TheRsaHashedKeyGenParams dictionary of theWeb Crypto API represents the object that should be passed as thealgorithm parameter intoSubtleCrypto.generateKey(), when generating any RSA-based key pair: that is, when the algorithm is identified as any ofRSASSA-PKCS1-v1_5,RSA-PSS, orRSA-OAEP.

Instance properties

name

A string. This should be set toRSASSA-PKCS1-v1_5,RSA-PSS, orRSA-OAEP, depending on the algorithm you want to use.

modulusLength

ANumber. The length in bits of the RSA modulus. This should be at least 2048: see for example seeSP 800-131A Rev. 2. Some organizations are now recommending that it should be 4096.

publicExponent

AUint8Array. The public exponent. Unless you have a good reason to use something else, specify 65537 here ([0x01, 0x00, 0x01]).

hash

A string or an object containing a single property calledname with a string value. It is an identifier for thedigest algorithm to use. This should be one of the following:

• SHA-256: selects theSHA-256 algorithm.
• SHA-384: selects theSHA-384 algorithm.
• SHA-512: selects theSHA-512 algorithm.

Warning:SHA-1 is also supported here but theSHA-1 algorithm is considered vulnerable and should no longer be used.

Examples

See the examples forSubtleCrypto.generateKey().

Specifications

Browser compatibility

Browsers that support any RSA-based algorithm for theSubtleCrypto.generateKey() method will support this type.

See also

• SubtleCrypto.generateKey().