Public keys are not enough for SSH security

Cloudflare has introduced support for short-lived certificates in its zero-trust security solution, Cloudflare Access, to replace static SSH keys. This feature aims to enhance security and simplify management of SSH connections across organizations. By integrating with popular identity providers (IdPs), Access enforces identity-based rules each time a user attempts to connect to a target resource. The new short-lived certificates eliminate the need for static keys, offering seamless revocation when users are removed from an IdP. This feature is available today for all Cloudflare Access customers and can be accessed through the provided documentation.