View Single Post
Old 02-15-2020, 09:23 PM
Caldazar is online now
Join Date: Aug 2000
Posts: 861
VPN stands for Virtual Private Network. It's a "virtual" private network because the network traffic is carried across a public network, or at least a network that contains machines other than the two communicating computers. To prevent other computers from eavesdropping on the communication, the communication is encrypted. It's like two people having a conversation in a coffee shop by speaking in code; everyone else in the coffee shop can hear the sounds of the conversation, but nobody but the two code-speakers know what the conversation means.

Properly-implemented VPN prevents eavesdropping and modification of the network traffic by unauthorized parties. It does not prevent other attack vectors.

Originally Posted by md2000 View Post
The HTTPS and similar encrypted protocols need a critical data and/or some clever tricks and are supposedly hack-proof to the typical hacker. (I have yet to hear of anyone successfully faking certificates even) Typically, these protocols can be hacked because there's a flaw, and upgrades fix the flaws.
The NSA recently announced a flaw in Microsoft's validation of ECC Cryptography that allowed one to spoof certificates that Windows systems would accept ("D'oh"). The vulnerability was patched on January 14, 2020. Not a problem with ECC itself of course, rather Microsoft's implementation of it.