Welcome to the VanDyke Software Forums

Join the discussion today!

Go Back   VanDyke Software Forums > General


Thread Tools Display Modes
Old 07-26-2019, 01:11 AM
dverbern dverbern is offline
Registered User
Join Date: Mar 2019
Posts: 31
Confused between HostKey and Public/Private key

I'm embarrassed to admit that despite reading through several articles on public key encrytion and the benefits of hostkey as a protection against man-in-the-middle attacks, I'm still unclear whether there is overlap between the concepts of the hostkey and generating public/private key pairs.

Are they entirely separate processes?
Reply With Quote
Old 07-26-2019, 09:54 AM
bgagnon bgagnon is offline
VanDyke Technical Support
Join Date: Oct 2008
Posts: 4,636
Hi dverbern,

Completely and entirely separate.
(But often confused, so we are glad you asked.)

The host key is the server proving its identity to the client. That's why a fingerprint is provided. So that the end user can verify the identity with the admin of the SSH/SFTP server.

More information on the importance of Host Keys within the Secure Shell protocol can be found in this whitepaper on our website.

Until key exchange is complete/successful, the connection cannot continue.

Public/private key authentication is the client proving who it claims to be to the server. It's one of several forms of authentication that may be supported by the SSH/SFTP server (there's also GSSAPI, password, keyboard-interactive).
Does this info help?

VanDyke Software
Technical Support
(505) 332-5730

Last edited by bgagnon; 07-26-2019 at 09:54 AM. Reason: Clarification
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

All times are GMT -6. The time now is 08:23 AM.