Russian internet provider Beeline plans encrypted traffic filter
Russian internet and mobile provider Beeline is reportedly planning to launch a strict system to filter encrypted traffic.
The move could see the company block entire categories of content, including VPNs and political websites, rather than just individual sites, according to reports from Radio Free Europe/Radio Liberty’s "Sistema" project, as cited by The Moscow Times.
Vimpelcom, the parent company of Beeline, has issued a tender for services based on Deep Packet Inspection (DPI) technology. The tender documents state the main requirement is to filter all traffic, including that encrypted via HTTPS, in line with Russian law and the recommendations of Roskomnadzor, the state's communications regulator.
The new platform, which other telecom operators may also adopt, will go beyond simply blocking forbidden addresses. It will also be able to "understand" what a user is doing, such as searching for information, watching YouTube videos, using email, or communicating via instant messengers. Implementation is scheduled to begin next year and be completed by 2030.
The technology allows for the blocking of specific in-app services and the classification of traffic into dozens of thematic categories. The documents show the provider will be able to block, slow down, or allow traffic for services targeted by Roskomnadzor. These include "adult content," "dating sites," "religious resources," and "political organisations' websites."
The documents also list specific services that are proving difficult to control and are targeted for blocking, including popular VPNs and anonymisers (OpenVPN, Tor, Proton VPN, Psiphon, HideMy.Ass), instant messengers (Telegram, WhatsApp, Viber, Signal, Discord), online games (Call of Duty, Counter-Strike, Genshin Impact, World of Tanks, World of Warcraft, Minecraft, Roblox), and social networks (Facebook, Instagram, Twitter, TikTok). The level of detail suggests internet surveillance in Russia is set to reach a new level, making it extremely difficult to technically circumvent blockages, "Sistema" notes.
"The goal is to establish total control," said Anastasia Krupe, a researcher at Human Rights Watch and author of a recent report on the restriction of online freedoms in Russia. According to her, the Kremlin seeks to control not only the information on the network but also the routes and methods of traffic transmission so that the Russian internet can function in isolation and be turned on or off as needed. "They are not at the level they want yet—but they are making progress, and that's why it's worth watching," she added.
An IT expert from a European company, who requested anonymity, said the system could currently only be implemented for users who install Russian-issued root security certificates on their devices or use Yandex Browser, which already has the certificates integrated. For several years, the state and major Russian companies have been actively promoting the use of these certificates.
"Security certificates from the Ministry of Digital Development are necessary to access the websites of state institutions, banks, and other organisations. Their implementation on most Russian websites is gradually planned. Without these certificates, your data is not sufficiently protected, and when you access a site, a warning will appear stating that the resource is unsafe," said the Gosuslugi portal, according to The Moscow Times.
Translation by Iurie Tataru
