SSH

Table of contents

1. OQS-OpenSSH
2. OQS-libssh

We’ve integrated liboqs into a fork of OpenSSH to provide prototype post-quantum and hybrid key exchange in the SSH protocol. Researchers looking to try additional post-quantum algorithms can easily add more algorithms that follow the OQS API.

A pre-Internet-Draft is available describing how the SSH protocol was adapted to include the hybrid PQ key exchange algorithms.

The goal of these integrations is to provide easy prototyping of quantum-resistant cryptography and should not be considered “production quality”. Please see more about limitations of our prototype software.

OQS-OpenSSH

OQS-OpenSSH
on Github

Our OpenSSH fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.

Demo integration

OQS-Demos
on Github

The easiest way to get started with experimenting with post-quantum cryptography is to use our pre-built Docker image containing post-quantum-enabled openssh:

• Getting and running the pre-built post-quantum enabled openssh demo Docker image
• Building your own openssh demo Docker image

There also exist post-quantum-enabled docker images for TLS applications.

Releases

• snapshot 2025-05 aligned with liboqs 0.13.0 (May 23, 2025) current version
• snapshot 2024-08 aligned with liboqs 0.10.1 (August 30, 2024)
• snapshot 2023-10 aligned with liboqs 0.9.0 (October 21, 2023)
• snapshot 2023-06 aligned with liboqs 0.8.0 (June 26, 2023)
• snapshot 2022-08 aligned with liboqs 0.7.2 (August 23, 2022)
• snapshot 2022-01 aligned with liboqs 0.7.1 (January 6, 2022)
• snapshot 2021-08 aligned with liboqs 0.7.0 (August 11, 2021)
• snapshot 2020-08 aligned with liboqs 0.4.0 (September 3, 2020)
• snapshot 2020-07 aligned with liboqs 0.3.0 (July 10, 2020)
• snapshot 2019-10 aligned with liboqs 0.2.0 (October 8, 2019)
• snapshot 2018-11 aligned with liboqs 0.1.0 (November 13, 2018)
• all releases

OQS-libssh

DEPRECATION NOTICE: The Open Quantum Safe project has discontinued development of our libssh fork. This repository is archived as read-only. Use of this code is not recommended, as it may rely on obsolete algorithms or implementations or may have security vulnerabilities or other bugs. If you are interested in reviving and maintaining this project, please reach out via the OQS discussion board on Github.

OQS-libssh
on Github

Our libssh fork implements post-quantum and hybrid key exchange in the SSH protocol. See the README for the list of supported algorithms and usage instructions.

Click here to see archived OQS-libssh releases

Releases

• snapshot 2022-08 aligned with liboqs 0.7.2 (August 30, 2022) deprecated
• snapshot 2022-01 aligned with liboqs 0.7.1 (January 25, 2022)