[Jingle] raw notes from Jingle Thingle

Peter Saint-Andre stpeter at stpeter.im
Fri Feb 6 11:45:02 CST 2009 

Here are some very raw notes from the Jingle Thingle. Expect further
information about interop testing results.

Topics:

- relays
- file transfer
- security
- other

1. Relays ("superbuddies")

  - connect a bot to my account for relaying (could be on a VPS, my home
server, etc)
  - could share with people in my buddy list
  - also provide a way to query my buddies for their relays
  - advertise this capability in PEP
  - others can include +notify for this capability in their caps
  - send IQ-get to request IP+port from a full JID (could be mine or
someone else's)
  - find IP+port via STUN (do this each time you are asked about relay
addresses)
  - add to my ICE candidates
  - priority regarding discovered relays
    - my other resources
    - people in my roster
    - public relays

2. File Transfer

very rough consensus to pursue http(s) for file transfer
need streaming transport underneath
perhaps work with IETF on this
or just use SOCKS

3. Security

- assumption: everyone has an X509 cert (probably self-signed)
- assumption: no need to support OpenPGP
- assumption: SRP not needed, can do short strings over XTLS

<iq>
  <jingle>
    <content>
      <description/>
      <transport/>
      <tls>
        <required/>
      </tls>
    </content>
  </jingle>
</iq>

- for XTLS, open streaming transport and do TLS (*not* STARTTLS over e2e
stream)
  - if need channel binding, do SASL over resulting stream (as in 3920)
  - for encrypted file transfer (etc.), send same format in Jingle
    signalling via session-info
- could perhaps also use this to signal DTLS for UDP transport?
- in link-local case, still use STARTTLS over stream because we can
re-use 3920 semantics

4. Other

- need to define inclusion of SSRC to indicate particular source within
an apptype (e.g., different video sources)

- need ability to ask my server for my (external) IP address
  1. iq-get (include my IP address)
  2. iq-result (server tells me what it sees)

- may want to expand session-transfer to handle call forwarding case
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6751 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/jingle/attachments/20090206/88522c05/attachment.bin

More information about the Jingle mailing list