I worry about the NSA trying to conceal some sort of weakness within the crypto. They already tried that with trying to introduce elliptic curve algorithms as their preferred algorithms for crypto pseudoRNGs (somehow I don't exactly think Type 1 crypto uses elliptic curve algorithms, unless they have problems with their key escrow systems), and the NSAKEY scandal with previous versions of Windows, though it just might have involved the appearance of impropriety rather than the actual occurrence thereof.Though packets are sniffable, packet timing or supposedly random hashes or anything that gives the appearance of non-determinism can be manipulated to conceal a message. This is called a covert channel. They are especially possible when the source code is not public. Also, one can sniff encrypted packets, but if one doesn't have the key, then one is SOL.The NSA has specialists in covert channels, as they have to defend against them inside government computers (a reason that many government agencies favor open-source operating systems). For an agency that already maintains a massive spy database called Main Core, containing transcripts generated by voice recognition of every American's cell phone calls, as well as all the call detail records for every phone call and probably the timestamp, source IP and destination IP of every packet sent over the public Internet, well, let's just say that installing some sort of covert channel in a consumer operating system with a clever use of supposedly perfectly entropic random numbers to transmit data is not beyond their technical capabilities. Somehow, when they say "Just trust us," I say, B.S., as they have a voracious appetite for data, and who knows what they might be up to after the telco impunity laws allowed them to engage in very legally questionable behavior without fear of prosecution.And to those who say: "I don't have anything to hide", I say, good, put your money where your mouth is. Post your name, social security number/national identity number (for non-US persons), birthdate, address, addresses for the last 10 years, and mother's maiden name as a reply to this comment. After all, if you have nothing to hide, you have nothing to fear. Nothing at all. Nothing whatsoever.