{"id":10421,"date":"2019-01-30T09:00:12","date_gmt":"2019-01-30T17:00:12","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=10421"},"modified":"2020-08-26T15:08:18","modified_gmt":"2020-08-26T22:08:18","slug":"private-app-designs-are-inherently-more-secure","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/","title":{"rendered":"Private App Designs are Inherently More Secure"},"content":{"rendered":"<p>As a privacy activist, I spend a majority of my time talking about the dangers of the widespread loss of privacy in society. Today, we are going to sidestep a lot of the usual chat to talk about data security.<\/p>\n<h2>Private Services Have Huge Comparative Security Advantages<\/h2>\n<p>If we look at early Internet services that have somehow made it to 2019, we have designs like the <a href=\"https:\/\/en.wikipedia.org\/wiki\/Domain_Name_System\">Domain Name System (DNS)<\/a> and <a href=\"https:\/\/en.wikipedia.org\/wiki\/Network_Time_Protocol\">Network Time Protocol (NTP)<\/a> that have no inherent privacy or security. These services have no way to authenticate a client nor a server, so there\u2019s no built-in way to protect clients from being redirected to malicious websites, they can\u2019t prevent censorship, nor does it properly protect servers from being co-opted by malicious users to flood other servers with traffic and cause the target site or service to fail (Denial of Service).<\/p>\n<p>These services aren\u2019t solely to blame for the problems that they have. They were engineered in a time when the idea of everyone having a dozen devices in their home that need to utilize their protocols was science fiction. The idea that hardware would exist that could monitor all of these requests wasn\u2019t even a plausible concept.<\/p>\n<p>The main issue today is that the large standards bodies are dragging their feet on improving these systems. The idea of securing DNS, NTP, and dozens of other insecure services is not a new one.<\/p>\n<p>There are better ideas out there for handling these problems. For managing domain names in particular, it is one of the few places where blockchain technology can be revolutionary. A blockchain based DNS system is trustless in that it relies on consensus between thousands of clients to determine what domain lies on which IP address, and it can update securely without giving away your browsing information to everyone who is listening between your device and the DNS server.<\/p>\n<h2>Big Data is Holding Us Back<\/h2>\n<p>The resistance to improve these systems is rooted in the surveillance industry that has grown out of the insecurity of the existing protocols. Internet providers, cell providers, governments, 3rd-party DNS providers, and many others have vested interests in keeping these systems as insecure as possible, in order to keep listening to what everyone is doing on the web.<\/p>\n<p><em>Big data is the reason that domain names can\u2019t be resolved securely and quickly without broadcasting what you\u2019re doing to the world.<\/em><\/p>\n<h2>On a Fundamental Level, Secure Design Leads to Private Design and Vice-Versa<\/h2>\n<p>When you think about designing a secure system, you have to think about what is happening to every piece of data that is handled to your application. You need to consider in your design if any potentially damaging information is leaking, and if any of your structures are weakened by such a leak.<\/p>\n<p>Private system design follows the same fundamental principles, but adds \u201ctrust issues\u201d into the mentality of the team creating the app. You still have to make all of the same security considerations, but you have to layer additional thinking into how data is handled and by whom.<\/p>\n<p>What is interesting about this, is that systems that are designed to be private gain security benefits from a private design philosophy. Proper erasure of data, decentralization, client-server trust, and chain of trust practices close all kinds of possible problems from ever occurring with these systems.<\/p>\n<p>If DNS had originally been designed with privacy in mind, because the inventors of the protocol had the foresight to know that trillions of DNS requests would be made to live servers everyday, there\u2019s some fundamental changes to the protocol that could have been made with the design philosophy. For example, they could have encrypted DNS requests so that a man in the middle can\u2019t simply read the broadcasts. They also could have expanded the protocol so that everyone\u2019s modem\/device\/router resolves its own DNS from a list that it stores locally most of the time, and to seek consensus when visiting a domain that their own device doesn\u2019t know.<\/p>\n<p>This eliminates entire classes of problems like listening in on DNS and injecting fake DNS responses to redirect users to malicious sites (also known as DNS poisoning).<\/p>\n<p>There are efforts to tack-on security and privacy options onto old protocols like DNS (<a href=\"https:\/\/en.wikipedia.org\/wiki\/Domain_Name_System_Security_Extensions\">DNSSEC<\/a> and <a href=\"https:\/\/en.wikipedia.org\/wiki\/DNS_over_TLS\">DNS over TLS<\/a>), but the world is hesitant to replace them with something safer because of the deep rooted interests that seek to preserve their data gathering schemes. NTP has no significant efforts to replace it, despite it having <a href=\"https:\/\/en.wikipedia.org\/wiki\/Network_Time_Protocol#Security_concerns\">serious security implications in its default design<\/a>.<\/p>\n<p>These are <em><strong>human problems<\/strong><\/em> that need <em><strong>human solutions<\/strong><\/em>. The technology already exists to eliminate many of the fundamental issues of privacy and security in our devices.<\/p>\n<h2>We Need Real Replacements<\/h2>\n<p>Protocols need to be designed with fundamental privacy in mind to both prevent the expansion of the surveillance economy, but also to improve the security of all of our devices and services. There are some <a href=\"https:\/\/handshake.org\/files\/handshake.txt\">good ideas out there<\/a> for replacing fundamentally insecure and privacy-breaking protocols like DNS.<\/p>\n<p>The sooner we can build real replacements for these old protocols, the sooner that we can make real strides forward in privacy and security.<\/p>\n<p>Here\u2019s hoping that we have more Let\u2019s Encrypt projects out there just waiting to be made, that will help secure more of the Internet\u2019s fundamental functions.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>As a privacy activist, I spend a majority of my time talking about the dangers of the widespread loss of privacy in society. Today, we are going to sidestep a lot of the usual chat to talk about data security. Private Services Have Huge Comparative Security Advantages If we look at early Internet services that &hellip; <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Private App Designs are Inherently More Secure&#8221;<\/span><\/a><\/p>\n","protected":false},"author":32,"featured_media":10423,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":false,"_modified_date":"","footnotes":""},"categories":[12,1],"tags":[497,1306,1347,1348,85],"class_list":["post-10421","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-news","tag-big-data","tag-dns","tag-ntp","tag-protocol","tag-security-2"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.9 (Yoast SEO v26.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Private App Designs are Inherently More Secure<\/title>\n<meta name=\"description\" content=\"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Private App Designs are Inherently More Secure\" \/>\n<meta property=\"og:description\" content=\"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2019-01-30T17:00:12+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-26T22:08:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Derek Zimmer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@http:\/\/www.twitter.com\/ostifofficial\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Derek Zimmer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\"},\"author\":{\"name\":\"Derek Zimmer\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1\"},\"headline\":\"Private App Designs are Inherently More Secure\",\"datePublished\":\"2019-01-30T17:00:12+00:00\",\"dateModified\":\"2020-08-26T22:08:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\"},\"wordCount\":890,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg\",\"keywords\":[\"big data\",\"DNS\",\"ntp\",\"protocol\",\"security\"],\"articleSection\":[\"Cybersecurity\",\"General Privacy News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\",\"name\":\"Private App Designs are Inherently More Secure\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg\",\"datePublished\":\"2019-01-30T17:00:12+00:00\",\"dateModified\":\"2020-08-26T22:08:18+00:00\",\"description\":\"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg\",\"width\":1600,\"height\":900,\"caption\":\"Top secret\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Private App Designs are Inherently More Secure\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1\",\"name\":\"Derek Zimmer\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g\",\"caption\":\"Derek Zimmer\"},\"description\":\"Derek is a cryptographer, security expert and privacy activist. He has twelve years of security experience and six years of experience designing and implementing privacy systems. He founded the Open Source Technology Improvement Fund (OSTIF) which focuses on creating and improving open-source security solutions through auditing, bug bounties, and resource gathering and management.\",\"sameAs\":[\"https:\/\/ostif.org\/\",\"https:\/\/www.linkedin.com\/in\/derek-zimmer-2164a441\/\",\"https:\/\/x.com\/http:\/\/www.twitter.com\/ostifofficial\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/derek-zimmer\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Private App Designs are Inherently More Secure","description":"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/","og_locale":"en_US","og_type":"article","og_title":"Private App Designs are Inherently More Secure","og_description":"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2019-01-30T17:00:12+00:00","article_modified_time":"2020-08-26T22:08:18+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg","type":"image\/jpeg"}],"author":"Derek Zimmer","twitter_card":"summary_large_image","twitter_creator":"@http:\/\/www.twitter.com\/ostifofficial","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"Derek Zimmer","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/"},"author":{"name":"Derek Zimmer","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1"},"headline":"Private App Designs are Inherently More Secure","datePublished":"2019-01-30T17:00:12+00:00","dateModified":"2020-08-26T22:08:18+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/"},"wordCount":890,"commentCount":0,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg","keywords":["big data","DNS","ntp","protocol","security"],"articleSection":["Cybersecurity","General Privacy News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/","name":"Private App Designs are Inherently More Secure","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg","datePublished":"2019-01-30T17:00:12+00:00","dateModified":"2020-08-26T22:08:18+00:00","description":"When you design an application with privacy in mind, the design choices around private data handling lead us to a more secure app.","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#primaryimage","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2019\/01\/topsecret.jpg","width":1600,"height":900,"caption":"Top secret"},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/private-app-designs-are-inherently-more-secure\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Private App Designs are Inherently More Secure"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1","name":"Derek Zimmer","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g","caption":"Derek Zimmer"},"description":"Derek is a cryptographer, security expert and privacy activist. He has twelve years of security experience and six years of experience designing and implementing privacy systems. He founded the Open Source Technology Improvement Fund (OSTIF) which focuses on creating and improving open-source security solutions through auditing, bug bounties, and resource gathering and management.","sameAs":["https:\/\/ostif.org\/","https:\/\/www.linkedin.com\/in\/derek-zimmer-2164a441\/","https:\/\/x.com\/http:\/\/www.twitter.com\/ostifofficial"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/derek-zimmer\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/10421","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=10421"}],"version-history":[{"count":2,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/10421\/revisions"}],"predecessor-version":[{"id":10424,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/10421\/revisions\/10424"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media\/10423"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=10421"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=10421"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=10421"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}