PS256 (RSA-PSS SHA-256)

PS256 uses RSA-PSS padding with SHA-256 for JWT signatures. PSS is a modern, provably secure padding scheme preferred over PKCS#1 v1.5 in new cryptographic designs.

When to Use

Use PS256 when your platform or compliance framework requires PSS padding, or when building new systems that want the strongest RSA-based JWT signing option.

Key Length Requirements

RSA keys of at least 2048 bits, same as RS256. The difference is padding scheme (PSS vs PKCS#1 v1.5), not key size.

Generate Keys

Recommended: 2048-bit

Open Rsa Key Generator
Read full glossary definition: PS256 (RSA-PSS-SHA256)

Related Comparisons

Related Terms

Frequently Asked Questions

PS256 vs RS256?

Both use RSA keys. PS256 uses PSS padding (more modern); RS256 uses PKCS#1 v1.5 (more widely deployed).

Is PS256 widely supported?

Most modern JWT libraries support PS256. Verify your language library before choosing it over RS256.