We discussed what to look for-and avoid-in VPNs with security researcher Kenneth White, co-director of the Open Crypto Audit Project, and with cryptographer and Johns Hopkins University professor Matthew Green. We got answers from Joseph Jerome, then the policy counsel for the Center for Democracy & Technology’s privacy and data project, about how accountable VPNs were for their business models, privacy practices, security protocols, and protections, and how that related to trustworthiness. We spoke with Trail of Bits co-founder and CEO Dan Guido about the security challenges inherent in VPNs and the limitations of security audits and reports.
We interviewed Electronic Frontier Foundation director of cybersecurity Eva Galperin about limitations of VPNs and tips for selecting the appropriate VPN based on individual circumstances.