[Standards] mutual authentication and XEP 178

Mridul Muralidharan mridul at sun.com
Thu Jul 19 03:11:54 UTC 2007


Peter Saint-Andre wrote:
> Tony Finch wrote:
>> On Tue, 17 Jul 2007, Peter Saint-Andre wrote:
>>> If you are referring to certificate validation, that is covered in RFC3920:
>> Of course. Thanks for reminding me!
> 
> Now, there *is* a question about s2s TLS that I started wondering about
> while updating rfc3920bis recently, but it's related to TCP connections.
> 
> Server1 realizes that it needs an XML stream to Server2 in order to
> route some stanzas. So Server1 completes address resolution via SRV or
> whatever and opens a TCP connection to Server2. That happens on
> TCPconn1. Then Server1 sends a stream header to Server2. So far so good.
> 
> RFC3920 says that for s2s there are 2 TCP connections. So in order to
> send a response stream header to Server1, I assume that Server2 opens a
> second TCP connection, which we'll call TCPconn2, and then sends the
> response stream header over TCPconn2.
> 
> Correct?
> 
> I don't know if the spec needs to talk about this, but it couldn't hurt
> (since it's different for c2s vs. s2s).
> 
> /psa
> 

What is this 'stream header' you are refering to here ?
The actual stanzas to be routed ? then yes - anything else, then no.

- Mridul



More information about the Standards mailing list