smart computer guys, question

Topics without replies are pruned every 365 days. Not moderated.

Moderator: Dux

Post Reply
User avatar
seeahill
Font of All Wisdom, God Damn it
Posts: 7729
Joined: Sun Jan 02, 2005 6:07 pm
Location: The Deep Blue Sea

smart computer guys, question

Post by seeahill » Tue Jan 07, 2020 12:21 am

I'll be doing a lot of traveling out of country in the next year. Do I need a VPN? My central concern is that I have my bank and brokerage on the phone. Will a good VPN provide a level of safety?

If so, what's a good one. I'm looking at NordVPN and ExpressVPN.
Image

User avatar
Grandpa's Spells
Lifetime IGer
Posts: 10956
Joined: Thu Jan 06, 2005 10:08 pm

Re: smart computer guys, question

Post by Grandpa's Spells » Tue Jan 07, 2020 1:47 am

A VPN is a good idea if you will be banking over shared/public internet. I would go with Tunnelbear, as NordVPN had a recent breach.

https://thewirecutter.com/reviews/best-vpn-service/
One of the downsides of the Internet is that it allows like-minded people to form communities, and sometimes those communities are stupid.

User avatar
seeahill
Font of All Wisdom, God Damn it
Posts: 7729
Joined: Sun Jan 02, 2005 6:07 pm
Location: The Deep Blue Sea

Re: smart computer guys, question

Post by seeahill » Tue Jan 07, 2020 3:43 am

Spells, Thnx. Looks like exactly what I need.
Image

User avatar
SubClaw
Top
Posts: 1787
Joined: Sun Dec 25, 2011 5:01 pm

Re: smart computer guys, question

Post by SubClaw » Tue Jan 07, 2020 9:42 am

I don't really see the need for a VPN. All banks have end-to-end encryption sites.

The only use I see for a VPN is accessing location-based services (your Netflix account, for instance) or bypassing your ISP restrictions (banned torrent sites).

Ripe Turd
Staff Sergeant
Posts: 434
Joined: Wed Dec 19, 2007 11:34 pm

Re: smart computer guys, question

Post by Ripe Turd » Tue Jan 07, 2020 2:33 pm

seeahill wrote:
Tue Jan 07, 2020 12:21 am
I'll be doing a lot of traveling out of country in the next year. Do I need a VPN? My central concern is that I have my bank and brokerage on the phone. Will a good VPN provide a level of safety?

If so, what's a good one. I'm looking at NordVPN and ExpressVPN.
If you want to be REALLLLY safe, make sure you don't connect automatically to wi-fi without the VPN. Probably in your phone wi-fi settings.
SubClaw wrote:
Tue Jan 07, 2020 9:42 am
I don't really see the need for a VPN. All banks have end-to-end encryption sites.

The only use I see for a VPN is accessing location-based services (your Netflix account, for instance) or bypassing your ISP restrictions (banned torrent sites).
VPN is to protect you from someone intercepting the data between your phone and the wi-fi network (or something like that). How good is end-to-end encryption if someone has intercepted your password when your were logging in?

User avatar
SubClaw
Top
Posts: 1787
Joined: Sun Dec 25, 2011 5:01 pm

Re: smart computer guys, question

Post by SubClaw » Tue Jan 07, 2020 3:26 pm

Ripe Turd wrote:
Tue Jan 07, 2020 2:33 pm
VPN is to protect you from someone intercepting the data between your phone and the wi-fi network (or something like that). How good is end-to-end encryption if someone has intercepted your password when your were logging in?
HTTPS is secure over public hotspots. Only a public key and encrypted messages are transmitted (and these too are signed by root certificates) during the setup of TLS, the security layer used by HTTPS. The client uses the public key to encrypt a master secret, which the server then decrypts with its private key. All data is encrypted with a function that uses the master secret and pseudo-random numbers generated by each side.

Thus:

+ the data is secure because it is signed by the master secret and pseudo-random numbers
+ the master secret and pseudo-random numbers are secure because it uses public-private key encryption when the TLS handshake occurs
+the public-private key encryption is secure because:
- the private keys are kept secret
- public-private key encryption is designed to be useless without the private key
- the public keys are known to be legitimate because they are signed by root certificates, which either came with your computer or were specifically authorized by you (pay attention to browser warnings!)

Thus, your HTTPS connections and data are safe as long as:
+ you trust the certificates that come with your computer,
+ you take care to only authorize certificates that you trust.

Using a VPN only adds a new layer of potential snooping (you have to trust them not to spy your traffic).

Post Reply