I recently came across another article on TechSling about spying, firewalls and VPN use. I found it to present a very simplistic and dismissive approach to the topics at hand. It also provided no support or back up for the claims presented.
I’m going to be looking specifically at that article’s most dismissive claim about VPNs by looking at key quotes from a few sources who know a thing or two about security.
The first claim that is difficult to understand about VPNs
If you followed the link you would have come across a phrase saying ‘that the idea that it is impossible to track your web browsing because you are using a VPN service is not true, but it does take some sophisticated monitoring technology that the likes of MI6 in Britain may use.’
When the author states “sophisticated,” that is correct. It takes incredibly complex and expensive equipment to break encryption that strong – and that all adds up to time being taken to actually break anything. To quote a recent Torrent Freak article, a group of people who need to know and make it their business to know what works:
‘From a technical point of view it’s nearly impossible to break the most secure forms of VPN encryption in real time.’
The quote goes on to read that some older algorithms have been cracked. A modern VPN knows to update their algorithms – sitting still leaves you vulnerable.
A key take away from this is best summed up by security expert Bruce Schneier, writing for Wired. ‘Whatever the NSA has up its top-secret sleeves, the mathematics of cryptography will still be the most secure part of any encryption system,” such as the encryption provided by a VPN, “It’s very probable that the NSA has newer techniques that remain undiscovered in academia. Even so, such techniques are unlikely to result in a practical attack that can break actual encrypted plaintext.”
Has the NSA actually cracked any encryption?
The claim that the NSA can get into any encryption is simply untrue. What they have done, however, is steal security keys and work with vendors to sabotage their own security.
The NSA can not do real time decryption of 128-bit technology. It can’t. The NSA will, however, work with vendors and steal security keys from servers, but it can’t crack the 128-bit encryption used by the best VPN providers.
Conclusion on VPN and encryption as a viable security measure
I wanted to quote just one more security expert on the matter of encryption before ending this:
‘Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on.’
The person who said that was Edward Snowden speaking with The Guardian in regards to the NSA’s capabilities, an organization which he famously once worked for.
He goes on to speak about how endpoint security, your computer, is weak. This validates the claim made by the author in the article under discussion about firewalls. They are an endpoint technology that can increase your security further, but can do little once you are past the firewall itself – this is when a VPN service will be your best security measure.