-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 10/30/13 2:51 AM, Mathieu Pasquet wrote: > On Tue, Oct 29, 2013 at 05:09:32PM -0600, Peter Saint-Andre wrote: >> >> I just updated the encryption manifesto to incorporate feedback >> and clarify a few points: >> >> https://github.com/stpeter/manifesto/blob/master/manifesto.txt >> >> Your feedback (and signatures!) matter. >> >> Peter >> > > I just thought that maybe we could add a note about DANE and TLSA > records for the services, on the same level as widely-deployed > CAs, and also push for their adoption in XMPP-related software.
I think that we need to support DANE/DNSSEC eventually. Given the extremely slow pace of DNSSEC deployment, I think it's unrealistic to mandate support for it until, say, May 19, 2019. I wish the reality were different, but it's not. That's one reason why Matt Miller and I have been working to define POSH: http://datatracker.ietf.org/doc/draft-miller-posh/ See also the "domain name associations" document: http://datatracker.ietf.org/doc/draft-ietf-xmpp-dna/ IMHO we could use POSH in the shorter term and DANE in the longer term. Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.19 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJScTL0AAoJEOoGpJErxa2pyIoQAKKBvDfX69g4EE/sIk3B3wxv fSy4RxORk10r84kPMUeDr+0dW1nhBngGlLWj1U+FepeotlO/T1eOB2weHxWlG33T UBjO2xowYgfUSmE3u7JMQl5fYnAzsmIwTE8WCd5sybcrLfslEhfltcpAplOBWGre dy3P+15Ro7mbH0qCE4rwm4bPa8Qkldm9348WSPdDqXOeGm+JBqJh6Zvw7Cruq7CM hHj1JIVjNcneFwDYq1fL56GFEUYvlu1YnSsd7h2xqSFDD3LNHCTgQUHhq/b7pwHB cXA1hb0T/c9A27myRfm5b+B2dNV5obBdJpHCaVWXbfI6fFiLnBR0NPsGcqhwMZ36 LqQLifKM6f3srYQKT01reWjUdbAe4DsLyv0hMwGfBLswEJsbQZkSi2OtPERSqCkt t/9VeAA9W0/lOGa+I0/rT2y8/vP0aN5w820f26SEWAntIsitrQMJkwUPJ2Rfrw/z qMs5SBJXxptUFC8L05It+abnBiotQUwSTV+j8wnfw86O7q9F2eUqZqS/El2J+LMv f9zwA/PEZ9iHFf+FngFve+9SVDBS7/+E5EYTTjlLpezo7T6w293uyr29uc41aTPP NOWRNQx9ohgWMV99wzX6m0vR/p+SV9+97zbe/xFVh03tiNJlR8e5gQ6IKkTnntNP yKEb/tGpYyO1etCweGrZ =TAei -----END PGP SIGNATURE----- _______________________________________________ JDev mailing list Info: http://mail.jabber.org/mailman/listinfo/jdev Unsubscribe: [email protected] _______________________________________________
