On Wed, Jun 12, 2013 at 08:08:17AM +0200, Daniel Pocock wrote: > OpenPGP and S/MIME don't guarantee anonymity as they don't (and can't > really) encrypt the headers/envelope
Erm, they also identify the recipients, as it's the recipients key to which the messages are encrypted. (and typically the sender is listed as a recipient for convenience). > That is the type of `metadata' that allows a hostile party to start > building a social graph of who knows who. Even if they can't see the > contents of the communications, those social graphs are undesirable and > an ideal solution would prevent that. Indeed, there are court cases where this has been key. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130612124123.GC24063@debian