The Washington Post is taking steps to isolate their sources from their normal means of data collection, protecting both the Post and the source from any audits that might pick up their IP address or other identifying information.

Nearly all digital communications can leave a trail. The Washington Post’s SecureDrop is designed to minimize these digital trails using best practices, such as:

• limiting collection of information logged about your browser, computer or operating system;
• using Tor to encrypt and anonymize your communications with us;
• storing submissions in encrypted form on our systems;
• physically isolating SecureDrop from the rest of our network.

They are promoting SecureDrop on the front page of their web site. Interesting times.