Risks of bringing real-name information into an anonymous environment
Even if you prepare an anonymous environment, separation collapses when you bring real-name information into it.
Opening real-name email. Logging in to your usual cloud. Editing work files. Placing images used on the real-name side. Syncing contacts or history.
These bring the anonymous environment closer to the real-name environment.
An anonymous environment is better when it is close to empty
The purpose of an anonymous environment is to reduce mixing with the real-name side.
However, when you put real-name information into it for convenience, clues increase.
What you bring in
What happens
Real-name email
It connects to identifying information
Cloud sync
File history and accounts mix
Contacts
Relationship information enters the environment
Work files
Authors, company names, and internal information remain
Past images
Image search connects them to the real-name side
Put only what is necessary into an anonymous environment.
Be careful when bringing in files
Files created in a real-name environment may retain creator names, company names, edit history, path information, and cloud history.
They need to be checked before being brought into an anonymous environment.
Filename. Metadata. Body text. Image background. Comments. Change history.
If you use these in an anonymous environment without checking them, you bring in real-name-side information as-is.
Browsers and cloud services mix easily
The places where real-name information most easily enters an anonymous environment are browsers and cloud services.
Your usual browser has real-name account s, saved passwords, browsing history, bookmarks, and extensions. If you enable the same browser sync in an anonymous environment, these may flow in.
Cloud sync is the same. Files created for anonymity are saved to the real-name cloud. Files from the real-name cloud are opened in the anonymous environment. Sharing history and owner names mix.
Import
What happens
Browser sync
Real-name Cookies and history enter
Saved passwords
Login candidates for real-name services appear
Bookmarks
Workplaces, schools, and personal sites become visible
Cloud sync
Owner names and sharing history mix
Recent files
Work history from the real-name side becomes visible
In an anonymous environment, it is important not to enable sync features just because they are convenient.
Login breaks separation
When you log in to real-name services in an anonymous environment, separation breaks significantly.
Email, social media, cloud, shopping, and payment services hold identifying information.
Even if you only intend to check once, Cookies and history remain. They can connect to later anonymous activity.
In an anonymous environment, strictly follow a rule of not logging in with real-name accounts.
Traces remain even if you meant to do it only once
Actions such as "just checking briefly" or "opening it only once" can break separation.
Once you log in, Cookies, cache, history, notifications, recent files, and download history remain. If you continue anonymous activity afterward, traces from the real-name side and anonymous side sit side by side in the same environment.
One-time action
What remains
Opening real-name email
Cookies, history, notifications
Logging in to cloud
File list, owner information
Opening a work file
Recent files, metadata
Checking social media
Login state, recommendations
Searching
Search history, suggestion display
In an anonymous environment, it is safer not to make "just once" an exception. The more exceptions you make, the harder later checking becomes.
You need to give up some convenience
An anonymous environment is less convenient than your usual environment.
No bookmarks. No saved passwords. No cloud sync. No usual extensions.
However, that inconvenience protects separation.
The more real-name information you add for convenience, the weaker the meaning of the anonymous environment becomes.
Check before bringing anything in
Before putting anything into an anonymous environment, check the following points.
Check item
Reason
Whether it connects to a real-name account
Avoid mixing registration information and Cookies
Whether you checked the file metadata
Do not bring in author or company names
Whether you are using cloud sync
Do not leave it in real-name-side history
Whether contacts or notifications will enter
Do not bring in human relationships
Whether it is truly necessary in the anonymous environment
Reduce unnecessary imports
For anything you are unsure is necessary, deciding not to bring it in is also important. An anonymous environment gets closer to a real-name environment as you add more information.
If you already brought it in
If you later notice that you brought real-name information into an anonymous environment, do not keep working in a panic.
First, organize what you brought in. The response changes depending on whether you logged in to real-name email, enabled cloud sync, opened a work file, or placed past images.
What you brought in
First thing to look at
Real-name login
Cookies, history, notifications, whether logout alone is enough
Cloud sync
Which files were synced
Work file
Metadata and recent file history
Contacts
Whether they were synced to a service
Past images
Whether they were used on the anonymous side or only saved
If necessary, do not keep using that anonymous environment. Create a new environment. Because deletion alone does not necessarily erase traces, check what remains.
For high-risk operation, consider a dedicated environment
A hobby alias account and internal whistleblowing or source protection require different strengths of separation.
For high-risk operation, you may consider environment separation such as not only a dedicated browser, but also a dedicated device, Tails, Whonix, or Qubes OS. However, even if you use these environments, correlation remains if you log in with real-name accounts or bring in files.
Environment
Purpose
Caution
Dedicated browser
Separate Cookies and history
Do not log in with real-name accounts
Dedicated device
Separate device history and notifications
Be careful with file transfer
Tails
Use a temporary work environment
Be careful with storage and login practices
Whonix
Separate work through
Operational mistakes and account correlation remain
Qubes OS
Separate work environments
Learning cost is high
Environment separation does not complete anonymity by itself. It has meaning together with the practice of not bringing in real-name information.
Write the rules first
Before using an anonymous environment, deciding "what not to put in" reduces mistakes.
Do not open real-name email. Do not log in to your usual cloud. Do not sync contacts. Do not open work files directly. Do not place past images.
If you make this kind of prohibited list first, you are less likely to be carried along by convenience in the moment. In an anonymous environment, reducing routes for mixing is more important than increasing what you can do.
For anything you are unsure about, start from the basic decision not to bring it in.
Summary
When you bring real-name information into an anonymous environment, the real-name side and anonymous side become connected.
Real-name email, cloud sync, contacts, work files, past images, and saved passwords need particular care.
An anonymous environment should contain only what is necessary, and it is important not to log in with real-name accounts. Prioritize separation over convenience.
Related tools
Anonymous communication
Tor Project
An external resource related to this article. Open it only when it fits your situation and threat model.
Why it is listed: It can help with the article topic, but it is outside Anonymity Sense and should be checked before use.