Elliptic Curves Digital Signature
When Engity signs issued tokens (for JWT, HTTPS, …), we use either the Elliptic Curve Digital Signature Algorithm (ECDSA, with SHA-512) or Edwards-curve Digital Signature Algorithm (EdDSA with Ed25519; depending on support by devices). They work by reducing the computational complexity of solving modular multiplication, then combining this potential solution with a ciphertext value that has been encrypted using a private key. The private key is used to create a digital signature for a message. The signature can be verified by using the corresponding public key. Both cryptographic methods are the latest industry standards with meaningful support for devices and software. In contrast to RSA and DSA, which are both unfortunately still broadly used and known as broken, the mechanisms used by Engity is still known as secure and reliable.