CMS Signer Algorithm Support
The following lists algorithm support for the CMS Signer.
Signature Algorithms
The signer also relies on support for the algorithm in the Crypto Token used, so also review that the desired algorithm is supported by the configured crypto token.
The following lists supported algorithms that are tested and known to work with a Crypto Token supporting it and therefore the list may not be complete.
Algorithm Name | Also Known As | Comment | |
---|---|---|---|
SHA1withRSA | RSASSA-PKCS1_v1.5 using SHA1 | ||
SHA224withRSA | RSASSA-PKCS1_v1.5 using SHA224 | ||
SHA256withRSA | RSASSA-PKCS1_v1.5 using SHA256 | ||
SHA384withRSA | RSASSA-PKCS1_v1.5 using SHA384 | ||
SHA512withRSA | RSASSA-PKCS1_v1.5 using SHA512 | ||
NONEwithRSA | RSASSA-PKCS1_v1.5 | Not applicable to CMS signatures. | |
SHA1withRSAandMGF1 | RSASSA-PSS using SHA1 | ||
SHA224withRSAandMGF1 | RSASSA-PSS using SHA224 | ||
SHA256withRSAandMGF1 | RSASSA-PSS using SHA256 | ||
SHA384withRSAandMGF1 | RSASSA-PSS using SHA384 | ||
SHA512withRSAandMGF1 | RSASSA-PSS using SHA512 | ||
NONEwithRSAandMGF1 | RSASSA-PSS | Not applicable to CMS signatures. | |
SHA1withECDSA | ECDSA using SHA1 | ||
SHA224withECDSA | ECDSA using SHA224 | ||
SHA256withECDSA | ECDSA using SHA256 | ||
SHA384withECDSA | ECDSA using SHA384 | ||
SHA512withECDSA | ECDSA using SHA512 | ||
NONEwithECDSA | ECDSA | Not applicable to CMS signatures. | |
Ed25519 | Pure EdDSA with Edwards25519 | ||
Ed448 | Pure EdDSA with Edwards448 | ||
ML-DSA-44 | Pure ML-DSA-44 | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
ML-DSA-65 | Pure ML-DSA-65 | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
ML-DSA-87 | Pure ML-DSA-87 | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-128F | Pure SLH-DSA-SHA2-128F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-128S | Pure SLH-DSA-SHA2-128S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-192F | Pure SLH-DSA-SHA2-192F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-192S | Pure SLH-DSA-SHA2-192S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-256F | Pure SLH-DSA-SHA2-256F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHA2-256S | Pure SLH-DSA-SHA2-256S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-128F | Pure SLH-DSA-SHAKE-128F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-128S | Pure SLH-DSA-SHAKE-128S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-192F | Pure SLH-DSA-SHAKE-192F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-192S | Pure SLH-DSA-SHAKE-192S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-256F | Pure SLH-DSA-SHAKE-256F | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. | |
SLH-DSA-SHAKE-256S | Pure SLH-DSA-SHAKE-256S | Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future. |
Digest Algorithms
Algorithm Name | Comment | |
---|---|---|
SHA1 | ||
SHA224 | ||
SHA256 | ||
SHA384 | ||
SHA512 |