In Security Knowledge by Haylee on June 15, 2017 http://blog.emsisoft.com/2017/06/15/vpn-privacy/
How Does a VPN Work?
A VPN or Virtual Private Network is two or more computers connected via an encrypted connection across the internet. This is a simplified depiction of how a VPN works:
When a user connects to a VPN, a “tunnel” is created. This tunnel acts as a secure line of communication. The information passed through it can’t be read if intercepted because it has been encrypted. The VPN client on your computer and the VPN Server know the key to the encryption so data is only encrypted in transit, but instantly decipherable at the source and destination.
Though it all sounds very complicated, as far as the user is concerned, this process is a simple as logging in. The rest is taken care of for you by the chosen VPN provider.
Choosing Your VPN Provider
We’ve explained how a man-in-the-middle attack can occur on an unencrypted network and how a VPN service prevents this from happening. What you may have worked out by now is that the use of a VPN simply allows you to elect a trusted man-in-the-middle to look after your data. Your VPN provider encrypts your traffic for you, meaning they have access to the original traffic, where it came from and all that it contains. For this reason, choosing a VPN provider is a matter of trust. While trust isn’t easily built, below we have selected a few key criteria to help with your selection.
Paid vs Free VPNs
Please don’t use a free VPN service. Really. If your VPN service is not making money from your subscription fees then it is making it elsewhere, like selling your personal information to a third-party who can spam you senseless. For VPN companies to maintain their servers is very expensive and the old adage holds true: if you’re not paying for it, you’re the product. We mean it. Don’t use a free VPN service.
True Anonymity Is a Myth
It is growing more and more difficult to be 100% anonymous online. So when you sign up for your VPN, you want to be giving as few identifiable details as possible. If you can’t pay in Bitcoin or with gift cards, you are not signing up for an anonymous service. Emsisoft Tip: If your chosen VPN provider asks you for more than an email address on sign-up, you are not anonymous. It is not common to seek perfect anonymity when purchasing a service but it is available with the right VPN provider if you are looking for it.
Not All Encryption Is Created Equal
Understand which encryption protocols your provider offers. Open VPN is highly configurable and regarded as the most secure VPN protocol. Ideally, your VPN of choice will utilize this encryption method. IKEv2 is also very good but try to avoid using the PPTP protocol, which has known security risks.
VPN Logging Leaves Traces
It is important for you to understand what logs your VPN provider will be keeping. Ideally, your VPN provider will not keep any logs of any kind and be transparent about what data they keep. Additionally, look for a service with a multi-chain hop. If your traffic is being monitored externally, the hops help to further anonymize your traffic. Each hop represents a different VPN server, usually in a different jurisdiction, so your location and IP are changed multiple times before reaching its final destination. Make sure your provider’s no-log policy includes not tracking of IP addresses and timestamps.
US Services Aren’t Really Private
Because of the surveillance laws in the United States, it is best to use VPN services that are based outside of the US and the other 14 eyes countries who monitor each other’s citizens.
Third Parties Lead to Spam
Ensure your VPN has clear policies and easy opt-out options for affiliates. The last thing you want is to set up your VPN service to find it bundled with spam pop-ups or hidden third party access to your data. If your provider has no affiliates, all the better for you. As we mentioned earlier, the benefits of using a paid service far outweigh those of a free service. You can’t always be sure that a service will keep your data secure, but if your provider is receiving money for their service they are less likely to be selling your email address or other personal information to third parties. Additionally, paid providers typically have faster connections.
It wouldn’t make much sense to have worked so hard to keep yourself anonymous only to give yourself away when you approach your VPN provider for customer support. Make sure you are able to communicate via an anonymous chat service or encrypt your email communications.
VPN Across Devices
VPN protection is not just for your computer. Set it up on your mobile phone, tablet or on your home router to automatically protect all devices connected to your network. Make sure to choose a provider that allows enough simultaneous connections to cover your needs.
Downsides to VPN
As with any technology, there will be a small learning curve to get your head around the more technical aspects. Additionally, as your traffic is being encrypted as it passes through the tunnel, your download speeds can suffer slightly. Complete anonymity is virtually impossible but a VPN gives you extra protection necessary for basic privacy. Finally, some websites may refuse to work if they detect a VPN. Netflix has clamped down on site visitors masking their geolocations to stream US Netflix outside of the States.
There are many considerations when we think about our online privacy. Firstly, be actively aware of your country’s surveillance laws, and the privacy policies of your Internet Service Provider. Read the fine print of any VPN service you use and continue to think before you click.