[jdev] JEP-0027 (OpenPGP) implementation question

Juan Antonio Gómez Moriano moriano.jabber at gmail.com
Sat Mar 4 14:25:34 CST 2006

Hello to all. 

I'm making a Jabber client whose main "important" thing is that it
implements the JEP-0027 (Current usage of OpenPGP in Jabber), i already
know properly the protocol, and i have read the JEP-0027
(http://www.jabber.org/jeps/jep-0027.html) . 

The question is that the document does not specify very clear (IMHO) how
to perform the key exchange it says : "All keys are exchanged using
OpenPGP key servers, and usually are retrieved when a signed <presence/>
stanza is received (key retrieval does not happen in-band)." The thing
is : how do i know in which server is the key of the person i am
chatting with?? 

Also it would be great also if someone can give me an opinion about
using GnuPG for doing this: I am doing all the development in JAVA and i
will prefer to avoid using an "external program" (as GnuPG). 

Apart from that, I have been doing some testing with encryption over
jabber by using the own Jabber server to exchange the keys (just to
check that i did the encryption part properly, and it worked, using RSA

Any idea/suggestion/hint??

THANKS in advance. 

More information about the JDev mailing list