End to End Encryption SIG

Seve has joined 03:12:06
DebXWoody has joined 05:45:17
eab has left 07:09:31
eab has joined 07:09:31
Millesimus has left 07:17:37
Millesimus has joined 07:22:23
Millesimus has left 08:39:46
sam2943 has left 08:40:12
belong has left 08:53:36
Millesimus has joined 08:58:02
DebXWoody has left 08:59:38
belong has joined 09:29:19
purplebeetroot has joined 09:37:15
purplebeetroot 09:43:27
you know of this WG right? https://datatracker.ietf.org/group/mls/about/ It's about creating a standart for message encryption in groups their MUC: xmpp:mls@jabber.ietf.org?join
L29Ah 09:44:24
another one?
L29Ah 09:44:44
nice thing about standards
purplebeetroot 09:51:10
they hope to reach interoperability.
L29Ah 09:53:42
like OTR?
L29Ah was surprised when he learned that OTRv4 didn't include multi-user chats 09:54:07
dequbed 09:54:24
L29Ah: MLS is designed to be agnostic over the chat protocols in use and instead defines terminology and features in a high-level way.
L29Ah 09:54:36
so like OTR
dequbed 09:54:48
I guess? I haven't looked much at OTR
dequbed 09:55:53
But MLS is specifically designed for reasonable big group chats in the style of Matrix' megOlm. And at least the OTR that I used didn't really do that whole more than two party all that well :)
beforeigner has left 09:57:11
dequbed 09:57:57
The worst outcome anyway is that it ends up like SASL where everybody implements it by hand anyway and then only does the subset of features they specifically want meaning stuff isn't interoperable again. The best outcome is it ends up like TLS where just about everything that's vaguely stream-orientated can now be transport encrypted with very little efford on the developers part and as a result almost all chat is now fully e2ee. ✎
dequbed 09:58:27
The worst outcome anyway is that it ends up like SASL where everybody implements it by hand anyway and then only does the subset of features they specifically want meaning stuff isn't interoperable again. The best outcome is it ends up like TLS where just about everything that's vaguely stream-orientated can now be transport encrypted with very little efford on the developers part and as a result of MLS being that way almost all chat is now fully e2ee. ✏
beforeigner has joined 09:59:08
purplebeetroot has left 10:28:48
vanitasvitae 11:04:59
Originally the MLS folks planned to design MLS such that it would work cross-protocol, but I believe thats no longer a high-priority goal for them
vanitasvitae 11:05:21
Cross-protocol support would have been awesome though
vanitasvitae 11:05:34
Imagine e2ee cross bridges
belong has left 11:24:43
belong has joined 11:27:00
DebXWoody has joined 11:31:29
dequbed 11:51:11
Well its still possible if I haven't misread the spec. The bridge has to translate a few things between hither and yonder but it doesn't have to MITM the encryption
belong has left 13:18:30
belong has joined 13:33:36
DebXWoody has left 14:30:27
DebXWoody has joined 17:15:04
DebXWoody has left 17:23:23
belong has left 17:35:06
belong has joined 17:45:06
larma has left 19:03:35
larma has joined 19:07:50
belong has left 20:10:08
Millesimus has left 20:11:36
Millesimus has joined 20:12:22
belong has joined 20:20:58
melvo has left 20:47:50
Millesimus has left 21:07:46
Millesimus has joined 21:13:15
Millesimus has left 21:23:14
Millesimus has joined 21:23:31
belong has left 21:35:30
belong has joined 21:49:32
vanitasvitae 22:46:45
Well, there is no common message format (apart from some old rusty thing called XMPP)