This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.
An RSA-PSS key, for example, can be used only for "sign" or "verify" (private or public key respectively). If additional usages are specified in the generateKey call, is this an error, or are they ignored ?
(In reply to Mark Watson from comment #0) > An RSA-PSS key, for example, can be used only for "sign" or "verify" > (private or public key respectively). > > If additional usages are specified in the generateKey call, is this an > error, or are they ignored ? There are two types of "additional usages" If there are usages not specified in the specification, it's an error. If there are valid usages that are specified, but do not describe supported operations of the algorithm, it's an error. That is, RSA-PSS does not support an "encrypt" operation, so an "encrypt" usage is invalid.