Why SSL Certificates Scale Better Than SSH

Author

Govardhana M K
April 17, 2025

In partnership with

TechOps Examples

Hey โ€” It's Govardhana MK ๐Ÿ‘‹

Along with a use case deep dive, we identify the remote job opportunities, top news, tools, and articles in the TechOps industry.

๐Ÿ‘‹ Before we begin... a big thank you to today's sponsor SUPERHUMAN AI

Find out why 1M+ professionals read Superhuman AI daily.

In 2 years you will be working for AI

Or an AI will be working for you

Here's how you can future-proof yourself:

  1. Join the Superhuman AI newsletter โ€“ read by 1M+ people at top companies

  2. Master AI tools, tutorials, and news in just 3 minutes a day

  3. Become 10X more productive using AI

Join 1,000,000+ pros at companies like Google, Meta, and Amazon that are using AI to get ahead.

IN TODAY'S EDITION

๐Ÿง  Use Case

  • Why SSL Certificates Scale Better Than SSH

๐Ÿš€ Top News

  • State of Code Security in 2025

    • 35% of GitHub repositories are public, exposing code to potential attackers.

    • 61% of organizations have leaked cloud secrets, like API keys and access tokens.

๐Ÿ‘€ Remote Jobs

๐Ÿ“š๏ธ Resources

๐Ÿ“ข Reddit Threads

How to Fall Asleep SO Fast in 2 Minutes Like a Navy SEAL โ€“ This video breaks down a powerful sleep technique. It helps calm your body, slow your mind, and drift off quickly even under stress.

A good watch if sleep feels hard.

Youโ€™ve heard the hype. Itโ€™s time for results.

For all the buzz around agentic AI, most companies still aren't seeing results. But that's about to change. See real agentic workflows in action, hear success stories from our beta testers, and learn how to align your IT and business teams.

๐Ÿ› ๏ธ TOOL OF THE DAY

CK-X - Kubernetes certification exam simulator, open-source, free to use, and super easy to self-host with Docker. Includes a web UI, timed tasks, question navigator, and pre-configured K8s environments. Supports Docker, Helm and multiple exam preparation.

๐Ÿง  USE CASE

Why SSL Certificates Scale Better Than SSH

We DevOps and Cloud Engineers use SSH and SSL every day, but for very different reasons.

SSH is how we log into servers. It's authentication and remote shell access. You generate a keypair with ssh-keygen, copy the public key to the server, and you're in.

How SSH works

SSL is how we secure services. It's encryption and identity for traffic between browsers, APIs, and services enabled using certificates like those from Let's Encrypt or AWS ACM.

How SSL works

In short:

In a typical SSH setup, every user has a keypair, and the server stores public keys. If youโ€™ve worked on legacy fleets or unmanaged clusters, you know whatโ€™s coming: SSH key sprawl.

I saw a case where 8 engineers were rotating on-call duties. Over time, they accumulated 45 public keys across 30 EC2 instances. Some belonged to interns who had left. Some were from CI runners we no longer used. No expiry, no labels, no audit.

Worse, people were doing ssh-copy-id directly or using Ansible with inventory files that were never cleaned.

To clean it up, they had to:

  • Run find ~/.ssh/authorized_keys on every node

  • Build an internal tool to map keys to owners based on fingerprints

  • Rotate all keys using ssh-keygen -R and centralized provisioning via SSH certificates

It was a mess. And we swore to never let SSH become the main trust system again.

When we switched to ALB-based apps on AWS, we used ACM certificates for TLS termination. The setup was a one liner in Terraform:

listener {

port = 443

protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS13-1-3-2021-06"

certificate_arn = aws_acm_certificate.app_cert.arn }

The certs renewed automatically. Zero manual rotation.

Hereโ€™s the kicker: SSL certificates expire by design, are traceable, and bind to services, not users. That makes them scalable.

If youโ€™re building for scale, use SSL for service-to-service, client-to-server, or browser-to-backend.

Looking to promote your company, product, service, or event to 44,000+ Cloud Native Professionals? Let's work together.