Simple and useful VPN solution

Historically, VPNs have been difficult to set up, required client and service side configuration, tricky to start and fickle when in service. Now, Mozilla has partnered with Mullvad to offer a low-cost, simple to use VPN solution for up to five devices via a single $4.95 USD / month subscription. I've been using it while traveling the past week and have found it easy to use, network performance is hardly affected, and reassuring to know that I have an encrypted tunnel through an open hotel or coffee bistro network. Check it out 😀👍

SSL may not be good enough...

Some interesting findings were presented at this year's Black Hat conference. See this AP story to read more. This conference take-away recap is also interesting.

Secure inter networking?

Something I often wonder about: What will be involved to provide fundamentally secure inter networking?

It's generally accepted that TCP/IP was not designed with security in the forefront. However, considering the increasing amounts of commerce occuring on the Internet, it's ostrich-like to assume current secure networking methods will scale well or eventually become ubiquitous.

I suppose IPsec will help. But without pre-registering end-to-end security, is there a way that a client or server can expect it?

The typical vulnerabilities seem to reside in a few key areas:

• Proxy-based (man in the middle)
• Denial of Service (distributed or otherwise)
• Phishing (impersonation)
• Injection leading to loss of control (trojans, worms, poison packets and pages, botnets, etc.)

Will TCP/IP ultimately have to be re-designed or replaced to address these vulnerabilities? That seems unlikely at best.

Thoughts?