[Standards-JIG] RE: Encrypted sessions

Peter Saint-Andre stpeter at jabber.org
Thu Jun 8 21:19:23 UTC 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Kevin Smith wrote:

> With that said, I do appreciate it is not a good thing to store keys if
> it can be avoided. especially if  they can compromise previous, as well
> as future, conversations.

This may be of interest:

http://www.ietf.org/rfc/rfc4387.txt

"Internet X.509 Public Key Infrastructure Operational Protocols:
Certificate Store Access via HTTP"

Since that has been standardized we could simply use that -- I know it's
not XMPP, but not *everything* needs to happen over XMPP. ;-)

Peter

- --
Peter Saint-Andre
Jabber Software Foundation
http://www.jabber.org/people/stpeter.shtml

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFEiJRbNF1RSzyt3NURAh/SAJ0TXpBX6yYSqL5q6GjqwhGng8soQQCg2VQk
+yUbTbnolF+UTnZ8CZuCA9w=
=uAXu
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3641 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mail.jabber.org/pipermail/standards/attachments/20060608/66f2d4b6/attachment.bin>


More information about the Standards mailing list