12/06/2019

VPN helps to protect data

VPN helps to protect data

HTTPS is a popular protocol that protects data from unauthorized access using an additional layer. It perfectly protects home and office devices. However, it cannot guarantee the protection of data when using the public wireless Internet. Therefore, if you often use public hotspots, you should download the VPN app and connect via VPN. And that's why.


HTTPS (the Hypertext Transfer Protocol Secure) is a standard security protocol used by the vast majority of sites. It provides a reliable connection between your device and the website by encrypting data in both directions. Users need to be sure that the sites they visit really belong to their owners, so different signatures and certificates are being used.

However, the protocol cannot reliably encode data when using public wireless networks. All the unencrypted data is available to the persons controlling Wi-Fi hotspots. It is recommended to surf online via VPN, especially for people who often connect to public Wi-Fi. In addition, VPN provides fairly easy access to the blocked sites.


How does the protocol work?

The protocol provides connection between the website and the browser using transport encryption mechanism - TLS (Transport Layer Security). It is a set of commands that coordinate the contact and ensure safety. TLS protects logins, passwords, and other personal data from unauthorized access and use.

TLS technology uses encryption with a private key. The data transfer process implies that it is encoded immediately before sending and is decoded at the time of the receipt. The browser and the server exchange public keys according to the “handshake principle”. During the “handshake”, the encryption elements are being exchanged and then merged, after which the browser and the server “decide” to encrypt the connection. As a result, unique private keys that encode the connection are being formed, and attackers cannot open it without being noticed. When the connection is established and encrypted, the data exchange begins.

Also, TLS technology allows you to certify and establish the authenticity of the identity of websites, so that any user can be convinced of its authenticity, the integrity of the sender, and that the site really belongs to this person.

So, the HTTPS protocol allows you to significantly secure the process of data exchange, but only in the case of the wired Internet. It can’t be used for wireless Internet, because, unlike VPN, it does not protect DNS queries, which makes the connection vulnerable and in certain cases makes it difficult to access blocked sites.


What is DNS and DNS query?

DNS (“Domain Name System”) is an extensive system designed to obtain data about domains and convert them into IP addresses of computers and servers. A DNS query is a requirement to provide data transmitted from a computer or mobile device (DNS client) to a domain name server (DNS server). These requests are being sent to obtain IP addresses. An IP address is nothing more than a numeric version of the site’s email address (URL). Each time you enter an email address, your computer or mobile device converts it into a combination of numbers and periods (for example, 185.23.67.432). Browsers recognize these addresses through DNS resolvers that are provided by ISPs. Unfortunately, neither requests nor replies can be securely encrypted. Therefore, they are available for all sorts of hackers. When you use the network via public hotspots, you «leak» your data, and once it can be used against you.


DSL data leak

When you surf the Internet from a public place, your DNS queries are not secured. Therefore, everyone can easily get your IP-address, passwords, logins, bank data, and find out what websites you have visited. This is typical for all wireless Internet hotspots. In fact, in order to compromise the data, human participation is not required, since all the information goes to the resolver and automatically becomes available to third parties.


You can be exploited

DNS vulnerabilities open opportunities for all sorts of scammers. It is possible that eventually strangers will use your data. In other words, an attacker can get the IP address of the website you are visiting and replace it with his own. As a result, you will visit his site without knowing it, because the address will remain unchanged. Thus, malware can be installed on your device. The site of the attacker will serve as a resolver and all your data will flock to it. Notably, many modern browsers have a function that allows detecting vulnerabilities with the help of the protocol.

Unfortunately, fraudsters often use the latest technology of cheating, and the browser is not always able to track such activity. A malicious site can have all the necessary certificates, and it is difficult for user to distinguish it from an ordinary one. For example, with the help of a “Punycode”, an attacker can build several sites with the same URL, and they will all be certified.

This method consists in replacing characters that are not in the domain system (竹, F, etc.) with the standard ones (letters of the Latin alphabet and numbers) that are included in it. Using DNS, attackers can recode different domain names, replacing “strange” characters with the standard ones, so it is very complicated to distinguish the original site from the fake. Users continue to visit them, unaware that they are being fooled, and decide to check HTTPS site certificates when it is too late. It should be noted that browser developers are trying to keep up to date and are doing everything possible to get rid of vulnerabilities. However, one hundred percent protection of these measures do not provide. Therefore, we can only be as careful as possible and use the public Internet only with VPN services.

 

Why should you use a VPN?

Taking into account the above, there are no guarantees that your data will be publicly available, even if you have just used the Internet for a minute via a public hotspot. Any website may contain elements that are not protected by HTTPS. Attackers can penetrate your system through them and install malicious software.

A VPN connection and BroVPN service can help you to avoid various problems. Virtual private networks use technology that allows you to access the Internet with the IP addresses that are located in different parts of the world, bypassing the ISP's server. Your data won’t get to the provider's server, so this eliminates the possibility of losing your personal data. You can run data through any mobile server, wherever it is located, and, besides, you can move from one server to another without being identified. Scammers will simply be unable to track your steps.

If you download BroVPN VPN app, the service will help you to secure all your DNS queries, since the company has its own DNS server and all the data will be passed through it. The service uses the latest software and pays special attention to vulnerabilities. Therefore, your information will be secured and no one will use it.

 

Get access to the blocked sites

Another reason to use VPN is the ability to visit resources that are not always available. For example, if you want to watch US programs, broadcasted by services like Pandora, Netflix, etc., you will not be able to do it from another country or without special server, since the broadcast outside the US is limited by the copyright law. Nevertheless, if you use a VPN service, you will be able to access sites via mobile IP addresses located in the United States and safely watch programs and movies.

Log In

Sign up BroVPN

Restore password for BroVPN

Reset password for BroVPN

Choose plan:

Free

VPN supported by online community

Subscription

Premium VPN

By pressing "Install" I accept terms of use

Install

Open BroVPN-Setup.exe after download to start install process

Шаг 1 Стрелка Шаг 2

BroVPN installing

Конец

1

2

3

Загрузка
Thanks! We'll contact you.