[OTR-dev] Re: Backwards compatability
Kjell Braden
fnord at pentabarf.de
Tue May 27 12:46:06 EDT 2008
>
> SMP1Q has slightly different semantics from SMP1, so we intentionally
> made it a different TLV type. If you pose a question to your buddy Bob
> (who answers it correctly), you will authenticate Bob, but Bob will not
> automatically authenticate you. If Bob is running 3.1.0, which assumes
> a preshared secret (which does indeed imply mutual authentication), we
> don't want his code to "fall back" to authenticating you when it
> shouldn't, and also, he won't see the question, which will be a subtler
> problem more likely to be overlooked than the authentication window not
> coming up at all.
>
> - Ian
I see, I missed the part that the authentication will not be mutual in
SMP1Q, so your way makes perfectly sense now.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20080527/240b2643/attachment.pgp>
More information about the OTR-dev
mailing list