SSH CMC Dump secure password

Hello guys,

my question is: If I create a CMC dump on one of my slaves and want to send it over a SSH connection to the master, how can I make sure that the master password on the slave is secured for the SSH tunnel?
(Third parties can access the slave)

Do you need to push this data from the remote site to the central site? Or could you pull it?

In either case I would create an SSH key that is only able to do this one thing by using the command restriction in the authorized_keys file.

Yes, I have to push the data. I have only one outgoing Port for SSH.
Do you have an example for me?