Surfshark makes a key infrastructure upgrade, rolls out a new open-source VPN protocol, WireGuard that promises to improve VPN speeds for its users.
SurfsharkOpens a new window has introduced support for WireGuard, an open-source virtual private network (VPN) protocol that promises to improve VPN speeds for users. The solution packs a double network address translation (NAT) system to ensure end-users’ privacy.
Gabrielle Racai, Communications Manager at Surfshark says the new VPN technology WireGuard demonstrates better results with both faster throughput speeds and lower ping times. “As per popular request, we’ve rolled out WireGuard for all our users. The protocol is also easier to audit code-wise, which amounts to its security. WireGuard is furtherly improving the overall performance of Surfshark VPN,†Racai said.
WireGuard is the most recent addition to Surfshark’sOpens a new window selection of OpenVPN UDP / TCP, IKEv2/IPsec, and Shadowsocks protocols. The protocol is utilized in the Linux kernel as it is designed primarily for adoption on Linux systems.
Let us explore how WireGuard stacks up against rival VPN providers.
Security
WireGuard uses newer encryption technology than the widespread OpenVPN and IKEv2/IPSec protocols. The new VPN technology encrypts users’ data using thoroughly tested, modern ChaCha20, Curve25519, BLAKE2s, SipHash24, HKDF cryptography, thereby lending greater security compared to the commonly used OpenVPN and IKEv2/IPSec protocols.
User Privacy
Surfshark VPN features a double network address translation (NAT). NAT is designed for IP address conservation, which can change the IP address every time a user connects to the internet via a WireGuard VPN, ensuring more privacy for users.
According to CiscoOpens a new window , “It enables private IP networks that use unregistered IP addresses to connect to the internet. NAT operates on a router, usually connecting two networks together, and translates the private (not globally unique) addresses in the internal network into legal addresses, before packets are forwarded to another network.â€
See Also: Comcast & Aruba’s Partnership Proves VPN Is Not Dead Yet
Performance
WireGuard’s strengths lie in lightweight code and strong cryptographic primitives. Where other popular VPN protocols utilize about 400,000 lines of code, the WireGuard has approximately 1% of either OpenVPN or IPsec’s codebase. This, combined with the use of state-of-the-art cryptography, generates better overall performance results. Racai told Toolbox, “It’s evident that the WireGuard stands out in the overly engineered landscape of VPN protocols. The WireGuard has about 1% of either OpenVPN or IPsec’s codebase, making security audits significantly more efficient and less susceptible to security vulnerabilities.â€
Speed
A smaller, lightweight codebase roughly translates into faster execution. Besides, encryption technologies like ChaCha20, Curve25519, BLAKE2s, SipHash24, HKDF speed up cryptography, which is where other VPNs lag. Assuming that real-world functioning of Surfshark doesn’t take a hit, its speed can be expected to improve even further.
Why You Should Stop Asking if VPNs Are DeadÂ
Longtime tech veteran Jeff Hussey says VPNsOpens a new window , a two decade old technology, are brittle and not built to scale for the connected world of 2020 and beyond. He believes VPNs for remote access isn’t the best approach to network security in today’s multi-perimeter era, yet organizations worldwide continue to use VPNs to mask location data. Meanwhile, Lance Johnson, VP of Marketing, Trustgrid says newer technology like SASE, which is gathering steam stitches together elements of security and wide-area networkingOpens a new window (WAN) into a cloud-native solution is well-positioned to edge out VPNs.
So, where does that leave VPNs? It’s true new technologies are permeating the market faster than ever before. However, it takes quite a lot of time for any innovation to become commercially successful. It depends on the demand for such a model, the complexity of implementations, cost, and other factors.
Meanwhile, consumer VPN services usually aim to make privacy protection accessible for the masses by offering an affordable solution that is also easy to set up and use. “Essentially, the ultimate goal of a VPN is to keep users’ information private and secure, whereas SASE has an entirely different target audience. In any case, VPN technology will not disappear as it is a cornerstone on which enterprise security mechanisms adhere,†Racai said, in closing.
Let us know if you liked this news on LinkedInOpens a new window , TwitterOpens a new window , or FacebookOpens a new window . We would love to hear from you!