[Security] TLS Certificates Verification

Jonathan Schleifer js-xmpp-security at webkeks.org
Tue Aug 19 11:56:01 CDT 2008


Dirk Meyer <dmeyer at tzi.de> wrote:

> Use case: I want to connect my media network using XMPP. I have a
> set-top box (bot) and a mobile phone I want to use to control the
> set-top box. Should I use a CA? Not a good idea.

This isn't really a bot to bot scenario. Here, you would use SAS, it
would be like pairing in Bluetooth with a random PIN both need to know.

-- 
Jonathan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
Url : http://mail.jabber.org/pipermail/security/attachments/20080819/48a8896c/attachment.pgp 


More information about the Security mailing list