As a battle-tested protocol with a long history, XMPP remembers the era when encryption still was a luxury. Unlike some younger instant messaging protocols which were already designed with encryption in mind, XMPP, when it first appeared in 1999, was all about plain text. Which means no C2S (client-to-server) encryption, no S2S (server-to-server) encryption, and moreover, no any E2EE (end-to-end encryption). In fact, even though it's unrecommended by security guidelines, it's still possible to use XMPP in this pure, primordial form, so with a proper setup, you can still connect a long-abandoned XMPP client from early 00s, like ...
Read more...
Tags: encryption, otr
