[Standards] Feedback to Compliance Suites 2020

Evgeny xramtsov at gmail.com
Wed Oct 9 19:24:54 UTC 2019


On Wed, Oct 9, 2019 at 10:20 PM, Evgeny <xramtsov at gmail.com> wrote:
> I still doubt this is anyhow more secure than session resumption in 
> XEP-0198 (which btw requires real re-authentication).

Let me explain: using BOSH to bypass restriction of XEP-0198 (namely, 
SASL re-authentication) doesn't justify usage of BOSH, in my opinion. 
Such explanation looks really weird, to say the least.



More information about the Standards mailing list