Public keys are not enough for SSH security
Cloudflare has introduced support for short-lived certificates in its zero-trust security solution, Cloudflare Access, to replace static SSH keys. This feature aims to enhance security and simplify management of SSH connections across organizations. By integrating with popular identity providers (IdPs), Access enforces identity-based rules each time a user attempts to connect to a target resource. The new short-lived certificates eliminate the need for static keys, offering seamless revocation when users are removed from an IdP. This feature is available today for all Cloudflare Access customers and can be accessed through the provided documentation.
Company
Cloudflare
Date published
Oct. 25, 2019
Author(s)
Sam Rhea, Evan Johnson
Word count
1612
Language
English
Hacker News points
29