Posted On: Jul 21, 2022
AWS Transfer Family customers can now use ED25519 and ECDSA keys to authenticate users connecting to an AWS Transfer Family server. Previously, Transfer Family only supported RSA keys for user authentication.
ED25519 and ECDSA are both elliptic-curve based public-key systems commonly used for SSH authentication. They offer improved security and performance over the traditional RSA key type. You can now add any combination of ED25519, ECDSA, and RSA keys – up to 10 per user.
AWS Transfer Family supports ED22519 and ECDSA keys in all AWS Regions where it is available. You can configure a user's SSH public keys using the AWS Transfer Family API, AWS Management Console, AWS Command Line Interface (CLI), or AWS CloudFormation. To learn more about how to generate ED25519 and ECDSA keys or how to add them to user profiles within AWS Transfer Family, visit our documentation.