View Single Post
  #11  
Old 02-15-2020, 09:23 PM
Caldazar is online now
Guest
 
Join Date: Aug 2000
Posts: 861
VPN stands for Virtual Private Network. It's a "virtual" private network because the network traffic is carried across a public network, or at least a network that contains machines other than the two communicating computers. To prevent other computers from eavesdropping on the communication, the communication is encrypted. It's like two people having a conversation in a coffee shop by speaking in code; everyone else in the coffee shop can hear the sounds of the conversation, but nobody but the two code-speakers know what the conversation means.

Properly-implemented VPN prevents eavesdropping and modification of the network traffic by unauthorized parties. It does not prevent other attack vectors.

Quote:
Originally Posted by md2000 View Post
The HTTPS and similar encrypted protocols need a critical data and/or some clever tricks and are supposedly hack-proof to the typical hacker. (I have yet to hear of anyone successfully faking certificates even) Typically, these protocols can be hacked because there's a flaw, and upgrades fix the flaws.
The NSA recently announced a flaw in Microsoft's validation of ECC Cryptography that allowed one to spoof certificates that Windows systems would accept ("D'oh"). The vulnerability was patched on January 14, 2020. Not a problem with ECC itself of course, rather Microsoft's implementation of it.