From the Bitmessage website <a href="https:&#x2F;&#x2F;wiki.bitmessage.org&#x2F;" rel="nofollow">https:&#x2F;&#x2F;wiki.bitmessage.org&#x2F;</a>&gt; Security audit needed&gt; Bitmessage is in need of an independent audit to verify its security. If you are a researcher capable of reviewing the source code, please email the lead developer. You will be helping to create a great privacy option for people everywhere!

Bitmessage solved this problem a while ago. This just adds extra centralization.

I&#x27;m not convinced requirements 3 and 4 are actually needed.3) make internal state not useful to the attacker.4) assuming the ciphertexts won&#x27;t leak seems silly. Might as well hand them out.Which leads to what they call &quot;trial decryption&quot; to be a better solution. If you are that worried about the scalability of your whistleblower protocol at that level, we are trying to solve the wrong problem.

They can just use Tor and HTTP upload. This protocol is more theoretical than practical. No protocol helps when you have to testify in court.

This would be very useful for Boeing engineers.

They say don&#x27;t roll your own encryption protocol (if something similar or same already exists and it&#x27;s maintained), but these guys just can&#x27;t resist.Using a secure decentralized messenger to share a download (or upload) location on a Hidden S3 Service or one of those decentralized S3 services can&#x27;t possibly be worse than this.To commenter in <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=40289777">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=40289777</a>: BitMessage doesn&#x27;t solve anything, it uses broadcast and Bitcoin peer nodes that first get the message know where it came from. And BitMessage is not an illegal content hazard of any kind (what a ridiculous statement!).

SecureDrop Protocol