CMS Signer Algorithm Support

The following lists algorithm support for the CMS Signer.

Signature Algorithms

The signer also relies on support for the algorithm in the Crypto Token used, so also review that the desired algorithm is supported by the configured crypto token.

The following lists supported algorithms that are tested and known to work with a Crypto Token supporting it and therefore the list may not be complete.

Algorithm Name	Also Known As	Comment
SHA1withRSA	RSASSA-PKCS1_v1.5 using SHA1
SHA224withRSA	RSASSA-PKCS1_v1.5 using SHA224
SHA256withRSA	RSASSA-PKCS1_v1.5 using SHA256
SHA384withRSA	RSASSA-PKCS1_v1.5 using SHA384
SHA512withRSA	RSASSA-PKCS1_v1.5 using SHA512
NONEwithRSA	RSASSA-PKCS1_v1.5	Not applicable to CMS signatures.
SHA1withRSAandMGF1	RSASSA-PSS using SHA1
SHA224withRSAandMGF1	RSASSA-PSS using SHA224
SHA256withRSAandMGF1	RSASSA-PSS using SHA256
SHA384withRSAandMGF1	RSASSA-PSS using SHA384
SHA512withRSAandMGF1	RSASSA-PSS using SHA512
NONEwithRSAandMGF1	RSASSA-PSS	Not applicable to CMS signatures.
SHA1withECDSA	ECDSA using SHA1
SHA224withECDSA	ECDSA using SHA224
SHA256withECDSA	ECDSA using SHA256
SHA384withECDSA	ECDSA using SHA384
SHA512withECDSA	ECDSA using SHA512
NONEwithECDSA	ECDSA	Not applicable to CMS signatures.
Ed25519	Pure EdDSA with Edwards25519
Ed448	Pure EdDSA with Edwards448
ML-DSA-44	Pure ML-DSA-44	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
ML-DSA-65	Pure ML-DSA-65	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
ML-DSA-87	Pure ML-DSA-87	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-128F	Pure SLH-DSA-SHA2-128F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-128S	Pure SLH-DSA-SHA2-128S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-192F	Pure SLH-DSA-SHA2-192F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-192S	Pure SLH-DSA-SHA2-192S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-256F	Pure SLH-DSA-SHA2-256F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHA2-256S	Pure SLH-DSA-SHA2-256S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-128F	Pure SLH-DSA-SHAKE-128F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-128S	Pure SLH-DSA-SHAKE-128S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-192F	Pure SLH-DSA-SHAKE-192F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-192S	Pure SLH-DSA-SHAKE-192S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-256F	Pure SLH-DSA-SHAKE-256F	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.
SLH-DSA-SHAKE-256S	Pure SLH-DSA-SHAKE-256S	Supported but as the standard for use of this algorithm in CMS is not finalized the signature format may change in the future.

Digest Algorithms

	Algorithm Name	Comment
	SHA1
	SHA224
	SHA256
	SHA384
	SHA512