Post-Quantum Cryptography Advice Added to OpenSSH Website

Contributed by Peter N. M. Hansteen on 2025-08-11 from the SSH! Quantums posted! dept.

We have long been aware that OpenBSD and OpenSSH in general are at the very forefront of cryptography engineering.

A recent data point here is that Damien Miller (djm@) just committed a new OpenSSH Post-Quantum Cryptography FAQ page to the OpenSSH web site:

List:       openbsd-cvs
Subject:    CVS: cvs.openbsd.org: www
From:       Damien Miller <djm () cvs ! openbsd ! org>
Date:       2025-08-11 5:26:51

CVSROOT:	/cvs
Module name:	www
Changes by:	djm@cvs.openbsd.org	2025/08/10 23:26:51

Added files:
	openssh        : pq.html

Log message:
describe OpenSSH's use of and approach to post-quantum cryptography

with deraadt, dtucker

The page leads in with

OpenSSH supports a number of cryptographic key agreement algorithms considered to be safe against attacks from quantum computers. We recommend that all SSH connections use these algorithms.

and goes on to offer sound advice. Go read the whole thing, and you'll know what to do!

Latest Articles

Mon, Aug 11
- 11:00 Post-Quantum Cryptography Advice Added to OpenSSH Website (0)
Fri, Aug 08
- 08:33 Call for testing: USB webcams (0)
Sat, Aug 02
- 08:45 Recent new features in OpenSSH (0)
Thu, Jul 31
- 11:16 Call for testing: Improved 802.11g AP compatibility check (0)
Wed, Jul 30
- 08:03 Classic CDE (Common Desktop Environment) coming to OpenBSD (2)
Sat, Jul 26
- 07:32 Game of Trees 0.116 released (0)
Fri, Jul 18
- 07:24 When Root Meets Immutable: OpenBSD chflags vs. Log Tampering (1)
Thu, Jul 17
- 10:33 stdio(3) change: FILE is now opaque (0)
- 06:19 Font caching no longer runs as root (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]