Nerval's Lobster writes "The SSH Communications Security announced a new service Oct. 8 designed to allow enterprises to lock down a potential back door: an unknown number of SSH private keys floating around the data center.
The service will deploy a team of SSH experts to install and manage the Universal SSH Key Manager, which uses either an agent or an agent-less solution to lock down the SSH security-key environment, which protects transactions moving in and out of the data center. SSH describes the new service as complementary to its Universal SSH Key Manager and CryptoAuditor solutions.
SSH, of course, is known for creating a secure, encrypted link between a client and a server, especially between shell accounts on a UNIX system. While a UNIX admin may find an SSH tool useful for remotely accessing a server, SSH can also create a security headache for large financial institutions that, under law, must secure their systems under regulatory compliance mandates. Between 10 and 15 percent of all encryption keys are unknown and have root access, SSH claims."
Link to Original Source