Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

secp256k1

Package Overview
Dependencies
Maintainers
2
Versions
62
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

secp256k1

This module provides native bindings to ecdsa secp256k1 functions

  • 2.0.10
  • Source
  • npm
  • Socket score

Version published
Weekly downloads
1.6M
increased by18.2%
Maintainers
2
Weekly downloads
 
Created

What is secp256k1?

The secp256k1 npm package provides an implementation of the elliptic curve secp256k1, which is widely used in cryptographic applications, particularly in blockchain technologies like Bitcoin and Ethereum. This package allows for key generation, signing, and verification of messages using the secp256k1 curve.

What are secp256k1's main functionalities?

Key Generation

This feature allows you to generate a private key and derive the corresponding public key using the secp256k1 curve.

const secp256k1 = require('secp256k1');
const crypto = require('crypto');

// Generate a private key
let privateKey;
do {
  privateKey = crypto.randomBytes(32);
} while (!secp256k1.privateKeyVerify(privateKey));

// Generate the public key
const publicKey = secp256k1.publicKeyCreate(privateKey);

console.log('Private Key:', privateKey.toString('hex'));
console.log('Public Key:', publicKey.toString('hex'));

Message Signing

This feature allows you to sign a message hash using a private key, producing a signature and a recovery ID.

const secp256k1 = require('secp256k1');
const crypto = require('crypto');

// Generate a private key
let privateKey;
do {
  privateKey = crypto.randomBytes(32);
} while (!secp256k1.privateKeyVerify(privateKey));

// Create a message hash
const message = 'Hello, world!';
const msgHash = crypto.createHash('sha256').update(message).digest();

// Sign the message hash
const sigObj = secp256k1.ecdsaSign(msgHash, privateKey);

console.log('Signature:', sigObj.signature.toString('hex'));
console.log('Recovery ID:', sigObj.recid);

Signature Verification

This feature allows you to verify a signature against a message hash and a public key, ensuring the authenticity of the message.

const secp256k1 = require('secp256k1');
const crypto = require('crypto');

// Generate a private key
let privateKey;
do {
  privateKey = crypto.randomBytes(32);
} while (!secp256k1.privateKeyVerify(privateKey));

// Generate the public key
const publicKey = secp256k1.publicKeyCreate(privateKey);

// Create a message hash
const message = 'Hello, world!';
const msgHash = crypto.createHash('sha256').update(message).digest();

// Sign the message hash
const sigObj = secp256k1.ecdsaSign(msgHash, privateKey);

// Verify the signature
const isValid = secp256k1.ecdsaVerify(sigObj.signature, msgHash, publicKey);

console.log('Signature is valid:', isValid);

Other packages similar to secp256k1

Keywords

FAQs

Package last updated on 20 Jan 2016

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc