diff --git a/common.go b/common.go
index 80bab19..5526aa4 100644
--- a/common.go
+++ b/common.go
@@ -184,6 +184,22 @@ var supportedSignatureAlgorithms = []SignatureScheme{
 	ECDSAWithSHA1,
 }
 
+// supportedSignatureAlgorithms13 lists the advertised signature algorithms
+// allowed for digital signatures. It includes TLS 1.2 + PSS.
+var supportedSignatureAlgorithms13 = []SignatureScheme{
+	PSSWithSHA256,
+	PKCS1WithSHA256,
+	ECDSAWithP256AndSHA256,
+	PSSWithSHA384,
+	PKCS1WithSHA384,
+	ECDSAWithP384AndSHA384,
+	PSSWithSHA512,
+	PKCS1WithSHA512,
+	ECDSAWithP521AndSHA512,
+	PKCS1WithSHA1,
+	ECDSAWithSHA1,
+}
+
 // ConnectionState records basic TLS details about the connection.
 type ConnectionState struct {
 	ConnectionID                []byte                // Random unique connection id
diff --git a/handshake_client.go b/handshake_client.go
index a3c4cfc..c328fdd 100644
--- a/handshake_client.go
+++ b/handshake_client.go
@@ -105,6 +105,7 @@ NextCipherSuite:
 		// set legacy_version to TLS 1.2 for backwards compatibility.
 		hello.vers = VersionTLS12
 		hello.supportedVersions = config.getSupportedVersions()
+		hello.supportedSignatureAlgorithms = supportedSignatureAlgorithms13
 	}
 
 	return hello, nil