The Secure Shell (SSH) Transport Layer Protocol, January 2006
- Canonical URL:
- File formats:
- PROPOSED STANDARD
- Updated by:
- RFC 6668, RFC 8268, RFC 8308, RFC 8332
- T. Ylonen
C. Lonvick, Ed.
- secsh (sec)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
The Secure Shell (SSH) is a protocol for secure remote login and other secure network services over an insecure network.
This document describes the SSH transport layer protocol, which typically runs on top of TCP/IP. The protocol can be used as a basis for a number of secure network services. It provides strong encryption, server authentication, and integrity protection. It may also provide compression.
Key exchange method, public key algorithm, symmetric encryption algorithm, message authentication algorithm, and hash algorithm are all negotiated.
This document also describes the Diffie-Hellman key exchange method and the minimal set of algorithms that are needed to implement the SSH transport layer protocol. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.