Talk:Off-the-record messaging: Difference between revisions

Content deleted Content added

Inline

Revision as of 14:14, 4 July 2013

This is the talk page for discussing improvements to the Off-the-record messaging article.
This is not a forum for general discussion of the article's subject.

Put new text under old text. Click here to start a new topic.
New to Wikipedia? Welcome! Learn to edit; get help.

Article policies

Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL

This article has not yet been rated on Wikipedia's content assessment scale.
It is of interest to the following WikiProjects:

Please add the quality rating to the {{WikiProject banner shell}} template instead of this project banner. See WP:PIQA for details.

Computing Start‑class

	This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles
Start	This article has been rated as Start-class on Wikipedia's content assessment scale.
???	This article has not yet received a rating on the project's importance scale.

Please add the quality rating to the {{WikiProject banner shell}} template instead of this project banner. See WP:PIQA for details.

Law Start‑class

	Law portal This article is within the scope of WikiProject Law, an attempt at providing a comprehensive, standardised, pan-jurisdictional and up-to-date resource for the legal field and the subjects encompassed by it.LawWikipedia:WikiProject LawTemplate:WikiProject Lawlaw articles
Start	This article has been rated as Start-class on Wikipedia's content assessment scale.
???	This article has not yet received a rating on the project's importance scale.

Please add the quality rating to the {{WikiProject banner shell}} template instead of this project banner. See WP:PIQA for details.

Cryptography: Computer science Start‑class

	This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.CryptographyWikipedia:WikiProject CryptographyTemplate:WikiProject CryptographyCryptography articles
Start	This article has been rated as Start-class on Wikipedia's content assessment scale.
???	This article has not yet received a rating on the importance scale.
	This article is supported by WikiProject Computer science.

Move to "Off-the-Record Messaging" (caps)

I think the article should be moved back to a capitalized title, "Off-the-Record Messaging", as the article documents a specific encryption protocol, not "off the record messaging" in general; "Off-the-Record" is merely a name. All official sources also capitalize the name. Any agreements/disagreements? -- intgr 09:11, 30 January 2007 (UTC)[reply]

You are right. --Liebeskind 19:47, 31 January 2007 (UTC)[reply]

OTR - Deniable encryption?

As far as I can tell, OTR doesn't have deniable encryption, just deniable authentication. I think the article intro should be changed in accordance with the Implementation section, which has it correct. Unless, of course, a cryptographer can explain otherwise. — metaprimer (talk) 12:48, 16 September 2007 (UTC)[reply]

It has malleable encryption (explained on the deniable encryption page), so i changed it —Preceding unsigned comment added by 131.111.243.37 (talk) 18:30, 18 October 2008 (UTC)[reply]

Rewritten explanation

Instead of complicated computer jargon, I tried to explain the difference between OTR and ordinary cryptography software using a picture of signed writing v. private conversation. Seems more understandable to me. Ceplm (talk) 21:17, 13 March 2008 (UTC)[reply]

Further implementations

For Gajim (http://gajim.org/) OTR support has been introduced in the development version (http://trac.gajim.org/wiki/OTR) and will probably soon be availiable with a coming release.
For Psi there exists a plugin: http://public.tfh-berlin.de/~s717689/ Currently you need to patch Psi, but this will allegedly vanish with continuing development of the plugin interface.

These two implementations are not yet stable but will become so. I don't know how to best insert this into the article conforming to Wikipedia standards, since this is no "install and use" kind of software yet. I consider it important, because these two are the most popular and feature rich jabber clients (note I have no hard evidence, though). --141.84.69.20 (talk) 21:15, 25 May 2008 (UTC)[reply]

OTR support for Plugin was rewritten as a plugin. http://gajim-otr.pentabarf.de/ Adding Gajim to the list. SzpakEng (talk) 22:10, 7 March 2012 (UTC)[reply]

I have been using Gajim 0.15 for a logn time, but there is only beta4 available. I comment Gajim waiting for the final reelase. SzpakEng (talk) 22:16, 7 March 2012 (UTC)[reply]

Example picture

Somehow I do not understand the example picture, there are 2 windows on one machine (they have a common background) and they should be the same conversation - one "normal" the other "raw". But why is in the raw only macskeeball speaking, and why are there 6 messages and in the normal only 2 from him and 3 from "me"

If these 6 encrypted messages are the 2+3 messages from both, why is the first message from "me" also encrypted? it should be still plain. --147.142.13.23 (talk) 22:00, 3 September 2009 (UTC)[reply]

majority of cryptography tools indicate topic?

Quoting from the 2nd paragraph: "This is in contrast with the majority of cryptography tools which resemble more a signed writing on paper, which can be later used as a record to demonstrate the communication event, the participants, and the topic of communication."

I am skeptical of the claim that the topic is recorded. Can anyone explain? 68.33.193.71 (talk) 21:33, 2 March 2011 (UTC)[reply]

The topic isn't recorded but it could be used to surmise evidence. For example, if a suspected terrorist has their hard drive seized, encrypted communications found on it could be used in court as evidence suggestive of plotting, especially if the date and other participants are also suggestive... I've changed it to "possible evidence of the topic of communication." ··gracefool ☺ 01:19, 12 May 2011 (UTC)[reply]

origin of the name

Why is this called "Off-the-Record Messaging"? --Gaborgulya (talk) 21:15, 1 May 2013 (UTC)[reply]

Its name is a reference to a convention in journalism. Say a politician wants to discuss something controversial with a journalist, without being recorded, transcribed, or having what he says published. He first requests to speak "off the record". It's a matter of convention, which has existed for many decades before OTR Messaging was invented, but journalists generally hold conventions pretty high. There are exceptions, though.

It's "off-the-record" because, after the conversation has taken place, it can't be proven that any single person has sent any single message, because they might have just as well been forged (see how the article describes 'deniable authentication'). Another reason it might be called 'off-the-record' is because there is, in most scenarios, no central authority that keeps record of the cleartext messages as they arrive. That's because of the perfect forward secrecy - the server relaying the message can't see what's being said. Even if a key were to be found, previous conversations would not be compromised. One key is used for each message.

In this way, nobody can know what is being said, apart from the participants in the conversation. After the conversation happens, and one party leaks the conversation, it's not possible to pin what was said in the conversation on any party, because the messages might as well have been forged, because it's possible to do so with the deniable authentication.

All this is already mentioned in the article. --BurritoBazooka (talk) 01:36, 9 May 2013 (UTC)[reply]

OTR in Kopete

Information about OTR in Kopete should be reviewed. References [10], [11] and [12] are no more relevant. 217.151.195.214 (talk) 14:14, 4 July 2013 (UTC)[reply]

@@ Line 56: / Line 56: @@
 :In this way, nobody can know what is being said, apart from the participants in the conversation. After the conversation happens, and one party leaks the conversation, it's not possible to pin what was said in the conversation on any party, because the messages might as well have been forged, because it's possible to do so with the deniable authentication.
 :All this is already mentioned in the article. --[[User:BurritoBazooka|BurritoBazooka]] ([[User talk:BurritoBazooka|talk]]) 01:36, 9 May 2013 (UTC)
+== OTR in Kopete ==
+Information about OTR in Kopete should be reviewed. References [10], [11] and [12] are no more relevant. [[Special:Contributions/217.151.195.214|217.151.195.214]] ([[User talk:217.151.195.214|talk]]) 14:14, 4 July 2013 (UTC)