Y. Ali, S.W. Smith
Flexible and Scalable Public Key Security for SSH.
Technical Report TR2003-441, Department of Computer Science, Dartmouth College.
Imposing a traditional X509 PKI on all SSH servers and clients is neither flexible (do appropriate CAs and RAs exist for all machines running ssh daemons?) nor scalable (e.g., a universal root must exist and be built in to SSH clients before Bob's problem is solved).
This paper presents an alternative scheme that solves the public-key security problem in SSH without requiring such an a priori universal trust structure.
|Back to home page||Maintained by Sean Smith, firstname.lastname@example.org|