No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

xep-0378.xml 3.8KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103
  1. <?xml version='1.0' encoding='UTF-8'?>
  2. <!DOCTYPE xep SYSTEM 'xep.dtd' [
  3. <!ENTITY % ents SYSTEM 'xep.ent'>
  4. <!ENTITY otr3 "<span class='ref'><link url='https://otr.cypherpunks.ca/Protocol-v3-4.0.0.html'>Off-the-Record Messaging Protocol version 3</link></span> <note>Off-the-Record Messaging Protocol (OTR) version 3 &lt;<link url='https://otr.cypherpunks.ca/Protocol-v3-4.0.0.html'>https://otr.cypherpunks.ca/Protocol-v3-4.0.0.html</link>&gt; (Accessed 2015-08-30).</note>" >
  5. %ents;
  6. ]>
  7. <?xml-stylesheet type='text/xsl' href='xep.xsl'?>
  8. <xep>
  9. <header>
  10. <title>OTR Discovery</title>
  11. <abstract>
  12. This document provides a mechanism by which OTR encryption support can be
  13. discovered in XMPP, without relying on OTRs protocol agnostic discovery
  14. mechanism.
  15. </abstract>
  16. &LEGALNOTICE;
  17. <number>0378</number>
  18. <status>Deferred</status>
  19. <type>Standards Track</type>
  20. <sig>Standards</sig>
  21. <approver>Council</approver>
  22. <dependencies>
  23. <spec>XMPP Core</spec>
  24. <spec>XEP-0030</spec>
  25. </dependencies>
  26. <supersedes/>
  27. <supersededby/>
  28. <shortname>OTR-DISCO</shortname>
  29. &sam;
  30. <revision>
  31. <version>0.1</version>
  32. <date>2017-09-11</date>
  33. <initials>XEP Editor (jwi)</initials>
  34. <remark>Defer due to lack of activity.</remark>
  35. </revision>
  36. <revision>
  37. <version>0.0.1</version>
  38. <date>2016-07-15</date>
  39. <initials>ssw</initials>
  40. <remark><p>Initial version approved by the Council.</p></remark>
  41. </revision>
  42. </header>
  43. <section1 topic='Introduction' anchor='intro'>
  44. <p>
  45. The Off-the-Record messaging protocol (OTR) is widely layered on top of
  46. XMPP to provide end-to-end encryption. Current use of the protocol is
  47. described in &xep0364;. OTR provides its own discovery mechanism in which
  48. it sends messages with special whitespace characters to indicate support.
  49. While this works when initializing a session, there is no way to query a
  50. client for support and to know in advance that a particular version of
  51. OTR is supported. This specification aims to solve that by providing an
  52. in-band mechanism for discovering OTR support in XMPP.
  53. </p>
  54. <p>
  55. It should be noted that newer, more secure encryption protocols exist for
  56. XMPP, and that new implementations of OTR are discouraged. This protocol
  57. is primarily intended to solve issues with existing implementations of
  58. OTR.
  59. </p>
  60. </section1>
  61. <section1 topic='Discovering support' anchor='disco'>
  62. <p>
  63. If an entity supports OTR it MUST advertise the fact by returning a
  64. feature of 'urn:xmpp:otr:0' &VNOTE; in response to a &xep0030; information
  65. request. This indicates support for OTRv3 as defined by &otr3;.
  66. </p>
  67. <example caption='Disco response'><![CDATA[
  68. <feature var='urn:xmpp:otr:0' />]]></example>
  69. <p>
  70. If older versions of OTR are required, they may be discovered out of band
  71. using OTRs built in mechanism which is beyond the scope of this document.
  72. </p>
  73. </section1>
  74. <section1 topic='Security Considerations' anchor='security'>
  75. <p>
  76. Because OTR support is advertised outside of any end-to-end encrypted
  77. stream, it may be subject to downgrade attacks (eg. the server operator
  78. may remove OTR from the features list).
  79. </p>
  80. </section1>
  81. <section1 topic='IANA Considerations' anchor='iana'>
  82. <p>
  83. This document requires no interaction with the Internet Assigned Numbers
  84. Authority (IANA).
  85. </p>
  86. </section1>
  87. <section1 topic='XMPP Registrar Considerations' anchor='registrar'>
  88. <p>This specification defines the following XML namespaces:</p>
  89. <ul>
  90. <li>urn:xmpp:otr:0</li>
  91. </ul>
  92. <p>
  93. The &REGISTRAR; shall include the foregoing namespaces in its disco
  94. features registry as defined in &xep0030;.
  95. </p>
  96. <code caption='Registry Submission'><![CDATA[
  97. <var>
  98. <name>urn:xmpp:otr:0</name>
  99. <desc>Indicates support for Off-the-Record Messaging (OTR) version 3</desc>
  100. <doc>XEP-0378</doc>
  101. </var>]]></code>
  102. </section1>
  103. </xep>