[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [xmpp] SCRAM as MTI?

From: Simon Josefsson <simon at josefsson.org>
To: Peter Saint-Andre <stpeter at stpeter.im>
Cc: XMPP <xmpp at ietf.org>
Date: Tue, 15 Sep 2009 13:21:54 +0200
In-reply-to: <4AAE6984.8040201 at stpeter.im> (Peter Saint-Andre's message of "Mon, 14 Sep 2009 10:04:20 -0600")
References: <4AAE6984.8040201 at stpeter.im>

Peter Saint-Andre <stpeter at stpeter.im> writes:

> The SASL SCRAM mechanism is currently in IETF Last Call:
>
> http://www.ietf.org/internet-drafts/draft-ietf-sasl-scram-07.txt
>
> This mechanism is intended to replace DIGEST-MD5. Does it make sense for
> the XMPP WG to specify SCRAM as mandatory-to-implement?

Yes. (although I'm not a XMPP implementer)

Did XMPP make use of DIGEST-MD5 security layers, in theory
(specification) and in practice (implementations)?

/Simon

Follow-Ups:
- Re: [xmpp] SCRAM as MTI?
  - From: Peter Saint-Andre

References:
- [xmpp] SCRAM as MTI?
  - From: Peter Saint-Andre

Prev by Date: [xmpp] SCRAM as MTI?
Next by Date: Re: [xmpp] SCRAM as MTI?
Previous by thread: [xmpp] SCRAM as MTI?
Next by thread: Re: [xmpp] SCRAM as MTI?
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.