• Home
    • /
  • Encryption Solution
    • /
  • Zentra PQSSHCA

Zentra PQSSHCA

Post-Quantum Secure SSH Certificate Centralized Management and Audit System

Ensure every SSH login is “authorized, revocable, auditable, and long-term trustworthy”

Zentra PQSSHCA is an enterprise-grade SSH Certificate Authority (SSH CA),
with centralized management, auditability, and revocability at its core, fully replacing the management and security risks caused by traditional static SSH keys (authorized_keys).

The system adopts the OpenSSH standard certificate mechanism and is designed on a post-quantum cryptography (PQC) extensible architecture, helping enterprises build a long-term evolving SSH identity governance platform in the era of Zero Trust and quantum transformation.

Why is traditional SSH management no longer sufficient?

The Real Risks of Traditional SSH

Static SSH keys remain valid for long periods and are difficult to revoke. After outsourcing or maintenance activities, permissions often remain in the system, creating major security gaps. During audits, it is impossible to clearly answer "who logged into which systems and when." Once IoT and industrial devices are deployed, they often lose controllability, exposing organizations to unknown risks.

How does Zentra PQSSHCA solve this?

Core Product Values

No Changes to OpenSSH

Seamlessly integrates with existing infrastructure without requiring large-scale equipment replacement

SSH Certificates Replace Keys

Adopts a short-lived certificate mechanism to fundamentally reduce risks

Real-time Revocation and Auditing

Supports real-time permission revocation and tamper-resistant audit logs

Post-Quantum Cryptographic Protection

Proactively deploys PQC technology to defend against future quantum computing threats

Typical Application Scenario 1

Government

SSH Access Governance for Government Agencies

Build controllable, auditable, and accountable SSH management for critical infrastructure. The SSH risks faced by government agencies and critical infrastructure are not only cybersecurity issues, but also core issues of governance, responsibility attribution, and regulatory compliance.

Government scenario illustration

Helps Achieve

  • Replace scattered static SSH keys
  • Clearly define "who, at what time, is authorized to access which system"
  • Provide complete and non-repudiable audit evidence

Corresponding Requirements

  • Zero Trust architecture (Zero Trust)
  • Remote operation and maintenance control for critical systems
  • Security auditing and internal control requirements

Applicable Scenarios

  • Government data centers
  • Critical system operations and maintenance
  • Outsourced and cross-agency access

Typical Application Scenario 2

Finance

SSH Access Governance for Financial Institutions

Supports high-frequency operations and maintenance while meeting the strictest internal control and regulatory compliance requirements. Financial institutions rely heavily on SSH for system operations, deployment, and emergency handling, but they also face the strictest internal control frameworks, audit requirements, and regulatory responsibilities.

Financial scenario illustration

Helps Achieve

  • Integrate SSH access into formal authorization and approval processes
  • Use short-lived certificates to reduce human and supply chain risks
  • Provide evidence data that can be directly used for audits

Corresponding Requirements

  • Internal control and audit traceability
  • Outsourced and vendor maintenance management
  • High availability and uninterrupted architecture

Applicable Scenarios

  • Core systems and databases
  • Financial cloud and private cloud
  • DevOps / CI/CD

Typical Application Scenario 3

Manufacturing

SSH Access Governance for Manufacturing, IoT, and Edge Computing

Completes the final piece of cybersecurity and regulatory compliance for equipment and production lines. Zentra PQSSHCA provides device-level SSH certificate management for industrial automation machines, Edge Gateways, and IoT devices, meeting EU CRA and IEC 62443 requirements.

Manufacturing scenario illustration

Helps Achieve

  • Replace built-in long-term keys in devices
  • Provide short-term authorization for vendors and outsourced maintenance
  • Meet export and regulatory compliance requirements (such as CRA)

Corresponding Requirements

  • Large-scale management of IoT / Edge devices
  • Supply chain and vendor remote maintenance
  • Regulatory compliance (CRA, IEC 62443)

Applicable Scenarios

  • Industrial automation machines
  • Edge computing nodes
  • Industrial Jump Host

System Requirements

OpenSSH

7.2 or above

CPU

x86_64, 2 cores or above

Memory

4 GB or above (8 GB recommended)

Operating System

Linux (Ubuntu 22.04 LTS / RHEL 8+ recommended)

API Access

HTTPS (Token-based Authentication)

ruiting logo
+886-2-2627-6340
sales_r@ruitingtech.com.tw

6F., No. 578, Ruiguang Rd., Neihu Dist., Taipei City 114 , Taiwan (R.O.C.)

Copyright © Ruiting Tech. All Rights Reserved | Privacy Statement

This website uses cookies to provide you with better service. By continuing to browse this site you are agreeing to our use of cookies. For more information, please refer to the Privacy Statement.