Dave Cridland wrote: > On Sun Jan 11 10:19:26 2009, Dirk Meyer wrote: >> > The more I read about Jingle, the more I like, and I think that it is >> > the right tool for the job here. >> >> I also like Jingle, but after some thinking, I prefer the stuff I wrote >> after the comparison. It would be very nice to have a general TLS >> mechanism directy in Jingle. You will not only get secure communication, >> you can also get secure file transfer and other use cases are possible >> as well: secure VNC connections (we all know people we have to help with >> their computer from time to time) or something like "Back to my Mac". >> > If security is negotiated as part of Jingle, rather than as part of the > p2p XMPP session, then we have a powerful tool that can be immediately > reused for things like authenticated file transfers - which frankly > seems like a seriously big win. None of the reasons for using STARTTLS > over TCP seem to apply here.
I'd be happy to write up a "Jingle Security" proposal that outlines this approach and applies it to several use cases -- primarily e2e XMPP and SRTP to start. I agree that it would be great to have something we can re-use for voice, video, file transfer, IBB, and any other Jingle-based application type. Peter -- Peter Saint-Andre https://stpeter.im/
