internet-drafts | 26 Jan 16:20 2015
Picon

I-D Action: draft-ietf-xmpp-posh-03.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
 This draft is a work item of the Extensible Messaging and Presence Protocol Working Group of the IETF.

        Title           : PKIX over Secure HTTP (POSH)
        Authors         : Matthew Miller
                          Peter Saint-Andre
	Filename        : draft-ietf-xmpp-posh-03.txt
	Pages           : 15
	Date            : 2015-01-26

Abstract:
   Experience has shown that it is extremely difficult to deploy proper
   PKIX certificates for TLS in multi-tenanted environments.  As a
   result, domains hosted in such environments often deploy applications
   using certificates that identify the hosting service, not the hosted
   domain.  Such deployments force end users and peer services to accept
   a certificate with an improper identifier, resulting in obvious
   security implications.  This document defines two methods that make
   it easier to deploy certificates for proper server identity checking
   in non-HTTP application protocols.  While these methods developed for
   use in the Extensible Messaging and Presence Protocol (XMPP) as a
   Domain Name Association (DNA) prooftype, they might also be usable in
   other non-HTTP application protocols.

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-xmpp-posh/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-xmpp-posh-03
(Continue reading)

RFC Errata System | 10 Jan 20:31 2015

[Technical Errata Reported] RFC6120 (4228)

The following errata report has been submitted for RFC6120,
"Extensible Messaging and Presence Protocol (XMPP): Core".

--------------------------------------
You may review the report below and at:
http://www.rfc-editor.org/errata_search.php?rfc=6120&eid=4228

--------------------------------------
Type: Technical
Reported by: Georg Sauthoff <mail <at> georg.so>

Section: A.6.

Original Text
-------------
     <xs:element name='subject'>
       <xs:complexType>
         <xs:simpleContent>
           <xs:extension base='xs:string'>
             <xs:attribute ref='xml:lang' use='optional'/>
           </xs:extension>
         </xs:simpleContent>
       </xs:complexType>
     </xs:element>

     <xs:element name='thread'>
       <xs:complexType>
         <xs:simpleContent>
           <xs:extension base='xs:NMTOKEN'>
             <xs:attribute name='parent'
(Continue reading)

mact-usa | 27 Nov 21:44 2014
Picon
Picon

IoT XEPs to enter review by ISO

To xmpp members,

IoT XEPs used in ISO/IEC/IEEE P21451-1-4 to enter formal review as an international Semantic Web 3.0 standard for the Internet of Things (IoT)


Sent from my T-Mobile 4G LTE Device
_______________________________________________
xmpp mailing list
xmpp <at> ietf.org
https://www.ietf.org/mailman/listinfo/xmpp
internet-drafts | 27 Nov 04:00 2014
Picon

I-D Action: draft-ietf-xmpp-6122bis-17.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
 This draft is a work item of the Extensible Messaging and Presence Protocol Working Group of the IETF.

        Title           : Extensible Messaging and Presence Protocol (XMPP): Address Format
        Author          : Peter Saint-Andre
	Filename        : draft-ietf-xmpp-6122bis-17.txt
	Pages           : 26
	Date            : 2014-11-26

Abstract:
   This document defines the address format for the Extensible Messaging
   and Presence Protocol (XMPP), including support for code points
   outside the ASCII range.  This document obsoletes RFC 6122.

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-xmpp-6122bis/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-xmpp-6122bis-17

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-xmpp-6122bis-17

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Peter Saint-Andre - &yet | 12 Nov 04:34 2014
Picon

Fwd: New Version Notification for draft-ietf-uta-xmpp-03.txt

FYI.

-------- Original Message --------
Subject: New Version Notification for draft-ietf-uta-xmpp-03.txt
Date: Tue, 11 Nov 2014 19:33:53 -0800
From: internet-drafts <at> ietf.org
To: Peter Saint-Andre <peter <at> andyet.com>, Peter Saint-Andre 
<peter <at> andyet.com>, me <at> thijsalkema.de <me <at> thijsalkema.de>, Thijs 
Alkemade <me <at> thijsalkema.de>

A new version of I-D, draft-ietf-uta-xmpp-03.txt
has been successfully submitted by Peter Saint-Andre and posted to the
IETF repository.

Name:		draft-ietf-uta-xmpp
Revision:	03
Title:		Use of Transport Layer Security (TLS) in the Extensible 
Messaging and Presence Protocol (XMPP)
Document date:	2014-11-11
Group:		uta
Pages:		7
URL: 
http://www.ietf.org/internet-drafts/draft-ietf-uta-xmpp-03.txt
Status:         https://datatracker.ietf.org/doc/draft-ietf-uta-xmpp/
Htmlized:       http://tools.ietf.org/html/draft-ietf-uta-xmpp-03
Diff:           http://www.ietf.org/rfcdiff?url2=draft-ietf-uta-xmpp-03

Abstract:
    This document provides recommendations for the use of Transport Layer
    Security (TLS) in the Extensible Messaging and Presence Protocol
    (XMPP).  This document updates RFC 6120.

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat
internet-drafts | 24 Oct 03:48 2014
Picon

I-D Action: draft-ietf-xmpp-6122bis-15.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
 This draft is a work item of the Extensible Messaging and Presence Protocol Working Group of the IETF.

        Title           : Extensible Messaging and Presence Protocol (XMPP): Address Format
        Author          : Peter Saint-Andre
	Filename        : draft-ietf-xmpp-6122bis-15.txt
	Pages           : 28
	Date            : 2014-10-23

Abstract:
   This document defines the address format for the Extensible Messaging
   and Presence Protocol (XMPP), including support for code points
   outside the ASCII range.  This document obsoletes RFC 6122.

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-xmpp-6122bis/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-xmpp-6122bis-15

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-xmpp-6122bis-15

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
internet-drafts | 24 Oct 03:27 2014
Picon

I-D Action: draft-ietf-xmpp-dna-08.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
 This draft is a work item of the Extensible Messaging and Presence Protocol Working Group of the IETF.

        Title           : Domain Name Associations (DNA) in the Extensible Messaging and Presence Protocol (XMPP)
        Authors         : Peter Saint-Andre
                          Matthew Miller
	Filename        : draft-ietf-xmpp-dna-08.txt
	Pages           : 18
	Date            : 2014-10-23

Abstract:
   This document improves the security of the Extensible Messaging and
   Presence Protocol (XMPP) in two ways.  First, it specifies how to
   establish a strong association between a domain name and an XML
   stream, using the concept of "prooftypes".  Second, it describes how
   to securely delegate a service domain name (e.g., example.com) to a
   target server host name (e.g., hosting.example.net), which is
   especially important in multi-tenanted environments where the same
   target server hosts a large number of service associated with
   different domains.

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-xmpp-dna/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-xmpp-dna-08

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-xmpp-dna-08

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Ben Campbell | 14 Oct 01:17 2014

WGLC of draft-ietf-xmpp-posh-02

(Oops, messed up the authors' address the first time. Apologies for the duplicate.)

This is a Working Group Last Call of draft-ietf-xmpp-posh-02. The draft is available at the following URL:

http://tools.ietf.org/html/draft-ietf-xmpp-posh-02

The WGLC will conclude on 27 October, 2014. Please send your comments to the authors and the XMPP mailing list.

Thanks!

Ben.
Ben Campbell | 13 Oct 22:05 2014

WGLC of draft-ietf-xmpp-posh-02

This is a Working Group Last Call of draft-ietf-xmpp-posh-02. The draft is available at the following URL:

http://tools.ietf.org/html/draft-ietf-xmpp-posh-02

The WGLC will conclude on 27 October, 2014. Please send your comments to the authors and the XMPP mailing list.

Thanks!

Ben.
Peter Saint-Andre - &yet | 13 Oct 16:24 2014
Picon

dialback in DNA

Currently draft-ietf-xmpp-dna does not consider server dialback to be a 
DNA prooftype. Matt and I propose adding the following text to ยง7:

    Although the PKIX prooftype uses the XMPP Server Dialback protocol
    [XEP-0220] for signalling between servers, this framework document
    does not define the exchange of dialback keys (also specified in
    [XEP-0220]) as a DNA prooftype.  However, a future specification, or
    an updated version of [XEP-0220], might define a DNA prooftype for
    dialback in a way that is consistent with this framework.

Peter

--

-- 
Peter Saint-Andre
https://andyet.com/
internet-drafts | 11 Oct 00:09 2014
Picon

I-D Action: draft-ietf-xmpp-posh-02.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
 This draft is a work item of the Extensible Messaging and Presence Protocol Working Group of the IETF.

        Title           : PKIX over Secure HTTP (POSH)
        Authors         : Matthew Miller
                          Peter Saint-Andre
	Filename        : draft-ietf-xmpp-posh-02.txt
	Pages           : 14
	Date            : 2014-10-10

Abstract:
   Experience has shown that it is extremely difficult to deploy proper
   PKIX certificates for TLS in multi-tenanted environments, since
   certification authorities will not issue certificates for hosted
   domains to hosting services, hosted domains do not want hosting
   services to hold their private keys, and hosting services wish to
   avoid liability for holding those keys.  As a result, domains hosted
   in multi-tenanted environments often deploy non-HTTP applications
   such as email and instant messaging using certificates that identify
   the hosting service, not the hosted domain.  Such deployments force
   end users and peer services to accept a certificate with an improper
   identifier, resulting in obvious security implications.  This
   document defines two methods that make it easier to deploy
   certificates for proper server identity checking in non-HTTP
   application protocols.  The first method enables the TLS client
   associated with a user agent or peer application server to obtain the
   end-entity certificate of a hosted domain over secure HTTP as an
   alternative to standard PKIX techniques.  The second method enables a
   hosted domain to securely delegate a non-HTTP application to a
   hosting service using redirects provided by HTTPS itself or by a
   pointer in a file served over HTTPS at the hosted domain.  While this
   approach was developed for use in the Extensible Messaging and
   Presence Protocol (XMPP) as a Domain Name Association prooftype, it
   can be applied to any non-HTTP application protocol.

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-xmpp-posh/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-xmpp-posh-02

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-xmpp-posh-02

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

Gmane