The invention provides a
digital signature method and
digital signature equipment. The method comprises the following steps: receiving parameters (e, Xe) transmitted by a
server, wherein Xe is equal to eG, e is a true random number generated by the
server, and G is a generator of an
elliptic curve cryptosystem; acquiring signature parameters (ki, Xi) according to the parameters (e, Xe) and locally held parameters (ki-1, Xi-1), wherein Xi-1 is equal to ki-1G; executing
digital signature by utilizing the signature parameters (ki, Xi). In addition, the invention also provides a
password operation method in the digital signature and the
server. The method comprises the following steps: generating the true random number e according to a preset cycle; calculating and storing the parameters (e, Xe), wherein Xe is equal to eG, and G is the generator of the
elliptic curve cryptosystem; transmitting the parameters (e, Xe) to a
client which executes the signature, wherein the
client acquires the signature random number (ki, Xi) according to the parameters (e, Xe) and the parameters (ki-1, Xi-1) and executes the digital signature according to the (ki, Xi). By the technology disclosed by the invention, the leak of privacy that a service network acquires the
password operation of a user when a
digital signature algorithm is subjected to outsourcing process is avoided; the privacy of outsourcing
password operation is guaranteed; the signature security is guaranteed.