Someone emailed into "Security Now" a while back, asking about workplace surveys that are supposed to be anonymous, but have a unique URL for each person, so that they can tell who hasn't filled it out.
I was wondering two things: 1) What are the limits of what we can achieve? I'm thinking that after the first submission occurs, if we can view it, then we know that person's results and they are not anonymous since we can tell that everyone else hasn't filled out the survey. And by induction, this applies to every new submission. Can we do better? 2) How much can we achieve with crypto? 3) How much guarantee can we give the end user, who may not write the client software himself? This is similar to a problem in e-voting. (And yes, 2=3 for large values of 2) -- Good code works on most inputs; correct code works on all inputs. My emails do not have attachments; it's a digital signature that your mail program doesn't understand. | http://www.subspacefield.org/~travis/ If you are a spammer, please email [email protected] to get blacklisted.
pgpVnSMOmwHJ2.pgp
Description: PGP signature
_______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
