SSH
SmartFTP 實現加密外殼(SSH)協議的下列功能.
功能
安全標準合規性
- NIST FIPS 140-2
- NIST FIPS 140-3
- NIST FIPS 186-4
- NIST FIPS 186-5
- NIST SP 800-131A, NIST SP 800-186
驗證
支援下列驗證方法::- 密碼
使用者名稱/密碼和鍵盤交互驗證。同時支援伺服器密碼變更請求. - 公鑰
金鑰檔案(PuTTY、VanDyke's SecureCRT、SSH.com、OpenSSH、PEM)、X.509 證書、來源於證書儲存或智慧卡的 Microsoft Windows 證書(PKCS #11). - Kerberos v5(GSSAPI/SSPI)
支援 Microsoft Windows Kerberos(SSPI)和 MIT Kerberos(GSSAPI)實現. - 基於主機的
使用主機金鑰檔案或證書的驗證. - RSA SecurID
RSA SecurID 雙因素身份驗證。
加密
- AES CBC Mode (aes256-cbc, aes192-cbc, aes128-cbc) (RFC 4344)
- AES CTR Mode (aes256-ctr, aes192-ctr, aes128-ctr) (RFC 4344)
- AES GCM (aes128-gcm@openssh.com, aes256-gcm@openssh.com) (openssh)
- Triple DES (3des-cbc) (for compatibility)
壓縮
- Delayed compression (zlib@openssh.com) (draft-miller-secsh-compression-delayed)
- No compression (none)
金鑰交換方法
- diffie-hellman-group14-sha1 (RFC 4253) (for compatibility)
- diffie-hellman-group-exchange-sha1 (RFC 4419) (for compatibility)
- diffie-hellman-group-exchange-sha256 (RFC 4419)
- diffie-hellman-group14-sha256 (RFC 8268)
- diffie-hellman-group16-sha512 (RFC 8268)
- ecdh-sha2-nistp256 (RFC 6239)
- ecdh-sha2-nistp384 (RFC 6239)
- ecdh-sha2-nistp521 (RFC 6239)
- curve25519-sha256 (RFC 9142)
公開金鑰演算法
- ssh-rsa (RFC 4253)
- ssh-dss (RFC 4253) (for compatibility)
- rsa-sha2-256 (RFC 8332)
- rsa-sha2-512 (RFC 8332)
- ecdsa-sha2-nistp256 (RFC 6239)
- ecdsa-sha2-nistp384 (RFC 6239)
- ecdsa-sha2-nistp521 (RFC 6239)
- x509v3-ssh-rsa (RFC 6187)
- x509v3-rsa2048-sha256 (RFC 6187)
- x509v3-ecdsa-sha2-nistp256 (RFC 6187)
- x509v3-ecdsa-sha2-nistp384 (RFC 6187)
- x509v3-ecdsa-sha2-nistp521 (RFC 6187)
- ssh-ed25519 (RFC 8709)
- ssh-ed448 (RFC 8709)
- ssh-rsa-cert-v01@openssh.com (OpenSSH)
- ecdsa-sha2-nistp256-cert-v01@openssh.com (OpenSSH)
- ecdsa-sha2-nistp384-cert-v01@openssh.com (OpenSSH)
- ecdsa-sha2-nistp521-cert-v01@openssh.com (OpenSSH)
- rsa-sha2-256-cert-v01@openssh.com (OpenSSH)
- rsa-sha2-512-cert-v01@openssh.com (OpenSSH)
- ssh-ed25519-cert-v01@openssh.com (OpenSSH)