,"addthis_above_showon_home":true,"addthis_above_showon_posts":true,"addthis_above_showon_pages":true,"addthis_above_showon_archives":true,"addthis_above_showon_categories":true,"addthis_above_showon_excerpts":true,"addthis_below_showon_home":true,"addthis_below_showon_posts":true,"addthis_below_showon_pages":true,"addthis_below_showon_archives":true,"addthis_below_showon_categories":true,"addthis_below_showon_excerpts":true,"addthis_sidebar_showon_home":true,"addthis_sidebar_showon_posts":true,"addthis_sidebar_showon_pages":true,"addthis_sidebar_showon_archives":true,"addthis_sidebar_showon_categories":true,"addthis_mobile_toolbar_showon_home":true,"addthis_mobile_toolbar_showon_posts":true,"addthis_mobile_toolbar_showon_pages":true,"addthis_mobile_toolbar_showon_archives":true,"addthis_mobile_toolbar_showon_categories":true,"sharing_enabled_on_post_via_metabox":true},"page_info":{"template":"posts","post_type":""}};
if (typeof(addthis_config) == "undefined") {
var addthis_config = {"data_track_clickback":true,"ui_atversion":300,"services_compact":"linkedin,facebook,google_plusone_share,twitter,mailto","ignore_server_config":true};
}
if (typeof(addthis_share) == "undefined") {
var addthis_share = {};
}
if (typeof(addthis_layers) == "undefined") {
var addthis_layers = {};
}
</script>
<script
data-cfasync="false"
type="text/javascript"
src="//s7.addthis.com/js/300/addthis_widget.js#pubid=wp-cbfa21fce47ef9a83c21743f7ccccfb9 "
async="async"
>
</script>
<script data-cfasync="false" type="text/javascript">
(function() {
var at_interval = setInterval(function () {
if(window.addthis) {
clearInterval(at_interval);
addthis.layers(addthis_layers);
}
},1000)
}());
</script>
<link rel='stylesheet' id='addthis_output-css' href='http://www.drcraigwright.net/content/plugins/addthis/css/output.css?ver=4.5.1' type='text/css' media='all' />
<link rel='stylesheet' id='katex-css' href='http://www.drcraigwright.net/content/plugins/wp-katex/assets/katex.min.css?ver=0.6.0' type='text/css' media='all' />
<script type='text/javascript' src='http://www.drcraigwright.net/content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20'></script>
<script type='text/javascript'>
/* <![CDATA[ */
var _wpcf7 = {"loaderUrl":"http:\/\/www.drcraigwright.net\/content\/plugins\/contact-form-7\/images\/ajax-loader.gif","recaptchaEmpty":"Please verify that you are not a robot.","sending":"Sending ..."};
/* ]]> */
</script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/plugins/contact-form-7/includes/js/scripts.js?ver=4.4.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/jquery.bxslider.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/fitvids.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/jquery.slicknav.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/owl.carousel.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/retina.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/themes/hemlock/js/solopine.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/wp/wp-includes/js/comment-reply.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/plugins/easy-wp-cookie-popup/js/jquery.cookie.min.js?ver=1.4.0'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/plugins/easy-wp-cookie-popup/js/popup.min.js?ver=1.5'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/wp/wp-includes/js/wp-embed.min.js?ver=4.5.1'></script>
<script type='text/javascript' src='http://www.drcraigwright.net/content/plugins/wp-katex/assets/katex.min.js?ver=0.6.0'></script>
<script>!function(t){t("script[type='text/katex']").each(function(e){try{console.log(this),"true"==this.attributes.display.textContent?katex.render(this.text,t("<span></span>").insertAfter(this).get(0),{displayMode:!0}):katex.render(this.text,t("<span></span>").insertAfter(this).get(0))}catch(s){t("<span style='color:red'>"+s+"</span>").insertAfter(this),console.log(s)}})}(jQuery);</script>
<!--wp_footer--> <script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
})(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
ga('create', 'UA-76100128-1', 'auto');
ga('send', 'pageview');
</script>
<script language="javascript">
document.onmousedown=disableclick;
status="Sorry, not sharing images!";
function disableclick(event)
{
if(event.button==2)
{
alert(status);
return false;
}
}
</script>
<script type="text/javascript">
function detectspecialkeys(e){
var evtobj=window.event? event : e
if (evtobj.altKey || evtobj.ctrlKey || evtobj.shiftKey)
alert("The key is not available.");
}
document.onkeypress=detectspecialkeys
</script>
<script type="text/javascript">
if (typeof addthis_config !== "undefined") {
addthis_config.services_expanded = 'linkedin,twitter,google_plusone,facebook,blogger,reddit,email'
addthis_config.addthis_responsive_sharing = true;
} else {
var addthis_config = {
services_expanded: 'linkedin,twitter,google_plusone,facebook,blogger,reddit,email',
addthis_responsive_sharing: true
};
}
</script>
</body>
</html>
