SSH

Table of contents

  1. OQS-OpenSSH
  2. OQS-libssh

We’ve integrated liboqs into forks of OpenSSH and libssh to provide prototype post-quantum and hybrid key exchange in the SSH protocol. Researchers looking to try additional post-quantum algorithms can easily add more algorithms that follow the OQS API.

A pre-Internet-Draft is available describing how the SSH protocol was adapted to include the hybrid PQ key exchange algorithms.

The goal of these integrations is to provide easy prototyping of quantum-resistant cryptography and should not be considered “production quality”. Please see more about limitations of our prototype software.

Note: Our OpenSSH and libssh integrations are currently inactive and not receiving updates. Contributors are welcome.

OQS-OpenSSH

Our OpenSSH fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.

Demo integration

The easiest way to get started with experimenting with post-quantum cryptography is to use our pre-built Docker image containing post-quantum-enabled openssh:

There also exist post-quantum-enabled docker images for TLS applications.

Releases

OQS-libssh

Our libssh fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.

Releases


Copyright © Open Quantum Safe a Series of LF Projects, LLC.
For website terms of use, trademark policy, and other project policies, please see https://lfprojects.org.
This site uses Just the Docs, a documentation theme for Jekyll. Background image by Rick Doble.