Its not super secure as computation to brute a hash function gets stronger and more available with the passing years, but Q deems it sufficient for the purpose of posting on 8kun.
Plausible deniability. If whoever Q is gets arrested: "Oh, I posted this? And you know that because of the tripcode? Nope, nope, you can't say the tripcode is enough to prove I did post that, my lawyer will tell you it's not secure enough to be proof."
It doesn't link posts to a person, it links posts together as being made by either the same person, or by a grouping of people who have shared the passphase that generates the tripcode.
How can any court prove that you know some random password? And not on any device of yours when it might be a reasonable expectation that you know of it to continue the use of the device, but on some public website? Torture you or subject you to some duress to try and force you to type it in?
Plausible deniability. If whoever Q is gets arrested: "Oh, I posted this? And you know that because of the tripcode? Nope, nope, you can't say the tripcode is enough to prove I did post that, my lawyer will tell you it's not secure enough to be proof."
It doesn't link posts to a person, it links posts together as being made by either the same person, or by a grouping of people who have shared the passphase that generates the tripcode.
How can any court prove that you know some random password? And not on any device of yours when it might be a reasonable expectation that you know of it to continue the use of the device, but on some public website? Torture you or subject you to some duress to try and force you to type it in?
I dont think any of that flies.