# Phase 6 — User Acceptance Testing (Metadata Protection) > Phase 6 is NOT YET IMPLEMENTED. This is a pre-written test plan. ## Prerequisites - Phase 5 UAT fully passing - Network traffic analysis tools (Wireshark/tcpdump) - At least 3 federated servers for onion routing --- ## 1. Sealed Sender **Alice sends to Bob through server:** - [ ] Server receives message with recipient fingerprint but NO sender fingerprint - [ ] Server logs show: "Message for from [sealed]" - [ ] Bob decrypts and sees Alice's identity (embedded in ciphertext) - [ ] Wireshark: server-bound traffic contains no sender metadata **Server admin inspects DB:** - [ ] Message queue shows `to` field only, no `from` - [ ] Cannot determine who sent the message --- ## 2. Traffic Analysis Resistance **Padding:** - [ ] All messages padded to fixed sizes (256, 1024, 4096 bytes) - [ ] Small "hi" and large paragraph produce same-size ciphertext on wire - [ ] Wireshark confirms uniform packet sizes **Timing:** - [ ] Messages not sent immediately — random delay (0-2 seconds) - [ ] Constant-rate dummy traffic when idle (configurable) - [ ] Observer cannot distinguish real messages from dummy traffic --- ## 3. Onion Routing (Opt-in) **Setup: 3 servers (A, B, C). Alice on A, Bob on C.** ```bash cargo run --bin warzone-client -- chat @bob.c.example.com --onion ``` - [ ] Client builds onion route: A → B → C - [ ] Message encrypted in 3 layers: encrypt(C, encrypt(B, encrypt(A, plaintext))) - [ ] Server A sees: "message for Server B" (doesn't know final destination) - [ ] Server B sees: "message for Server C" (doesn't know origin) - [ ] Server C sees: "message for Bob" (doesn't know it went through A and B) - [ ] Bob decrypts successfully - [ ] Latency: shown as "onion: 3 hops, ~500ms" **Onion routing disabled (default):** - [ ] Direct routing: A → C (faster, less privacy) - [ ] No onion overhead --- ## Summary | # | Feature | Result | |---|---------|--------| | 1 | Sealed sender | ☐ | | 2 | Traffic analysis resistance | ☐ | | 3 | Onion routing | ☐ | **Tester:** _______________ **Date:** _______________