ssh key类型这么多，要如何选择呢？

用过ssh的朋友都知道，ssh key的类型有不少种，好比dsa、rsa、 ecdsa、ed25519等，那这么多种类型，咱们要如何选择呢？

今天看到一篇相关文章，写的挺好的，在这里分享下。

在具体看这篇文章以前，咱们先说结论：

1. ssh key的类型有四种，分别是dsa、rsa、 ecdsa、ed25519。
2. 根据数学特性，这四种类型又能够分为两大类，dsa/rsa是一类，ecdsa/ed25519是一类，后者算法更先进。
3. dsa由于安全问题，已再也不使用了。
4. ecdsa由于政治缘由和技术缘由，也不推荐使用。
5. rsa是目前兼容性最好的，应用最普遍的key类型，在用ssh-keygen工具生成key的时候，默认使用的也是这种类型。不过在生成key时，若是指定的key size过小的话，也是有安全问题的，推荐key size是3072或更大。
6. ed25519是目前最安全、加解密速度最快的key类型，因为其数学特性，它的key的长度比rsa小不少，优先推荐使用。它目前惟一的问题就是兼容性，即在旧版本的ssh工具集中可能没法使用。不过据我目前测试，尚未发现此类问题。

再总结一下：

若是能够的话，优先选择ed25519，不然选择rsa。

$ ssh-keygen -t ed25519

如下是原文：

OpenSSH supports several signing algorithms (for authentication keys) which can be divided in two groups depending on the mathematical properties they exploit:

DSA and RSA, which rely on the practical difficulty of factoring the product of two large prime numbers,
ECDSA and Ed25519, which rely on the elliptic curve discrete logarithm problem. (example)
Elliptic curve cryptography (ECC) algorithms are a more recent addition to public key cryptosystems. One of their main advantages is their ability to provide the same level of security with smaller keys, which makes for less computationally intensive operations (i.e. faster key creation, encryption and decryption) and reduced storage and transmission requirements.

OpenSSH 7.0 deprecated and disabled support for DSA keys due to discovered vulnerabilities, therefore the choice of cryptosystem lies within RSA or one of the two types of ECC.

#RSA keys will give you the greatest portability, while #Ed25519 will give you the best security but requires recent versions of client & server[2]. #ECDSA is likely more compatible than Ed25519 (though still less than RSA), but suspicions exist about its security (see below).

更多原创文章，请关注我微信公众号：