{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2025:PBZV56U2XNWHG2D5HWAHNYY5VU","short_pith_number":"pith:PBZV56U2","schema_version":"1.0","canonical_sha256":"78735efa9abb6c73687d3d8076e31dad0d26271d09e240533348650995ce3006","source":{"kind":"arxiv","id":"2509.10895","version":1},"attestation_state":"computed","paper":{"title":"Finding SSH Strict Key Exchange Violations by State Learning","license":"http://creativecommons.org/licenses/by/4.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Fabian B\\\"aumer, J\\\"org Schwenk, Marcel Maehren, Marcus Brinkmann","submitted_at":"2025-09-13T16:54:10Z","abstract_excerpt":"SSH is an important protocol for secure remote shell access to servers on the Internet. At USENIX 2024, B\\\"aumer et al. presented the Terrapin attack on SSH, which relies on the attacker injecting optional messages during the key exchange. To mitigate this attack, SSH vendors adopted an extension developed by OpenSSH called strict key exchange (\"strict KEX\"). With strict KEX, optional messages are forbidden during the handshake, preventing the attack. In practice, this should simplify the state machine of an SSH handshake to a linear message flow similar to that of TLS.\n  In this work, we anal"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"2509.10895","kind":"arxiv","version":1},"metadata":{"license":"http://creativecommons.org/licenses/by/4.0/","primary_cat":"cs.CR","submitted_at":"2025-09-13T16:54:10Z","cross_cats_sorted":[],"title_canon_sha256":"6be13d1173da2c38e48610bfae13fe9d3d0d602754af46cebf05eb0a962ff735","abstract_canon_sha256":"33495c41d9be1a3753c1033304fc9e7a582916893ee53e81496667c4b579caa1"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-07-05T12:11:29.989135Z","signature_b64":"XLR+Y7I5aZlONRMr8NBYt8YQHQPahN1TJvldzQbNS2Y6uDpLJuGAPzXOlSRoaKjoBUZ8fowM5W9yzGvQQc2LDg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"78735efa9abb6c73687d3d8076e31dad0d26271d09e240533348650995ce3006","last_reissued_at":"2026-07-05T12:11:29.988640Z","signature_status":"signed_v1","first_computed_at":"2026-07-05T12:11:29.988640Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Finding SSH Strict Key Exchange Violations by State Learning","license":"http://creativecommons.org/licenses/by/4.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Fabian B\\\"aumer, J\\\"org Schwenk, Marcel Maehren, Marcus Brinkmann","submitted_at":"2025-09-13T16:54:10Z","abstract_excerpt":"SSH is an important protocol for secure remote shell access to servers on the Internet. At USENIX 2024, B\\\"aumer et al. presented the Terrapin attack on SSH, which relies on the attacker injecting optional messages during the key exchange. To mitigate this attack, SSH vendors adopted an extension developed by OpenSSH called strict key exchange (\"strict KEX\"). With strict KEX, optional messages are forbidden during the handshake, preventing the attack. In practice, this should simplify the state machine of an SSH handshake to a linear message flow similar to that of TLS.\n  In this work, we anal"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2509.10895","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2509.10895/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"2509.10895","created_at":"2026-07-05T12:11:29.988704+00:00"},{"alias_kind":"arxiv_version","alias_value":"2509.10895v1","created_at":"2026-07-05T12:11:29.988704+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2509.10895","created_at":"2026-07-05T12:11:29.988704+00:00"},{"alias_kind":"pith_short_12","alias_value":"PBZV56U2XNWH","created_at":"2026-07-05T12:11:29.988704+00:00"},{"alias_kind":"pith_short_16","alias_value":"PBZV56U2XNWHG2D5","created_at":"2026-07-05T12:11:29.988704+00:00"},{"alias_kind":"pith_short_8","alias_value":"PBZV56U2","created_at":"2026-07-05T12:11:29.988704+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":0,"internal_anchor_count":0,"sample":[]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU","json":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU.json","graph_json":"https://pith.science/api/pith-number/PBZV56U2XNWHG2D5HWAHNYY5VU/graph.json","events_json":"https://pith.science/api/pith-number/PBZV56U2XNWHG2D5HWAHNYY5VU/events.json","paper":"https://pith.science/paper/PBZV56U2"},"agent_actions":{"view_html":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU","download_json":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU.json","view_paper":"https://pith.science/paper/PBZV56U2","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=2509.10895&json=true","fetch_graph":"https://pith.science/api/pith-number/PBZV56U2XNWHG2D5HWAHNYY5VU/graph.json","fetch_events":"https://pith.science/api/pith-number/PBZV56U2XNWHG2D5HWAHNYY5VU/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU/action/timestamp_anchor","attest_storage":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU/action/storage_attestation","attest_author":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU/action/author_attestation","sign_citation":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU/action/citation_signature","submit_replication":"https://pith.science/pith/PBZV56U2XNWHG2D5HWAHNYY5VU/action/replication_record"}},"created_at":"2026-07-05T12:11:29.988704+00:00","updated_at":"2026-07-05T12:11:29.988704+00:00"}