[jdev] Fosdem 2010

Peter Saint-Andre stpeter at stpeter.im
Fri Nov 20 09:10:46 CST 2009


On 11/20/09 2:45 AM, Dirk Meyer wrote:
> Peter Saint-Andre wrote:
>>> Has the e2e encryption / XTLS work advanced enough to do an e2e security
>>> sprint around Fosdem?
>> I think so.
> 
> I have a reference implementation. 

Excellent!

> XEP-0189 key management needs some
> more love by the pubsub versioning discussed on the pubsub list.

Agreed.

> BTW, I plan to update the XTLS draft soon with two changes:
> 
> 1. Make SRP optional if we prefer the leap of faith

Realistically I think that most people will prefer that, because they
have no reason to think anything else is important (and they don't have
another secure channel available anyway).

> 2. Specify the username in the SRP handshake to be the initiators fullJID

Why the full JID instead of the bare JID? Because the session is being
set up between a full JID pair?

Peter

-- 
Peter Saint-Andre
https://stpeter.im/


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6820 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20091120/6705601b/attachment.bin>


More information about the JDev mailing list