diff --git a/book/source/03-cryptography.md b/book/source/03-cryptography.md index bf4de3d..459e25d 100644 --- a/book/source/03-cryptography.md +++ b/book/source/03-cryptography.md @@ -111,20 +111,20 @@ So in OpenPGP, the pair of terms "public/secret key" is sometimes used instead o ### Cryptographic digital signatures -[Digital signatures](https://en.wikipedia.org/wiki/Digital_signature) are a mechanism that is based on asymmetric cryptography. With this mechanism, one actor can make a signature over a digital message, and another actor can check the validity of that signature. +[Digital signatures](https://en.wikipedia.org/wiki/Digital_signature) are a fundamental mechanism of asymmetric cryptography, providing secure, mathematical means to validate the authenticity, integrity, and origin of digital messages and documents. -The signer uses digital signatures to make statements about the message. Third parties can then inspect these statements. +In OpenPGP, digital signatures have diverse applications, extending beyond mere validation of a message's origin. They can signify various intents, including certification, consent, acknowledgment, or even revocation by the signer. The multifaceted nature of "statements" conveyed through digital signatures in cryptographic protocols is wide-ranging but crucial, allowing third parties to inspect/evaluate these statements for authenticity and intended purpose. ```{admonition} VISUAL :class: warning -- add visualization showing: message + private key + sign = signature -> message + signature + public key + verify = ok? +- add visualization showing: message + private key (signing) = signature -> message + signature + public key (verification) = validation confirmed? ``` -In OpenPGP, digital signatures are used in two different contexts: +Digital signatures in OpenPGP are used in two primary contexts: - [Certification statements](certifications_chapter) -- [Signatures over data](signing_data) +- [Data signatures](signing_data) (hybrid_cryptosystems)= ## Hybrid cryptosystems