RsaPssParams

Draft
This page is not complete.

Secure context
This feature is available only in secure contexts (HTTPS), in some or all supporting browsers.

This dictionary represents the object that should be passed as the algorithm parameter into SubtleCrypto.sign() or SubtleCrypto.verify(), when using the RSA-PSS algorithm.

Properties

name
DOMString. This should be set to "RSA-PSS".
saltLength

long. The length of the random salt to use, in bytes.

RFC 3447 says that "Typical salt lengths" are either 0 or the length of the output of the digest algorithm that was selected when this key was generated. For example, if you use SHA-256 as the digest algorithm, this could be 32.

The maximum size of saltLength is given by:

Math.ceil((keySizeInBits - 1)/8) - digestSizeInBytes - 2

So for a key length of 2048 bits and a digest output size of 32 bytes, the maximum size would be 222.

Examples

 

Specifications

Specification Status Comment
Web Cryptography API
The definition of 'SubtleCrypto.RsaPssParams' in that specification.
Recommendation  

Browser compatibility

No compatibility data found. Please contribute data for "api.SubtleCrypto.sign.algorithm-rsapss" (depth: 1) to the MDN compatibility data repository.

See also

Document Tags and Contributors

Contributors to this page: wbamberg
Last updated by: wbamberg,