Reference documentation and code samples for the Certificate Authority v1 API enum CertificateAuthority.Types.SignHashAlgorithm.
The algorithm of a Cloud KMS CryptoKeyVersion of a
[CryptoKey][google.cloud.kms.v1.CryptoKey] with the
[CryptoKeyPurpose][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose] value
ASYMMETRIC_SIGN. These values correspond to the
[CryptoKeyVersionAlgorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm]
values. For RSA signing algorithms, the PSS algorithms should be preferred,
use PKCS1 algorithms if required for compatibility. For further
recommendations, see
https://cloud.google.com/kms/docs/algorithms#algorithm_recommendations.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis webpage provides documentation for the \u003ccode\u003eCertificateAuthority.Types.SignHashAlgorithm\u003c/code\u003e enum within the Google Cloud Private CA v1 API, detailing its usage in specifying cryptographic algorithms.\u003c/p\u003e\n"],["\u003cp\u003eThe latest version documented is 3.9.0, and the page includes links to documentation for prior versions, starting from 1.0.0, allowing access to different versions of the API documentation.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eSignHashAlgorithm\u003c/code\u003e enum corresponds to \u003ccode\u003eCryptoKeyVersionAlgorithm\u003c/code\u003e values, indicating the supported signing algorithms for Cloud KMS CryptoKeys used in certificate authority operations, with recommendations for PSS algorithms over PKCS1 for RSA.\u003c/p\u003e\n"],["\u003cp\u003eThe page lists the available fields within the \u003ccode\u003eSignHashAlgorithm\u003c/code\u003e enum, including \u003ccode\u003eEcP256Sha256\u003c/code\u003e, \u003ccode\u003eEcP384Sha384\u003c/code\u003e, various \u003ccode\u003eRsaPkcs1\u003c/code\u003e and \u003ccode\u003eRsaPss\u003c/code\u003e options, and an \u003ccode\u003eUnspecified\u003c/code\u003e field, each corresponding to a specific cryptographic algorithm.\u003c/p\u003e\n"],["\u003cp\u003eThe current document version is 3.7.0 and details the usage of the \u003ccode\u003eSignHashAlgorithm\u003c/code\u003e enum in the \u003ccode\u003eGoogle.Cloud.Security.PrivateCA.V1\u003c/code\u003e namespace.\u003c/p\u003e\n"]]],[],null,[]]
