Metadata is the real data

You can encrypt all you like. It won&#x27;t help.<p>Suppose you encrypt all your SMTP&#x2F;SUBMIT traffic. If your upstream is a commercial provider, then they will be subject to subpoenas. If you run your own upstream, then watching who it connects to will often be sufficient to gather metadata of interest.<p>Consider TLS. Before you can use it you must have used DNS. Today all DNS resolution goes in the clear. So game over right there. Eventually your client&#x27;s DNS communication with a shared recursive resolver will not be in the clear, but the operator of that resolver will be subject to subpoenas, so game still over. Let&#x27;s say we did deploy DJB&#x27;s encrypted DNS solution. Well, you can still see which domains people are talking to, roughly, at least as long as they don&#x27;t share nameservers, and if they do... You can see where this is going. Now let&#x27;s say you did get DNS resolution securely anyways, well, now you have to connect to some IP address, and if it&#x27;s not hosting many services, then game over, and if it is hosting many services, then SNI will be game over anyways (TLS 1.3 requires SNI). SNI cannot be encrypted.<p>The problem really is that metadata can&#x27;t really be encrypted.<p>Mind you, criminals are defeated by data encryption -- mostly anyways.<p>And forcing governments to use subpoenas does mean increasing the cost of metadata gathering. Plus there won&#x27;t be infinite retention requirements, perhaps. So, encryption does help somewhat, which means we must do it -- it&#x27;s just not a complete solution.

The right to encrypt is the right to privacy.<p>Communications on the Internet are public by default; this is something that human civilization never experienced before. If you want to make your conversation or your behavior private, you have to encrypt it.<p>But there were many other things that human civilization never experienced before, and we adapted.<p>Right to encryption is, indeed, an essential natural right. People who deny it are the same people who think that everybody should have a government-supplied monitoring camera in every room of every home, and fail to understand what&#x27;s wrong with it.

Correct &amp; important to grow awareness about! Sadly many so-called private email or other services claim just encrypting your content brings you privacy...while ignoring&#x2F;failing to discuss the metadata.

<i>Descriptive metadata</i> - please, please stop misusing a term thats existed since the 1970&#x27;s - <a href="https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=L0vOg18ncWE" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=L0vOg18ncWE</a><p>Conflating the term &quot;metadata&quot; with &quot;descriptive metadata&quot; and &quot;metadata retention&quot; makes it harder for data archives to get people to provide &quot;structural metadata&quot; (aka. the real metadata), that effectively describes the schemas and data structures of academic and open government data.<p>Yes, descriptive metadata retention is a huge problem, but say that instead of abbreviating terms in a way that obfuscates the issue use the full term.

Anyone using Standard Notes? Might give it a shot if it comes recommended.

Concerning encryption, privacy, and the U.S. Constitution:<p>Confidentiality - First, Fourth, and Fifth Amendments<p>Integrity - First and Fourth Amendments<p>Availability - First and Fourth Amendments

Are there any companies that sell something like privacy as a service? It seems sorely needed that someone work on this