Inspired by a young lady at a recent munch who was being approached for her contact details by an over keen man who couldn't read the signals. The lady politely explained that she had recently deleted all her social media and her only messeging app was Signal. She quite obviously wasn't ready to hand this man her phone number.
I interjected, and suggested that we needed some kind of dead letter drop. Originally, I joked that paper messages could be left in a pre-agreed spot and if it was meant to be then the other person would recover them.
As I clearly have too much time on my hands, the next day I decided to make a simple online version of that same "Dead Letter Drop", the old spies favourite.
The idea is simple: the would be recipient visits a webpage, whereby a cryptographic keypair would be generated in her browser. A QR code is generated that she can screenshot. No password, logins or registration required.
When someone enquies about how to get in contact, she can have him scan the QR code, which will take him to another webpage whereby he can send a completely private and anonymous message. The message will be encrypted using the recipients public key so that no one (including the web server) can read it.
In the days following the munch, the young lady can revisit her original webpage and check if any messages have been received. If they are, her browser will decrypt them with the private key she generated and stored in her browser.
Whether she collects the messages or not, all messages will be removed from the server after seven days.
You can access your Dead Letter Inbox here:
https://londonfetish.34a.xyz/deadletter/inbox
I interjected, and suggested that we needed some kind of dead letter drop. Originally, I joked that paper messages could be left in a pre-agreed spot and if it was meant to be then the other person would recover them.
As I clearly have too much time on my hands, the next day I decided to make a simple online version of that same "Dead Letter Drop", the old spies favourite.
The idea is simple: the would be recipient visits a webpage, whereby a cryptographic keypair would be generated in her browser. A QR code is generated that she can screenshot. No password, logins or registration required.
When someone enquies about how to get in contact, she can have him scan the QR code, which will take him to another webpage whereby he can send a completely private and anonymous message. The message will be encrypted using the recipients public key so that no one (including the web server) can read it.
In the days following the munch, the young lady can revisit her original webpage and check if any messages have been received. If they are, her browser will decrypt them with the private key she generated and stored in her browser.
Whether she collects the messages or not, all messages will be removed from the server after seven days.
You can access your Dead Letter Inbox here:
https://londonfetish.34a.xyz/deadletter/inbox