[Standards] Proposed XMPP Extension: Stanza Content Encryption

Florian Schmaus flo at geekplace.eu
Mon Jun 24 19:46:49 UTC 2019


On 24.06.19 19:04, Ненахов Андрей wrote:
> пн, 24 июн. 2019 г. в 21:59, Georg Lukas <georg at op-co.de>:
>> 1. I'd like to see certain fields of the <content/> being REQUIRED,
>> especially:
>>
>> - the from address
> 
> So much for deniability.

You usually only need 'from' if you also sign the data, and then
deniability is already gone. And if you do not sign the data, then the
'from' attribute carries no meaning and is actually harmful because an
erroneous implementations could assume its value is genuine.

- Florian

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 618 bytes
Desc: OpenPGP digital signature
URL: <http://mail.jabber.org/pipermail/standards/attachments/20190624/4469ae3a/attachment-0001.sig>


More information about the Standards mailing list