Authentication keys can improve efficiency, if done properly. As a bonus advantage, the passphrase and private key never leave the client[1]. Key-based authentication is generally recommended for outward facing systems so that password authentication can be turned off. OpenSSH can use public key cryptography for authentication. In public key cryptography, encryption and decryption are asymmetric.