Facebook user data encryption

Facebook user data encryption

In my country, Austria, a telecommunications data retention law will be executed starting at April 1. Internet carriers are required to store connection data (from which computer to which server), but no actual data payloads, for up to 6 months.
I would like to avoid the government knowing which of the many million Facebook profiles is mine (I'm using a pseudonym as name). AFAIK, SSL encrypts the GET-parameters as well, so my profile id should be safe from storing. Is there any other way the government could find out about my FB profile id, given only the connection data?
If yes, is the only way to keep my profile safe to always use a VPN?

Solutions/Answers:

Answer 1:

If the ISP is only storing the header data, information letting them know that the connection occurred, when it occurred, how long it was, and how much data was transmitted they can’t tie you to a Facebook account based on that information alone.

However, they could subpoena Facebook for any logs they have tied to your IP address and determine your account from there.

If you want to be as anonymous as possible I would recommend giving Tor a try. It is a project that allows users to bounce their traffic through several nodes located around the world while no single node is capable of determining the source and destination of the traffic. Specifically try the Tor browser bundle (Google is in friend for finding it). It provides fairly strong anonymity, but make sure you use SSL still because the node that your traffic goes through to reach the rest of the internet will see it unencrypted if you don’t and they have been known to log traffic in the past.

In short, with Tor you can hide (even from your ISP) the fact that your IP address connected to Facebook at some point in time. Beyond that, theres not much you can do.

Our Awesome Free Tools

References