Re: [xmpp] dialback in DNA
Peter Saint-Andre - &yet <peter@andyet.net> Wed, 15 October 2014 02:22 UTC
Return-Path: <peter@andyet.net>
X-Original-To: xmpp@ietfa.amsl.com
Delivered-To: xmpp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 190871A016D for <xmpp@ietfa.amsl.com>; Tue, 14 Oct 2014 19:22:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.458
X-Spam-Level:
X-Spam-Status: No, score=-0.458 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DATE_IN_PAST_06_12=1.543, J_CHICKENPOX_26=0.6, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XfNXma499WOT for <xmpp@ietfa.amsl.com>; Tue, 14 Oct 2014 19:22:50 -0700 (PDT)
Received: from mail-ig0-f175.google.com (mail-ig0-f175.google.com [209.85.213.175]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6DC511A0121 for <xmpp@ietf.org>; Tue, 14 Oct 2014 19:22:50 -0700 (PDT)
Received: by mail-ig0-f175.google.com with SMTP id uq10so16588250igb.8 for <xmpp@ietf.org>; Tue, 14 Oct 2014 19:22:49 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=t/TugWDa4Wx05rdb+AJIDwiSGL98PzjgkcrPEJVmKyk=; b=ZKyhLtaZjxuGm9nlV2pn3qHYbW8X67gs5SjEzaTy9QFG5bfhUU9AU+oi9SKu341KLs zudS3trOumMO14MTDpXCSaCb9guUAeDvuZD3KUciAJB6NJEO3VD7eLkBNh00xT8C+9OM ZnJUhC1Ifwwfp5TCFApTwX6ryvgxJd8Q6nsvH2Lo9BkP6yDtiuKxPN+/rXzvCwnjy6/n iZYx/KvVmjZMOAKbCud3u9BZ1Yp1NeXwcROfDOcuKIm3JAQnDTE3eHDvc542EID1c99Y 1Gv3mo4NOeFrniDk15E1y3njw6lfKH1+L7c4bTojawII9cJvcOsYc5IbL+oxaEMUlevf wThg==
X-Gm-Message-State: ALoCoQnYYnYl+PCydMNRbs7puvm4aU7xXDW4ii52ozCso4UrdqzdrQZdkUPR1Q5SLh2EK3rqpQa+
X-Received: by 10.43.63.17 with SMTP id xc17mr8389249icb.50.1413339769799; Tue, 14 Oct 2014 19:22:49 -0700 (PDT)
Received: from aither.local ([216.9.110.8]) by mx.google.com with ESMTPSA id 141sm1240447ioz.39.2014.10.14.19.22.48 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 14 Oct 2014 19:22:49 -0700 (PDT)
Message-ID: <543D60B3.1020203@andyet.net>
Date: Tue, 14 Oct 2014 10:43:15 -0700
From: Peter Saint-Andre - &yet <peter@andyet.net>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Philipp Hancke <fippo@goodadvice.pages.de>, xmpp@ietf.org
References: <543BE0B7.3010609@andyet.net> <543C57DB.7040005@goodadvice.pages.de>
In-Reply-To: <543C57DB.7040005@goodadvice.pages.de>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: http://mailarchive.ietf.org/arch/msg/xmpp/hEjWXZkckh3lQ0Mhj90s34Limu8
Subject: Re: [xmpp] dialback in DNA
X-BeenThere: xmpp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: XMPP Working Group <xmpp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/xmpp>, <mailto:xmpp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xmpp/>
List-Post: <mailto:xmpp@ietf.org>
List-Help: <mailto:xmpp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xmpp>, <mailto:xmpp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Oct 2014 02:22:52 -0000
On 10/13/14, 3:53 PM, Philipp Hancke wrote: > Am 13.10.2014 16:24, schrieb Peter Saint-Andre - &yet: > [...] >> Matt and I propose adding the following text to ยง7: >> >> Although the PKIX prooftype uses the XMPP Server Dialback protocol > > reuses? > >> [XEP-0220] for signalling between servers, this framework document > > [XEP-0220] _syntax_ for ...? > >> does not define the exchange of dialback keys (also specified in >> [XEP-0220]) as a DNA prooftype. However, a future specification, or > > but doesn't use the semantics for the generation and validation of > dialback keys? Will fix. > I'd note that it will still work with server dialback because one of the > design goals was backward compat. I propose that we add this clause: "nothing in this document prevents the continued use of server dialback" > So we don't need to define anything. I'd need to double-check XEP-0220, one of our favorite documents. ;-) >> an updated version of [XEP-0220], might define a DNA prooftype for >> dialback > > I just tried that and failed. How so? > Let's try to find some time and a > whiteboard later this year. Always a pleasure. :-) >> in a way that is consistent with this framework. > > 0220 currently says that dialback-without-dialing-back is not described. > smart servers should not use the db:verify to do any weak identify > verification of the dialback keys. > But if we make any such statements, they belong into the security > considerations of xep-0220. Makes sense to me. Peter -- Peter Saint-Andre https://andyet.com/
- [xmpp] dialback in DNA Peter Saint-Andre - &yet
- Re: [xmpp] dialback in DNA Philipp Hancke
- Re: [xmpp] dialback in DNA Peter Saint-Andre - &yet
- Re: [xmpp] dialback in DNA Philipp Hancke
- Re: [xmpp] dialback in DNA Peter Saint-Andre - &yet