[Standards] Proposed XMPP Extension: Jingle Encrypted Transports

Dave Cridland dave at cridland.net
Wed Aug 30 16:11:10 UTC 2017


On 30 August 2017 at 16:47, Daniel Gultsch <daniel at gultsch.de> wrote:
> Hi,
>
>
> I feel like this XEP is underspecified. On one hand it tries to be
> agnostic of the actual encryption being used on the other hand it is
> not necessarily clear to me - given a an encryption method X - how
> exactly the transport secret is encrypted in method X. The OpenPGP
> examples look like the TS is put into the body??? And in OMEMO as
> well?
>
> Everything is a bit of confusing.
>
> What I get is that I create a a bunch of bytes. How those bytes are
> used is indicated by the cipher. But how do I actually transfer those
> bytes is unclear to me.
>
> (I get that it 'just works' in practice if you just crab the random
> stuff from the decrypted 'body' of either OX or OMEMO but I don't
> think that XEP does a good job at specifying that. Especially not if
> you consider that this should work with arbitrary encryption methods.)

I agree that it's probably underspecified, but to my eyes these were
fixable problems, and moreover fixable problems that people were
likely to fix.

Do you think there's something fundamentally unfixable about the approach?

Dave.


More information about the Standards mailing list