PS256 (RSA-PSS SHA-256)
PS256 uses RSA-PSS padding with SHA-256 for JWT signatures. PSS is a modern, provably secure padding scheme preferred over PKCS#1 v1.5 in new cryptographic designs.
When to Use
Use PS256 when your platform or compliance framework requires PSS padding, or when building new systems that want the strongest RSA-based JWT signing option.
Key Length Requirements
RSA keys of at least 2048 bits, same as RS256. The difference is padding scheme (PSS vs PKCS#1 v1.5), not key size.
Generate Keys
Recommended: 2048-bit
Open Rsa Key GeneratorRelated Comparisons
Related Terms
Frequently Asked Questions
PS256 vs RS256?
Both use RSA keys. PS256 uses PSS padding (more modern); RS256 uses PKCS#1 v1.5 (more widely deployed).
Is PS256 widely supported?
Most modern JWT libraries support PS256. Verify your language library before choosing it over RS256.