A SSH keystroke timing attack occurs when an adversary is able to capture packets of ssh sessions, and measure the timing between keystrokes. Using this timing data, the adversary may be able to infer what was typed by the user using a variety of methods.
timinganalysisssh-song_wagner_tian2001