Fingerprint can be used to ensure that a set of files has been delivered without manipulation, by creating a fingerprint and signing this with a private key. The fingerprint and associated files can later be verified using the public key.
Generating Keys
To sign fingerprints, the first step is to create a private and public key pair. This is easily achieved using OpenSSL:
Signing Fingerprints
After you have generated a fingerprint, you can sign it easily using the private key:
Verifying Fingerprints
You can easily verify the security of the fingerprint data:
As long as private key is kept secure, we can be sure that these files have not been tampered with.