{"id":1229,"date":"2014-10-17T08:50:43","date_gmt":"2014-10-17T08:50:43","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=1229"},"modified":"2020-08-26T15:17:05","modified_gmt":"2020-08-26T22:17:05","slug":"defense-in-depth-applies-to-individuals-online-too","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/","title":{"rendered":"“Defense In Depth” Applies To Individuals Online Too"},"content":{"rendered":"

In the military, in space engineering, and in software development, there is a principle called \u201cDefense in Depth\u201d. This principle should be applied in more contexts, particularly with regard to privacy. Instead, many people today put all their trust into one single magic-bullet security solution, and then get surprised when it fails.<\/strong><\/p>\n

Consider how you lock your house. Do you have a single, magic, patented E-Z-MaxoSecuro-Lock that keeps your front door secure, and settle at that? No. No you don\u2019t. You typically have two locks, a deadbolt, window detectors, an intruder alarm (and a fire alarm to boot), and<\/em> neighborhood watch programs.<\/p>\n

Consider how you drive your car. Do you have a single get-out-of-hospital-free protection device? No. No you don\u2019t. You use seatbelts, airbags, and<\/em> defensive driving. On top of that, the car itself has deformation zones, a protective cage, and a number of other passive and active systems to keep you safe.<\/p>\n

This is called defense in depth<\/em>. The principle is that even if one safety system fails completely, all the others are still there to dampen the fall. In the military, this translates to not relying on a single outcome for victory, but being able to take multiple losses and still prevail. In engineering, this translates to having multiple redundant systems. In software development, this translates to assuming that one part of your software can (and will) get compromised by an adversary, and the rest of the software package must be able to not get domino compromised because of implicit trust in that component.<\/p>\n

Components fail. Services fail. Even for just a millisecond, which can be enough. This is why defense in depth<\/em> must be applied to people\u2019s privacy online as well.<\/p>\n

What you need isn\u2019t encrypted disks, encrypted communications, encrypted boot, encrypted home folder, or<\/em> anonymized connectivity. You need all<\/em> of it. Preferably several times encrypted. My data is encrypted three times in different layers, just because I know one layer could fail without warning or notice. The typical example a decade ago would be that a VPN connection could fail temporarily for whatever reason, and a Windows XP box would just take it down, discover it still had connectivity (without the VPN), and silently continue doing whatever it was doing without even notifying the user that the user was now completely exposed. Oops.<\/em> Fortunately, technology has advanced in that area, but similar problems remain with all services. That\u2019s why you need secondary layers of protection. And tertiary. Defense in depth.<\/p>\n

Using TOR for your connectivity is nice. Using a VPN is nice. Using TOR over<\/em> a VPN is much much better<\/a> than either one alone. But neither helps if your data is unencrypted on your computer, which can get stolen by an adversary (lawful or not: doesn\u2019t matter, your data and your confidences have still leaked).<\/p>\n

Using disk-level encryption is nice. But that\u2019s unlocked when you hand over your computer to a trusted colleague to use the guest account, or you get compromised by malware. Using home-folder encryption is nice, but that spills over into tons of unencrypted locations on the drive (the swap space, for one). Using disk-level encryption and<\/em> home-folder encryption is much much better than either one alone. But neither of that matters if you\u2019re communicating the contents of your carefully-encrypted data unencrypted on the net, or even worse, communicating passwords unencrypted on the net.<\/p>\n

Using encrypted communications and<\/em> encrypted data is much better than either one alone. And then add anonymization services, too. And protection from malware, if you\u2019re using susceptible operating systems like Microsoft Windows.<\/p>\n

Consider how you secure your house, or how you\u2019re protected by multiple redundant systems in your car, and then apply that to your privacy online.<\/p>\n

Privacy remains your own responsibility.<\/p>\n","protected":false},"excerpt":{"rendered":"

In the military, in space engineering, and in software development, there is a principle called \u201cDefense in Depth\u201d. This principle should be applied in more contexts, particularly with regard to privacy. Instead, many people today put all their trust into one single magic-bullet security solution, and then get surprised when it fails. Consider how you … Continue reading ““Defense In Depth” Applies To Individuals Online Too”<\/span><\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":false,"_modified_date":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-1229","post","type-post","status-publish","format-standard","hentry","category-news"],"yoast_head":"\n"Defense In Depth" Applies To Individuals Online Too<\/title>\n<meta name=\"description\" content=\"In the military, in space engineering, and in software development, there is a principle called "Defense in Depth". This principle should be applied in\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\""Defense In Depth" Applies To Individuals Online Too\" \/>\n<meta property=\"og:description\" content=\"In the military, in space engineering, and in software development, there is a principle called "Defense in Depth". This principle should be applied in\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2014-10-17T08:50:43+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-26T22:17:05+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/ogimage.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Rick Falkvinge\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@http:\/\/twitter.com\/Falkvinge\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rick Falkvinge\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\"},\"author\":{\"name\":\"Rick Falkvinge\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/8153559f44e1b6f9738dd6c7d33046a4\"},\"headline\":\"“Defense In Depth” Applies To Individuals Online Too\",\"datePublished\":\"2014-10-17T08:50:43+00:00\",\"dateModified\":\"2020-08-26T22:17:05+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\"},\"wordCount\":632,\"commentCount\":1,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"articleSection\":[\"General Privacy News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\",\"name\":\"\\\"Defense In Depth\\\" Applies To Individuals Online Too\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"datePublished\":\"2014-10-17T08:50:43+00:00\",\"dateModified\":\"2020-08-26T22:17:05+00:00\",\"description\":\"In the military, in space engineering, and in software development, there is a principle called \\\"Defense in Depth\\\". This principle should be applied in\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"“Defense In Depth” Applies To Individuals Online Too\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/8153559f44e1b6f9738dd6c7d33046a4\",\"name\":\"Rick Falkvinge\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/ad30e41b6591c75d90c6002e54553bdd55f419d89a54b72241efa308b84a7f03?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/ad30e41b6591c75d90c6002e54553bdd55f419d89a54b72241efa308b84a7f03?s=96&d=mm&r=g\",\"caption\":\"Rick Falkvinge\"},\"description\":\"Rick is the founder of the first Pirate Party and is a political evangelist, traveling around Europe and the world to talk and write about ideas of a sensible information policy. Additionally, he has a tech entrepreneur background and loves good whisky and fast motorcycles.\",\"sameAs\":[\"https:\/\/falkvinge.net\/\",\"https:\/\/x.com\/http:\/\/twitter.com\/Falkvinge\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/rick\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"\"Defense In Depth\" Applies To Individuals Online Too","description":"In the military, in space engineering, and in software development, there is a principle called \"Defense in Depth\". This principle should be applied in","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/","og_locale":"en_US","og_type":"article","og_title":"\"Defense In Depth\" Applies To Individuals Online Too","og_description":"In the military, in space engineering, and in software development, there is a principle called \"Defense in Depth\". This principle should be applied in","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2014-10-17T08:50:43+00:00","article_modified_time":"2020-08-26T22:17:05+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/ogimage.png","type":"image\/png"}],"author":"Rick Falkvinge","twitter_card":"summary_large_image","twitter_creator":"@http:\/\/twitter.com\/Falkvinge","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"Rick Falkvinge","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/"},"author":{"name":"Rick Falkvinge","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/8153559f44e1b6f9738dd6c7d33046a4"},"headline":"“Defense In Depth” Applies To Individuals Online Too","datePublished":"2014-10-17T08:50:43+00:00","dateModified":"2020-08-26T22:17:05+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/"},"wordCount":632,"commentCount":1,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"articleSection":["General Privacy News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/","name":"\"Defense In Depth\" Applies To Individuals Online Too","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"datePublished":"2014-10-17T08:50:43+00:00","dateModified":"2020-08-26T22:17:05+00:00","description":"In the military, in space engineering, and in software development, there is a principle called \"Defense in Depth\". This principle should be applied in","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/defense-in-depth-applies-to-individuals-online-too\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"“Defense In Depth” Applies To Individuals Online Too"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/8153559f44e1b6f9738dd6c7d33046a4","name":"Rick Falkvinge","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/ad30e41b6591c75d90c6002e54553bdd55f419d89a54b72241efa308b84a7f03?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ad30e41b6591c75d90c6002e54553bdd55f419d89a54b72241efa308b84a7f03?s=96&d=mm&r=g","caption":"Rick Falkvinge"},"description":"Rick is the founder of the first Pirate Party and is a political evangelist, traveling around Europe and the world to talk and write about ideas of a sensible information policy. Additionally, he has a tech entrepreneur background and loves good whisky and fast motorcycles.","sameAs":["https:\/\/falkvinge.net\/","https:\/\/x.com\/http:\/\/twitter.com\/Falkvinge"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/rick\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/1229","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=1229"}],"version-history":[{"count":7,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/1229\/revisions"}],"predecessor-version":[{"id":1236,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/1229\/revisions\/1236"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=1229"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=1229"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=1229"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}