0

I am wondering how secure it is to share digital signatures with a 3rd party (signed using one private key).

For example, let's say I'm signing a million different messages with my private key and send to a 3rd party. How likely is it that this 3rd party can reverse-engineer my private key simply because they have a million signatures?

Basically, is it safe to implement a system where every message is signed by the user's private key?

Vlad
  • 569
  • 1
  • 4
  • 12
  • @Maeher thanks! so in my case the messages I'm signing are NOT controlled by the 3rd party at all, so this would be safe if I understand this correctly. Right? – Vlad Jul 22 '22 at 18:40
  • 1
    Per my (accepted) answer: for a signature system that's secure under EF-CMA (as most modern signature systems like ECDSA, EdDSA, DSA, RSASSA-PSS... are believed to be), then you are safe; and you would still be safe even if adversaries could control the messages signed, and be content with obtaining any signature for any new message. – fgrieu Jul 23 '22 at 10:39

0 Answers0