[JDEV] Secure instant messaging.
Ted Rolle
TRolle at uwgrocers.com
Fri Feb 2 15:17:41 CST 2001
How do we get to it in WinJab and Gabber?
-----Original Message-----
From: Peter Millard [mailto:me at pgmillard.com]
Sent: Friday, February 02, 2001 13:01
To: jdev at jabber.org
Subject: Re: [JDEV] Secure instant messaging.
James -
Have you checked out:
http://docs.jabber.org/draft-proto/html/pki.html
It details a "draft" spec that allows clients to use existing PGP/GPG
architechture and plugins to achieve msg crypto.
Instead of saving the keys on a central key server, wouldn't it be better to
allow clients to request the keys directly from each other if they don't
already have them?? This stuff has already been implemented into Gabber and
Winjab and seems to be wroking pretty good.
By signing the presence, you can extract the KeyID from the signature, and
check to see if that public key already exists in the client's existing
key-ring. If it doesn't (and I know this opens up some worms) but the
clients could possibly just swap keys with each other using iq/get/results.
Then you'd just using existing PGP/GPG technology.
Peter.
_______________________________________________
jdev mailing list
jdev at jabber.org
http://mailman.jabber.org/listinfo/jdev
More information about the JDev
mailing list