Hi,
The current approach is not good for full stanza encryption. And we have to
assume full stanza encryption will become the norm at some point so any
proposal should have that in mind.
Full stanza encryption does not mean Full stanza encryption. There are
elements that are never encrypted, for example store hints for the server,
delay elements added by the server, and im sure i will find one or two more.
Full stanza encryption means, we encrypt everything that makes sense and
don't negatively impact usability.
This is a pretty substantial feature so to fallback to a "Download the
whole archive" approach to make it work is not a good solution for me and
will probably lead to fastening not working with full stanza encryption
The solution for me is to separate metadata and content
So instead of
<message id="6" from="user2@chatservice.example"
to="chatroom@chatservice.example">
<apply-to xmlns="urn:xmpp:fasten:0" id="origin-id-1" replace='true'>
<i-like-this xmlns='urn:example:lik'>Very much</i-like-this>
</apply-to>
</message>
lets do something like
<message id="6" from="user2@chatservice.example"
to="chatroom@chatservice.example">
<apply-to xmlns="urn:xmpp:fasten:0:metadata" id="origin-id-1" />
<apply-to xmlns="urn:xmpp:fasten:0:content" >
<i-like-this xmlns='urn:example:lik'>Very much</i-like-this>
</apply-to>
</message>
This allows us to encrypt content but not the metadata, and in turn allows
the server archive to do some magic, for example if we want to request all
messages which were fastened to another message.
Keep in mind if this metadata leak is a problem for a client, nobody forces
a client to support fastening while encryption is activated. But it should
be possible if the user wishes.
Regards
Philipp
_______________________________________________
Standards mailing list
Info: https://mail.jabber.org/mailman/listinfo/standards
Unsubscribe: standards-unsubscr...@xmpp.org
_______________________________________________
