Difference between revisions of "OTR"

From XMPP WIKI
Jump to navigation Jump to search
(→‎Plugin: added SàT to clients managing OTR)
Line 37: Line 37:
* [http://pidgin.im/ Pidgin (formely Gaim)] (Cross-platform) with [https://otr.cypherpunks.ca/#downloads OTR plugin for Pidgin]
* [http://pidgin.im/ Pidgin (formely Gaim)] (Cross-platform) with [https://otr.cypherpunks.ca/#downloads OTR plugin for Pidgin]
* [http://poez.io/ Poezio] with [http://poez.io/doc/plugins/otr.html pure-python-otr]
* [http://poez.io/ Poezio] with [http://poez.io/doc/plugins/otr.html pure-python-otr]
* [http://salut-a-toi.org Salut à Toi] with [http://poez.io/doc/plugins/otr.html pure-python-otr]
* [http://salut-a-toi.org Salut à Toi] with pure-python-otr and otr.js (for the web frontend)
* [http://www.trillian.im/ Trillian] (Microsoft Windows) with [http://trillianotr.kittyfox.net/ Trillian OTR]
* [http://www.trillian.im/ Trillian] (Microsoft Windows) with [http://trillianotr.kittyfox.net/ Trillian OTR]
* [http://weechat.flashtux.org/ WeeChat] (Cross-platform) with [http://irssi-otr.tuxfamily.org/ weechat-otr]
* [http://weechat.flashtux.org/ WeeChat] (Cross-platform) with [http://irssi-otr.tuxfamily.org/ weechat-otr]

Revision as of 17:29, 13 November 2014

Off-the-Record Messaging, commonly referred to as OTR, is a cryptographic protocol that provides strong encryption for instant messaging conversations. OTR uses a combination of the AES symmetric-key algorithm, the Diffie–Hellman key exchange, and the SHA-1 hash function. In addition to authentication and encryption, OTR provides perfect forward secrecy and malleable encryption.

Strengths

OTR allows you to have private conversations over instant messaging by providing:

  • Encryption
    • No one else can read your instant messages.
  • Authentication
    • You are assured the correspondent is who you think it is.
  • Deniability
    • The messages you send do not have digital signatures that are checkable by a third party. Anyone can forge messages after a conversation to make them look like they came from you. However, during a conversation, your correspondent is assured the messages he sees are authentic and unmodified.
  • Perfect forward secrecy
    • If you lose control of your private keys, no previous conversation is compromised.

Client support

Native

Plugin

Work in Progress

External links