Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption)
Which "extra robustness" are you talking about? GCM is not meant to handle larger amounts of data. Also the Double Ratchet protocol uses CBC internally, so this reduces the number of separate crypto primitives we need. Gesendet: Dienstag, 10. März 2020 um 16:38 Uhr Von: "Thilo Molitor" An: "XMPP Standards" Betreff: Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption) >* Use AES256/CBC to encrypt SCE payload. Why use CBC and not GCM for extra robustness? - tmolitor ___ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org ___ ___ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org ___
Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption)
>* Use AES256/CBC to encrypt SCE payload. Why use CBC and not GCM for extra robustness? - tmolitor ___ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org ___
Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption)
On 2020/03/10, p...@bouah.net wrote: > Version 0.4.0 of XEP-0384 (OMEMO Encryption) has been released. > > Abstract: > This specification defines a protocol for end-to-end encryption in > one-to-one chats, as well as group chats where each participant may > have multiple clients per account. > > Changelog: > * Incorporate the double ratchet protocol specification. > * Use one node to store all bundles. One item per bundle. > * Recommend 'open' access model for both PEP nodes. > * Specify OMEMO encryption for XEP-0045 Multi-User Chats. > * Use XEP-0420: Stanza Content Encryption. > * Use AES256/CBC to encrypt SCE payload. > * Change namespace to 'urn:xmpp:omemo:1' It seems the script didn't pick on up this. Thanks to those who told me :) > * Use wrapping 'keys' element for key elements in 'header'. > * Define threat model (dg) The XEP is also being moved back to Experimental with this update. -- Maxime “pep” Buquet signature.asc Description: PGP signature ___ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org ___