On Saturday, 6 August 2022 07:07:26 BST Dale wrote: > Michael wrote: > > All connections to banks are encrypted end-to-end for decades now and the > > encryption has becoming stronger over the years. > > That is likely true. I still remember Snowden tho. We don't know what > backdoors are in use even for bank encryption.
It's safer to assume state actors have full access to bank information. The hope is bad guys don't get access too! ;-) > Thing is, open source > tools are harder to fall into that trap since everyone can see what the > code is. If a backdoor is forced in, it will be known to a lot of > people and then that tool won't be used. It's sort of funny in a way, > they more Govts and others try to restrict things, the more tools there > is to get around it. From what I've read, most VPNs use open source > tools. Most even use the current best and would upgrade if needed. > That gives me some extra protection in the event my bank or any other > website falls behind on updating theirs. A VPN gives no end-to-end protection whatsoever in this scenario. All you get is protection in the network connection between your PC and the VPN server. >From the VPN server onward to your bank, the connection will be no more protected than whatever encryption protocol the bank offers. Only a VPN server offered by your bank for connections to their network would afford additional protection in this scenario. > Basically, I don't trust Govt with much of anything. If they say they > don't do something bad, you can pretty much bet they are doing exactly > that or even worse. Heh! After the Snowden revelations any such suspicions could be taken as a certainty. [snip ...] > Well, that settles that then. I guess it will be Surfshark. Pretty > sure it is in the Netherlands but may be wrong on country. I just > recall it being outside US jurisdiction. I also read they have been > audited by independent people to ensure they have no logs even if asked. Surfshark gets good reviews and it offers the wireguard protocol with the ChaCha20 cipher for better encryption and performance. However, the Netherlands is part of the EU and 14 eyes, so I would think similar state powers exist to access your private communications and the ISPs would have no way of refusing and staying in business. Surfshark offers a warrant canary, but it looks more like a marketing statement to me when you compare it to something like the Qubes digitally signed canaries.
signature.asc
Description: This is a digitally signed message part.
