[Operators] WoT for XMPP servers?

Peter Saint-Andre stpeter at stpeter.im
Wed Feb 6 22:32:18 UTC 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At FOSDEM last weekend, I talked with Bdale Garbee of the FreedomBox
project. It seems they will be using OpenPGP keys to build a web of
trust among FreedomBox instances. This made me think that something
similar could work quite well for the XMPP network (instead of or in
addition to CA-issued X.509 certificates). Unfortunately, right now I
think only GnuTLS supports RFC 6019 ("Using OpenPGP Keys for Transport
Layer Security (TLS) Authentication"). However, it might still be good
to more widely use OpenPGP keys among XMPP server administrators
(e.g., have keysigning events at the XMPP Summit and local/regional
events), and potentially server administrators could sign the
certificates issued to servers (e.g., I would PGP-sign the X.509
certificate for the jabber.org server).

Is anyone else here interested in strengthening the web of trust among
XMPP server admnistrators (and XMPP servers)?

Peter

- -- 
Peter Saint-Andre
https://stpeter.im/


-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlES2fIACgkQNL8k5A2w/vyxUQCgmJY4IZRp3v8j2Txc4P/hWSYo
2oEAoMfeYOOjnZbX3+5RG+sKhgWcDqU2
=6XcB
-----END PGP SIGNATURE-----


More information about the Operators mailing list