So I’ve been looking up VPN stuff, and in the process, I’ve stumbled on ProtonVPN, from the same people as ProtonMail. They’re now offering private cloud storage, and I’m wondering how private is it. e2e means I have to manage the keys on my device right? I don’t know how else it could realistically work, if they manage keys, they can access my keys etc?
Not just someone, either. Ken Thompson.
That’s just one we know about because Ken is a friendly hacker. He never tried to spread it out into the world.
But what if he had? Or what if it leaked from the one host he tried it on?
Also, a lot of chips are now made in China. Have you physically inspected all the components in your computer?