Security Features / DNS Encryption / Keystroke Encryption



  • Hi,

    First of all let me say thanks for this browser it really is one of a kind its very nice visually and feature full!

    I currently use Cent browser as my Main and lately have been playing with AOL Shield and Yandex.

    My request is around the security of Vivaldi.
    I hope you will consider adding a list of secure DNS providers to choose from like Yandex has and also Keystroke encryption just like AOL shield (I use Shield for banking etc.).

    Another thing i think would be great is the option to delete ALL browsing history on exit like the option Cent browser has.

    And i have never noticed the option to opening in incognito mode by default in any browser yet that would also be great.

    Please look through the security features of CENT Browser, AOL Shield and Yandex Browser as there are many more improvements / features security wise compared to Vivaldi:

    https://www.centbrowser.com
    https://shield.aol.com
    https://browser.yandex.com/



  • This all looks like incredibly dubious security theatre (possibly mixed with some interesting ideas). Some notes

    • "AOL Shield Pro Anti-Keylogging feature [...] This patented technology" - Does anyone know where this patent is listed. That looks interesting. But if it is patented, then it can't be easily integrated into Vivaldi.

    • Also, for keylogging - If there's a keylogger anywhere on your system I doubt your browser would be enough to stop it.

    • "Can I take screenshots in AOL Shield Pro" - It says specifically that it prevent screen capturing from working for security reasons but then goes on to describe a method that you can use to take screenshots. That seems like a major contradiction

    • AOL and Yandex claim to stop scam websites but this is default behaviour available in any chrome based browser

    • Yandex has a section called "DNS Spoofing Protection" but the description of this feature doesn't sound like it actually does any DNS spoofing protection.

    • You can use a launch flag with vivaldi to open in incognito by default - same as any chrome based browser

    • You can clear data on exit in vivaldi. Under settings > privacy, set cookies to session only and history to session only



  • @lonm Thanks for the reply.

    I am unsure about the patent i can try to find out.

    I use that launch flag already, but ive never seen an option withing settings to force it without a launch flag, is there a reason no browser has this ?

    Thanks for conformation of clearing data on exit, i had set these options but was unsure what it covers. If both are ticked does this mean it clears absolutely everything browsing wise on exit like Cent does ?



  • @upgrade said in Security Features / DNS Encryption / Keystroke Encryption:

    an option withing settings [..], is there a reason no browser has this ?

    I'm not sure.
    My only guess would be that this is a somewhat non-standard way of using a browser.
    Having one feature per post makes things easier to manage, and this seems like a decent request. You should make a feature request for "Setting to force startup in incognito/private mode". I had a quick search and there doesn't seem to be one already made.

    clearing data on exit [...] unsure what it covers. If both are ticked does this mean it clears absolutely everything browsing wise on exit like Cent does ?

    As far as I know it will just clear history and cookies. But if you're using the always browse in private mode option then everything (except downloads) should be cleared anyway.



  • @upgrade

    Those things are mostly gimmick. DNS has nothing to do with your browser. You can change your DNS from your OS or Internet modem already.

    The other things are nothing but marketing and can even decrease your security. A browser can't stop a keylogger. If you have malware running on your operating system, it's already game over. No browser or software can help you.



  • @terere said in Security Features / DNS Encryption / Keystroke Encryption:

    @upgrade

    Those things are mostly gimmick. DNS has nothing to do with your browser. You can change your DNS from your OS or Internet modem already.

    The other things are nothing but marketing and can even decrease your security. A browser can't stop a keylogger. If you have malware running on your operating system, it's already game over. No browser or software can help you.

    Thank you for the response.
    Yes i know you can change DNS from OS or router but what if i did not want to change DNS for whole PC just for a browser then this option would work well.

    Why would keylogger encryption not work if you had malware on PC? isnt that the point ok having they protection ?
    Can you elaborate on why this wouldn't work please ?



  • @upgrade said in Security Features / DNS Encryption / Keystroke Encryption:

    @terere said in Security Features / DNS Encryption / Keystroke Encryption:

    @upgrade

    Those things are mostly gimmick. DNS has nothing to do with your browser. You can change your DNS from your OS or Internet modem already.

    The other things are nothing but marketing and can even decrease your security. A browser can't stop a keylogger. If you have malware running on your operating system, it's already game over. No browser or software can help you.

    Thank you for the response.
    Yes i know you can change DNS from OS or router but what if i did not want to change DNS for whole PC just for a browser then this option would work well.

    Why would keylogger encryption not work if you had malware on PC? isnt that the point ok having they protection ?
    Can you elaborate on why this wouldn't work please ?

    Sure. Because the browser runs on top of your operating system. Not the other way around. The operating system is the one that takes the input from your keyboard or any other peripheral, the browser can't tap into those hardware drivers. Assuming your browser is encrypting keys, this has to be done from the browser correct. Which means the browser has to be open and running. The malware, assuming its running inside your OS can intercept keys before the browsers receive them. So there is no point in encrypting your words when I already have them. This is why its gimmick, adding no protection at all.

    Think of this like the following. Android keyboards. Most people are not aware of this, but third-party keyboards can, in fact, read and access every single key, that means they can access EVERYTHING you type, including passwords. This is actually true for any software. So technically, Vivaldi could log everything you type and send it to their servers. This is why you should never install software you don't trust.

    Now malware, in most cases, will trick the user into escalating privileges or will exploit something in the OS to gain the highest possible access. Think root on Linux or Administrator on Windows, also called super admin or user 0. But your browser does not run with those privileges (that would be extremely risky).

    The malware has a higher access than your browser. Security in most operating systems consists of a ring approach. To make it simple, think the President of the US, he has several security circles around him, and you have to breach every one to get to him. But what if the breach is from the inside? What if its someone in the secret service that is already in the ring 0? That is how malware works. Your browser would be in ring 5 for example and can't see anything that happens inside ring0, but the malware is on ring0 and can see everything that happens in all other rings.

    If you have malware on your system, its game over. You should not enter anything sensitive on that computer, no password, no credit cards, nothing. This is why you should also never use a computer you don't trust.


 

Looks like your connection to Vivaldi Forum was lost, please wait while we try to reconnect.