1. Recv public key 2. Read a list of keys from ~/.ssh/authorized_keys (or any other file, depend on settings) 3. Compare received public key with a list of keys from step 2