Digital Signature

A digital signature is a cryptographic mechanism that proves ownership of a private key and verifies that a transaction has not been altered.

3 min read
mining

Definition

A digital signature is a cryptographic construction that proves a specific party authorized a piece of data using their private key, while letting anyone verify that authorization with the matching public key. In Bitcoin, every transaction must carry valid digital signatures from the owners of the coins being spent before miners and full nodes will accept it as legitimate and propagate it across the network, as described in the original Bitcoin whitepaper.

How It Works

Bitcoin uses the Elliptic Curve Digital Signature Algorithm (ECDSA) over the secp256k1 curve, with newer transactions also using Schnorr signatures introduced by the Taproot upgrade. To spend coins, a wallet first builds the transaction, then computes a hash of its critical fields. The owner’s private key is used to produce a signature over that hash, and the signature is embedded in the transaction’s witness data.

Verifiers — every full node on the network — take the signature, the public key, and the transaction hash, then run the verification algorithm. If the math checks out, the signature is valid and the spend is authorized; if not, the transaction is rejected before it ever reaches a miner. Crucially, the private key never leaves the signer’s device. Verification only requires public information, which is what makes the scheme trustworthy without any central authority; Learn Me A Bitcoin’s digital signatures guide walks through the same verification idea step by step.

Why It Matters

Digital signatures are what make Bitcoin’s self-custody model possible. Without them, the network would need a trusted third party to authorize transactions on users’ behalf. With them, ownership reduces to a single rule: whoever can produce a valid signature for an unspent output controls those coins.

This places the burden squarely on the holder of the key. A leaked private key, weak random number generation during signing, or signature reuse across different curves can let an attacker forge spends and drain funds. Modern wallets defend against most of these issues using deterministic signing standards like RFC 6979, but the underlying responsibility for key security stays with the user.

Digital signatures sit at the intersection of several Bitcoin primitives. The entries below cover the surrounding cryptographic stack and how signatures connect to addresses and ownership: