{"id":"https://openalex.org/W4416549403","doi":"https://doi.org/10.1145/3719027.3765079","title":"On the Security of SSH Client Signatures","display_name":"On the Security of SSH Client Signatures","publication_year":2025,"publication_date":"2025-11-19","ids":{"openalex":"https://openalex.org/W4416549403","doi":"https://doi.org/10.1145/3719027.3765079"},"language":"en","primary_location":{"id":"doi:10.1145/3719027.3765079","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765079","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3719027.3765079","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5093551583","display_name":"Fabian B\u00e4umer","orcid":"https://orcid.org/0009-0006-5569-6625"},"institutions":[{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Fabian B\u00e4umer","raw_affiliation_strings":["Ruhr University Bochum, Bochum, Germany"],"raw_orcid":"https://orcid.org/0009-0006-5569-6625","affiliations":[{"raw_affiliation_string":"Ruhr University Bochum, Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101417857","display_name":"Marcus Brinkmann","orcid":"https://orcid.org/0000-0001-5649-6357"},"institutions":[{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Marcus Brinkmann","raw_affiliation_strings":["Ruhr University Bochum, Bochum, Germany"],"raw_orcid":"https://orcid.org/0000-0001-5649-6357","affiliations":[{"raw_affiliation_string":"Ruhr University Bochum, Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5107017371","display_name":"Maximilian Radoy","orcid":"https://orcid.org/0009-0005-3059-6823"},"institutions":[{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Maximilian Radoy","raw_affiliation_strings":["Paderborn University, Paderborn, Germany"],"raw_orcid":"https://orcid.org/0009-0005-3059-6823","affiliations":[{"raw_affiliation_string":"Paderborn University, Paderborn, Germany","institution_ids":["https://openalex.org/I206945453"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053201224","display_name":"J\u00f6rg Schwenk","orcid":"https://orcid.org/0000-0001-9315-7354"},"institutions":[{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"J\u00f6rg Schwenk","raw_affiliation_strings":["Ruhr University Bochum, Bochum, Germany"],"raw_orcid":"https://orcid.org/0000-0001-9315-7354","affiliations":[{"raw_affiliation_string":"Ruhr University Bochum, Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5091741421","display_name":"Juraj Somorovsky","orcid":"https://orcid.org/0000-0002-3593-7720"},"institutions":[{"id":"https://openalex.org/I206945453","display_name":"Paderborn University","ror":"https://ror.org/058kzsd48","country_code":"DE","type":"education","lineage":["https://openalex.org/I206945453"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Juraj Somorovsky","raw_affiliation_strings":["Paderborn University, Paderborn, Germany"],"raw_orcid":"https://orcid.org/0000-0002-3593-7720","affiliations":[{"raw_affiliation_string":"Paderborn University, Paderborn, Germany","institution_ids":["https://openalex.org/I206945453"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.7362,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.89539094,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"4619","last_page":"4633"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.17399999499320984,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.17399999499320984,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.15369999408721924,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.13220000267028809,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.6890000104904175},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.551800012588501},{"id":"https://openalex.org/keywords/cryptographic-nonce","display_name":"Cryptographic nonce","score":0.5141000151634216},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.44339999556541443},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4131999909877777},{"id":"https://openalex.org/keywords/random-oracle","display_name":"Random oracle","score":0.41119998693466187},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4065999984741211},{"id":"https://openalex.org/keywords/elliptic-curve-digital-signature-algorithm","display_name":"Elliptic Curve Digital Signature Algorithm","score":0.38920000195503235}],"concepts":[{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.6890000104904175},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6739000082015991},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6222000122070312},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.551800012588501},{"id":"https://openalex.org/C9996903","wikidata":"https://www.wikidata.org/wiki/Q1749235","display_name":"Cryptographic nonce","level":3,"score":0.5141000151634216},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.44339999556541443},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4131999909877777},{"id":"https://openalex.org/C94284585","wikidata":"https://www.wikidata.org/wiki/Q228184","display_name":"Random oracle","level":4,"score":0.41119998693466187},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4065999984741211},{"id":"https://openalex.org/C197966572","wikidata":"https://www.wikidata.org/wiki/Q915079","display_name":"Elliptic Curve Digital Signature Algorithm","level":5,"score":0.38920000195503235},{"id":"https://openalex.org/C125112378","wikidata":"https://www.wikidata.org/wiki/Q176640","display_name":"Randomness","level":2,"score":0.36649999022483826},{"id":"https://openalex.org/C111219384","wikidata":"https://www.wikidata.org/wiki/Q6954384","display_name":"NIST","level":2,"score":0.3553999960422516},{"id":"https://openalex.org/C153180980","wikidata":"https://www.wikidata.org/wiki/Q19776675","display_name":"Commit","level":2,"score":0.3352999985218048},{"id":"https://openalex.org/C2778000800","wikidata":"https://www.wikidata.org/wiki/Q830043","display_name":"Handshake","level":3,"score":0.3109000027179718},{"id":"https://openalex.org/C118463975","wikidata":"https://www.wikidata.org/wiki/Q220849","display_name":"Digital signature","level":3,"score":0.30239999294281006},{"id":"https://openalex.org/C32455479","wikidata":"https://www.wikidata.org/wiki/Q506053","display_name":"Kerberos","level":3,"score":0.2985000014305115},{"id":"https://openalex.org/C2779696439","wikidata":"https://www.wikidata.org/wiki/Q7512811","display_name":"Signature (topology)","level":2,"score":0.27900001406669617},{"id":"https://openalex.org/C110406131","wikidata":"https://www.wikidata.org/wiki/Q41349","display_name":"Smart card","level":2,"score":0.27079999446868896},{"id":"https://openalex.org/C99674996","wikidata":"https://www.wikidata.org/wiki/Q1414155","display_name":"Key exchange","level":4,"score":0.26030001044273376},{"id":"https://openalex.org/C163173736","wikidata":"https://www.wikidata.org/wiki/Q3308558","display_name":"Key generation","level":3,"score":0.25360000133514404},{"id":"https://openalex.org/C148176105","wikidata":"https://www.wikidata.org/wiki/Q206494","display_name":"Transport Layer Security","level":3,"score":0.251800000667572},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.25029999017715454}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3719027.3765079","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765079","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2509.09331","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2509.09331","pdf_url":"https://arxiv.org/pdf/2509.09331","source":{"id":"https://openalex.org/S4393918464","display_name":"ArXiv.org","issn_l":"2331-8422","issn":["2331-8422"],"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":{"id":"doi:10.1145/3719027.3765079","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765079","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G18682879","display_name":null,"funder_award_id":"390781972","funder_id":"https://openalex.org/F4320320879","funder_display_name":"Deutsche Forschungsgemeinschaft"},{"id":"https://openalex.org/G6629079330","display_name":null,"funder_award_id":"16KIS1557","funder_id":"https://openalex.org/F4320321114","funder_display_name":"Bundesministerium f\u00fcr Bildung und Forschung"}],"funders":[{"id":"https://openalex.org/F4320320879","display_name":"Deutsche Forschungsgemeinschaft","ror":"https://ror.org/018mejw64"},{"id":"https://openalex.org/F4320321114","display_name":"Bundesministerium f\u00fcr Bildung und Forschung","ror":"https://ror.org/04pz7b180"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":36,"referenced_works":["https://openalex.org/W1495447492","https://openalex.org/W1580599221","https://openalex.org/W1974390525","https://openalex.org/W2066425771","https://openalex.org/W2077667328","https://openalex.org/W2103487196","https://openalex.org/W2106847401","https://openalex.org/W2122650430","https://openalex.org/W2138779530","https://openalex.org/W2156819075","https://openalex.org/W2158880761","https://openalex.org/W2183171747","https://openalex.org/W2241474894","https://openalex.org/W2273298738","https://openalex.org/W2294935184","https://openalex.org/W2507130841","https://openalex.org/W2516115561","https://openalex.org/W2533081245","https://openalex.org/W2554129713","https://openalex.org/W2561521908","https://openalex.org/W2625424542","https://openalex.org/W2735911163","https://openalex.org/W2766724343","https://openalex.org/W2791723714","https://openalex.org/W2814895833","https://openalex.org/W2979371882","https://openalex.org/W3114185936","https://openalex.org/W3211936867","https://openalex.org/W4206595402","https://openalex.org/W4210364563","https://openalex.org/W4210726200","https://openalex.org/W4249607038","https://openalex.org/W4297629219","https://openalex.org/W4298016935","https://openalex.org/W4318689599","https://openalex.org/W4388857906"],"related_works":[],"abstract_inverted_index":{"Administrators":[0],"and":[1,7,66,111,158,259],"developers":[2],"use":[3,219],"SSH":[4,30,48,100,106],"client":[5,49,101,236],"keys":[6,53,76,116,153,160,171],"signatures":[8,102,136,244],"for":[9,11,99,108],"authentication,":[10],"example,":[12],"to":[13,19,77,125,133],"access":[14],"internet":[15,36],"backbone":[16],"servers":[17],"or":[18,163],"commit":[20],"new":[21],"code":[22],"on":[23,60],"platforms":[24,63],"like":[25,64],"GitHub.":[26],"However,":[27],"unlike":[28],"servers,":[29],"clients":[31,107],"cannot":[32],"be":[33,227,238],"measured":[34],"through":[35,184,190,208],"scans.":[37,123],"We":[38,68,113],"close":[39],"this":[40],"gap":[41],"in":[42,81,86,103,121,137,143,198,201,223,257],"two":[43,122],"steps.":[44],"First,":[45],"we":[46,93,128,146,215],"collect":[47],"public":[50,119,186,209],"keys.":[51],"Such":[52],"are":[54],"regularly":[55],"published":[56],"by":[57,73],"their":[58],"owners":[59],"open":[61],"development":[62],"GitHub":[65],"GitLab.":[67],"systematize":[69],"previous":[70,126],"non-academic":[71],"work":[72],"subjecting":[74],"these":[75],"various":[78],"security":[79],"tests":[80],"a":[82,87,130,181,196,234],"longitudinal":[83],"study.":[84],"Second,":[85],"series":[88],"of":[89,97,139,168,220,233],"black-box":[90],"lab":[91],"experiments,":[92],"analyze":[94],"the":[95,169,205,212,218,263],"implementations":[96],"algorithms":[98],"24":[104],"popular":[105],"Linux,":[109],"Windows,":[110],"macOS.":[112],"extracted":[114],"31,622,338":[115],"from":[117,155,240],"three":[118],"sources":[120],"Compared":[124],"work,":[127],"see":[129],"clear":[131],"tendency":[132],"abandon":[134],"RSA":[135],"favor":[138],"EdDSA":[140],"signatures.":[141,191,210],"Still,":[142],"January":[144],"2025,":[145],"found":[147],"98":[148],"broken":[149],"short":[150],"keys,":[151],"139":[152],"generated":[154],"weak":[156],"randomness,":[157],"149":[159],"with":[161,247],"common":[162],"small":[164],"factors\u2014the":[165],"large":[166],"majority":[167],"retrieved":[170],"exposed":[172],"no":[173],"weakness.":[174],"Weak":[175],"randomness":[176],"can":[177,203,225,237],"not":[178],"only":[179],"compromise":[180],"secret":[182,206],"key":[183,207,232],"its":[185],"key,":[187],"but":[188],"also":[189,226],"It":[192],"is":[193,251],"well-known":[194],"that":[195,217],"bias":[197],"random":[199],"nonces":[200,222],"ECDSA":[202,224,246],"reveal":[204],"For":[211],"first":[213],"time,":[214],"show":[216],"deterministic":[221],"dangerous:":[228],"The":[229],"private":[230],"signing":[231],"PuTTY":[235,253],"recovered":[239],"just":[241],"58":[242],"valid":[243],"if":[245],"NIST":[248],"curve":[249],"P-521":[250],"used.":[252],"acknowledged":[254],"our":[255],"finding":[256],"CVE-2024-31497,":[258],"they":[260],"subsequently":[261],"replaced":[262],"nonce":[264],"generation":[265],"algorithm.":[266]},"counts_by_year":[{"year":2026,"cited_by_count":1}],"updated_date":"2026-06-13T07:54:00.901334","created_date":"2025-10-10T00:00:00"}