[jdev] manifesto 0.4

Peter Saint-Andre stpeter at stpeter.im
Wed Oct 30 16:25:24 UTC 2013 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/30/13 2:51 AM, Mathieu Pasquet wrote:
> On Tue, Oct 29, 2013 at 05:09:32PM -0600, Peter Saint-Andre wrote:
>> 
>> I just updated the encryption manifesto to incorporate feedback
>> and clarify a few points:
>> 
>> https://github.com/stpeter/manifesto/blob/master/manifesto.txt
>> 
>> Your feedback (and signatures!) matter.
>> 
>> Peter
>> 
> 
> I just thought that maybe we could add a note about DANE and TLSA 
> records for the services, on the same level as widely-deployed
> CAs, and also push for their adoption in XMPP-related software.

I think that we need to support DANE/DNSSEC eventually. Given the
extremely slow pace of DNSSEC deployment, I think it's unrealistic to
mandate support for it until, say, May 19, 2019. I wish the reality
were different, but it's not. That's one reason why Matt Miller and I
have been working to define POSH:

http://datatracker.ietf.org/doc/draft-miller-posh/

See also the "domain name associations" document:

http://datatracker.ietf.org/doc/draft-ietf-xmpp-dna/

IMHO we could use POSH in the shorter term and DANE in the longer term.

Peter

- -- 
Peter Saint-Andre
https://stpeter.im/


-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=TAei
-----END PGP SIGNATURE-----

More information about the JDev mailing list