Working with Cryptographic Keys

The Casper platform supports two types of signatures for creating accounts and signing transactions: secp256k1 and ed25519. You can generate keys using the Casper client in both formats. It is also possible to work with existing Ethereum keys.

Key Generation

Ethereum Keys

To create secp256k1 keys, commonly known as Ethereum keys, follow these steps:

$ mkdir secp256k1-keys

$ casper-client keygen -a secp256k1 secp256k1-keys/
Keys successfully created in directory: /secp256k1-keys

$ tree secp256k1-keys/
├── public_key.pem
├── public_key_hex
└── secret_key.pem

Looking at the public-key-hex file, we see that secp256k1 public hex keys start with 02 in Casper:

$ cat secp256k1-keys/public_key_hex

EdDSA Keys

It is also possible to create ed25519 keys, which use the Edwards-curve Digital Signature Algorithm (EdDSA). To generate EdDSA keys, follow these steps:

$ mkdir ed25519-keys

$ casper-client keygen ed25519-keys/
Keys successfully created in the directory: /ed25519-keys

$ tree ed25519-keys/
├── public_key.pem
├── public_key_hex
└── secret_key.pem

Looking at the public-key-hex file, we see that keys of this type are pre-pended with 01:

$ cat ed25519-keys/public_key_hex

Working with Existing Ethereum Keys

It is also possible to use existing Ethereum keys in Casper. Here is an example set of Ethereum keys and their corresponding address:

Public key:0470fecd1f7ae5c1cd53a52c4ca88cd5b76c2926d7e1d831addaa2a64bea9cc3ede6a8e9981c609ee7ab7e3fa37ba914f2fc52f6eea9b746b6fe663afa96750d66
Private key:29773906aef3ee1f5868371fd7c50f9092205df26f60e660cafacbf2b95fe086

To use existing Ethereum keys, the Casper VM needs to know that the key is a secp256k1 type.

The Rust casper-client provides an example of how this works. Pre-pending the public key with a 02 indicates the key is a secp256k1 key.


The following transaction sends 100 CSPR.

casper-client transfer --node-address http://localhost:7777 --chain-name casper -t 020470fecd1f7ae5c1cd53a52c4ca88cd5b76c2926d7e1d831addaa2a64bea9cc3ede6a8e9981c609ee7ab7e3fa37ba914f2fc52f6eea9b746b6fe663afa96750d66 -a 10000000000 -k /home/mykeys/secret_key.pem -p 10000

The Rust casper-client requires the secret key to be in PEM format to send a transaction from this account. If you want to use existing Ethereum keys with the Rust client, a conversion to PEM format is needed.

The following example is a JS script that generates a PEM file, using key encoder and node.js. To install these components, do the following:

$ sudo apt install nodejs
$ npm install key-encoder

Then create the JS script convert-to-pem.js using vi or nano and include this content:

var KeyEncoder = require('key-encoder'),
keyEncoder = new KeyEncoder.default('secp256k1');
let priv_hex = "THE SECRET KEY TO ENCODE";
let priv_pem = keyEncoder.encodePrivate(priv_hex, "raw", "pem");

Then run the script using node.js. Name the secret key something different.

$ node convert-to-pem.js > eth-secret.pem

To view the secret key, use cat:

$ cat eth-secret.pem