1. [JA3 Fingerprint](https://scrapfly.io/web-scraping-tools/ja3-fingerprint) 2. [ TLS Extensions ](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extensions "Browse all TLS Extensions") 3. signature\_algorithms [ Browse All TLS Extensions ](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extensions) # signature\_algorithms TLS Extension Code: `13` ### Extension Details Extension Name `signature_algorithms` Extension Code (Decimal) `13` Extension Code (Hex) `0x000D` RFC Reference [ RFC 8446 ](https://datatracker.ietf.org/doc/html/rfc8446#section-4.2.3) ### What is signature\_algorithms? The Signature Algorithms extension indicates which signature algorithms the client supports for verifying digital signatures in certificates and TLS handshake messages. Common algorithms include RSA-PSS-RSAE-SHA256, ECDSA-secp256r1-SHA256, RSA-PKCS1-SHA256, and ed25519. TLS 1.3 requires this extension and deprecates older algorithms like SHA-1 and MD5 for security reasons. The order indicates client preference. Modern browsers prefer RSA-PSS and ECDSA over older RSA-PKCS1. This extension is crucial for certificate validation and forward security. ### Role in JA3 Fingerprinting How This Extension Affects Fingerprinting The **signature\_algorithms** extension is part of the TLS Client Hello packet that JA3 analyzes to create a unique fingerprint of your browser or HTTP client. **JA3 Construction:** JA3 concatenates TLS parameters including extensions in a specific format: `TLS_VERSION,CIPHERS,EXTENSIONS,CURVES,POINT_FORMATS` Different browsers and HTTP clients support different sets of TLS extensions, making this a key differentiator in fingerprinting. The presence, absence, or order of extensions like `signature_algorithms` can reveal: - Browser type and version (Chrome, Firefox, Safari, Edge) - Operating system (Windows, macOS, Linux, Android, iOS) - HTTP library (curl, Python requests, Go http.Client, Node.js) - Bot detection - automated tools often have distinctive extension sets ### Test Your TLS Configuration See if your browser or HTTP client includes the `signature_algorithms` extension in its TLS handshake: [ Test Your JA3 Fingerprint ](https://scrapfly.io/web-scraping-tools/ja3-fingerprint) The JA3 tool will show all TLS extensions your client advertises, including signature\_algorithms. ### Browser & Client Support **Modern Browser Support:** - **Chrome/Edge:** Full support for signature\_algorithms - **Firefox:** Full support for signature\_algorithms - **Safari:** Full support for signature\_algorithms **HTTP Client Libraries:** - **curl:** Support varies by OpenSSL/LibreSSL version - **Python requests:** Limited TLS extension control - **curl\_cffi:** Can mimic browser TLS configurations - **Scrapfly API:** Automatically matches real browser TLS fingerprints ### Related TLS Resources ##### TLS Extensions - [server\_name (SNI)](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extension/server-name) - [supported\_groups](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extension/supported-groups) - [ALPN](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extension/application-layer-protocol-negotiation) - [supported\_versions](https://scrapfly.io/web-scraping-tools/ja3-fingerprint/extension/supported-versions) ##### Testing Tools - [JA3 Fingerprint Tool](https://scrapfly.io/web-scraping-tools/ja3-fingerprint) - [Browser Fingerprint Test](https://scrapfly.io/web-scraping-tools/browser-fingerprint) ### Technical References - **RFC Specification:** [ RFC 8446 - TLS Extensions ](https://datatracker.ietf.org/doc/html/rfc8446#section-4.2.3) - **IANA Registry:** [ TLS ExtensionType Values ](https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml) - **JA3 Project:** [ JA3 - TLS Client Fingerprinting ](https://github.com/salesforce/ja3)