Learn basics of SSH ( Secure Shell) and key pair generation

In this course, we are going to learn the following concepts

1. What is SSH ( Secure Shell)?

2. Why use SSH ( Secure Shell)?

3. Various methods to generate SSH ( Secure Shell) key pair i.e. private and public keys with Windows, Linux/Mac Operating systems for desktop.

4. Practical session on how to SSH into the server from a client with a private key i.e. without and with password-based authentication.

SSH Protocol – Secure Remote Login and File Transfer

The SSH protocol (also referred to as Secure Shell) is a method for secure remote login from one computer to another. It provides several alternative options for strong authentication, and it protects communications security and integrity with strong encryption. It is a secure alternative to the non-protected login protocols (such as telnet, rlogin) and insecure file transfer methods (such as FTP).

Typical uses of the SSH protocol

The protocol is used in corporate networks for:

1. providing secure access for users and automated processes

2. interactive and automated file transfers

3. issuing remote commands

4. managing network infrastructure and other mission-critical system components.

How does the SSH protocol work

The protocol works in the client-server model, which means that the connection is established by the SSH client connecting to the SSH server. The SSH client drives the connection setup process and uses public key cryptography to verify the identity of the SSH server.

Strong authentication with SSH keys

Several options can be used for user authentication. The most common ones are passwords and public key authentication.

The idea is to have a cryptographic key pair – a public key and a private key – and configure the public key on a server to authorize access and grant anyone who has a copy of the private key access to the server.

The main use of key-based authentication is to enable security automation. Automated secure shell file transfers are used to seamlessly integrate applications and also for automated systems & configuration management.

We have found that large organizations have way more SSH keys than they imagine, and managing SSH keys has become very important. SSH keys grant access as user names and passwords do. They require similar provisioning and termination processes.

Ensuring proper policies, processes, and audits also for SSH usage is critical for proper identity and access management. Traditional identity management projects have overlooked as much as 90% of all credentials by ignoring SSH keys. We provide services and tools for implementing SSH key management.

SFTP file transfer protocol

The SFTP (SSH File Transfer Protocol) is probably the most widely used secure file transfer protocol today.

Public key file format

The public key file format is not a formal standard (it is an informational document), but many implementations support this format.

How to Cite SSH

To cite SSH in a research paper, please use the following:

Tatu Ylonen: SSH – Secure Login Connections over the Internet.

Proceedings of the 6th USENIX Security Symposium, pp. 37-42, USENIX, 1996.

Reference: SSH Academy