He was likely referring to the claim that 70% of the internet flows through Loudon County, Virginia, where AWS us-east-1 is located, although the more accurate number is probably somewhere around 22%.

https://en.wikipedia.org/wiki/Loudoun_County,_Virginia#Econo...

Just because your client is in Switzerland and your data center is in Germany, doesn’t mean a data center in Virginia doesn’t have a copy.

https://youtu.be/JR6YyYdF8ho

That was 14 years ago…

We have MUCH more capabilities today.

> Nobody who understands the scale of the internet could possibly believe this is true.

Neither would anybody have believed that 8 out of 10 hard drive chips can contain any rootkits. Yet, here we are, and the insanity of it is that we've found lots of malware attributed to EQGRP, and the Snowden leaks (from the perspective of Booz Allen) have confirmed it.

You should read up on quantum routing.

They don't have to route through any specific location if they can just infiltrate the routers of your neighbors. Any data packet from the originating server will arrive slower at your location than the data packet of your neighbor. In that scenario TLS becomes pretty useless if the CA itself is also exchangeable, because you can't rely on TCP or UDP. Ironically the push for UDP makes it much easier to implement in the underlying token ring architectures and their virtual routing protocols like VC4 and later.

That's how the internet and a star topology (or token ring topology on city level) was designed.

Never tapped a port, eh?

Edited to not be so flippant: I work in HFT/finance where recording all traffic is required I think by law and definitely for one's own sanity. We're able to maintain nanosecond trades while capturing ALL the traffic. It has zero impact on the traffic. This is normal, widely used tech. Think stuff like Ixia passive taps and/or Arista Metamako FPGA-based tap/mux devices.