2006
DOI: 10.17487/rfc4255
|View full text |Cite
|
Sign up to set email alerts
|

Using DNS to Securely Publish Secure Shell (SSH) Key Fingerprints

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
9
0

Year Published

2009
2009
2020
2020

Publication Types

Select...
7
2
1

Relationship

0
10

Authors

Journals

citations
Cited by 26 publications
(9 citation statements)
references
References 5 publications
0
9
0
Order By: Relevance
“…Today, most users blindly accept the presented key. However, the SSHFP record attempts to provide a solution to this problem by providing the fingerprint of server public keys trough DNS [19]. An SSH client can query the DNS for this record and verify the fingerprint before accepting server's public key.…”
Section: Secure Shell (Ssh) Fingerprintsmentioning
confidence: 99%
“…Today, most users blindly accept the presented key. However, the SSHFP record attempts to provide a solution to this problem by providing the fingerprint of server public keys trough DNS [19]. An SSH client can query the DNS for this record and verify the fingerprint before accepting server's public key.…”
Section: Secure Shell (Ssh) Fingerprintsmentioning
confidence: 99%
“…RFC 4255 [17] proposes to use DNS to securely publish SSH host key fingerprints. This requires the deployment of secure DNS, as well as for DNS to act as a certificate authority for the host key fingerprints for the machines in its domain.…”
Section: Related Workmentioning
confidence: 99%
“…In the long-term, the DNSSEC vision-using PKI to secure all DNS informationwould enable a nice solution (e.g., [7]); however, we don't see this happening in the near-term. Perhaps the next natural approach would be to establish a traditional hierarchical PKI for SSH servers; all SSH clients would know the trust root; all SSH servers would have access to a CA/RA system that would sensibly bind the public keys to usable names; trust paths for any given server would somehow arrive at any given client.…”
Section: Introductionmentioning
confidence: 99%