Non-repudiation and digital signatures

Non-Repudiation and Digital Signatures

Why Is Non-Repudiation Important?

Non-repudiation is a critical security concept because it ensures that a party involved in a communication or transaction cannot deny having performed an action. In the digital world, where identities can be spoofed and messages can be altered, non-repudiation provides the legal and technical foundation for accountability. It is essential for e-commerce, legal contracts, financial transactions, and any scenario where proving the origin and integrity of a message is necessary.

What Is Non-Repudiation?

Non-repudiation is the assurance that someone cannot deny the validity of something. In the context of information security, it means that:

- A sender cannot deny having sent a message.
- A receiver cannot deny having received a message.
- The integrity of the message can be verified as unaltered.

Non-repudiation is one of the core goals of cryptography and is closely tied to authentication, integrity, and accountability.

What Are Digital Signatures?

A digital signature is a cryptographic mechanism that provides non-repudiation, authentication, and integrity. It is the electronic equivalent of a handwritten signature but far more secure. Digital signatures use asymmetric cryptography (public key cryptography) to bind a message to the identity of the signer.

How Digital Signatures Work – Step by Step

1. Hashing the Message: The sender takes the original message and runs it through a hashing algorithm (such as SHA-256) to produce a fixed-length message digest (hash value). This hash uniquely represents the content of the message.

2. Encrypting the Hash with the Sender's Private Key: The sender then encrypts the hash value using their private key. This encrypted hash is the digital signature. Because only the sender possesses their private key, this action binds the signature uniquely to the sender.

3. Sending the Message and Signature: The sender transmits both the original message and the digital signature to the recipient.

4. Recipient Decrypts the Signature: The recipient uses the sender's public key to decrypt the digital signature, revealing the original hash value.

5. Recipient Hashes the Received Message: The recipient independently hashes the received message using the same hashing algorithm.

6. Comparison: The recipient compares the decrypted hash (from the signature) with the newly computed hash. If they match, the message has not been tampered with and the sender's identity is confirmed. If they do not match, the message has been altered or the signature is invalid.

Key Concepts to Remember

- Digital signatures use the sender's private key to sign (encrypt the hash) and the sender's public key to verify.
- This is the reverse of encryption for confidentiality, where the recipient's public key encrypts and the recipient's private key decrypts.
- Digital signatures provide three security services: authentication (proof of identity), integrity (proof the message was not altered), and non-repudiation (the sender cannot deny sending).
- Digital signatures do NOT provide confidentiality. The message itself is sent in the clear unless separate encryption is applied.
- A certificate authority (CA) is often involved to validate that the public key truly belongs to the claimed sender, using digital certificates (X.509).

Non-Repudiation vs. Authentication

While related, these are distinct concepts:
- Authentication proves who you are at a given moment (e.g., logging in with a password).
- Non-repudiation provides undeniable proof that a specific action was taken by a specific party, and this proof can be verified by a third party after the fact.

Symmetric key cryptography (such as AES) can provide authentication between two parties but cannot provide non-repudiation because both parties share the same key, so either party could have created the message. Only asymmetric cryptography provides true non-repudiation.

Common Standards and Algorithms

- DSA (Digital Signature Algorithm) – A federal standard for digital signatures.
- RSA – Widely used for both encryption and digital signatures.
- ECDSA (Elliptic Curve Digital Signature Algorithm) – A more efficient variant using elliptic curve cryptography.
- Hash algorithms used: SHA-1 (deprecated), SHA-2 (SHA-256, SHA-384, SHA-512), SHA-3.

Real-World Applications

- Signing emails (S/MIME, PGP/GPG)
- Code signing for software distribution
- SSL/TLS certificates for websites
- Legal and financial document signing
- Blockchain and cryptocurrency transactions

---

Exam Tips: Answering Questions on Non-Repudiation and Digital Signatures

1. Know Which Key Does What: This is the most commonly tested concept. Remember: the sender's private key signs, and the sender's public key verifies. If a question asks what key is used to create a digital signature, the answer is always the sender's private key.

2. Distinguish Non-Repudiation from Confidentiality: Digital signatures do NOT encrypt the message content. They only ensure the sender cannot deny authorship and that the message was not tampered with. If a question asks about keeping a message secret, digital signatures alone are not the answer.

3. Symmetric vs. Asymmetric for Non-Repudiation: If a question asks which type of cryptography supports non-repudiation, the answer is always asymmetric (public key) cryptography. Symmetric cryptography cannot provide non-repudiation because the shared secret key is known to both parties.

4. Understand the Role of Hashing: The digital signature is not applied to the entire message. It is applied to the hash of the message. This is done for efficiency and integrity verification. Know that hashing provides integrity, and encrypting the hash with a private key adds authentication and non-repudiation.

5. Watch for Trick Answers: Some questions may present options like "the recipient's private key is used to create the signature" – this is incorrect. Always trace the process: sender hashes, sender encrypts hash with their own private key, recipient decrypts with sender's public key.

6. Remember the Three Services: When asked what digital signatures provide, select authentication, integrity, and non-repudiation. Do not select confidentiality or availability.

7. Certificate Authorities Matter: Questions may test your understanding of how trust is established. A CA vouches for the binding between a public key and an identity. If the CA is compromised, the entire trust chain is affected.

8. HMAC vs. Digital Signatures: HMAC (Hash-based Message Authentication Code) uses a shared symmetric key and provides integrity and authentication but not non-repudiation. Digital signatures provide all three. If a question contrasts HMAC with digital signatures, the differentiator is non-repudiation.

9. Process Order Matters: Be comfortable with the sequence: Hash → Encrypt hash with private key → Send message + signature → Recipient decrypts signature with public key → Recipient hashes message → Compare hashes. Questions may test your knowledge of this order.

10. When in Doubt, Think About Proof to a Third Party: Non-repudiation means a third party (such as a judge or auditor) can verify the action. If only two parties share a secret, neither can prove the other performed the action to an outside observer. This concept is fundamental to choosing the correct answer.