Introduction

If you want to control a Server or machine that is physically inaccessible, you need to communicate with it remotely. However, not all remote strategies are stable and Secure. For example, older protocols like Telnet or rlogin ship your commands and passwords in simple text, which can effortlessly be intercepted by means of hackers or malicious people. SSH in networking is designed to overcome this issue by providing a secure channel between your device and a remote server.

Secure Shell makes use of public-key cryptography to encrypt your data, which ensures that the recipient can only decrypt it. In this blog, we will explain what SSH is, its purpose, its history, and how it works.

Let's start by explaining what SSH is.

What is SSH in Networking?

SSH or Secure Shell is a network protocol, and its main function is to provide a secure shell or command-line interface for remote communication. SSH in networking is mainly based on a client-server architecture where an SSH client connects to an SSH server using a TCP/IP connection. Generally, it is widely used to manage servers, transfer files, and perform other network-related tasks.

There are three main components of SSH, these are:

• SSH Client: The SSH client is the one that initiates as well as manages the connection to the SSH server.
• SSH Server: The SSH server is the one that listens or reacts to the requests of the incoming connections from the SSH clients.
• SSH Protocol: SSH Protocol is nothing but a set of rules and algorithms that are used mainly to control how the client and the server communicate and exchange data.

History of Secure Shell

A better substitute for insecure protocols like Telnet or rlogin, Taty Ylonen developed SSH in the year 1995. It was highly accepted by network professionals and adopted with open hands. The original version was called SSH, which is now known as SSH-1.

Still, SSH-1 has many limitations, which include unstable and poor encryption techniques, and there is also a lack of platform compatibility. Soon after, IETF (Internet Engineering Task Force) came up with a new version of SSH, also known as SSH-2, which became the standard in the year 2006. When we talk about SSH-2, it's better than the SSH-1 in many ways. Some of these are:

• Effective Key exchange process along with better encryption algorithms.
• It supports a variety of authentication techniques.
• Supports multiple channels per connection along with compression and rekeying.

One of the most used versions of SSH is OpenSSH. It is an open-source project, and it is based on Ylönen's original code. It is maintained by the OpenBSD developers. It supports both SSH-1 and SSH-2 protocols and is available for various operating systems.

We have explained What is SSH in networking and also the history of its origin. Now, let's understand how SSH works.

How does Secure Shell Works?

SSH works by setting up a connection between an SSH client and an SSH server through the use of public-key cryptography. Public-key cryptography includes a variety of keys: public keys and private keys. A public key can be shared with everybody, whilst a private key must be kept secret. The keys are mathematically related but no longer the same. Data encrypted with one key can only be decrypted with the opposite key.

The simple steps of an SSH connection are:

• The first and foremost step in building a connection with the server is when the client sends a connection request to the server on port 22.
• After receiving the client request, the server responds by sending the public key and some detailed information about all the supported encryption algorithms.
• Then, the client double-checks the public key that is sent by the server and chooses an algorithm that is compatible with both the client and the server.
• Once the client is done with the encryption algorithm, it then generates a random session key and starts encrypting it with the public key that is shared by the server.
• The client then shares the encrypted session key with the server.
• The server further utilizes the session key that is sent by the client with its private key and sends a notification (known as acknowledgement) to the client.
• The client and server then exchange information to authenticate each other. In the authentication process, clients use various methods that include passwords, public keys, or Kerberos.
• Now, both the client and the server establish a secure channel and start sharing data with each other that is both secure and stable.

Architecture of SSH in Networking

The SSH protocol consists of thrее layеrs, these are:

Transport Layеr

The transport layer plays a crucial role in establishing a secure connection between client and server. It also encrypts the data, and side-by-side, verifies the integrity of the connection. Data caching and compression are some of the steps taken by this layer to improve performance.

Authentication Layer

When we talk about the authentication layer, it is simply responsible for the client authentication process. In order to authenticate, it supports various authentication methods like GSSAPI (Generic Security Services Application Program Interface) and many others.

Connection Layer

The Connection layer is the layer that is responsible for managing communication channels once the authentication is completed. Now, what is channel? A channel is a logical data stream that can be multiplexed over a secure connection. SSH supports various channels such as session channels, dirеct-tcpip channеls (for local port forwarding), or forwardеd-tcpip channеls (for rеmotе port forwarding).

Frequently Asked Questions

Q1. What is SSH and its port?

SSH or Secure Shell is a kind of protocol that makes it possible for anyone who wants to communicate and transfer data over a network that is not secure. It uses public-key cryptography in order to authenticate as well as protect the connection. SSH default port is 22.

Q2. What is SSH vs TCP?

SSH stands for Secure Shell, which is a secure and encrypted protocol. Whereas, when we talk about TCP or Transmission Control Protocol, it is a connection-oriented protocol.

Q3. What are examples of SSH?

Examples of SSH are:

• Anyone who is transferring files from a local machine to a remote machine.
• Logging into a device remotely that is not available physically.

Q4. Why is SSH used?

SSH is commonly used for remote login and command-linе еxеcution.

Conclusion

SSH or Secure Shell is one of the most powerful network protocols that allows secure access to devices remotely over a network that is not secure. It makes use of public-key cryptography in order to authenticate and encrypt connections between devices.  In this blog, we have explained what is SSH in networking, its purpose, and how it works for better understanding.