{"id":22165,"date":"2014-05-21T01:41:11","date_gmt":"2014-05-21T05:41:11","guid":{"rendered":"http:\/\/www.opensource.im\/?p=22165"},"modified":"2014-05-21T01:41:11","modified_gmt":"2014-05-21T05:41:11","slug":"70-plus-messaging-services-and-xmpp-software-clients-begin-requiring-tls-encryption","status":"publish","type":"post","link":"https:\/\/euvolution.com\/open-source-convergence\/encryption\/70-plus-messaging-services-and-xmpp-software-clients-begin-requiring-tls-encryption.php","title":{"rendered":"70-plus messaging services and XMPP software clients begin requiring TLS encryption"},"content":{"rendered":"<p><p>    Ian Paul | May    21, 2014  <\/p>\n<p>    The XMPP Standards Foundation on Monday marked the first day    that a large number of XMPP services will require encrypted    connections by default.  <\/p>\n<p>    If you're having trouble connecting to an XMPP (Extensible    Messaging and Presence Protocol--formerly Jabber) service this    week, you may need to upgrade your chat client. The XMPP    Standards Foundation announced that     a large number of services using the public XMPP chat    network began making encrypted connections mandatory on Monday.  <\/p>\n<p>    The move to making encryption a requirement across many XMPP    services is aimed at preventing private chats from falling into    the hands of governments or other parties monitoring    unencrypted connections--an issue that has become all too    relevant in light of the     ongoing Snowden revelations.  <\/p>\n<p>    The new encryption effort only protects communication between    chat clients and XMPP servers. It does not offer so-called    end-to-end encryption, where chats are encrypted on the    sender's device and can only be decrypted on the recipient's.  <\/p>\n<p>    The effort to encrypt connections for XMPP has been months in    the making after Peter Saint-Andre, who runs jabber.org,    published a manifesto in October calling for wide adoption of    encrypted connections for XMPP services.  <\/p>\n<p>    Entitled, \"A    Public Statement Regarding Ubiquitous Encryption on the XMPP    Network,\" the document calls for XMPP operators and    developers to start requiring Transport Layer Security (TLS)    connections as of Monday, May 19, 2014.  <\/p>\n<p>    In XMPP circles, May 19 is dubbed Open Discussion Day, which    is meant to promote open communications systems and protocols    such as XMPP.  <\/p>\n<p>    TLS is a commonly used protocol for securing web    communications. Recently, the     Heartbleed bug in the implementation of SSL\/TLS by the    OpenSSL Foundation made millions of websites vulenerable to    attack. TLS itself, however, is still seen as secure.  <\/p>\n<p>    It's not clear exactly how many services are using TLS    connections since XMPP is an open standard that requires    voluntary compliance with the encryption effort. Nevertheless,    more than 70 XMPP service operators and software developers    have signed on to support the call to require TLS.  <\/p>\n<p><!-- Auto Generated --><\/p>\n<p>View original post here:<br \/>\n<a target=\"_blank\" href=\"http:\/\/www.computerworld.com.sg\/tech\/internet\/70-plus-messaging-services-and-xmpp-software-clients-begin-requiring-tls-encryption\" title=\"70-plus messaging services and XMPP software clients begin requiring TLS encryption\">70-plus messaging services and XMPP software clients begin requiring TLS encryption<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p> Ian Paul | May 21, 2014 The XMPP Standards Foundation on Monday marked the first day that a large number of XMPP services will require encrypted connections by default. <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[45],"tags":[],"class_list":["post-22165","post","type-post","status-publish","format-standard","hentry","category-encryption"],"_links":{"self":[{"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/posts\/22165"}],"collection":[{"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/comments?post=22165"}],"version-history":[{"count":0,"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/posts\/22165\/revisions"}],"wp:attachment":[{"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/media?parent=22165"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/categories?post=22165"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/euvolution.com\/open-source-convergence\/wp-json\/wp\/v2\/tags?post=22165"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}