nRF5 SDK v17.1.0
EdDSA - Edwards-curve Digital Signature Algorithm

Edwards-curve Digital Signature Algorithm (EdDSA) is a digital signature scheme using twisted Edwards curves. The EdDSA algorithm is described in RFC 8032 - Edwards-Curve Digital Signature Algorithm (EdDSA) .

This module provides support for EdDSA (Edwards-curve Digital Signature Algorithm) using SHA-512 and Ed25519. EdDSA is available in the API as a separate curve type. To use EdDSA, variable g_nrf_crypto_ecc_ed25519_curve_info must be passed to key creation functions.

For information about public-private key management and general concepts regarding ECC, see ECC - Elliptic Curve Cryptography.

For detailed API documentation of this module, see Edwards-curve Digital Signature Algorithm (EdDSA).

EdDSA frontend API

The library provides the following functions to perform EdDSA:

For examples of both functions, see the EdDSA usage section.

This library represents a signature as an array of bytes that contains two big integers in little-endian order. If big-endian order is required, use nrf_crypto_ecc_byte_order_invert.

Unlike ECDSA, the EdDSA sign and verify functions require the full plain text message as input for the signature, not the hash of the message.

Available backends

The following backends can be used for EdDSA:

For information on configuring the backends, see Configuring nrf_crypto frontend and backends.

EdDSA usage

This section contains examples of the EdDSA procedure, both for signing and verification.

Example of signing

const uint8_t my_raw_private_key[32] = {
0x23, 0x8F, 0x43, 0x88, ... // 32 bytes (256 bits) of raw private key
size_t raw_key_size = sizeof(my_raw_private_key);
size_t signature_size = sizeof(signature);
// Initialize crypto library once before using any crypto functionality.
err_code = nrf_crypto_init();
// Convert raw private key to backend type.
&my_private_key, // Private key
my_raw_private_key, // Raw private key
raw_key_size); // Raw key size
// Sign using Ed25519
err_code = nrf_crypto_eddsa_sign(&sign_context, // Sign context
&my_private_key, // Ed25519 private key
"Hello World!", // String to sign
strlen("Hello World!"),// Size of string
signature, // Signature (out)
&signature_size); // Signature size (in/out)

Example of verification

const uint8_t raw_public_key[32] = {
0xB4, 0x84, 0x12, 0xB8, ... // 32 bytes (256 bits) of raw public key
nrf_crypto_eddsa_verify_context_t verify_context;
// Initialize crypto library once before using any crypto functionality.
err_code = nrf_crypto_init();
// Convert raw public key to backend type
// Verify using Ed25519
err_code = nrf_crypto_eddsa_verify(&verify_context, // Sign context
&public_key, // Ed25519 public key
"Hello World!", // String to verify
strlen("Hello World!"), // Size of string
signature, // Signature (in)
sizeof(signature)); // Signature size

Documentation feedback | Developer Zone | Subscribe | Updated