Supported algorithms
DigiCert® Trust Assistant supports the following key types and signature algorithms:
Key type | Signature algorithms |
---|---|
RSA |
|
ECDSA |
|
*See the following section for more details about SHA-3.
Note
Some algorithms may not be supported by your hardware token. Refer to your third-party sources for supported hardware tokens.
Secure Hash Algorithm 3 (SHA-3)
From DigiCert Trust Assistant version 1.2.0 onwards, SHA-3 (Secure Hash Algorithm 3, a subset of Keccak) is supported. You can issue and import certificates for SHA-3 supported keyStores and tokens.
KeyStore/Token | SHA-3 support | Description |
---|---|---|
Yes | - | |
Windows Certificate Store | Yes | RSA-SSAPSS with SHA3 is not supported due to Windows SDK restriction. |
Mac Keychain | Yes | - |
Yubico YubiKey NFC 5 | No | Not supported by the token. |
SafeNet/Gemalto eToken 5100, 5110 | No | Not supported by the token. |
Note
Other hardware tokens may work. However, they are not formally qualified by DigiCert.