thanks for the clarification.
From: ned(_dot_)freed(_at_)innosoft(_dot_)com
Subject: Re: confidential subject lines -> use content description field w/
pgp/mime?
Date: Tue, 06 Jun 2000 18:11:55 -0700 (PDT)
Message-ID: <01JQAISQBPXO00088W(_at_)mauve(_dot_)mrochek(_dot_)com>
Two words: traffic analysis. Knowing who's getting a message is
often enough to tell you something even if the contents are
obscured.
sure. so the "There are many applications" statement referred to
applications where the traffic analysis of envelope information is
relevant. is that a reasonable interpretation? also, did you have
other things in mind?
Signing the envelope also has its applications -- it prevents some forms
of envelope tampering that might otherwise be used in some sorts of
attacks.
assuming envelope information is protected using rfc 2442, is there a
recommended mechanism for actually getting the encapsulated message
to the receiving end? not anonymous remailers...
Recommended, no. In practice regular SMTP is often used, in effect creating a
variety of secure tunnel.
Ned