{"id":8323,"date":"2018-07-25T09:00:41","date_gmt":"2018-07-25T16:00:41","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=8323"},"modified":"2024-01-26T23:42:54","modified_gmt":"2024-01-27T07:42:54","slug":"the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/","title":{"rendered":"The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises"},"content":{"rendered":"

We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet brings, come opportunities for exploitation. Fraud, harassment, surveillance, censorship, social and political manipulation, industrial and political espionage, data theft and discrimination have all taken hold in one of the greatest tools ever created by mankind.<\/p>\n

This article is intended to show you those failings in design, and the challenges ahead that engineers around the world have to imagine their way out of. I will focus heavily on network equipment, but this problem extends far beyond that horizon. PCs, mobile devices, industrial systems, the cloud, and databases around the world all face serious issues that beyond the scope of this writing.<\/p>\n

A little history:<\/h2>\n

As the Internet sprang to life in the 80s and 90s, some companies rose to the top as market leaders in their particular fields. Cisco Systems are the kings of networking, although their leadership in wireless networking, switching, routing, and firewalls is diminishing over time. Juniper, Arista, Huawei, and a huge number of other small to medium competitors have risen up to challenge Cisco\u2019s dominance over the core functions of the Internet.<\/p>\n

I will talk a lot about Cisco here, because they are the market leaders. This problem spans every one of their competitors as well.<\/p>\n

Cisco\u2019s Position on the Encryption Debate:<\/h2>\n

Cisco builds surveillance capabilities directly into its hardware, which it calls \u201cLawful Intercept.\u201d The idea is that a firm using Cisco equipment can give access to law enforcement to conduct investigations, presumably with some form of due process and a court order. Here is some documentation on how to set up Lawful Intercept on your Cisco equipment. More Info<\/a>.<\/p>\n

\"\"<\/p>\n

And some info on what Lawful Intercept actually does:<\/p>\n

\"\"<\/p>\n

You\u2019ll notice that the language in the documentation repeatedly touches on a problem. Lawful Intercept is intended to be used by law enforcement or government agents who have a legal basis to be conducting surveillance. As with everything in the computing world, making assumptions about how users will access your systems leads to problems.<\/p>\n

Problem #1: Access Isn\u2019t Limited in any Meaningful Way<\/p>\n

Anyone with access who knows how to setup Lawful Intercept can wiretap people on their network. There are no controls, certificate systems, or other restrictions to prevent access.<\/p>\n

Problem #2: Over 150 Security Flaws that can give Hackers Access<\/p>\n

Here is a list of security problems for Cisco IOS<\/a>. Ignoring DoS because that doesn\u2019t actually give anyone access, there\u2019s a long list of serious issues that include gems such as:<\/p>\n

Remote users can log into to router with full admin powers using a hard-coded username and password.<\/a><\/p>\n

Remote users can log into router with limited access with a hard-coded username and password, but can then escalate access to full admin powers.<\/a><\/p>\n

Remote users can listen to all traffic passing over SNMP (note: SNMP is what is used to communicate all Lawful Intercept information)<\/a><\/p>\n

In total there are 5 major \u201cfull control\u201d flaws in Cisco\u2019s IOS just in the first half of 2018.<\/a><\/p>\n

What this adds up to is that clandestine agencies are having a field day with the gear that powers the Internet. You\u2019ll see similar serious problems with other major brands of network equipment as well.<\/p>\n

How are these problems exploited?<\/h2>\n

It depends on what your attacker wants. The NSA (and presumably others) have manipulated BGP traffic<\/a> to intercept and manipulate data. It is also safe to assume that with these kinds of serious flaws at their disposal, one can monitor any counterparty that they wish. We also know a that the NSA stores away the metadata of targets to monitor their activity, and will even store away encrypted data from https websites and end-to-end encrypted services with the hope that the tech will arise to break the encryption at a later time.<\/p>\n

What can we do?<\/h2>\n

It is a long and bumpy road ahead. Router operating systems must be open sourced. It is the only way that you can enable peer-review of code and allow the public (and the company\u2019s customers) to verify that the software powering their equipment is safe, and that a malicious user can\u2019t log into their device with
\nuser:cisco
\npass:<\/p>\n

\u2026and get admin access to their core networking systems.<\/p>\n

The light provided by open-sourcing the software immediately removes the possibility of these kinds of flaws from surfacing. It gives the world reassurance that these systems can be trusted.<\/p>\n

Even if we were to switch to PCs to provide networking services like Cisco and Juniper equipment does now, those PCs run on closed-source firmware that cannot be trusted. The Intel Management Engine and AMD Platform Security Processor are both black boxes of code with the highest level of security access to a computer, and the ability to communicate over networks with no operating system even installed on the PC. In the case of Intel Management Engine, it can even work while the computer is powered off if it is plugged in. Extensive research has gone into whether Intel ME can be fully removed, but so far we can only disable it<\/a>.<\/p>\n

Until the day arrives that we can trust our computers and networks once again, we need to encrypt encrypt encrypt. Use a reputable VPN provider. Do not visit web pages that are not https (Let\u2019s Encrypt<\/a> has made this so easy that there aren\u2019t really any excuses anymore). Encrypt your messages and emails, and don\u2019t trust the equipment that sits between you and the person you are communicating with.<\/p>\n

\u00a0<\/p>\n

\u00a0<\/p>\n

\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"

We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet brings, come opportunities for exploitation. Fraud, harassment, surveillance, censorship, social and political manipulation, industrial and political espionage, data theft and discrimination have all taken hold in one of the greatest … Continue reading “The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises”<\/span><\/a><\/p>\n","protected":false},"author":32,"featured_media":8329,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":true,"_modified_date":"","footnotes":""},"categories":[12,1,130],"tags":[855,853,854,857],"class_list":["post-8323","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-news","category-governments","tag-firewall","tag-intercept","tag-network","tag-vulnerability"],"yoast_head":"\nThe Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises<\/title>\n<meta name=\"description\" content=\"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises\" \/>\n<meta property=\"og:description\" content=\"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2018-07-25T16:00:41+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-27T07:42:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Derek Zimmer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@http:\/\/www.twitter.com\/ostifofficial\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Derek Zimmer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\"},\"author\":{\"name\":\"Derek Zimmer\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1\"},\"headline\":\"The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises\",\"datePublished\":\"2018-07-25T16:00:41+00:00\",\"dateModified\":\"2024-01-27T07:42:54+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\"},\"wordCount\":936,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg\",\"keywords\":[\"Firewall\",\"Intercept\",\"Network\",\"Vulnerability\"],\"articleSection\":[\"Cybersecurity\",\"General Privacy News\",\"Governments\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\",\"name\":\"The Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg\",\"datePublished\":\"2018-07-25T16:00:41+00:00\",\"dateModified\":\"2024-01-27T07:42:54+00:00\",\"description\":\"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg\",\"width\":1600,\"height\":900},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1\",\"name\":\"Derek Zimmer\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g\",\"caption\":\"Derek Zimmer\"},\"description\":\"Derek is a cryptographer, security expert and privacy activist. He has twelve years of security experience and six years of experience designing and implementing privacy systems. He founded the Open Source Technology Improvement Fund (OSTIF) which focuses on creating and improving open-source security solutions through auditing, bug bounties, and resource gathering and management.\",\"sameAs\":[\"https:\/\/ostif.org\/\",\"https:\/\/www.linkedin.com\/in\/derek-zimmer-2164a441\/\",\"https:\/\/x.com\/http:\/\/www.twitter.com\/ostifofficial\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/derek-zimmer\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"The Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises","description":"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/","og_locale":"en_US","og_type":"article","og_title":"The Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises","og_description":"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2018-07-25T16:00:41+00:00","article_modified_time":"2024-01-27T07:42:54+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg","type":"image\/jpeg"}],"author":"Derek Zimmer","twitter_card":"summary_large_image","twitter_creator":"@http:\/\/www.twitter.com\/ostifofficial","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"Derek Zimmer","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/"},"author":{"name":"Derek Zimmer","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1"},"headline":"The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises","datePublished":"2018-07-25T16:00:41+00:00","dateModified":"2024-01-27T07:42:54+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/"},"wordCount":936,"commentCount":0,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg","keywords":["Firewall","Intercept","Network","Vulnerability"],"articleSection":["Cybersecurity","General Privacy News","Governments"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/","name":"The Internet Cannot be Trusted - Beamsplitters, Backdoors, and Broken Promises","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg","datePublished":"2018-07-25T16:00:41+00:00","dateModified":"2024-01-27T07:42:54+00:00","description":"We all know that the Internet is not a fundamentally safe place. With the tremendous gains in information sharing and the conveniences that the Internet","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#primaryimage","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/InternetCannotBeTrusted.jpg","width":1600,"height":900},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-internet-cannot-be-trusted-beamsplitters-backdoors-and-broken-promises\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"The Internet Cannot be Trusted – Beamsplitters, Backdoors, and Broken Promises"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/e9f24badc1559621e721d94ecb18d6e1","name":"Derek Zimmer","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/399c45f76a929cfe8ed46349f8166d975f7fa088108970562cf67fa46ab0176d?s=96&d=mm&r=g","caption":"Derek Zimmer"},"description":"Derek is a cryptographer, security expert and privacy activist. He has twelve years of security experience and six years of experience designing and implementing privacy systems. He founded the Open Source Technology Improvement Fund (OSTIF) which focuses on creating and improving open-source security solutions through auditing, bug bounties, and resource gathering and management.","sameAs":["https:\/\/ostif.org\/","https:\/\/www.linkedin.com\/in\/derek-zimmer-2164a441\/","https:\/\/x.com\/http:\/\/www.twitter.com\/ostifofficial"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/derek-zimmer\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8323","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=8323"}],"version-history":[{"count":3,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8323\/revisions"}],"predecessor-version":[{"id":30786,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8323\/revisions\/30786"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media\/8329"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=8323"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=8323"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=8323"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}