Today we issued a Last Call regarding XEP-0178: Best Practices for Use of SASL EXTERNAL. This specification is part of our continuing effort to advance the XMPP RFCs to Draft Standard within the IETF. Although XEP-0178 does not contain any proposed changes to RFC 3920 for inclusion in rfc3920bis, it does document best practices regarding a particular SASL authentication mechanism, in particular the SASL EXTERNAL mechanism as it relates to the X.509 public key infrastructure. We’ve gained quite a bit of experience with SASL EXTERNAL recently given our launch of an intermediate certification authority for the XMPP network, and XEP-0178 incorporates some lessons learned. The Last Call ends 2007-02-13, so if you see any problems with the spec send feedback to the standards discussion list.
- Upcoming events
- Happy Encrypted Network!
- XMPP on the Global Internet of Things Day
- Security Notice: Uncontrolled Resource Consumption with Highly-Compressed XMPP Stanzas
- Third Security Test Day
- Google Summer of Code 2014
- Second Security Test Day
- Thank You to the Internet Society
- XMPP Summit 15
- Security Test Day is tomorrow 4 Jan 2014
- Membership Application Period for Q4 2013 has begun
- XSF will be present at FOSDEM 2014
- Security Test Day – it’s fast approaching
- XMPP and IoT Event in London 2 December 2013
- Python IoT Hacking with XMPP in Stockholm
What is the XSF?
The XMPP Standards Foundation is an independent, nonprofit standards development organization whose primary mission is to define open protocols for presence, instant messaging, and real-time communication and collaboration on top of the IETF’s Extensible Messaging and Presence Protocol (XMPP).