Researching towards the next generation of the SecureDrop whistleblowing system, this blog post presents a proposed end-to-end encryption protocol with unique properties to maximize source deniability. The protocol, with only three endpoints, utilizes well-established cryptographic primitives for end-to-end encryption and forward secrecy. The approach ensures message unlinkability and prevents information leaks, making it suitable for adversarial environments. The detailed protocol diagram reflects the innovative message-fetching mechanism, highlighting the asymmetry in roles between sources and journalists. Acknowledging limitations, such as post-quantum security readiness, ongoing research aims to finalize the protocol specification for formal auditing and potential adoption. The unique SecureDrop Protocol seeks feedback from the security and cryptography community for further development.
https://securedrop.org/news/introducing-securedrop-protocol/