PKCS#11 ECDSA support

Blumenthal, Uri - 0553 - MITLL uri at
Tue Jan 22 02:21:40 AEDT 2019

Great to hear, thanks!!

What's the ETA for the 8.0 release? Or should I ask the Macports OpenSSH maintainers to pull this patch ahead of the official release?

On 1/21/2019, 00:37, "openssh-unix-dev on behalf of Damien Miller" < at on behalf of djm at> wrote:

    Markus Friedl has added PKCS#11 support for ECDSA keys to OpenSSH. It's
    available in OpenBSD and the portable version and includes a regress
    test against softhsm2. (and subsequent)
    I've used it successfully with a Yubikey 4 using RSA2048, ECCP256 and
    ECCP384 keys.
    This should be in the OpenSSH 8.0 release.
    openssh-unix-dev mailing list
    openssh-unix-dev at
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5249 bytes
Desc: not available
URL: <>

More information about the openssh-unix-dev mailing list