OpenSSH PKI support coming soon
This project looks very promising and will probably be useful even at small sites.
In cryptography, a public key infrastructure (PKI) is an arrangement that provides for trusted third party vetting of, and vouching for, user identities. It also allows binding of public keys to users. This is usually carried out by software at a central location together with other coordinated software at distributed locations. The public keys are typically in certificates.
Most enterprise-scale PKI systems rely on certificate chains to establish a party's identity, as a certificate may have been issued by a certificate authority computer whose 'legitimacy' is established for such purposes by a certificate issued by a higher-level certificate authority, and so on. You may have use PKI in everyday, common examples are:
=> OpenGPG - Encryption and/or sender authentication of Email messages
=> Smart card logon
=> XML Signature for Encryption and/or authentication of documents etc
OpenBSD journal reporting that Daniel Hartmeier recently submitted to the OpenBSD tech mailing list a very interesting addition to OpenSSH, a PKI whose goal is to simplify host and user key administration.
( Via OpenBSD journal )
Want to stay up to date with the latest Linux tips, news and announcements? Subscribe to our free e-mail newsletter or RSS feed to get all updates.
You can Email this page to a friend.
You may also be interested in other helpful articles:
- Happy 8th Birthday, OpenSSH!
- Download of the Day: OpenSSH Server 5.0 ( security fix release )
- Secure communication with Kerberized OpenSSH on AIX using Windows Kerberos service
- Chroot in OpenSSH / SFTP Feature Added To OpenSSH
- Wireless Networking for Open Solaris Configuration Tools and drivers
Discussion on This Article:
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!


When is the target date to release openSSH with PKI support. I would be very interested in trying it out.