SSH

SmartFTP implements the following features of the Secure Shell (SSH) protocol.

Features

Security

FIPS 140-2, 186-4 compliant

Authentications

The following authentication methods are supported:
  • Password
    Username/password and keyboard-interactive authentication. Also supports server password change requests.
  • Public Key
    Key file (PuTTY, VanDyke's SecureCRT, SSH.com, OpenSSH, PEM), X.509 certificates, Microsoft Windows certificates from a certificate store or a Smart Card (PKCS #11).
  • Kerberos v5 (GSSAPI/SSPI)
    Support for Microsoft Windows Kerberos (SSPI) and MIT Kerberos (GSSAPI) implementation.
  • Host Based
    Authentication with a host key file or a certificate.
  • RSA SecurID
    RSA SecurID® two-factor authentication.

Encryptions

  • AES CBC Mode (aes256-cbc, aes192-cbc, aes128-cbc)
  • AES CTR Mode (aes256-ctr, aes192-ctr, aes128-ctr)
  • AES GCM (aes128-gcm@openssh.com, aes256-gcm@openssh.com)
  • Triple DES (3des-cbc)
  • Blowfish (blowfish-cbc)
  • RC4 (arcfour)
  • cast128

Compressions

  • zlib (zlib)
  • Delayed compression (zlib@openssh.com)
  • No compression (none)

Key Exchange Methods

  • diffie-hellman-group-exchange-sha256
  • diffie-hellman-group-exchange-sha1
  • diffie-hellman-group14-sha1
  • diffie-hellman-group1-sha1
  • rsa1024-sha1
  • ecdh-sha2-nistp256
  • ecdh-sha2-nistp384
  • ecdh-sha2-nistp521
  • curve25519-sha256@libssh.org

Public Key Algorithms

  • ssh-dss
  • ssh-rsa
  • ecdsa-sha2-nistp256
  • ecdsa-sha2-nistp384
  • ecdsa-sha2-nistp521
  • x509v3-sign
  • x509v3-sign-rsa-sha1
  • x509v3-sign-dss-sha1
  • x509v3-ecdsa-sha2-nistp256
  • x509v3-ecdsa-sha2-nistp384
  • x509v3-ecdsa-sha2-nistp521