Bitcoin relies on cryptographic principles to secure transactions and establish ownership. While encryption isn't directly used for securing Bitcoin communications, cryptographic techniques like digital signatures and fingerprints are fundamental to its operation.
Ownership of Bitcoin is established through digital keys, Bitcoin addresses, and digital signatures. These keys are stored in a file or database called a wallet and are managed independently of the Bitcoin protocol. The digital keys enable key Bitcoin characteristics, including decentralized trust, ownership attestation, and a cryptographically secure model.
Public Key Cryptography and Bitcoin
Public key cryptography, invented in the 1970s, forms the mathematical foundation of Bitcoin’s security model. It uses mathematical functions that are easy to compute in one direction but practically irreversible in the opposite direction.
In Bitcoin, a key pair—consisting of a private key and a derived public key—is used to control access to funds. The public key is used to receive funds, while the private key signs transactions to spend those funds. The mathematical relationship between the keys allows the private key to generate verifiable signatures without revealing itself.
👉 Explore advanced security methods
Private and Public Keys
A Bitcoin wallet contains a collection of key pairs. The private key (k) is a randomly generated number. From this private key, a public key (K) is generated using elliptic curve multiplication, a one-way cryptographic function. The Bitcoin address (A) is then derived from the public key using a hashing algorithm.
The Role of Asymmetric Cryptography
Asymmetric cryptography (public/private key pairs) is not used to encrypt transactions in Bitcoin. Instead, it generates digital signatures. A private key can be applied to a transaction’s digital fingerprint to produce a signature that can be verified by anyone with the corresponding public key.
Generating a Private Key
A private key is essentially a random number selected between 0 and n-1, where n is a constant defined by the secp256k1 elliptic curve standard. The key must be generated from a cryptographically secure source of randomness, such as an operating system’s random number generator.
It is critical to use a reliable cryptographic pseudorandom number generator (CSPRNG). Writing custom code or using basic random functions can lead to vulnerabilities.
Example of a private key in hexadecimal format (256 bits, shown as 64 hex digits):
1E99423A4ED27608A15A2616A2B0E9E52CED330AC530EDCC32C8FFC6A526AEDDPublic Key Generation
The public key is calculated by multiplying the private key k by a predetermined point G on the elliptic curve, known as the generator point. The operation is straightforward: K = k * G. However, reversing this operation to derive k from K is computationally infeasible.
Elliptic Curve Cryptography Primer
Bitcoin uses the secp256k1 elliptic curve, defined by the National Institute of Standards and Technology (NIST). This curve operates over a finite field of prime order, making it suitable for cryptographic operations.
Bitcoin Addresses
A Bitcoin address is a string of letters and numbers that serves as a recipient for payments. It is derived from the public key through a series of cryptographic hashes—first SHA256 and then RIPEMD160—resulting in a 160-bit hash.
The address is usually encoded in Base58Check format, which improves readability, reduces ambiguity, and includes error-checking capabilities.
Base58Check Encoding
Base58Check uses a set of 58 alphanumeric characters, excluding visually similar characters like 0 (zero), O (capital o), l (lowercase L), and I (capital i). This encoding adds a version byte and a checksum to the data, ensuring accuracy when addresses are transcribed.
Key Formats
Private and public keys can be represented in multiple formats, each encoding the same underlying number.
Private Key Representations
Common private key formats include:
- Hexadecimal: Raw hex representation.
- Wallet Import Format (WIF): Base58Check encoding for easy import/export.
- WIF Compressed: Similar to WIF but includes a suffix indicating that the key should be used to derive compressed public keys.
Public Key Formats
Public keys can be uncompressed or compressed:
- Uncompressed: Starts with prefix 04, followed by x and y coordinates.
- Compressed: Starts with 02 or 03 (indicating the sign of the y coordinate), followed only by the x coordinate.
Using compressed public keys reduces transaction size and saves blockchain storage space.
Frequently Asked Questions
What is a private key?
A private key is a randomly generated number that controls access to Bitcoin funds. It is used to create signatures that authorize transactions. Losing the private key means losing access to the associated funds permanently.
How is a public key related to a private key?
A public key is derived from a private key using elliptic curve multiplication. While it is easy to generate the public key from the private key, reversing the process is computationally impossible.
Why are there different formats for Bitcoin addresses?
Bitcoin addresses can be derived from compressed or uncompressed public keys, resulting in different address formats. Wallets use version prefixes and suffixes to differentiate between them and ensure compatibility.
What is Base58Check encoding?
Base58Check is a binary-to-text encoding scheme that uses 58 characters to represent data. It includes a version byte and a checksum to prevent errors in transcription and entry.
Can one private key generate multiple addresses?
Yes, a single private key can generate both compressed and uncompressed public keys, which lead to different Bitcoin addresses. However, both addresses are controlled by the same private key.
How can I safely store my private keys?
Private keys should be stored securely using encrypted wallets, hardware devices, or offline storage solutions. Backups are essential to prevent loss due to hardware failure or accidental deletion.