files/en-us/web/api/rsapssparams/index.md
{{ APIRef("Web Crypto API") }}
The RsaPssParams dictionary of the Web Crypto API represents the object that should be passed as the algorithm parameter into {{domxref("SubtleCrypto.sign()")}} or {{domxref("SubtleCrypto.verify()")}}, when using the RSA-PSS algorithm.
name
RSA-PSS.saltLength
: A long integer representing the length of the random salt to use, in bytes.
RFC 3447 says that "Typical salt lengths" are either 0 or the length of the output of the digest algorithm that was selected when this key was generated. For example, if you use SHA-256 as the digest algorithm, this could be 32.
The maximum size of saltLength is given by:
Math.ceil((keySizeInBits - 1) / 8) - digestSizeInBytes - 2;
So for a key length of 2048 bits and a digest output size of 32 bytes, the maximum size would be 222.
See the examples for {{domxref("SubtleCrypto.sign()")}} and {{domxref("SubtleCrypto.verify()")}}.
{{Specifications}}
Browsers that support the "RSA-PSS" algorithm for the {{domxref("SubtleCrypto.sign()")}} and {{domxref("SubtleCrypto.verify()")}} methods will support this type.