- Joined
- Sep 6, 2017
- Messages
- 100
- Reaction score
- 140
Network security in 2017 is more about managing risk than prevention, by moving to a cloud based solution you're taking the risk out of the home user and moving it to a managed data center. If anything I feel Neptune Systems should allow the user an option for multi-factor authentication like most consumer grade cloud services; that's where I feel they are lacking.
I understand where you are coming from and agree in part, especially the the part about security being managed risk. A secure network is a network that has no power supplied to it and no devices connected to it, anything else and there are risks attached. Port forwarding has risks attached, but so does adding a device to your network from a company in the aquarium business that wont answer basic questions about the actually safety and security of its own products.
Just stating 'we use the cloud so we are super duper easy and super secure' is meaningless. You ask a good question, where is the two-factor authentication, I asked if they had a independent audit of their code to 'prove' their devices were secure, someone else asked about transport layer security, and for that we get evasion and/or ignored.
As a simple home computer user I see computer security the way I do home security, it is weighing up risks vs costs and ease of use. I live in a apartment, I am not a celebrity, I don't have a large art collection, so I don't need a high-level alarm system or a escape room or anything beyond a decent lock on the door as I am not a above averagely attractive target compared to the rest of my neighbourhood. As long as my security is not worse than average I am safe for all practical purposes.
The same thinking applies to the security of my network, the way I see it my wi-fi is the weakest link in my security but its range is limited so the danger is limited. I chose a provider that gives me a fixed IP address and allows me to run any service I like as long as it does not impact their network or the security of others, I use port-forwarding for some services/devices/or software because it is easy and simple to set up, and the risk is on me instead of me relying on someone else's service, if something goes wrong I can only blame myself instead of being able to blame a corporation who will duck all responsibility anyway.
I am in the second decade of having these 'massive holes' in my security caused by port-forwarding and have never had a issue of any kind, this is not because I am some kind of computer expert but simply because there is nothing of value to gain from hacking my network, especially when weighed against the effort, managing risk as you say.