Project

General

Profile

OTR » History » Version 8

Adrian Georgescu, 09/13/2013 02:07 AM

1 3 Adrian Georgescu
h1. Blink OTR implementation
2 1 Adrian Georgescu
3 6 Adrian Georgescu
"Blink SIP client for SIP2SIP edition":http://download.sip2sip.info/ is a multimedia SIP client that supports chat sessions using MSRP protocol (RFC4975 http://tools.ietf.org/html/rfc4975).  The client is designed to work with SIP2SIP service that implements MSRP relay protocol for NAT traversal of SIP sessions with MSRP media like Instant Messaging chat sessions. 
4 2 Adrian Georgescu
5 7 Adrian Georgescu
Over the MSRP media chat session, Blink implements the OTR protocol. 
6 1 Adrian Georgescu
7 3 Adrian Georgescu
h2. OTR Protocol
8
9 8 Adrian Georgescu
Off-the-Record (OTR) Messaging allows two parties to have private conversations over instant messaging by providing:
10 3 Adrian Georgescu
11 1 Adrian Georgescu
h3. Encryption
12
13
No one else can read your instant messages.
14
15
h3. Authentication
16 3 Adrian Georgescu
17 1 Adrian Georgescu
You are assured the correspondent is who you think it is.
18
19
h3. Deniability
20
21
The messages you send do not have digital signatures that are checkable by a third party. Anyone can forge messages after a conversation to make them look like they came from you. However, during a conversation, your correspondent is assured the messages he sees are authentic and unmodified.
22
23
h3. Perfect forward secrecy
24
25
If you lose control of your private keys, no previous conversation is compromised.
26 3 Adrian Georgescu
27
h2. Implementation
28 1 Adrian Georgescu
29 8 Adrian Georgescu
The OTR implementation is backwards compatible with MSRP clients that do not support it (of course the encryption feature are not available in this case). OTR is not employed on the remote party is a multi-party conference server (advertised by is-focus Contact header parameter).
30 7 Adrian Georgescu
31 4 Adrian Georgescu
h3. User input
32
33 1 Adrian Georgescu
 * Chat window has the Encryption toolbar icon, encryption features for each session can be controlled by clicking on this toolbar item, a contextual menu appears
34 4 Adrian Georgescu
 * Verification of remote identity can be performed using SMP protocol
35 7 Adrian Georgescu
 * Each Contact can have encrypted related attributes saved (always use OTR, verification status and learned fingerprint)
36 1 Adrian Georgescu
37 4 Adrian Georgescu
h3. Notifications
38
39 7 Adrian Georgescu
When the remote party (identified by its SIP URI) has changed its encryption fingerprint, several visual and audible clues appear:
40 4 Adrian Georgescu
41
 * Chat window system message is displayed
42
 * Voice synthesiser speaks
43 1 Adrian Georgescu
 * System notification (OSX >=10.8) 
44
 * Growl notification
45 8 Adrian Georgescu
46
47
h3. Interoperability
48
49
We are not aware of any other SIP/MSRP client implementation that supports OTR encryption today. Blink however interoperates well with XMPP clients when using SIP2SIP service built-in SIP/XMPP gateway. We were able to have bidirectional OTR encrypted chat sessions between Blink (using sIP/MSRP) and Jitsi (using XMPP).