[Standards-JIG] Re: JEP-0077: In-Band Registration
Peter Saint-Andre
stpeter at jabber.org
Mon Jul 17 14:04:25 CDT 2006
Piotr Szturmaj wrote:
> Comparing to existing approach we increase the security much.
RFC 3920 says we use SASL, which includes mechanisms such as Kerberos,
DIGEST-MD5, and mutual authentication using X.509 certificates, etc. In
general we are pushing people to use those methods rather than trying to
upgrade the old methods documented in JEP-0078. If Kerberos, DIGEST-MD5,
and X.509 are not secure enough for you, I suggest that you may have a
future in IETF protocol development. ;-)
Peter
--
Peter Saint-Andre
Jabber Software Foundation
http://www.jabber.org/people/stpeter.shtml
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7358 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/standards/attachments/20060717/984dc229/smime.bin
More information about the Standards-JIG
mailing list