- Standards

Proposed XMPP Extension: Server-side spaces

by Daniel Gultsch

The XMPP Extensions Editor has received a proposal for a new XEP. Title: Server-side spaces Abstract: This document defines an XMPP protocol to cluster several groupchat rooms together. URL: https://xmpp.org/extensions/inbox/spaces.html The Council will decide in the next two weeks whether to accept this proposal as an official XEP.

3 months

3
3
0 0

XMPP Council Agenda 2025-02-25

by Daniel Gultsch

Good Morning Council Members, the next XMPP Council Meeting will take place on, Tuesday, February 25 2025 at 16:30 UTC in xmpp:council@muc.xmpp.org?join The Agenda is as follows: 1) Roll call 2) Agenda Bashing 3) Editors update * Proposed XMPP Extension: Server-side spaces https://xmpp.org/extensions/inbox/spaces.html 4) Items for voting a) Proposed XMPP Extension: Server-side spaces https://xmpp.org/extensions/inbox/spaces.html 5) Pending votes none See the spreadsheet of doom: https://docs.google.com/spreadsheets/d/1oAHUqBdlkobDcmfQ-YRMfZHGQLMWEdOFuEU… 6) Date of Next 7) AOB 8) Close

3 months, 1 week

1
0
0 0

LAST CALL: XEP-0484 (Fast Authentication Streamlining Tokens)

by Daniel Gultsch

This message constitutes notice of a Last Call for comments on XEP-0484. Title: Fast Authentication Streamlining Tokens Abstract: This specification defines a token-based method to streamline authentication in XMPP, allowing fully authenticated stream establishment within a single round-trip. URL: https://xmpp.org/extensions/xep-0484.html This Last Call begins today and shall end at the close of business on 2025-01-27. Please consider the following questions during this Last Call and send your feedback to the standards(a)xmpp.org discussion list: 1. Is this specification needed to fill gaps in the XMPP protocol stack or to clarify an existing protocol? 2. Does the specification solve the problem stated in the introduction and requirements? 3. Do you plan to implement this specification in your code? If not, why not? 4. Do you have any security concerns related to this specification? 5. Is the specification accurate and clearly written? Your feedback is appreciated!

3 months, 1 week

5
15
0 0

Splitting XEP-0455 (Service Outage Status)

by Mathieu Pasquet

Hi everyone, I have been thinking lately about updating XEP-0455 (and getting around to implementing it), and I find the initial semantics that I came up with a bit murky. My plan now is to remove the in-band events and outage planning entirely, to only keep the signaling part (using 0128) and the json format to describe an ongoing outage. I would also update the wording to say that a client should fetch the external address only if it does not manage to connect to the server. This way, the XEP will do one thing and do it quite efficiently, and the in-band events and planning can go into another XEP without being constrained by the requirements for (complete and ongoing) outages from 0455. Writing this to the list to collect some thoughts on the matter, or if anyone would be more interested in implementing this reduced version. Cheers, mathieui

4 months

1
0
0 0

XEP-0377: New option for Spam Reporting

by Guus der Kinderen

Hello, XEP-0377 describes a mechanism to report spam or abusive content to the local domain. While implementing the server-sided part of this, I was trying to think of useful processes that could follow a report. Some of those actions could include sharing the report with third parties, such as the origin server of the spam, or a centralized spam-related collection service (like xmppbl). There is a privacy aspect to this. An end-user that flags a particular message or entity might not realize or even appreciate that their report is being forwarded to others than the local domain. I suggest having an additional field added to the data structure that is already defined in the XEP. This field is used by the reporter to signal if they agree to share the report with third parties. Clients could present this option as a checkbox that reads something like "Allow this report to be shared with relevant third parties" (or better words). Kind regards, Guus

4 months

1
1
0 0

LAST CALL: XEP-0424 (Message Retraction)

by Daniel Gultsch

This message constitutes notice of a Last Call for comments on XEP-0424. Title: Message Retraction Abstract: This specification defines a method for indicating that a message should be retracted. URL: https://xmpp.org/extensions/xep-0424.html This Last Call begins today and shall end at the close of business on 2025-01-06. Please consider the following questions during this Last Call and send your feedback to the standards(a)xmpp.org discussion list: 1. Is this specification needed to fill gaps in the XMPP protocol stack or to clarify an existing protocol? 2. Does the specification solve the problem stated in the introduction and requirements? 3. Do you plan to implement this specification in your code? If not, why not? 4. Do you have any security concerns related to this specification? 5. Is the specification accurate and clearly written? Your feedback is appreciated!

4 months

9
26
0 0

XEP-0484: Fast Authentication Streamlining Tokens and TLS Early Data example

by Michael Uvarov

Hi, I cannot figure out how to use early data in XEP-0484. Main question, which part does go into the early data? <authenticate/> stanza? And how does it combine with XML stream start? How does the server should reply and when? It would be nice to have the complete example for successful auth, including indication of what goes into early data and what does not. Maybe people who already implemented early data in XEP-0484 could comment. https://xmpp.org/extensions/xep-0484.html

4 months

2
2
0 0

UPDATED: XEP-0474 (SASL SCRAM Downgrade Protection)

by Daniel Gultsch

Version 0.4.0 of XEP-0474 (SASL SCRAM Downgrade Protection) has been released. Abstract: This specification provides a way to secure the SASL and SASL2 handshakes against method and channel-binding downgrades. Changelog: * Use better value delimiter (tm) URL: https://xmpp.org/extensions/xep-0474.html Note: The information in the XEP list at https://xmpp.org/extensions/ is updated by a separate automated process and may be stale at the time this email is sent. The XEP documents linked herein are up-to- date.

4 months, 1 week

1
0
0 0

UPDATED: XEP-0424 (Message Retraction)

by Daniel Gultsch

Version 0.4.2 of XEP-0424 (Message Retraction) has been released. Abstract: This specification defines a method for indicating that a message should be retracted. Changelog: * Use a XEP-0425 /me command in the fallback body * State that a tombstone's <retracted/> element's 'id' attribute should match the retraction message's 'id'. * Specify XEP-0359 as a dependency and require that the stanza 'id' be used instead of the origin-id. * Update the "Security Considerations" to mention the risk of non- unique message IDs. (jcb) URL: https://xmpp.org/extensions/xep-0424.html Note: The information in the XEP list at https://xmpp.org/extensions/ is updated by a separate automated process and may be stale at the time this email is sent. The XEP documents linked herein are up-to- date.

4 months, 1 week

1
0
0 0

Proposed XMPP Extension: Gateway Relayed Encryption

by Daniel Gultsch

The XMPP Extensions Editor has received a proposal for a new XEP. Title: Gateway Relayed Encryption Abstract: This specification describes a mechanism for end-to-end encryption with gateways that is compatible with third-party networks. URL: https://xmpp.org/extensions/inbox/gateway-relayed-encryption.html The Council will decide in the next two weeks whether to accept this proposal as an official XEP.

4 months, 2 weeks

5
10
0 0

2025

2024

2023

Standards

2025

2024

2023

Standards ----- 2025 ----- June 2025 May 2025 April 2025 March 2025 February 2025 January 2025 ----- 2024 ----- December 2024 November 2024 October 2024 September 2024 August 2024 July 2024 June 2024 May 2024 April 2024 March 2024 February 2024 January 2024 ----- 2023 ----- December 2023

Standards