SASL - Sassy Security

The animated TECHTip is available here.

XMPP [eXtensible Messaging and Presence Protocol] uses SASL [Simple Authentication and Security Layer] client authentication and TLS [Transport Layer Security] for data transmission and client-server processing. SASL is a framework for providing authentication and data security services in connection-oriented protocols via common replaceable mechanisms (that is, make use of Kerberos tickets, certificates by different protocols such as SMTP, LDAP, etc.) SASL also provides a structured interface between protocols and mechanisms. SASL also provides a protocol for securing subsequent protocol exchanges within a data security layer.

XMPP operates in a server-client model (not peer-to-peer) and gives each network end-point a unique address called a JID [Jabber IDentifier]. JID are used both externally and internally to express ownership or routing information and formed of a domain, node, and resource in the following format: [node@]domain[/resource]

The JID elements are defined as follows:

The Domain Identifier is the primary identifier. It represents the Jabber server to which the entity connects. Every usable Jabber domain should resolve to a Fully Qualified Domain Name.

The Node Identifier the secondary identifier. It represents the “user.” All Nodes live within a specific Domain. However, the Node Identifier optional, and a specific Domain (e.g., conference.jabber.org) is a valid Jabber ID.

Resource Identifier is an optional third identifier.

Here is a functional explanation of the Jabber process. According to the Jabber Software Foundation, XMPP is “a real-time communications protocol, which allows people, devices and applications to instantly communicate and exchange streaming XML data, based upon dynamic presence and availability information.”

TECHtionary is the world’s first and largest animated (rich media) library/magazine on technology, and is Web Hosting Magazine’s Editor’s Choice for Technical Help. TECHtionary has more than 2,680+ free tutorials on data, Internet, wireless, VoIP, PBX systems, central office switching, protocols, telephony, telecommunications, networking, routing, IPTV, WiMax, power systems, broadband, Wi-Fi, and other technologies.  TECHtionary.com provides “just enough - just-in-time” critical success information. TECHtionary produces animated sales brochures, virtual installation manuals, and animated Web infomercials proven to “increase revenues, decrease customer support costs, and increase customer satisfaction.” Tom Cross, CEO of TECHtionary, is the Security and Emerging Technology Columnist for TMCnet, Technology Columnist for Telecommunications Magazine, and member of the Technical Board of Advisors for the VoIP-Security Alliance. TECHtionary also publishes animated medical tutorials. Job opportunities and postings can be found at Ciscopedia.