To be honest, I don't understand the "encrypted roster" discussion. Even if the server does not see the roster at all, it is able to fully infer which jids are part of a user's "roster" by just checking the PubSub subscriptions and fetches of that user.
Isn't an "encrypted roster" implemented this way just a farce? Or do I miss something important here? -tmolitor Am Dienstag, 20. Januar 2026, 18:58:28 CET schrieb Dan Caseley: > On Tue, 20 Jan 2026 at 16:26, Stephen Paul Weber <[email protected]> > wrote: > > Now if we want to move contacts into pubsub anyway it feels like what we > > really want is boomarks3: bookmarks2 but with wording that makes it clear > > that not everything in there is a MUC. This solves all the extended > > metadata > > questions that have been coming up over recent years while also making > > both > > things possible to encrypt with pubsub encryption methods as desired. > > This sounds like an awesome topic for summit!
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Standards mailing list -- [email protected] To unsubscribe send an email to [email protected]
