IMO you might want to do something about forward secrecy (aka backward
security) and forward anonymity, or you arguably end up with the same issue as
reply blocks: a subpoena plus suspicion can force decryption (you won’t have
the decrypt the reply-block via repeated subpoenas down the chain,
If store and forward, cannot be forward secrecy.
Suppose that human readable messages, messages that might contain important
secrets, are only exchanged when the sender and the final recipient are both
online at the same time, then forward secrecy no problem. Both parties set
up a shared
.
Again I look forward to hearing comments; it is always easier to change or
add to a protocol earlier than it is later.
All the best,
Jonathan Warren
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman