To sign up for their service, one either has to know Psiphon or know someone who uses Psiphon; this necessarily requires a knowledge of relationships on their part. For many users, I suspect this is a minor risk that seems remote until one again considers that this is a for-profit company. Do they promise to do anything with any of this data? Do they plan to store it forever? Do they promise to destroy it if they're ever offered money for their company? What happens if they are simply offered money for the data? Wouldn't it be better to avoid that temptation entirely by not requiring or keeping any of that data?
From a technical standpoint, I notice they claim to believe in Open Source software and the collaborative security it can deliver, yet the software on their website is the same outdated version as it was last year. This software is probably unrelated to the proxy service they are promoting, but it is difficult to know as they seem to keep these details secret.Previously: New Web Censor Evasion Toolkit Launches: Psiphon
This speaks nothing of the fact that a massive system to proxy information is a very tempting target for law enforcement or criminals. Which law enforcement and which criminals will be targeting Psiphon's massive data collection operation?
With so much secret sauce, I'd really caution anyone to consider the economic interests at play and I'd also advise users to decide carefully if they want to leave it up to Psiphon to make such important choices for them.
I wouldn't choose to use Psiphon and I sincerely hope others make a similar choice.
Boing Boing editor/partner and tech culture journalist Xeni Jardin hosts and produces Boing Boing's in-flight TV channel on Virgin America airlines (#10 on the dial), and writes about living with breast cancer. Diagnosed in 2011. @xeni on Twitter. email: firstname.lastname@example.org.