[funsec] Some Good Advice: OTR - Secure Chat
fergdawg at netzero.net
Mon Nov 26 01:09:01 CST 2007
-----BEGIN PGP SIGNED MESSAGE-----
I mentioned this on another list, and neglected to mention it here.
If you've already heard or (and use) OTR, then please disregard. :-)
Off-the-Record (OTR) Messaging allows you to have private
conversations over instant messaging by providing:
No one else can read your instant messages.
You are assured the correspondent is who you think it is.
The messages you send do not have digital signatures that are
checkable by a third party. Anyone can forge messages after a
conversation to make them look like they came from you. However,
during a conversation, your correspondent is assured the messages
he sees are authentic and unmodified.
- -Perfect forward secrecy
If you lose control of your private keys, no previous
conversation is compromised.
For what its worth, The AIM/ICQ plug-in works wonderfully for
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
-----END PGP SIGNATURE-----
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
ferg's tech blog: http://fergdawg.blogspot.com/
More information about the funsec