Skip to main content
Skip table of contents

Algorithm Support

This page lists algorithms that are known to work or not work with the current implementation. Also, see the specific SignServer Signer for algorithms that signers can work with and review signer-specific algorithm support pages.

Signature Algorithms

Algorithm Name

Also Known As

Comment

(error)

SHA1withRSA

RSASSA-PKCS_v1.5 using SHA1

(tick)

SHA256withRSA

RSASSA-PKCS_v1.5 using SHA256

(tick)

SHA512withRSA

RSASSA-PKCS_v1.5 using SHA512

(error)

NONEwithRSA

RSASSA-PKCS_v1.5

(tick)

SHA256withRSAandMGF1

RSASSA-PSS using SHA256

(tick)

SHA512withRSAandMGF1

RSASSA-PSS using SHA512

(error)

NONEwithRSAandMGF1

RSASSA-PSS

(tick)

SHA256withECDSA

ECDSA using SHA256

(tick)

SHA512withECDSA

ECDSA using SHA512

(tick)

NONEwithECDSA

ECDSA

The Fortanix service requires the caller to specify which hash algorithm has been used, so the client must explicitly specify the client-side hashing used in the request metadata properties, see Client-Side Hashing.

Supported digest algorithms:

  • SHA-256

  • SHA-384

  • SHA-512

(tick)

Ed25519

Pure EdDSA with Edwards25519

Depending on the Signer.

(error)

Ed448

Pure EdDSA with Edwards448

Not yet implemented.

(tick)

ML-DSA-44

(tick)

ML-DSA-65

(tick)

ML-DSA-87

Key Algorithms

Algorithm Name

Key Specification

Comment

(tick)

RSA

  • 1024

  • 2048

  • 4096

Other key lengths are likely also working.

(tick)

ECDSA

Named curves:

  • secp224r1

  • secp256r1 / prime256v1 / P-256

  • secp384r1

  • secp521r1

More named curves are likely working.

(tick)

EdDSA

Ed25519

(tick)

ML-DSA

  • ML-DSA-44

  • ML-DSA-65

  • ML-DSA-87

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.