jdev - 2024-11-26


  1. zayd

    Is there anybody working on MLS in XMPP or even any information on it? I've heard it performs better than OMEMO for groups or something but I don't know much about it

  2. dwd

    zayd, I have looked at it before. It's essentially a multi-party key agreement protocol at its core, and the key gets updated efficiently as people join/leave the group, whereas OMEMO needs to encrypt a key and send it to the full group each time, which isn't very efficient (and has slightly different security properties, too, I suppose).

  3. dwd

    zayd, I stopped looking at it because I didn't think there was any interest in the XMPP world, and MLS took *ages* to progress.

  4. zayd

    I've heard NLnet or whatever it was wants an XEP for it

  5. Zash

    > Is there an example code in Python to negotiate OAuth Client Login (XEP-0493)? Schimon: The parts that are just regular OAuth/OIDC should have usable libraries.

  6. Schimon

    Zash. I will observe it. Thank you.

  7. dwd

    > I've heard NLnet or whatever it was wants an XEP for it Does NLNet actually do this? I thought they were more proposal driven.

  8. singpolyma

    Yes but they accepted a proposal from someone to work on xmpp mls

  9. zayd

    >> I've heard NLnet or whatever it was wants an XEP for it > Does NLNet actually do this? I thought they were more proposal driven. https://nlnet.nl/project/XMPP-MLS/

  10. dwd

    Ah, so someone put that in as a proposal, and presumably tried to do it. I didn't hear about that one at all.

  11. Zash

    Hopefully because the effort goes into doing things other than marketing and writing blog posts about it

  12. dwd

    Well, sure, but given the proposal includes a XEP, I'd hope to hear about that.

  13. zayd

    do any existing clients have XEP-0400: Multi-Factor Authentication with TOTP?

  14. singpolyma

    No