[Standards] Feedback to Compliance Suites 2020
xramtsov at gmail.com
Wed Oct 9 19:24:54 UTC 2019
On Wed, Oct 9, 2019 at 10:20 PM, Evgeny <xramtsov at gmail.com> wrote:
> I still doubt this is anyhow more secure than session resumption in
> XEP-0198 (which btw requires real re-authentication).
Let me explain: using BOSH to bypass restriction of XEP-0198 (namely,
SASL re-authentication) doesn't justify usage of BOSH, in my opinion.
Such explanation looks really weird, to say the least.
More information about the Standards