A public key is a long alphanumeric string, derived from a corresponding private key, that serves as a publicly shareable address for receiving encrypted information or digital assets. In blockchain networks like Bitcoin and Ethereum, a public key is cryptographically transformed to create a public address (e.g., 1A1zP1eP5QGefi2DMPTfTL5SLmv7DivfNa), which is what is shared to receive funds. The fundamental principle of public-key cryptography (or asymmetric cryptography) is that data encrypted with the public key can only be decrypted by its paired private key, ensuring secure communication and transaction verification without exposing the sensitive private key.
LABS
Glossary
Public Key
A public key is a cryptographic string, derived from a private key, used to receive cryptocurrency and verify digital signatures in asymmetric cryptography systems.
Chainscore Ā© 2026
definition
CRYPTOGRAPHY
What is a Public Key?
A public key is a cryptographic code that allows users to receive cryptocurrency transactions and verify digital signatures, forming one half of an asymmetric key pair.
The relationship between the key pair is mathematically linked but computationally irreversible, meaning it is practically impossible to derive the private key from the public key. This one-way function is typically based on cryptographic algorithms like Elliptic Curve Cryptography (ECC), specifically the secp256k1 curve used by Bitcoin. When a user initiates a transaction, they create a digital signature using their private key. The network can then use the sender's public key to verify that the signature is valid and that the transaction has not been altered, all without revealing the private key. This process authenticates the transaction's origin and integrity.
Beyond receiving assets, public keys are essential for various blockchain functionalities. They enable the creation of multi-signature wallets, where multiple public keys are required to authorize a transaction. In decentralized applications (dApps) and smart contract platforms, public keys identify participants and interact with on-chain code. Furthermore, public keys form the basis for hierarchical deterministic (HD) wallets, where a single master public key can generate a sequence of child public addresses for improved privacy and organization. The public nature of this key means it carries no inherent security risk if shared, as the security of the system relies entirely on the secrecy of the private key.
how-it-works
CRYPTOGRAPHIC PRIMER
How a Public Key Works
A public key is a cryptographic code that enables secure digital interactions, serving as a verifiable address for receiving assets and verifying digital signatures.
A public key is a long alphanumeric string derived from a private key through a one-way cryptographic function, most commonly using Elliptic Curve Cryptography (ECC). This derivation is mathematically irreversible, meaning the private key cannot be feasibly calculated from its public counterpart. The public key acts as a publicly shareable identifier, analogous to an email address or a bank account number, which others can use to send encrypted data or cryptocurrency to its owner. In blockchain systems, a wallet address is a further hashed and encoded version of this public key.
The core function of a public key is to verify digital signatures. When a user signs a transaction with their private key, they produce a unique signature. Anyone can use the corresponding public key to mathematically verify that the signature is valid and was created by the holder of the paired private key, without ever revealing the private key itself. This process, known as asymmetric cryptography, ensures authentication and data integrity, proving the transaction's origin and that it hasn't been altered.
In practice, public keys enable several critical operations: - Transaction Reception: A sender encrypts transaction details or directs funds to a public key's derived address. - Identity Verification: Systems use public keys to confirm that a message or software update is authentically from the claimed source. - Secure Communication: Public keys can encrypt messages that only the holder of the paired private key can decrypt, forming the basis for protocols like TLS/SSL. This separation of public and private keys is the foundational security model for most modern digital infrastructure, including blockchains, secure websites, and digital certificates.
key-features
CRYPTOGRAPHIC IDENTIFIER
Key Features of a Public Key
A public key is a cryptographic string derived from a private key, used to receive assets and verify digital signatures on a blockchain. It is the public-facing component of an asymmetric key pair.
01
Derived from a Private Key
A public key is mathematically generated from a private key using a one-way cryptographic function, such as the Elliptic Curve Digital Signature Algorithm (ECDSA). This ensures the public key can be shared without revealing the private key, as the reverse calculation is computationally infeasible.
02
Used to Generate Addresses
Blockchain addresses, like an Ethereum 0x... address or a Bitcoin legacy address (1...) , are created by applying additional hashing and encoding (like Keccak-256 or Base58Check) to the public key. This provides a shorter, more user-friendly identifier for receiving transactions.
03
Verifies Digital Signatures
The primary cryptographic function of a public key is to verify signatures created by its corresponding private key. When a transaction is signed, anyone can use the signer's public key to mathematically confirm the signature's authenticity and that the message (transaction data) hasn't been altered.
04
Publicly Shareable & Non-Secret
Unlike a private key, a public key is designed to be publicly distributed. It can be shared in profiles, added to contracts, or broadcast in transactions without compromising security. Knowledge of a public key does not allow one to spend funds or forge signatures.
05
Format & Encoding
Public keys are often represented in specific encoded formats for interoperability:
- Raw/Uncompressed: 65-byte prefix
04+ X + Y coordinates. - Compressed: 33-byte prefix (
02or03) + X coordinate, derived from Y's parity. - Common Encodings: Hexadecimal, Base64, or DER format for certificates.
06
Foundation for Asymmetric Cryptography
Public keys are the cornerstone of Public Key Infrastructure (PKI) and asymmetric cryptography on blockchains. This system enables secure peer-to-peer transactions, message encryption (where the public key encrypts, the private key decrypts), and identity verification without a trusted third party.
relationship-to-address
CRYPTOGRAPHIC FOUNDATIONS
Public Key vs. Blockchain Address
Understanding the distinct roles of a public key and a blockchain address is fundamental to grasping how blockchain identity and security function. This section clarifies their technical relationship and operational differences.
A public key is a cryptographic string, derived from a private key, that serves as a publicly shareable identifier for receiving transactions and verifying digital signatures on a blockchain. It is the core cryptographic component from which a blockchain address is generated, typically through a one-way hashing function like SHA-256 or RIPEMD-160. While the public key can be used to encrypt data for the key holder, its primary blockchain function is to allow anyone to verify that a signature for a transaction was created by the corresponding, and secret, private key.
A blockchain address (e.g., a Bitcoin 1BvBMSE... or Ethereum 0x... address) is a shorter, user-friendly representation of a public key, created by applying cryptographic hash functions and often adding a checksum and network identifier. This process, which includes algorithms like Base58Check or creating an Ethereum address from the last 20 bytes of the Keccak-256 hash of the public key, serves critical purposes: it shortens the identifier, enhances security by obscuring the direct public key, and provides error detection. Importantly, while you can generate an address from a public key, you cannot reverse-engineer the public key from the address alone.
The operational distinction is clear in transaction workflows. To receive funds, a user only needs to share their blockchain address. To send funds or sign a message, the sender's wallet uses the private key to create a digital signature; network validators then use the corresponding public key (which can be derived or revealed in the transaction data) to verify the signature's authenticity. In some protocols, like Bitcoin in its standard Pay-to-Public-Key-Hash (P2PKH) model, the public key is only revealed to the network when the funds are spent, not when they are received, providing an additional layer of privacy.
ecosystem-usage
PUBLIC KEY
Ecosystem Usage
A public key is the cryptographic address derived from a private key, used to receive assets and verify digital signatures across blockchain networks.
02
Transaction Verification
Public keys are fundamental to verifying the authenticity of blockchain transactions. When a user signs a transaction with their private key, they generate a digital signature. Network validators use the corresponding public key to cryptographically verify that:
- The signature is valid and matches the transaction data.
- The signer is the legitimate owner of the assets. This mechanism ensures non-repudiation and integrity without revealing the signer's secret key.
03
Public Key Cryptography Standards
Different blockchain networks employ specific public key cryptography standards, which define the curve and algorithms used. Key standards include:
- secp256k1: Used by Bitcoin, Ethereum, and many others for key generation and the ECDSA.
- Ed25519: Used by Solana and Near Protocol, based on the Edwards-curve Digital Signature Algorithm (EdDSA), offering performance benefits.
- SR25519: Used in Polkadot's consensus layer, based on Schnorr signatures on the Ristretto group. The choice of standard affects security, performance, and signature size.
04
Beyond Wallets: Encryption & ZK-Proofs
Public keys enable functionalities beyond simple payments:
- Asymmetric Encryption: Used in protocols like the Diffie-Hellman key exchange to establish secure, encrypted communication channels (e.g., in blockchain messaging or layer-2 networks).
- Zero-Knowledge Proofs: In zk-SNARKs and zk-STARKs, a public key (often called a verification key) is used to verify the validity of a proof without revealing the underlying private witness data, enabling private transactions and computations.
05
Key Management & Security
While public keys are designed to be shared, their management is critical for security. Best practices and systems include:
- Hierarchical Deterministic (HD) Wallets: Use a single seed phrase to generate a tree of key pairs, allowing for organized, recoverable addresses.
- Multi-Signature Schemes: Require signatures from multiple private keys, with the spending conditions encoded in a multisig public key or smart contract.
- Hardware Wallets: Store the private key offline while allowing the public key to be used for address generation and receiving funds safely.
security-considerations
PUBLIC KEY
Security Considerations
While public keys are designed to be shared, their security is foundational to blockchain integrity. These cards detail the critical risks and best practices associated with public key exposure and management.
01
Address Derivation & Collision Resistance
A public key is cryptographically hashed (e.g., using Keccak-256 for Ethereum) to create a public address. The security relies on the one-way property of hash functions: deriving the public key from the address is computationally infeasible. The immense size of the key space (e.g., 2^256 for secp256k1) makes key collisions (two different keys hashing to the same address) statistically impossible for all practical purposes.
02
The Key Exposure Paradox
By design, a public key must be revealed to verify a digital signature. However, once a public key is permanently linked to an on-chain identity, all transactions signed by its corresponding private key are forever publicly attributable. This creates a privacy trade-off. For enhanced privacy, protocols like Bitcoin use HD Wallets to generate a new public key (and address) for each transaction, a practice known as address rotation.
03
Quantum Computing Threat
Current blockchain cryptography (ECDSA, EdDSA) relies on mathematical problems like the Elliptic Curve Discrete Logarithm Problem (ECDLP). A sufficiently powerful quantum computer could use Shor's Algorithm to derive the private key from a public key, breaking the system. This is a long-term, existential risk driving research into Post-Quantum Cryptography (PQC) algorithms that are quantum-resistant.
04
Signature Malleability
In some signature schemes (notably Bitcoin's legacy ECDSA), there can be multiple valid signatures ((r,s) and (r, -s mod n)) for the same message and private key. This signature malleability could allow a network relay to alter a transaction's signature without invalidating it, causing issues for transaction ID tracking. Modern implementations and schemes like Schnorr signatures are non-malleable by design.
05
Social Engineering & Phishing
Since public keys and addresses are long strings, users often rely on checksums (EIP-55) and human-readable formats (ENS domains). Attackers exploit this by:
- Creating addresses visually similar to legitimate ones.
- Registering deceptive ENS names.
- Address poisoning by sending $0 transactions from a fake address to a victim's history, hoping they copy it for a future payment. Always verify the full address.
CRYPTOGRAPHIC KEY PAIR
Public Key vs. Private Key
A comparison of the two mathematically linked keys that form the basis of asymmetric cryptography and blockchain user identity.
| Feature | Public Key | Private Key |
|---|---|---|
Definition | A cryptographic key that can be publicly shared and is used to receive assets and verify signatures. | A secret cryptographic key that must be kept confidential and is used to spend assets and create digital signatures. |
Analogy | A public mailbox address (anyone can send mail to it). | The physical key to that mailbox (only the owner can open it). |
Derivation | Mathematically derived from the private key using elliptic curve multiplication. | Generated as a large, random 256-bit number; the source of the key pair. |
Visibility | Publicly shared; often represented as an address (e.g., 0x...). | Never shared; stored securely in a wallet (hardware, software, paper). |
Primary Function |
|
|
Security Posture | Designed to be safe for public distribution. Knowing it does not compromise security. | Must be kept absolutely secret. Loss or exposure leads to total loss of control over associated assets. |
Example Format (Hex) | 0x04b9a5c... (Uncompressed Ethereum public key, 130 chars) | 0x2a2a2a... (64 hex characters for a 256-bit private key) |
Recovery | Can be re-derived from the private key if lost. | Cannot be recovered if lost; associated assets are permanently inaccessible. Backed up via seed phrase. |
PUBLIC KEYS
Common Misconceptions
Public keys are fundamental to blockchain cryptography, but their role and relationship to addresses are often misunderstood. This section clarifies the most frequent points of confusion.
No, a public key is not the same as a wallet address; the address is a derived, truncated representation of the public key. A public key is a long alphanumeric string (e.g., 64 bytes for ECDSA-secp256k1) used in cryptographic operations. An address is created by applying a one-way hash function (like Keccak-256 for Ethereum) to the public key and then often encoding it. This process makes addresses shorter, more user-friendly, and adds a layer of security by preventing the public key from being directly exposed in transactions until needed.
PUBLIC KEY CRYPTOGRAPHY
Frequently Asked Questions
Public keys are fundamental to blockchain security and identity. These questions address their core functions, technical details, and practical applications for developers and users.
A public key is a cryptographic key, derived from a private key, that serves as a public identifier and is used to verify digital signatures and encrypt data. It is a long alphanumeric string, often represented in a compressed or uncompressed format (e.g., starting with '02', '03', or '04' for uncompressed). In blockchain systems like Bitcoin and Ethereum, a public key is mathematically linked to a specific private key but can be safely shared. Its primary functions are to:
- Verify signatures: Prove a transaction was signed by the holder of the corresponding private key.
- Generate addresses: A blockchain address (like
0x...orbc1...) is typically a hashed version of the public key. - Enable encryption: In some systems, it allows others to encrypt messages that only the private key holder can decrypt.
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall