[Security] PGP (XEP-0027)

Stephen Paul Weber singpolyma at singpolyma.net
Wed Jun 3 01:43:05 CDT 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Somebody signing messages as Peter Saint-Andre wrote:
> On 6/2/09 3:49 PM, Dave Cridland wrote:
> > On Tue Jun  2 21:43:00 2009, Peter Saint-Andre wrote:
> >> Thanks for the clarification. Personally I'd love to have key-login to
> >> XMPP servers (and HTTP servers!)
> > 
> > Pick the right client and server, and you can do this already, albeit
> > with X.509 rather than PGP.
> 
> Problem is, how many people have PGP keys or X.509 certs? Even the
> security geeks on this list don't seem to use such technologies!

If you're assuming you'll always need to generate a new key anyway, then
being compatible with existing tech/standards is still an advantage.

How many peoply have random DSA keys? A lot less than have PGP keys or X.509
certs.

- -- 
Stephen Paul Weber, @singpolyma
Please see <http://singpolyma.net> for how I prefer to be contacted.
edition right joseph
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
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=aaEP
-----END PGP SIGNATURE-----


More information about the Security mailing list