Users’ data privacy and the growing need for it to be protected is a topic that people worldwide are reminded of on a near daily basis. For example, just two days ago, on Dec. 11, Toyota warned customers about a potential data breach, stating that “sensitive personal and financial data was exposed in the attack.”
Hacks, breaches and exploits happen so often that one could jokingly say that user data breaches rival the rugs and protocol exploits that crypto is infamous for. To name a notable few, there was the Kid Security parental control app hack, which resulted in 300 million data records being compromised.
Consumer genetics and research company 23andMe had a breach in October that put 20 million records at risk. Even MGM was hacked in September, and estimates suggest that the hack cost the production studio at least $100 million.
What’s clear is data is treasure, and hackers are the modern-day privateers. It’s also strikingly clear that corporations and governments struggle to protect themselves and their clients against data breaches, and because of this weakness, customers and citizens need to make the best effort possible to secure their own personal data.
One of the first and easiest steps for keeping some types of data safe from peering eyes is to use a virtual private network (VPN) when browsing the internet. But, even VPNs aren’t fully hackproof, and a handful of them actually covertly store user internet traffic records and share them with entities that users might prefer not to have access to such records. So, it falls to the consumer to again trust that their VPN of choice doesn’t disclose user data.
On Episode 25 of The Agenda podcast, hosts Ray Salmond and Jonathan DeYoung spoke with Nym co-founder and CEO Harry Halpin and Nym security and hardware consultant Chelsea Manning about how blockchain-based mixnets and other elements of decentralization can be used to strengthen VPNs and protect users’ personal data.
Surprise, most VPNs are centralized too
Thanks to clever marketing, a large number of people assume that VPNs protect you from nefarious snoopers lurking around on the internet, and they conceal your activities and user data from an assortment of vendors, entities and other organizations that observe users’ activities.
Halpin explained that on a VPN:
“You send all your data to someone else’s computer, and they see everything you do. They know everything you’re doing. So if you send your VPN data to ExpressVPN, NordVPN and Mullvad VPN, they know everything about you. They know your IP address. They connect to your billing information. They know what websites you’re going to. It’s actually kind of scary.”
Nym’s mixnets, on the other hand, send encrypted data across multiple servers, and Halpin explained that it adds “a bit of fake data” and at “each hop, a mixnet does what it says on the tin.”
“It mixes the data up. So it’s like each packet is like a card, and it like shuffles the pack of cards and then sends it to the next serve and sends it to the next server.”
Related: How to protect your privacy online
Mixnets have been around since the 1980s and rely on a large number of servers, which in some scenarios is less than ideal. According to Halpin, this is where Nym comes into play:
“The founding concept of Nym is, you take a blockchain, you record all the people that have volunteered their servers on the blockchain with their key material, their IP address and so forth, so users can find them. You give them some sort of reputation score so you know if they’re good or not. And then you pay them from an incentive system based on cryptocurrency.”
Chelsea Manning explains why people should “use as much encryption as possible”
When asked whether or not attempting to protect user data and personal privacy was a moot point, especially given the frequency of personal data breaches and serious incidents of governments surveilling citizens online activities, Manning said:
“The more people who use privacy technology, the harder it is for these surveillance networks and apparatuses to collect that information. And that’s one of the reasons I advocate for people to use as much encryption as possible, to use more complex means of doing it, and not everybody is going to be able to use not every single person needs this level of privacy protection like they don’t. Not every single person needs to use a VPN. But the more people who do, the stronger those protections become, right?”
Manning explained that “there’s been obviously a sort of arms race between the surveiller and the person who’s trying to protect their communications and their data. And it is true that they that these state actors and large, large scale corporate actors like internet service providers, they have a significant asymmetry in terms of like their compute power, their ability to collect information, their ability to sort through information.”
According to Manning, the challenge surveillers face is “finding out the value of the connections” in what is a “haystack problem:”
“So you’re looking for a needle in a haystack, and the bigger the haystack, the smaller the needle, the harder it is to find. And so this is where privacy technology sort of comes in, right? It is to try to widen the gap between the surveillance capabilities and the ability of you to protect your data.”
To hear more from Halpin and Manning’s conversation with The Agenda, listen to the full episode on Cointelegraph’s Podcasts page, Apple Podcasts or Spotify. And don’t forget to check out Cointelegraph’s full lineup of other shows!
Magazine: XChina dev fined 3 yrs’ salary for VPN use, 10M e-CNY airdrop: Asia Express
This article is for general information purposes and is not intended to be and should not be taken as legal or investment advice. The views, thoughts, and opinions expressed here are the author’s alone and do not necessarily reflect or represent the views and opinions of Cointelegraph.