Presentation is loading. Please wait.

Presentation is loading. Please wait.

SSH Secure Login Connections over the Internet

Published byMay Shaw Modified over 9 years ago

Similar presentations

Presentation on theme: "SSH Secure Login Connections over the Internet"— Presentation transcript:

1 SSH Secure Login Connections over the Internet
Tatu Yloenen SSH Communications Security

2 MOTIVATION Connecting through the Internet Cheap and convenient Risky
Internet does not protect transmitted data

3 Threats from the Internet
Network monitoring Connection hijacking: connections can be hijacked without either party noticing Routing spoofing DNS (domain name server) spoofing Denial of service attacks

4 How to protect ourselves
An acceptable solution must guarantee Authentication of both ends of the connection Secrecy of transmitted information Integrity of transmitted data Secrecy of transmitted information is crucial

5 SSH Allows Secure login connections Secure file transfer
over the Internet or other untrusted networks

6 SSH Uses cryptographic algorithms to
Authenticate both ends of the connection Encrypt all transmitted data Protect data integrity Validate values returned by services such as DNS or network protocols (such as TCP)

7 Transport-level encryption
Every transmitted packet starts with random padding, followed by (optionally compressed) header and data The entire packet is encrypted using a suitable algorithm Packet type and data fields can be compressed with gzip before encryption 1/3 of original size

8 Integrity protection Originally provided by including CRC32 of the packet under encryption Found to be insufficient Was replaced by HMAC-SHA

9 What is HMAC-SHA? (I) HMAC: Hash-based Message Authentication Code
Uses a cryptographic hash function Any change to the hashed data will (with very high probability) change the hash value

10 What is HMAC-SHA? (II) SHA: Secure Hash Algorithm
Four different algorithms: SHA-0, SHA-1, SHA-2, and SHA-3 SHA-1 Most widely used Fixes a flaw in SHA-0 Produces a 160-bit "digest"

11 SSH login protocol Works on top of the packet-level protocol
Step 1: The client opens a connection to the server

12 SSH login protocol Step 2: Server sends Its public RSA host key
Another public RSA key (``server key'') that changes every hour

13 SSH login protocol The client compares the received host key against its own database of known host keys, Can decide to Reject keys coming from unknown hosts Accept them and store them in its database

14 SSH login protocol Step 3: The client
Generates a 256 bit random number using a cryptographically strong RNG (session key) Picks an encryption algorithm among those supported by the server Encrypts the session key with RSA using both the host key and the server key Sends the encrypted key to the server

15 The server key Changed every hour
Used to make decrypting recorded historic traffic impossible after the server key has been changed when the host key becomes compromised Normally a 768 bit RSA key Host key is 1024 bits

16 SSH login protocol Step 4: Server Recovers the session key
Sends an encrypted confirmation to the client Shows client that it holds the proper private keys Client and server can start using transport-level encryption and integrity protection

17 SSH login protocol Step 5: User starts authentication procedure
First request includes the user login name Server replies with either success no further authentication is needed failure further authentication is required

18 Authentication methods
Traditional password authentication Combination of .rhosts or hosts.equiv authentication and RSA-based host authentication Pure RSA authentication: Server maintains a list of users' public keys. User requests authentication for a given key Server responds with a challenge

19 X11 and TCP/IP Forwarding
SSH can automatically forward the connection to the user's X server over the secure channel SSH also automatically stores Xauthority data on the server TCP/IP forwarding works similarly (Not covered in detail)

20 Authentication Agent SSH supports using an authentication agent
Program that runs in the user's local machine (or on a smartcard connected to it) Agent holds the user's private RSA keys In the Unix environment, the agent Starts as a parent of the user's shell Communicates with SSH using a file descriptor it shares with its children

21 1996 Changes New transport layer protocol: Better integrity checks
HMAC-MD5 and HMAC-SHA More complete encryption of packet contents New authentication protocol (Not covered)

22 CONCLUSION Strong cryptography Solves Internet security issues
At negligible cost

23 OPEN DISCUSSION How does SSH compares with Kerberos?

24 Performance Startup time: a few seconds Data encryption rate:
Quite good on 1995 Pentium computers

Download ppt "SSH Secure Login Connections over the Internet"

Similar presentations

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
Cryptography and Network Security Chapter 16

Cryptography and Network Security Chapter 16
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
CMSC 414 Computer and Network Security Lecture 26 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 26 Jonathan Katz.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.

ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
CS470, A.SelcukReal-Time Communication Issues1 Real-Time Communication Security IPsec & SSL Issues CS 470 Introduction to Applied Cryptography Instructor:

CS470, A.SelcukReal-Time Communication Issues1 Real-Time Communication Security IPsec & SSL Issues CS 470 Introduction to Applied Cryptography Instructor:
Secure Shell – SSH Tam Ngo Steve Licking cs265. Overview Introduction Brief History and Background of SSH Differences between SSH-1 and SSH- 2 Brief Overview.

Secure Shell – SSH Tam Ngo Steve Licking cs265. Overview Introduction Brief History and Background of SSH Differences between SSH-1 and SSH- 2 Brief Overview.
WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.

WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.
Telnet/SSH Tim Jansen, Mike Stanislawski. TELNET is short for Terminal Network Enables the establishment of a connection to a remote system, so that the.

Telnet/SSH Tim Jansen, Mike Stanislawski. TELNET is short for Terminal Network Enables the establishment of a connection to a remote system, so that the.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Secure Remote Access: SSH. K. Salah 2 What is SSH?  SSH – Secure Shell  SSH is a protocol for secure remote login and other secure network services.

Secure Remote Access: SSH. K. Salah 2 What is SSH?  SSH – Secure Shell  SSH is a protocol for secure remote login and other secure network services.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.
What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.

What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.
CSCI 6962: Server-side Design and Programming

CSCI 6962: Server-side Design and Programming
Csci5233 Computer Security1 GS: Chapter 6 Using Java Cryptography for Authentication.

Csci5233 Computer Security1 GS: Chapter 6 Using Java Cryptography for Authentication.
.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.

.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.

Similar presentations

Ads by Google