Reply to post: Re: OpenSSL

No password? No worries! Two new standards aim to make logins an API experience

anothercynic Silver badge

Re: OpenSSL

Cryptography in SSH does not necessarily require Public Key Infrastructure (PKI) for authentication. GSSAPI also works. Password also works. Certificates (*not* public/private key) also work. This is just another plugin...

That the comms channel is encrypted is separate to the authentication mechanism that does it *over* the comms channel. GSSAPI is, bizarrely, doubly encrypted in SSH (SSH's own comms channel, along with the encrypted tokens being passed along).

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021