Question about signing & verifying

Oğuz osolok at
Wed Mar 17 03:51:23 UTC 2010

On 3/13/10, ilter yüksel <ilteryuksel at> wrote:
> Hello,
> I've question about signing especially for signing router-descriptor;
> Is the router "signing-key" using to prepare a router's signature with
> digest algorithm? If so then does an OR sign it's router descriptor with
> it's signature? Finally can we say right for below sequence?
> "signing-key" ---- digest algorithm --- > "router-signature"
> initial "router-descriptor" ----- sign with "router-signature" --- > signed
> "router-descriptor"

Selamlar İlter,

Actually it is

descriptor ---> digest function
private key --->  RSA engine ----> signature

> After that how a directory authority verify whether the router descriptor is
> self-signed?

RSA engine  ---> recovered digest  ?=?  digest function <--- descriptor
public key (signing-key)

To demonstrate, in Java you might do something like:


You have not experienced Tor documentation until you have read them in
the original Klingon
To unsubscribe, send an e-mail to majordomo at with
unsubscribe or-talk    in the body.

More information about the tor-talk mailing list