Show HN: Sod – Touch ID-Backed SSH Keys Using the Secure Enclave

Category: security

Tags: ssh, secure-enclave, touch-id, macos, authentication

Score: 6.8/10 (Innovation: 6, Technical: 7, Documentation: 8, Utility: 6)

Sod stores SSH private keys inside the Secure Enclave and uses Touch ID to authorize every signature, serving them via the standard ssh-agent protocol. It is interesting because it provides strong, non-exportable hardware-backed SSH keys without requiring FIDO/U2F support on the server, and integrates seamlessly with stock OpenSSH.

Target audience: backend devs, devops, security engineers

Repository: https://botanica-consulting.github.io/sod/ · Swift · MIT · 1 stars

View on Hacker News