We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Interview with cryptographer Tibor Jager on TLS, attacks, and countermeasures

Interview with cryptographer Tibor Jager on TLS, attacks, and countermeasures

Author Image Kristina Perunicic
Kristina Perunicic Former Managing Editor
Table of Contents

Dr. Tibor Jager is an academic cryptographer, doing research in applied and theoretical cryptography. He teaches computer networks and IT security at Ruhr University Bochum and speaks in various international events on cryptography and cybersecurity.

vpnMentor: In your presentation* you mentioned we still use a TLS protocol that was introduced in 1999. Doesn’t that mean that everything works very well and we can feel secure?

*Attached at the end of this page are Dr. Jager's presentations in a conference at the Center for Research in Applied Cryptography and Cybersecurity of Bart Ilan University, May 2, 2016).

Indeed TLS 1.0 is not bad. We know a few issues with the protocol but we don’t know how to exploit them. It is not that I don’t sleep at night because of the risks, but looking at the objective issues that researchers show, there is some real concern that users can be exploited.

Dr Tibor Jager

Dr. Tibor Jager presenting at BIU, May 02 2016

vpnMentor: You won the “Best Contribution to IETF Award." Tell us about that.

This award was given for significant contribution to TLS 1.3. There were many other contributions that are significant and I would consider stronger than ours. But what made our paper noticeable was that we showed not only the effects on TLS 1.3 but also on X.509 (an important standard for a public key infrastructure). The attack we described is not directly based on a weakness of TLS, but rather on a subtle combination with a deficiency of X.509. The intention of IETF by giving this to us, in my opinion, was to point out some things that can be fixed there as well.

vpnMentor: Germany is known as a privacy advocates nation. What makes Germans such leaders in this subject in your opinion?

It is hard for me to say. As a German, I find it obvious that I should have my privacy online as well. It surprises me that other nations don’t.

vpnMentor: What do attackers try to achieve? Are they in it for the gain or for intellectual achievement?

There are so many types of attackers.

  1. Nation states that want to prevent terrorism, or possibly even to control opinion.
  2. Attackers that want some financial gain, and unlike nation states that want to “read only” maybe, these gain attackers want to also inject information many a time.
  3. And there are some users that are just curious about the use of technology.

vpnMentor: Looking at the skill set required to be a hacker, do you think some of your fellow professors in the academy go back home at night and put on the “Guy Faux mask,” penetrating the Pentagon?

I have a deep understanding of my colleagues and I am confident they aren't engaged in such activities. At an initial glance, hacking appears highly complex, potentially demanding an extraordinary set of skills. However, once you comprehend its workings, it becomes evident that anyone could potentially become a hacker simply by viewing a handful of YouTube videos and reading several articles.

vpnMentor: What is your opinion on the matter of online privacy vs defending citizens from terrorists?

If I had an answer to this, I would be in politics. It is important to have a good balance but the decision is not easy.

vpnMentor: What tools/browsers are you using differently from your mom?

I’m teaching my mom how to use a web browser in the right way and not give out information. Overall, I’m very careful about what sites I visit and what files I’m downloading.

On the Security of TLS-DHE in the Standard Model from vpnMentor

On the Security of TLS 1.3 and QUIC Against Weaknesses in PKCS#1 v1.5 Encryption from vpnMentor
We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

About the Author

Kristina Perunicic is a former editor for vpnMentor. She’s a cybersecurity expert with an interest in VPNs and their importance in the digital privacy landscape.

Did you like this article? Rate it!
I hated it! I don't really like it It was ok Pretty good! Loved it!
out of 10 - Voted by users
Thank you for your feedback

Please, comment on how to improve this article. Your feedback matters!

Leave a comment

Sorry, links are not allowed in this field!

Name should contain at least 3 letters

The field content should not exceed 80 letters

Sorry, links are not allowed in this field!

Please enter a valid email address