Proof of concept script to demonstrate asymmetric signing using Elliptic Curve Digital Signature Algorithm (ECDSA).
Check out the working demo! 👯
- Generate a private-public key pair signed using elliptic curve cryptography (ECC) algorithm ECDSA
- Use the private key on the back-end to sign your token
- Use the public key on the front-end to verify your token and read the data
Run the following commands in a Unix shell to generate your private and public key pairs:
openssl ecparam -name prime256v1 -genkey -out keys/private.key
openssl ec -in keys/private.key -pubout -out keys/public.key
These commands are also in the executable file named ./generate_keys.sh.
The keys will be generated in the ./keys directory.
Run the script which will output information into the console (node index.js):
yarn example
This should print output in the console with your asymmetrically signed JWT and public key.
To see how it works, check out this file ./index.js.
There are a few parts to this project:
index.jswill have the entire process outlined in a simplified waydemo./serverhas the server-side implementation./clienthas the client-side implementation. The client app is a nested repository (Vue.js app)
Deployed to Heroku:
git push heroku master
- ECDSA: The digital signature algorithm of a better internet by Cloudflare
- Seriously, stop using RSA by Trail of Bits
- Bitcoin uses ECDSA to ensure funds can only be spent by their rightful owner
- Comparing ECDSA vs. RSA by SSL.com
- Elliptic Curve Digital Signature Algorithm on Wikipedia