[jdev] Fosdem 2010
Peter Saint-Andre
stpeter at stpeter.im
Fri Nov 20 09:10:46 CST 2009
On 11/20/09 2:45 AM, Dirk Meyer wrote:
> Peter Saint-Andre wrote:
>>> Has the e2e encryption / XTLS work advanced enough to do an e2e security
>>> sprint around Fosdem?
>> I think so.
>
> I have a reference implementation.
Excellent!
> XEP-0189 key management needs some
> more love by the pubsub versioning discussed on the pubsub list.
Agreed.
> BTW, I plan to update the XTLS draft soon with two changes:
>
> 1. Make SRP optional if we prefer the leap of faith
Realistically I think that most people will prefer that, because they
have no reason to think anything else is important (and they don't have
another secure channel available anyway).
> 2. Specify the username in the SRP handshake to be the initiators fullJID
Why the full JID instead of the bare JID? Because the session is being
set up between a full JID pair?
Peter
--
Peter Saint-Andre
https://stpeter.im/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6820 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://www.jabber.org/jdev/attachments/20091120/6705601b/attachment.bin>
More information about the JDev
mailing list