certificate-based authentication for scp is implemented

The "more-production" version of the pipelines should use certificate (user key) to authenticate (rather than username/pass).

• How this can be done with airflow connection/hook.
• how to manage the keys
• do we have to pass it over from the TOSCA workflow?