Approved algorithms for SSL certificates
When you upload SSL certificates, you can conform to one of the following approved algorithms.
Overview: Compliance check
Configuration Hub is designed to check for compliance with the approved
algorithms while SSL certificates are uploaded. For an unsupported algorithm, the application
reports the following error: Unsupported certificate. To retry, upload a
certificate that complies with one of the following algorithm types: RSA, ECDSA.
Rivest-Shamir-Adleman (RSA) algorithm
The following are the supported parameters:
- Minimum key length is 2048 bits.
- Acceptable key sizes are 2048, 3072, and 4096.
The encryption can be used for digital signing.
Elliptic Curve Digital Signature Algorithm (ECDSA)
The following are the supported parameters:
- Minimum key length is 224 bits.
- Acceptable key sizes are 224 and above.