Author: vanitasvitae

  • Last week of GSoC Community Bonding

    This is my report for the last week of community bonding. On next Tuesday the coding phase officially begins \o/. I spent my week like I did the one before; writing tests, increasing the codecoverage of my Smack OMEMO module. Today the coverage finally reached the same level as the main codebase, meaning my PR…

  • GSoC: Second, third week of community bonding

    Hi all! This is my report for the second, as well as the first half of the third week of GSoC community bonding, which I spent again working on finalizing my OMEMO code. I dug deeper into writing test cases, mainly integration tests and I found quite a lot of small, undetectable bugs this way…

  • GSoC: First week of community bonding

    The first week of community bonding is nearly over and already it’s quite an experience for me. Me and Alameyo were very nicely welcomed by members of the igniterealtime project which really took care of making us able to jump right into the project. I spent most of the time making myself more familiar with…

  • My GSoC introduction

    Hi! My name is Paul Schaub (vanitasvitae), I’m a computer science student from Münster, Germany, I’m 23 years old and right now I’m in my 8th semester. I’m very close to getting my bachelors (undergraduate) degree with only one subject missing (Yay!). That’s why I got some spare time, which I am very happy to…

  • Using Emoji for fingerprint verification

    The messaging app Telegram recently introduced end-to-end encrypted voice calls. As most of you probably know, encryption without verification is pretty useless since there is the risk of man-in-the-middle attacks. I don’t want to get too much into details about this. The point I want to make is, that you should verify your partners fingerprint…

  • Attack of the Regulators

    Recently, the german “Bundesnetzagentur” (the German Federal Network Agency) contacted over 100 developers of XMPP (Jabber) clients in order to ask them to register their “services”. This is justified with section 6 of the German Telecommunications Act. Clients like eg. Xabber that are working on a server-client principle are considered a “service” and therefore have…

  • OMEMO

    Recently there was a lot of news coverage of an alleged „backdoor“ in WhatsApp, the proprietary messaging application owned by Facebook. WhatsApp deployed OpenWhisperSystem’s Signal-protocol roughly a year ago. Now a researcher showed, that WhatsApp’s servers are able to register a new device key for a user, so that messages that the user did not…

  • Starting to use the Fellowship Card

    I recently became a fellow of the FSFE and so I received a nice letter containing the FSFE fellowship OpenPGP smartcard. After a quick visual examination I approved the card to be *damn cool*, even though the portrait format of the print of it still confuses me when I look at it. I especially like,…