1 module iana-ssh-public-key-algs {
3 namespace "urn:ietf:params:xml:ns:yang:iana-ssh-public-key-algs";
7 "Internet Assigned Numbers Authority (IANA)";
11 12025 Waterfront Drive, Suite 300
12 Los Angeles, CA 90094-2536
13 United States of America
15 Email: iana@iana.org";
18 "This module defines identities for the public key algorithms
19 defined in the 'Public Key Algorithm Names' sub-registry of the
20 'Secure Shell (SSH) Protocol Parameters' registry maintained
23 Copyright (c) 2022 IETF Trust and the persons identified as
24 authors of the code. All rights reserved.
26 Redistribution and use in source and binary forms, with
27 or without modification, is permitted pursuant to, and
28 subject to the license terms contained in, the Revised
29 BSD License set forth in Section 4.c of the IETF Trust's
30 Legal Provisions Relating to IETF Documents
31 (https://trustee.ietf.org/license-info).
33 The initial version of this YANG module is part of RFC EEEE
34 (https://www.rfc-editor.org/info/rfcEEEE); see the RFC
35 itself for full legal notices.";
39 "Reflects contents of the public key algorithms registry
42 "RFC EEEE: YANG Groupings for SSH Clients and SSH Servers";
47 typedef public-key-algorithm-ref {
49 base "public-key-alg-base";
52 "A reference to a SSH public key algorithm identifier.";
58 identity public-key-alg-base {
60 "Base identity used to identify public key algorithms.";
64 base public-key-alg-base;
69 The Secure Shell (SSH) Transport Layer Protocol";
73 base public-key-alg-base;
78 The Secure Shell (SSH) Transport Layer Protocol";
81 identity rsa-sha2-256 {
82 base public-key-alg-base;
87 Use of RSA Keys with SHA-256 and SHA-512
88 in the Secure Shell (SSH) Protocol";
91 identity rsa-sha2-512 {
92 base public-key-alg-base;
97 Use of RSA Keys with SHA-256 and SHA-512
98 in the Secure Shell (SSH) Protocol";
101 identity spki-sign-rsa {
102 base public-key-alg-base;
107 The Secure Shell (SSH) Transport Layer Protocol";
110 identity spki-sign-dss {
111 base public-key-alg-base;
116 The Secure Shell (SSH) Transport Layer Protocol";
119 identity pgp-sign-rsa {
120 base public-key-alg-base;
125 The Secure Shell (SSH) Transport Layer Protocol";
128 identity pgp-sign-dss {
129 base public-key-alg-base;
134 The Secure Shell (SSH) Transport Layer Protocol";
138 base public-key-alg-base;
143 Generic Security Service Application Program Interface
144 (GSS-API) Authentication and Key Exchange for the
145 Secure Shell (SSH) Protocol";
148 identity ecdsa-sha2-nistp256 {
149 base public-key-alg-base;
152 "ECDSA-SHA2-NISTP256 (secp256r1)";
155 Elliptic Curve Algorithm Integration in the
156 Secure Shell Transport Layer";
159 identity ecdsa-sha2-nistp384 {
160 base public-key-alg-base;
162 "ECDSA-SHA2-NISTP384 (secp384r1)";
165 Elliptic Curve Algorithm Integration in the
166 Secure Shell Transport Layer";
169 identity ecdsa-sha2-nistp521 {
170 base public-key-alg-base;
172 "ECDSA-SHA2-NISTP521 (secp521r1)";
175 Elliptic Curve Algorithm Integration in the
176 Secure Shell Transport Layer";
179 identity ecdsa-sha2-1.3.132.0.1 {
180 base public-key-alg-base;
182 "ECDSA-SHA2-1.3.132.0.1 (nistk163, sect163k1)";
185 Elliptic Curve Algorithm Integration in the
186 Secure Shell Transport Layer";
189 identity ecdsa-sha2-1.2.840.10045.3.1.1 {
190 base public-key-alg-base;
192 "ECDSA-SHA2-1.2.840.10045.3.1.1 (nistp192, secp192r1)";
195 Elliptic Curve Algorithm Integration in the
196 Secure Shell Transport Layer";
199 identity ecdsa-sha2-1.3.132.0.33 {
200 base public-key-alg-base;
202 "ECDSA-SHA2-1.3.132.0.33 (nistp224, secp224r1)";
205 Elliptic Curve Algorithm Integration in the
206 Secure Shell Transport Layer";
209 identity ecdsa-sha2-1.3.132.0.26 {
210 base public-key-alg-base;
212 "ECDSA-SHA2-1.3.132.0.26 (nistk233, sect233k1)";
215 Elliptic Curve Algorithm Integration in the
216 Secure Shell Transport Layer";
219 identity ecdsa-sha2-1.3.132.0.27 {
220 base public-key-alg-base;
222 "ECDSA-SHA2-1.3.132.0.27 (nistb233, sect233r1)";
225 Elliptic Curve Algorithm Integration in the
226 Secure Shell Transport Layer";
229 identity ecdsa-sha2-1.3.132.0.16 {
230 base public-key-alg-base;
232 "ECDSA-SHA2-1.3.132.0.16 (nistk283, sect283k1)";
235 Elliptic Curve Algorithm Integration in the
236 Secure Shell Transport Layer";
239 identity ecdsa-sha2-1.3.132.0.36 {
240 base public-key-alg-base;
242 "ECDSA-SHA2-1.3.132.0.36 (nistk409, sect409k1)";
245 Elliptic Curve Algorithm Integration in the
246 Secure Shell Transport Layer";
249 identity ecdsa-sha2-1.3.132.0.37 {
250 base public-key-alg-base;
252 "ECDSA-SHA2-1.3.132.0.37 (nistb409, sect409r1)";
255 Elliptic Curve Algorithm Integration in the
256 Secure Shell Transport Layer";
259 identity ecdsa-sha2-1.3.132.0.38 {
260 base public-key-alg-base;
262 "ECDSA-SHA2-1.3.132.0.38 (nistt571, sect571k1)";
265 Elliptic Curve Algorithm Integration in the
266 Secure Shell Transport Layer";
269 identity x509v3-ssh-dss {
270 base public-key-alg-base;
275 X.509v3 Certificates for Secure Shell Authentication";
278 identity x509v3-ssh-rsa {
279 base public-key-alg-base;
284 X.509v3 Certificates for Secure Shell Authentication";
287 identity x509v3-rsa2048-sha256 {
288 base public-key-alg-base;
291 "X509V3-RSA2048-SHA256";
294 X.509v3 Certificates for Secure Shell Authentication";
297 identity x509v3-ecdsa-sha2-nistp256 {
298 base public-key-alg-base;
300 "X509V3-ECDSA-SHA2-NISTP256 (secp256r1)";
303 X.509v3 Certificates for Secure Shell Authentication";
306 identity x509v3-ecdsa-sha2-nistp384 {
307 base public-key-alg-base;
309 "X509V3-ECDSA-SHA2-NISTP384 (secp384r1)";
312 X.509v3 Certificates for Secure Shell Authentication";
315 identity x509v3-ecdsa-sha2-nistp521 {
316 base public-key-alg-base;
318 "X509V3-ECDSA-SHA2-NISTP521 (secp521r1)";
321 X.509v3 Certificates for Secure Shell Authentication";
324 identity x509v3-ecdsa-sha2-1.3.132.0.1 {
325 base public-key-alg-base;
327 "X509V3-ECDSA-SHA2-1.3.132.0.1 (nistk163, sect163k1)";
330 X.509v3 Certificates for Secure Shell Authentication";
333 identity x509v3-ecdsa-sha2-1.2.840.10045.3.1.1 {
334 base public-key-alg-base;
336 "X509V3-ECDSA-SHA2-1.2.840.10045.3.1.1 (nistp192, secp192r1)";
339 X.509v3 Certificates for Secure Shell Authentication";
342 identity x509v3-ecdsa-sha2-1.3.132.0.33 {
343 base public-key-alg-base;
345 "X509V3-ECDSA-SHA2-1.3.132.0.33 (nistp224, secp224r1)";
348 X.509v3 Certificates for Secure Shell Authentication";
351 identity x509v3-ecdsa-sha2-1.3.132.0.26 {
352 base public-key-alg-base;
354 "X509V3-ECDSA-SHA2-1.3.132.0.26 (nistk233, sect233k1)";
357 X.509v3 Certificates for Secure Shell Authentication";
360 identity x509v3-ecdsa-sha2-1.3.132.0.27 {
361 base public-key-alg-base;
363 "X509V3-ECDSA-SHA2-1.3.132.0.27 (nistb233, sect233r1)";
366 X.509v3 Certificates for Secure Shell Authentication";
369 identity x509v3-ecdsa-sha2-1.3.132.0.16 {
370 base public-key-alg-base;
372 "X509V3-ECDSA-SHA2-1.3.132.0.16 (nistk283, sect283k1)";
375 X.509v3 Certificates for Secure Shell Authentication";
378 identity x509v3-ecdsa-sha2-1.3.132.0.36 {
379 base public-key-alg-base;
381 "X509V3-ECDSA-SHA2-1.3.132.0.36 (nistk409, sect409k1)";
384 X.509v3 Certificates for Secure Shell Authentication";
387 identity x509v3-ecdsa-sha2-1.3.132.0.37 {
388 base public-key-alg-base;
390 "X509V3-ECDSA-SHA2-1.3.132.0.37 (nistb409, sect409r1)";
393 X.509v3 Certificates for Secure Shell Authentication";
396 identity x509v3-ecdsa-sha2-1.3.132.0.38 {
397 base public-key-alg-base;
399 "X509V3-ECDSA-SHA2-1.3.132.0.38 (nistt571, sect571k1)";
402 X.509v3 Certificates for Secure Shell Authentication";
405 identity ssh-ed25519 {
406 base public-key-alg-base;
411 Ed25519 and Ed448 Public Key Algorithms for the
412 Secure Shell (SSH) Protocol";
416 base public-key-alg-base;
421 Ed25519 and Ed448 Public Key Algorithms for the
422 Secure Shell (SSH) Protocol";
425 // Protocol-accessible Nodes
427 container supported-algorithms {
430 "A container for a list of public key algorithms
431 supported by the server.";
432 leaf-list supported-algorithm {
433 type public-key-algorithm-ref;
435 "A public key algorithm supported by the server.";