Difference between revisions of "XMPP E2E Security"
Jump to navigation
Jump to search
(Fill in OMEMO table partially) |
m (Tweak recommendation wording to make it lean more towards "do not implement") |
||
Line 11: | Line 11: | ||
== XEP-0027 (legacy PGP) == | == XEP-0027 (legacy PGP) == | ||
'''Recommendation:''' implement | '''Recommendation:''' do not implement unless compatibility with legacy clients is required. | ||
One of the first proposals for end-to-end security is based on [http://en.wikipedia.org/wiki/Pretty_Good_Privacy PGP] and described in [http://xmpp.org/extensions/xep-0027.html XEP-0027]. | One of the first proposals for end-to-end security is based on [http://en.wikipedia.org/wiki/Pretty_Good_Privacy PGP] and described in [http://xmpp.org/extensions/xep-0027.html XEP-0027]. | ||
Line 19: | Line 19: | ||
== OTR (Off-the-record Messaging) == | == OTR (Off-the-record Messaging) == | ||
'''Recommendation:''' implement | '''Recommendation:''' do not implement unless compatibility with legacy clients is required. | ||
. | |||
[https://otr.cypherpunks.ca/ OTR] is a crypto protocol, specifically designed to secure instant messaging conversations. Its usage in XMPP is documented (but not standardized) in https://xmpp.org/extensions/xep-0364.html | [https://otr.cypherpunks.ca/ OTR] is a crypto protocol, specifically designed to secure instant messaging conversations. Its usage in XMPP is documented (but not standardized) in https://xmpp.org/extensions/xep-0364.html |