What is Dead Drop?
A method of passing information between two parties without them ever meeting or communicating directly, originally a spy technique now adapted for digital use.
Dead drops allow information exchange without creating a direct connection between the communicating parties.
Physical Dead Drops
- A pre-arranged location where one party leaves information
- The other party retrieves it at a different time
- No direct contact, no communication, no meeting
Digital Dead Drops
- SecureDrop: Used by journalists to receive tips from anonymous sources
- OnionShare: Share files over Tor without cloud storage
- Shared cloud accounts: Both parties access the same anonymous account
- Steganography: Hide messages in publicly posted images
Why It Matters
- Communication metadata (who contacted whom, when) is often more revealing than content
- Dead drops break the metadata chain
- Even with end-to-end encryption, the fact that two parties communicated is visible
Digital Consideration
No digital dead drop is perfect. Timing analysis, access patterns, and IP addresses can potentially link the parties. Use Tor and randomize access times.
Related Terms
Compartmentalization
The practice of separating different activities, identities, or data into isolated compartments so that a compromise in one doesn't affect the others.
Operational Security
The practice of protecting sensitive information by thinking like an adversary to identify vulnerabilities in your own behavior and communications. OPSEC goes beyond technical tools to address human factors that could expose you.
Have more questions?
Use our guided flow to get the right next privacy step for Dead Drop.
Open Guided Flow