1
00:00:00,080 --> 00:00:08,130
one more thing to cover before we actually use xmpp clients like pidgin or dyno, we want to talk about omimo and otr.

2
00:00:08,130 --> 00:00:09,690
now these are incredibly important.

3
00:00:09,690 --> 00:00:13,810
xmpp by default is not encrypted in a secure way.

4
00:00:13,810 --> 00:00:23,040
so if you're just using xmpp as a basic install with a basic client, you're actually missing out on some encryption and security features that you want to make sure you have.

5
00:00:23,180 --> 00:00:25,640
so let's talk about omimo and otr.

6
00:00:25,860 --> 00:00:30,850
omimo is the newer standard for end- to- end encryption and can be used with xmpp.

7
00:00:30,850 --> 00:00:37,320
it's based on signal, which is the app on phones that you may have heard of, their algorithm for end- to- end encryption.

8
00:00:37,460 --> 00:00:39,710
and it's very easy to use and modern.

9
00:00:39,710 --> 00:00:46,330
it manages key agreements automatically, meaning you don't have to share your key with somebody and they accept it and import it or anything like that.

10
00:00:46,330 --> 00:00:48,280
it automatically does all of that.

11
00:00:48,300 --> 00:00:52,510
every message generates a session key, meaning it does have forward secrecy, right?

12
00:00:52,510 --> 00:01:01,590
if any single session key is compromised, the all of the other messages that have been sent before are not compromised, which is perfect forward secrecy.

13
00:01:01,590 --> 00:01:08,360
it does have asynchronous messaging, which allows for just modern flexibility and speed, and it's the new standard that's starting to be used.

14
00:01:08,620 --> 00:01:11,830
comparably, you have otr, which is also end- to- end encryption.

15
00:01:11,830 --> 00:01:15,550
it's an older version of it and was one of the most widely used.

16
00:01:15,550 --> 00:01:25,160
it did also have perfect forward secrecy, so different session keys every time you send a message, but it did have manual key verification and it didn't have multi- device support.

17
00:01:25,420 --> 00:01:27,470
otr is slowly getting phased out.

18
00:01:27,470 --> 00:01:28,990
you'll see less and less people use it.

19
00:01:28,990 --> 00:01:32,520
and i imagine in the future, omimo will be the only standard going forward.

20
00:01:32,580 --> 00:01:44,150
but otr can still be useful if you really only care about single chat on a single device, you're not going to do any other devices, you're not going to move devices and you don't mind manually doing the key verification part.

21
00:01:44,150 --> 00:01:46,390
so we'll show you how to use both at a high level.

22
00:01:46,390 --> 00:01:52,280
otr will show a little bit less of since omimo is generally just easier to use and it works very well.

23
00:01:52,700 --> 00:01:53,850
that's it for this one.

24
00:01:53,850 --> 00:01:54,880
see you in the next one.