The Internet Is Broken

submited by
Style Pass
2023-03-17 23:30:04

This page collects evidence on the many layers the current Internet is vulnerable, insecure or plain broken and explains how those problems do not exist in our architecture. The W3C STRINT paper on the subject is also a worthwhile read to get an overview.

When DHCP assigns IP numbers over the Ethernet, Rogue DHCP servers can perform man-in-the-middle attacks on devices being added to a local network.

In GNUnet, no IP numbers need to be assigned and any other node in the network can safely be used for routing if it is willing and able to route. Related problems like denial-of-service attacks using DHCP do not exist in the GNUnet set-up. Tricks like PoisonTap's simulation of a local Internet are impossible thanks to CADET's protection mechanisms against sybil attacks.

According to Washington Post's "Net of Insecurity" series the inventors of TCP/IP originally wanted to build basic end-to-end cryptography directly into the protocols, thus guaranteeing at least the authenticity of transmissions if not the content, within the possibilities of the late '70s. By impeding any public use of cryptography, the National Security Agency fundamentally broke the Internet early on. Since then we not only have an Internet which is unencrypted by default, it is also insecure as the provenience of any IP packet can be spoofed at will.

Leave a Comment