Better SSH management with ephemeral keys presented at BSidesSanFrancisco 2017

by Vivian Ho, Chris Steipp,

Summary : SSH is a great, safe protocol that almost everyone uses for managing their servers and infrastructure. However, failures in SSH user management has lead to multiple news-worthy infrastructure compromises. This talk introduces the audience to Netflix’s Bless and Lyft’s Blessclient, which Lyft is open-sourcing. The combination of these tools has allowed Lyft to improve the security of our SSH accounts, as well as empowering engineers to manage their SSH keys themselves.