P.S, I might add that for many applications it would be good to include: Step 0. A pseudo-random nonce is generated and appended to the message. This step would go a long way toward thwarting chosen message attacks, and is a good defense measure in any signature scheme.