Please add OTR support for XMPP (Jabber) in Messages
| Originator: | m.hanauska | ||
| Number: | rdar://19813377 | Date Originated: | 12-Feb-2015 |
| Status: | Open | Resolved: | |
| Product: | OS X | Product Version: | 10.10.2 |
| Classification: | Security | Reproducible: | Always |
Summary: If we learned one thing in the past two years, it's that unencrypted communication is a NO-GO. The XMPP protocol is not secure on its own - the communication with the server may be secure but it isn't end-to-end encrypted - as many other protocols out there. This is what OTR is used for. With OTR every chat protocol can be made end-to-end encrypted, a wide variety of clients support it and I see no reason why Messages should not support it as well. For Apple's own protocol, messages is already end-to-end encrypted however if you offer different chat protocols, you should at least try to make those other protocols equally secure. And if it's just an optional feature. Steps to Reproduce: n/a Expected Results: n/a Actual Results: n/a Version: Notes: Configuration: Attachments:
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!