SSH
Table of contents
We’ve integrated liboqs into forks of OpenSSH and libssh to provide prototype post-quantum and hybrid key exchange in the SSH protocol. Researchers looking to try additional post-quantum algorithms can easily add more algorithms that follow the OQS API.
A pre-Internet-Draft is available describing how the SSH protocol was adapted to include the hybrid PQ key exchange algorithms.
The goal of these integrations is to provide easy prototyping of quantum-resistant cryptography and should not be considered “production quality”. Please see more about limitations of our prototype software.
OQS-OpenSSH
Our OpenSSH fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.
Demo integration
The easiest way to get started with experimenting with post-quantum cryptography is to use our pre-built Docker image containing post-quantum-enabled openssh:
- Getting and running the pre-built post-quantum enabled openssh demo Docker image
- Building your own openssh demo Docker image
There also exist post-quantum-enabled docker images for TLS applications.
Releases
- snapshot 2022-01 aligned with liboqs 0.7.1 (January 6, 2022) current version
- snapshot 2021-08 aligned with liboqs 0.7.0 (August 11, 2021)
- snapshot 2020-08 aligned with liboqs 0.4.0 (September 3, 2020)
- snapshot 2020-07 aligned with liboqs 0.3.0 (July 10, 2020)
- snapshot 0219-10 aligned with liboqs 0.2.0 (October 8, 2019)
- snapshot 2020-07 aligned with liboqs 0.1.0 (November 13, 2018)
- all releases
OQS-libssh
Our libssh fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.
Releases
- snapshot 2022-01 aligned with liboqs 0.7.1 (January 25, 2022) current version