Towards SSH3: how HTTP/3 improves secure shells
CoRR(2023)
摘要
The SSH protocol was designed in the late nineties to cope with the security
problems of the telnetf family of protocols. It brought authentication and
confidentiality to remote access protocols and is now widely used. Almost 30
years after the initial design, we revisit SSH in the light of recent protocols
including QUIC, TLS 1.3 and HTTP/3. We propose, implement and evaluate SSH3, a
protocol that provides an enhanced feature set without compromise compared to
SSHv2. SSH3 leverages HTTP-based authorization mechanisms to enable new
authentication methods in addition to the classical password-based and
private/public key pair authentications. SSH3 users can now configure their
remote server to be accessed through the identity provider of their
organization or using their Google or Github account. Relying on HTTP/3 and the
QUIC protocol, SSH3 offers UDP port forwarding in addition to regular TCP
forwarding as well as a faster and secure session establishment. We implement
SSH3 over quic-go and evaluate its performance.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要