On Mon, Oct 06, 2008 at 10:17:20AM +0100, Dave Cridland wrote: > On Mon Oct 6 00:04:49 2008, Jonathan Schleifer wrote: >> The situation of talking to the police is clearly a situation where you >> want a public key, not an SAS - this is why I thought you didn't get how >> SAS works. >> >> > Right, you'd ideally need a SIGMA-I, no SAS at all, and some method for > verifying the police's public key. But since the esession protocol provides > no method for doing that short of transferring the entire public key using > a side-channel, I'm not entirely convinced it helps much beyond moving the > problem about, and using a big chunk of static data with no agreement on > implementation instead of a short variable string.
XEP-0116 has provisions for both SIGMA-I and SIGMA-R.
pgpVpgWjpzmo8.pgp
Description: PGP signature
