Upcoming Meetings

SSH: Your Lowest Cost, Highest Risk Tool - Securing SSH Keys in Today’s Enterprise

Tuesday, May 15, 2018 - 11:30am

Generating SSH keys is free, but poor SSH key practices expose businesses to costly risk. It takes just one SSH key for a cybercriminal to access an organization’s network and pivot to gain further access to the most sensitive systems and data.

SSH keys are often used for routine administrative tasks by system administrators, but are also used for secure machine-to-machine automation of critical business functions. However, the SSH keys themselves are often left unprotected. Most organizations leave it up to their system administrators to get and manage their own SSH keys, resulting in an ad hoc process using inconsistent security practices. Many keys are left unused and unmonitored, and some walk out the door with prior employees—whether maliciously or innocently.  With no expiration and a lack of lifecycle management, enterprises can wind up with literally millions of SSH keys and a broad attack surface.

Think of how much security you place around passwords and how often you rotate them. Now compare that to your SSH keys—the credentials that provide the most privileged access. Hear the common mistakes that almost all enterprises make around security, policy, and auditing practices when managing SSH keys, supported by current survey results. Discover the SSH key risks that are not addressed by IAM/PAM solutions and why they are probably some of the biggest risks in your environment. Then learn how to take SSH keys from an operational liability to a security asset.


Ted Heiman has over 25 years of experience in the field of cybersecurity.  His career includes significant experience in secure networking and access control, as well as data protection and applied cryptography.  Best known for his role in the deployment of the Common Access Card (CAC) for the Department of Defense, Ted received a letter of recommendation for his role in the Gracie award-winning project. Ted also played a critical role in the deployment of the first online banking solution ever deployed in the US with Sumitomo Bank of California as well as successful deployment of the first ever supermarket banking project with Wells Fargo Bank and Safeway Supermarkets