[standards-jig] Small Footprint Clients and Authentication

Jacek Konieczny jajcus at bnet.pl
Fri May 30 07:52:10 UTC 2003


On Thu, May 29, 2003 at 06:07:00PM -0700, Evan Prodromou wrote:
> You should probably comment on the XMPP draft and suggest that
> DIGEST-MD5 become a SHOULD requirement for SASL authentication (down
> from a MUST). If very small footprint clients can't handle the
> codespace for digest-based authentication, they shouldn't have to go
> chasing after alternative authentication methods.

So some very small footprint devices are not capable of running
fully-XMPP compatible clients. Period.

They may still be "nearly XMPP compatible" and work in Jabber network.
But they will not be as secure as XMPP protocol, so they should not be
called "XMPP compliant". User may choose to use such incomplete
implementation or buy more expensive device and use fully XMPP compliant
software.

Greets,
	Jacek



More information about the Standards mailing list