search

02 ecdsa accounts

ECDSA (Elliptic Curve Digital Signature Algorithm) accounts are the traditional Ethereum-compatible account type, using secp256k1 elliptic curve cryptography.

hashtag
Overview

ECDSA accounts provide maximum compatibility with the existing Ethereum ecosystem while maintaining classical cryptographic security.

hashtag
Technical Specifications

hashtag
Key Sizes

Component
Size
Format

Private Key

32 bytes (256 bits)

Hex string (64 characters)

Public Key

64 bytes (512 bits)

Uncompressed (without 0x04 prefix)

Public Key (Full)

65 bytes

Uncompressed (with 0x04 prefix)

Address

20 bytes (160 bits)

Hex string with 0x prefix

hashtag
Address Derivation

Address = keccak256(PublicKey)[12:32]
         = Last 20 bytes of Keccak256 hash

Example:

Public Key: 0x04a1b2c3d4e5f6...
Keccak256: 0x1234567890abcdef... (32 bytes)
Address:   0x7890abcdef... (last 20 bytes)

hashtag
Signature Format

Component
Size
Description

R

32 bytes

Signature component R

S

32 bytes

Signature component S

V

1 byte

Recovery ID (27, 28, or 35+)

Total

65 bytes

Complete signature

Recovery ID (V):

  • 27 or 28: Pre-EIP-155 (legacy)

  • 35 + chainId*2 or 36 + chainId*2: EIP-155 (chain-specific)

hashtag
Address Format

hashtag
Standard Format

  • Prefix: 0x (hexadecimal)

  • Length: 40 hex characters (20 bytes)

  • Case: Case-insensitive (checksummed addresses use mixed case)

hashtag
Checksummed Format (EIP-55)

Mixed case provides error detection for typos.

hashtag
When to Use ECDSA Accounts

hashtag
✅ Use ECDSA When:

1

hashtag
Maximum Compatibility Required

  • Interacting with existing Ethereum dApps

  • Using standard Ethereum tools (MetaMask, Remix, etc.)

  • Deploying to Ethereum mainnet or testnets

2

hashtag
Classical Security is Sufficient

  • Short-term transactions

  • Low-value operations

  • When quantum threat is not immediate concern

3

hashtag
Gas Cost Optimization

  • ECDSA signatures are smallest (65 bytes)

  • Lowest gas costs for transactions

  • Efficient for high-frequency operations

4

hashtag
Existing Infrastructure

  • Migrating existing Ethereum accounts

  • Using existing smart contracts

  • Maintaining backward compatibility

hashtag
❌ Don't Use ECDSA When:

1

hashtag
Long-Term Security Required

  • Storing high-value assets long-term

  • Planning for quantum computing era

  • Need quantum-resistant cryptography

2

hashtag
PQC-Only Networks

  • Networks that require PQC signatures

  • Networks that don't support ECDSA

3

hashtag
Maximum Security Needed

  • Defense against both classical and quantum attacks

  • Critical infrastructure

  • Regulatory compliance requiring quantum resistance

hashtag
Security Considerations

hashtag
Classical Security

  • Current Status: ✅ Secure against classical attacks

  • Security Level: ~128-bit classical security

  • Attack Resistance: Resistant to all known classical attacks

hashtag
Quantum Vulnerability

  • Grover's Algorithm: Reduces security to ~128-bit (still secure for now)

  • Shor's Algorithm: Can break ECDSA if quantum computers become powerful enough

  • Timeline: Estimated 10-30 years before practical quantum attacks

hashtag
Best Practices

1

hashtag
Use Strong Randomness

Ensure private keys are generated with cryptographically secure random number generators

2

hashtag
Secure Storage

Encrypt private keys with strong passwords

3

hashtag
Never Share Private Keys

Private keys should never be transmitted or stored insecurely

4

hashtag
Regular Backups

Maintain secure backups of private keys and recovery phrases

hashtag
Account Creation

hashtag
From Random Generation

hashtag
From Mnemonic

hashtag
From Private Key Import

hashtag
Transaction Signing

ECDSA transactions use standard Ethereum transaction formats:

  • LegacyTx (Type 0): Original transaction format

  • AccessListTx (Type 1): EIP-2930, includes access list

  • DynamicFeeTx (Type 2): EIP-1559, includes max fee and priority fee

All transaction types use 65-byte ECDSA signatures.

hashtag
Limitations

1

hashtag
No Quantum Resistance

Vulnerable to future quantum attacks

2

hashtag
Fixed Security Level

Cannot be upgraded without creating new account

3

hashtag
Signature Malleability

ECDSA signatures can be modified (mitigated by EIP-155)

hashtag
Migration Path

If you need quantum resistance later:

1

hashtag
Create Hybrid Account

Generate new Hybrid account with both ECDSA and PQC keys

2

hashtag
Transfer Funds

Move funds from ECDSA to Hybrid account

3

hashtag
Update References

Update any dApps or contracts referencing your address

See Hybrid Accounts for migration details.

hashtag
Related Documentation

  • Account Comparison - Compare all account types

  • PQC Accounts - Quantum-resistant accounts

  • Hybrid Accounts - Combined ECDSA + PQC

  • When to Use Each Account Type - Decision guide

Previous03 pqc accountsNext01 overview