Secure Communications Week

From XMPP WIKI
Revision as of 21:32, 14 August 2008 by Stpeter (talk | contribs)
Jump to navigation Jump to search

Security matters! But it doesn't happen unless we make it happen. Some large Jabber services on the Internet are working to require encrypted communications in time for the 10th anniversary of Jabber technologies on January 4, 1999. In preparation, we're planning to hold a Secure Communications Week, October 4 - October 11, 2008. Read on for details.

Which Services are Participating?

- jabber.org

How Can Services Participate?

Simply require SSL or TLS connections for client-to-server connections and install a digital security certificate. You can obtain a FREE domain certificate from the XMPP Intermediate Certificate Authority.

How Can End Users Prepare?

Upgrade your client to the most recent version. In general, the most recent versions of all major Jabber clients support encryption. That includes:

- Adium 1.2.7 - Gaim is now Pidgin -- time to upgrade! - [1] 0.50 - Miranda 0.7.8 - [2] 2.5 - Pidgin 2.4.3 - Psi 0.11 and 0.12 - [3] Trillian 3.1.10

How Can Client Developers Help?

Build support for TLS (SSL) and SASL into your client as defined in RFC 3920 and rfc3920bis. Support for certificates issued by the XMPP Intermediate Certificate Authority is also very helpful, because many Jabber services on the Internet use the free certificates issued by the XMPP ICA.