-
zayd
Is there anybody working on MLS in XMPP or even any information on it? I've heard it performs better than OMEMO for groups or something but I don't know much about it
-
dwd
zayd, I have looked at it before. It's essentially a multi-party key agreement protocol at its core, and the key gets updated efficiently as people join/leave the group, whereas OMEMO needs to encrypt a key and send it to the full group each time, which isn't very efficient (and has slightly different security properties, too, I suppose).
-
dwd
zayd, I stopped looking at it because I didn't think there was any interest in the XMPP world, and MLS took *ages* to progress.
-
zayd
I've heard NLnet or whatever it was wants an XEP for it
-
Zash
> Is there an example code in Python to negotiate OAuth Client Login (XEP-0493)? Schimon: The parts that are just regular OAuth/OIDC should have usable libraries.
-
Schimon
Zash. I will observe it. Thank you.
-
dwd
> I've heard NLnet or whatever it was wants an XEP for it Does NLNet actually do this? I thought they were more proposal driven.
-
singpolyma
Yes but they accepted a proposal from someone to work on xmpp mls
-
zayd
>> I've heard NLnet or whatever it was wants an XEP for it > Does NLNet actually do this? I thought they were more proposal driven. https://nlnet.nl/project/XMPP-MLS/ ↺
-
dwd
Ah, so someone put that in as a proposal, and presumably tried to do it. I didn't hear about that one at all.
-
Zash
Hopefully because the effort goes into doing things other than marketing and writing blog posts about it
-
dwd
Well, sure, but given the proposal includes a XEP, I'd hope to hear about that.
-
zayd
do any existing clients have XEP-0400: Multi-Factor Authentication with TOTP?
-
singpolyma
No