SSH Key Generator

Generate the right ssh-keygen command for your needs. This tool builds commands for you to run in your terminal — no keys are generated in the browser.

Key Type

Comment / Email

Filename (in ~/.ssh/)

Passphrase

Yes No Recommended for security

1. Generate Key Pair

2. Add to SSH Agent

3. Copy Public Key

4. Add to GitHub / GitLab

5. SSH Config (~/.ssh/config)

SSH Key Types Compared

Algorithm	Key Size	Security	Compatibility
ED25519	256-bit	Excellent	Modern systems (OpenSSH 6.5+)
RSA-4096	4096-bit	Very Good	Universal
RSA-2048	2048-bit	Good (minimum)	Universal
ECDSA-384	384-bit	Very Good	Most modern systems
ECDSA-256	256-bit	Good	Most modern systems

Why ED25519 Is Recommended

ED25519 keys are based on the Edwards-curve Digital Signature Algorithm. They offer several advantages over RSA: faster key generation and authentication, smaller key sizes (256 bits vs 4096 bits for equivalent security), and resistance to certain side-channel attacks. ED25519 is the default choice for GitHub, GitLab, and all modern SSH workflows.

SSH Key Security Best Practices

Always use a passphrase for interactive keys. This encrypts your private key at rest.
Set correct file permissions: chmod 700 ~/.ssh and chmod 600 ~/.ssh/id_*
Use separate keys for different services (GitHub, production servers, etc.).
Rotate keys periodically and remove unused public keys from authorized_keys files.
Never share your private key. Only the .pub file should be distributed.

Frequently Asked Questions

Which SSH key type should I use?▼

ED25519 is recommended for most use cases. It offers the best security-to-performance ratio, produces shorter keys, and is supported by all modern SSH implementations. Use RSA-4096 only if you need compatibility with older systems that don't support ED25519.

Should I set a passphrase on my SSH key?▼

Yes, always use a passphrase for SSH keys used interactively. A passphrase encrypts your private key on disk, so even if someone steals your key file they cannot use it without the passphrase. For automated systems like CI/CD, passphrase-less keys are sometimes necessary but should be tightly restricted.

How do I add my SSH key to GitHub or GitLab?▼

Copy the contents of your public key file (ending in .pub) and paste it into your account's SSH key settings. On GitHub, go to Settings > SSH and GPG keys > New SSH key. On GitLab, go to Preferences > SSH Keys. Only ever share your public key, never your private key.

What is the difference between the public and private SSH key?▼

Your private key stays on your local machine and should never be shared. Your public key (the .pub file) is placed on remote servers or services like GitHub. When you connect, SSH uses a mathematical relationship between the two keys to prove your identity without transmitting the private key.

SSH Key Generator

SSH Key Types Compared

Why ED25519 Is Recommended

SSH Key Security Best Practices

Related Tools

Password Generator

Hash Generator

Base64 Encoder

Frequently Asked Questions