Title :
Architectural defects of the secure shell
Author :
Saito, Takamichi ; Kito, Toshiyuki ; Umesawa, Kentaro ; Mizoguchi, Fumio
Author_Institution :
Tokyo Univ. of Technol., Japan
Abstract :
Although flaws have been found out in SSH, the Secure Shell, there has been little discussion about its architecture or design safety. Therefore, considering SSH architecture, e.g. the key exchange protocol, user authentication protocols and total design of the SSH, we not only discuss SSH architectural safety but show critical flaws for SSH users. For establishing the SSH connection, before user authentication, the SSH server and client exchange a session key, which can communicate securely. Then, over the secret channel encrypted by the session key, the SSH server authenticates a user in the SSH client using a user´s password or public key. However, owing to defects in the SSH protocols and its design, a user can be deprived of their password in the authentication protocol. Moreover, we show that those who use its public key for authentication are exposed to the same risks as password-oriented users.
Keywords :
client-server systems; message authentication; protocols; public key cryptography; Secure Shell; architectural defects; client; key exchange protocol; password; public key; safety; secret encrypted channel; secure communication; server; session key; user authentication protocols; Conferences; Databases; Expert systems;
Conference_Titel :
Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on
Print_ISBN :
0-7695-1668-8
DOI :
10.1109/DEXA.2002.1045871
