• wahming@monyet.cc
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    1
    ·
    edit-2
    10 months ago

    There’s no reason a VPN would increase your security, and many reasons why the bank would discourage the use of VPNs to access their systems

    • null@slrpnk.net
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      There’s no reason a VPN would increase your security

      So there’s no benefit to using one to tunnel to your home network while on a public network at a cafe?

      • wahming@monyet.cc
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        1
        ·
        10 months ago

        It would be nice if we were taking comments in context. In this case, WE’RE TALKING ABOUT A BANKING APP.

          • wahming@monyet.cc
            link
            fedilink
            English
            arrow-up
            0
            arrow-down
            1
            ·
            edit-2
            10 months ago

            Why are you tunnelling to your home network to use a banking app?

            Your banking app, if it was decently written by a sane programmer, should be entirely immune to any MitM attacks that a VPN would allay. Thus you would not be receiving any major benefit from using a VPN with your banking app. On the other hand, there is significant security value in the bank being able to see the actual IP of connecting clients.

            • null@slrpnk.net
              link
              fedilink
              arrow-up
              1
              ·
              edit-2
              10 months ago

              I’m not tunnelling to my home network in order to use the banking app. I’m tunnelling to my home network as part of my general way of accessing the internet. My banking app isn’t the only thing running on my phone while I use it.

              I don’t want to have to turn it off just to use the banking app.

              if it was decently written by a sane programmer

              Better hope it is then, I guess.

              On the other hand, there is significant security value in the bank being able to see the actual IP of connecting clients.

              Can you expand on that?

              • wahming@monyet.cc
                link
                fedilink
                English
                arrow-up
                0
                arrow-down
                1
                ·
                edit-2
                10 months ago

                On the other hand, there is significant security value in the bank being able to see the actual IP of connecting clients.

                Can you expand on that?

                Security analysis. If you used your card in country A 5 minutes ago, logging in from country B across the world should realise a red flag. That’s a very basic example, but advanced versions can be extremely accurate.

            • itsame@lemmy.worldOP
              link
              fedilink
              arrow-up
              1
              ·
              10 months ago

              Considering the bugs in this app, and considering that this is an Indian bank, I highly doubt it was ‘written by a sane programmer’.