RsaHashedKeyGenParams

Draft
This page is not complete.

Secure context
This feature is available only in secure contexts (HTTPS), in some or all supporting browsers.

This dictionary represents the object that should be passed as the algorithm parameter into SubtleCrypto.generateKey(), when generating any RSA-based key pair: that is, when the algorithm is identified as any of RSASSA-PKCS1-v1_5, RSA-PSS, or RSA-OAEP.

Properties

name
DOMString. This should be set to "RSASSA-PKCS1-v1_5", "RSA-PSS", or "RSA-OAEP", depending on the algorithm you want to use.
modulusLength
Number. The length in bits of the RSA modulus. This should be at least 2048: see for example see NIST SP 800-131A Rev. 1. Some organizations are now recommending that it should be 4096.
publicExponent

Uint8Array. The public exponent. Unless you have a good reason to use something else, specify 65537 here ([0x01, 0x00, 0x01]).

hash

DOMString. The name of the digest function to use. You can pass any of "SHA-256", "SHA-384", or "SHA-512" here.

Although you can technically pass "SHA-1" here, this is strongly discouraged as SHA-1 is considered vulnerable.

Examples

Specifications

Specification Status Comment
Web Cryptography API
The definition of 'SubtleCrypto.RsaHashedKeyGenParams' in that specification.
Recommendation  

Browser compatibility

No compatibility data found. Please contribute data for "api.SubtleCrypto.encrypt.algorithm-rsa" (depth: 1) to the MDN compatibility data repository.

See also

Document Tags and Contributors

Contributors to this page: wbamberg
Last updated by: wbamberg,