HostKeyAgent from hardware

Mike Tancsa mike at
Fri May 29 06:49:45 AEST 2015

I have been exploring generating a host's RSA key from a PKCS#15 token. 
  I got it to work with an old SafeNet/Aladdin eToken (non java version) 
using OpenCT and OpenSC on FreeBSD.  (The steps I used at
Apart from this increasingly hard to get bit of hardware, what other 
hardware devices are people using to access ssh host keys in where 
necessary with OpenSSH in the *BSD or Linux world ? Hopefully devices 
that have quantities of < 50 available, and I dont have to be a country 
to buy them ? Or do people just look for servers that have TPMs 
integrated into them ?

Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike at
Providing Internet services since 1994
Cambridge, Ontario Canada

More information about the openssh-unix-dev mailing list