Digital Signatures are a clever approach of using complex mathematics in real life work

Let‘s see how it works…

First you create a Key pair containing a Public Key and a Secret Key.

The access to your Secret Key is protected by a passphrase

Distribute your Public Key to other users

The users add received Public Keys to their Public Key Ring

The other users verify your Public Key with your Key Certificate

If it matches, they sign your key as valid

To sign a file, first the checksum of the file is calculated

Then you create a Signature out of your Secret Key and the file checksum

Distribute the Signature to whoever needs it

The other users validate the Signature by compare it to the file checksum of their local file and your Public Key stored in their Public Keyring

Only if both matches, the Signature is valid