2 <b><big>Features</big></b>
4 - Normal conferencing services such as private messages, channels,
5 channel messages, etc. All traffic is secured and authenticated.
8 - No unique nicknames. There can be same nicknames in SILC without
9 collisions. SILC has unique Client ID's, Server ID's and Channel ID's to
10 assure that there are no collisions. The maximum length of the nickname
11 is 128 characters. The maximum length of the channel name is 256 characters.
14 - Channels can have channel operators and a channel founder which is the
15 client who created the channel. Channel founder privileges supersedes the
16 channel operator privileges. Also, channel founder privileges may be
17 regained even if the founder leaves the channel. The requirement for this
18 is that the client is connected to the same server it was originally
19 connected. The channel founder cannot be removed (kicked) from the
23 - Channel messages are protected by channel key, generated by the server.
24 The key is re-generated once in an hour. It is possible to set a private
25 key for the channel so that even the servers does not know the key.
26 Actually, it is possible to set several private keys so that only
27 specific users on the channel may decrypt some specific messages. Adding
28 the private key significantly increases the security as nobody else but
29 the users on the channel know the key.
32 - Private messages are protected using session keys, generated when
33 connecting to the server. This means that the private messages are
34 decrypted and re-encrypted enroute to the true receiver of the message.
35 However, it is possible to set a private key between two clients and
36 protect the private messages with that key. In this case no server
37 enroute can decrypt the message since they don't have the key. The SILC
38 protocol provides an automatic key negotiation between two clients using
39 the SKE protocol. This makes it very easy to negotiate a shared secret
40 key with another client in the network.
43 - All the other traffic, like commands between client and the server are
44 protected using the session keys. Session keys are re-generated once in
45 an hour. The re-key may be done with or without the PFS (Perfect Forward
49 - Secure key exchange and authentication protocol. SILC Key Exchange
50 (SKE) protocol provides key material used in the SILC sessions in secure
51 manner. The protocol is immune for example to man-in-the-middle attacks
52 and is based on the Diffie-Hellman key exchange algorithm. The SILC
53 Authentication protocol provides strong authentication. Authentication
54 may be based on passphrase or public key (RSA) authentication. For
55 clients there is an option not to use authentication when connecting to
59 - Supports secure file transferring between clients in the network. SILC
60 use the SFTP as the main file transfer protocol.
63 - All traffic is encrypted and authenticated using the best cryptographic
64 algorithms out there. Cipher keys are, by default, 256 bits in length and
65 public keys, by default, 1024 bits in length.
68 - Supports the following ciphers: AES(Rijndael), Twofish, Blowfish, Mars,
69 Cast-256, RC5 and RC6. Supports the following hash functions: MD5 and
70 SHA1. Supports the following HMACs: hmac-sha1-96, hmac-md5-96,
71 hmac-sha1 and hmac-md5. Supports the PKCS #1 (RSA) for public key
75 - Supports data compression with GZIP to improve performance.
78 - Supports SOCKS4 and SOCKS5 firewall traversal protocols.
81 - SIM (SILC Module) support. Support for loading of shared objects at
82 run-time that provides new and extended features to both SILC client and
83 server. These can provide extra ciphers and extra features to the software.
86 - SILC client can be installed and used without root privileges.
89 - SILC client can be configured by system wide configuration files but
90 with user specific configuration files as well.