qssh 0.0.2-alpha

Experimental quantum-safe SSH using post-quantum crypto. Research project - NOT for production. See LIMITATIONS.md
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166

# QSSH v0.0.1-alpha - Known Limitations and Status

## Production Readiness

**⚠️ EXPERIMENTAL SOFTWARE - NOT FOR PRODUCTION USE**

This is v1.0.0 of an experimental quantum-safe SSH implementation. While core functionality works, this software has not been:
- Security audited by professionals
- Tested at scale in production environments
- Validated for compliance (FIPS, Common Criteria, etc.)

## Feature Status

### ✅ Working Features
These features are implemented and functional:
- Basic SSH connections with post-quantum cryptography
- Interactive shell sessions with full PTY support
- SFTP file transfer subsystem
- Port forwarding (local, remote, dynamic/SOCKS)
- X11 forwarding
- Public key authentication
- Password authentication
- SSH agent support (qssh-agent)
- Known hosts verification
- Config file parsing (~/.qssh/config)
- Compression (zlib, zstd, lz4)
- Session resumption

### ⚠️ Partial Implementations
These features exist but have limitations:
- **Multiplexing**: Code exists but returns "not implemented" errors to prevent security issues
- **ProxyJump**: Basic support, not all edge cases handled
- **GSSAPI/Kerberos**: Stubs return proper errors instead of dummy data

### ❌ Not Implemented
These features are not available:
- SSH agent forwarding
- Certificate-based authentication (code exists but not integrated)
- Host-based authentication
- Keyboard-interactive authentication
- SSH-1 protocol support (by design - only SSH-2)

## Security Considerations

### Cryptographic Status
- **Post-quantum algorithms**: Using NIST-approved candidates (Kyber, Falcon, SPHINCS+)
- **Not independently audited**: Crypto implementations from pqcrypto crates
- **Side-channel resistance**: Not evaluated

### Known Security Limitations
1. **No formal verification** of protocol implementation
2. **Limited fuzzing** - basic tests only
3. **Timing attacks** - not systematically mitigated
4. **Memory safety** - Rust helps but unsafe blocks exist

## Platform Support

### Tested Platforms
- Linux (x86_64, aarch64)
- macOS (Intel, Apple Silicon)

### Untested/Unsupported
- Windows (may work via WSL)
- BSD variants
- Mobile platforms (iOS, Android)
- Embedded systems

## Performance Limitations

### Known Issues
1. **Handshake latency**: ~100ms due to PQC operations
2. **Memory usage**: Higher than OpenSSH due to PQC key sizes
3. **CPU usage**: Falcon signatures are compute-intensive

### Not Optimized
- No hardware acceleration (AES-NI, etc.)
- Single-threaded crypto operations
- No connection pooling optimizations

## Interoperability

### Cannot Connect To
- OpenSSH servers (incompatible protocol)
- PuTTY or other SSH clients
- Commercial SSH implementations

### Works Only With
- Other QSSH instances
- Future quantum-safe SSH implementations using same algorithms

## Error Handling

### Improved in v1.0.0
- All placeholder implementations replaced with proper errors
- No dummy data or zero-filled buffers
- Debug output through logging framework only

### Still Basic
- Error messages may not be user-friendly
- Limited retry logic
- No automatic fallback mechanisms

## Configuration Limitations

### Not Supported
- All OpenSSH config options (only subset implemented)
- Match blocks in config files
- Include directives
- Canonicalization options

## Testing Coverage

### What's Tested
- Basic connection flows
- Crypto primitives
- Key generation
- File transfer basics

### Not Well Tested
- Edge cases and error conditions
- Performance under load
- Network interruption recovery
- Concurrent connections at scale

## Recommendations

### Use QSSH If
- You're researching post-quantum cryptography
- Testing quantum-safe protocols in lab environment
- Building experimental quantum networks
- Learning about PQC implementations

### Don't Use QSSH If
- You need production-grade SSH
- Compliance requirements (FIPS, etc.)
- Interoperability with existing SSH infrastructure
- Mission-critical systems

## Getting Help

### For Issues
- GitHub Issues: https://github.com/yourname/qssh/issues
- Include version, platform, and full error output

### For Security Issues
- DO NOT use in production where security matters
- Report security concerns privately via GitHub Security tab
- This is experimental software - expect vulnerabilities

## Future Roadmap

### v2.0 Goals
- Security audit
- Certificate authentication
- Better error messages
- Performance optimizations

### Long Term
- OpenSSH compatibility mode
- Hardware security module support
- Formal verification of core protocol
- Production hardening

---

**Remember**: QSSH is an experimental research project exploring post-quantum SSH. For production use, stick with OpenSSH until quantum threats are imminent and QSSH has matured.