On 29.10.2016 23:37, XMPP Extensions Editor wrote: > This message constitutes notice of a Last Call for comments on XEP-0300 (Use > of Cryptographic Hash Functions in XMPP). > > Abstract: This document provides recommendations for the use of cryptographic > hash functions in XMPP protocol extensions. > > URL: http://xmpp.org/extensions/xep-0300.html > > This Last Call begins today and shall end at the close of business on > 2016-11-12. > > Please consider the following questions during this Last Call and send your > feedback to the [email protected] discussion list: > > 1. Is this specification needed to fill gaps in the XMPP protocol stack or to > clarify an existing protocol?
Yes. > 2. Does the specification solve the problem stated in the introduction and > requirements? Yes. > 3. Do you plan to implement this specification in your code? If not, why not? Yes. > 4. Do you have any security concerns related to this specification? No. > 5. Is the specification accurate and clearly written? Yes. One remark: Would it be sensible to do the same for HMACs? Specifying a common element, like <hmac xmlns='urn:xmpp:hashes:1' algo='sha-256'>…</hmac> and possible even announce support for HMAC-using-$algo (not sure about that). And, if so, shall this be put in XEP-0300 (would make sense IMHO) or in a new one? - Florian
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: [email protected] _______________________________________________
