Technical White Paper

The Architecture of Privacy: "The Submarine Airlock"

In an era of mass surveillance and data breaches, we believe that political advocacy should not require the surrender of digital privacy.

To protect the identity of our supporters, SmokerStigma.au utilizes a military-grade "Asymmetric Encryption" architecture designed to ensure that not even the system administrators can read the data while it sits in the cloud.

1. The Stateless Web Server

This platform runs on Google Cloud Run (Serverless). This means there is no persistent "server" sitting online 24/7. When you visit the site, a micro-container is spun up instantly to serve the page.

Crucially, this container is Ephemeral. It has no permanent hard drive. Once it finishes processing your vote, it is destroyed. If a malicious actor were to compromise the web server, they would find an empty box that vanishes seconds later.

2. Asymmetric "Black Box" Encryption

We use an RSA-2048 Public/Private Key infrastructure to create a cryptographic "Black Box."

The Public Key (The Lock):
Stored on the Web Server. It can ENCRYPT data, but it cannot decrypt it.

The Private Key (The Key):
Stored OFFLINE on a physical "Cold Storage". It does not exist on the cloud server.

When you submit your email, the server uses the Public Key to scramble your data into illegible code immediately in the server's memory (RAM). It then saves this encrypted file to our secure storage bucket.

The Result: The web server creates data it cannot read. Even if a hacker gained full administrative access to our Google Cloud account, they would only see encrypted files that are mathematically impossible to unlock without the physical USB key.

3. Deduplication via Hashing

To prevent spam without storing a readable list of emails, we use MD5 Hashing during the offline decryption process.

When we perform the one-time notification, our offline script calculates a digital fingerprint of your email. We compare this fingerprint against a list of "Sent" fingerprints to ensure you are never contacted twice.

Conclusion

We have engineered this system to ensure that your participation in the democratic process remains private, secure, and dignified. We do not track you. We do not sell you. We mathematically guarantee your privacy.