[Security] TLS Certificates Verification

Jonathan Dickinson jonathanD at k2.com
Tue Aug 19 16:45:38 CDT 2008

> -----Original Message-----
> From: security-bounces at xmpp.org [mailto:security-bounces at xmpp.org] On
> Behalf Of Eric Rescorla
> Sent: Tuesday, August 19, 2008 11:43 PM
> To: XMPP Security
> Subject: Re: [Security] TLS Certificates Verification
> ...
> That said, if Quantum Computing suddenly allows us to factor 1024-bit
> numbers in practical periods
> of time, we've probably got a huge problem and it's not clear how to
> salvage any of our
> protocols.

That is why we rely on mathematicians. From what I heard (from a very reputable source) the nuts have already come up with quantum asymmetric and symmetric cryptography algorithms. Currently the only change needed for streams would be for the registrar to add a new feature for the stream encryption and SASL mechanisms that can tolerate this.

We need that same kind of stuff with this.

> -Ekr

More information about the Security mailing list