[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SCHEME for FULL-SPEC RETURN PATH



> From: "Jon 'Iain' Boone" <[email protected]>
> 
> 
>  How secure do you think this is?
>
>  Three remailers:
>
>  [email protected]
>  [email protected]
>  [email protected]
>
>  Originator: [email protected] (really igi.psc.edu, as Message-ID: shows)
>  Receiver: [email protected]
>
>  ()Ka == contents inside () are encrypted with Public Key of A
>
>  mail addressed to random+*@foo.edu == mail to user [email protected],
>					random's mail processor will
>					deal with the +*
...

>  To: anon3+"(anon2+"(anon1+"([email protected])Ka"@a.edu)Kb"@b.com)Kc"@c.org
>  From: [email protected]
>  Message-Id: <[email protected]>
>
>  C.ORG:
>
>  To: anon2+"(anon1+"([email protected])Ka"@a.edu)Kb"@b.com
>  From: [email protected]
>  Message-Id: <[email protected]>
...

Well, I guess great minds think alike.  I'm already working on this. 
I've been hacking on in my spare time for about a month now.  My program
is about 75-80% done.  Here's how it will work:

You send mail to [email protected].  The remailer takes your address
and encrypts it with its private key, adds some random padding (to
disguise the legnth), a checksum, and then puts it in "ascii-armor"
format.  Then it mails it back to you.  You get an address of the format:

[email protected]

Then when you post anonymously, you can use that address as a reply-to
address (a few of the cypherpunk remailers allow you to insert your own
reply-to fields, i think the BSU ones do.)

All of the encryption/decryption routines are completely finished.  The
only things left to do are to add the actual mail handler that will take
an incoming message, decrypt the address and forward the mail.  The
auto-reply program to send the encrypted addresses is finished also; it
works basically like my automatic faq-sender which you can email at
[email protected] .
The above is acutal output from my cipher and will decrypt to
[email protected] (if you have the secret key!)  I chose to use a
private key cipher instead of p-k because of the enourmous overhead that
you get with PGP, and I was afraid that it would be too big for the mail
headers.
The cipher used employs transpositions, substitution tables and cipher
feedback, in multiple layers of encryption.

Perhaps in the future, PGP encryption of the message could be added, and
better methods for chaining remailers, and compression of the mail
address before encryption (I have experimented with this).

I've been a bit busy with other things this past week so I haven't
worked on the program lately.  If you're serious about this, and you or
someone you know is willing to finish the program and actually run a
remailer using it, I'll let you have my source code so far.  Program is
written in C.