DOCSLIB.ORG

A Glance Through the VPN Looking Glass Ipv6

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
A Glance Through the VPN Looking Glass Ipv6 Proceedings on Privacy Enhancing Technologies 2015; 2015 (1):77–91 Vasile C. Perta*, Marco V. Barbera, Gareth Tyson, Hamed Haddadi1, and Alessandro Mei2 A Glance through the VPN Looking Glass: IPv6 Leakage and DNS Hijacking in Commercial VPN clients Abstract: Commercial Virtual Private Network (VPN) ser- garding untrusted or malicious parties observing and/or ma- vices have become a popular and convenient technology for nipulating user communications. This has contributed to a users seeking privacy and anonymity. They have been applied rise in the popularity of tools promising end-users a pri- to a wide range of use cases, with commercial providers of- vate and/or anonymous online experience [5–9]. Among them, ten making bold claims regarding their ability to fulfil each VPN-based solutions are receiving an increasing amount of at- of these needs, e.g., censorship circumvention, anonymity and tention [8, 10, 11]. In fact, the market today is littered with a protection from monitoring and tracking. However, as of yet, number of low-cost commercial VPN services, claiming to be the claims made by these providers have not received a suf- able to enhance user security and privacy, or even to provide ficiently detailed scrutiny. This paper thus investigates the anonymity, by tunneling their Internet traffic in an encrypted claims of privacy and anonymity in commercial VPN services. form to an (ideally) trusted remote endpoint. We analyse 14 of the most popular ones, inspecting their inter- There are several use cases that may have contributed to nals and their infrastructures. Despite being a known issue, our this spike in popularity. For example, the use of public net- experimental study reveals that the majority of VPN services works has increased dramatically in-line with the expansion suffer from IPv6 traffic leakage. The work is extended by de- of the mobile device market. Such infrastructures are ripe veloping more sophisticated DNS hijacking attacks that allow for attack (e.g., stealing credentials, snooping, session hijack- all traffic to be transparently captured. We conclude discussing ing [12–14]), leading some users to securely direct their traf- a range of best practices and countermeasures that can address fic through a VPN tunnel as a solution for safeguarding their these vulnerabilities. interactions [15]. Other users may be attracted by VPN tun- nel encryption as a way to avoid unwanted attention, or sim- Keywords: VPN, IPV6, DNS hijacking ply to hide their actions from their ISP or other passive ob- DOI 10.1515/popets-2015-0006 servers. Others turn to VPN services for more pragmatic rea- Received 11/22/2014; revised 2/16/2015; accepted 2/17/2015. sons, wishing to circumvent Internet censorship by tunnel- ing through firewalls [16], or accessing content that is either blocked by their ISP or restricted based on a country’s IP ad- 1 Introduction dresses (e.g., BBC iPlayer, Hulu, Netflix). In response to the latter, many VPN services allow users to select their exit points Recent revelations regarding massive surveillance projects [1] so that they can gain IP addresses in a number of different and the restrictions that some governments impose on their countries or administrative domains. Finally VPN services are citizens [2–4] have increased the general public’s concern re- widely used by citizens facing government-supported large- scale Internet censorships events, as revealed by recent stud- ies [3,4]. All commercial VPN service providers support the above *Corresponding Author: Vasile C. Perta: Sapienza University of use cases to some extent, although their capability to preserve Rome, E-mail: [email protected] user privacy and anonymity has already raised some ques- Marco V. Barbera: Sapienza University of Rome, E-mail: bar- tions [17]. In fact, a common misconception is that the word [email protected] “private” in the VPN initialism is related to the end-user’s pri- Gareth Tyson: Queen Mary University of London, E-mail: [email protected] vacy, rather than to the interconnection of private networks. Hamed Haddadi1: Queen Mary University of London, E-mail: In reality, privacy and anonymity are features that are hard [email protected]. This work was done while the author was to obtain, requiring a careful mix of technologies and best at Qatar Computing Research Institute. practices that directly address a well-defined adversarial/threat 2 Alessandro Mei : Sapienza University of Rome, E-mail: model [5, 17]. In other words, there is no silver bullet within [email protected]. This work has been partially supported by a Google this domain. For instance, it is clear that simply tunneling traf- Faculty Research Grant 2013. fic through a VPN cannot provide the same anonymity guar- Brought to you by | Imperial College London Authenticated Download Date | 2/8/18 10:19 AM A Glance through the VPN Looking Glass: IPv6 Leakage and DNS Hijacking in Commercial VPN clients 78 antees of more rigorous (and vetted) systems such as Tor [5]. 2 Commercial VPN services This does not come as a surprise, as VPNs were not originally intended to provide anonymity and/or privacy. We begin by surveying a number of commercial VPN services Still, the appeal that these services have for the general to understand their infrastructures and technologies. public is very high, perhaps because of their ease of use, their relatively high performance, their effective marketing strate- gies, and the bold statements the providers make, though in 2.1 Overview of Commercial VPN service absence of objective evidence in their support. The resulting blind faith that uninformed users may put into these services providers is thus a worrisome problem that has to be tackled effectively and rapidly. A large range of commercial VPN services exists today. We Within this context, we contribute by shedding light on therefore begin our study by performing an analysis of the the privacy and anonymity features of the popular commercial market, registering credentials with 14 services. This set has VPN services available today on the market. We use an ex- been selected due to their widespread popularity and adver- perimental approach, subscribing to 14 services, downloading tised features. All the experiments were carried out during the their recommended clients on both desktop and mobile sys- period September – December, 2014. Given the impossibility tems, and testing them in our lab. Our findings confirm the of objectively measuring it, popularity was approximated with criticality of the current situation: many of these providers leak the number of times each VPN service was mentioned in the all, or a critical part of the user traffic in mildly adversarial en- first 20 Google results corresponding to queries such as “Best vironments. The reasons for these failings are diverse, not least VPN” or “Anonymous VPN”. The idea was to identify the sub- the poorly defined, poorly explored nature of VPN usage, re- set of providers that the average user would be most likely to quirements and threat models. purchase, based on public reviews, forum mentions, and so on. This paper is organised as follows. We first survey the Our selection was further augmented with VPN services that, tunneling technologies most commonly used by VPN service although not among the most popular, advertised distinctive providers (§2), finding that many still rely on outdated tech- features that were relevant to our study. These include Mull- nologies such as PPTP (with MS-CHAPv2), that can be easily vad, which to the best of our knowledge is the only provider broken through brute-force attacks [18]. We then show that mentioning IPv6 leakage protection; Hotspot Shield, promis- the vast majority of commercial VPNs clients suffer from data ing WiFi security in untrusted hotspots; and TorGuard, which leakage in dual stack networks (i.e., those supporting both explicitly targets BitTorrent users. Table1 lists the providers IPv4 and IPv6), sending large amounts of traffic over the native selected. interface, unbeknown to the user (§3). By exploring various applications, websites and operating systems, we show that significant amounts of traffic are therefore exposed to public 2.2 VPN service infrastructure detection, while users retain the belief that all their interactions are securely occurring over the tunnel (§4). Most importantly, We next briefly explore the infrastructures used by commercial we find that the small amount of IPv6 traffic leaking outside of VPN services, as observed from our experiments. As Table1 the VPN tunnel has the potential to actually expose the whole shows, the number of available servers (exit points) can vary user browsing history even on IPv4 only websites. We further significantly across providers, ranging from several hundreds extend this analysis by delineating a DNS hijacking attack that of the top 4 down to less than 10 (a small number of servers exploits another key vulnerability in many VPN configurations could indicate the capability of dynamically adding more re- (§5). Through this attack, a substantial amount of IPv4 traffic sources, based on the service utilisation). Figure1 presents the can be leaked from the VPN tunnel too. distribution of exit points across countries, highlighting a sig- It is important to note that, worryingly, the insecurity of nificant bias towards the United States (US). This is probably PPTP (with MS-CHAPv2), as well as IPv6 and DNS leakage related to the amount of content that is only accessible from in VPNs are not new to the community [17–20]. Despite this, the US, e.g., Hulu, Showtime Anytime, HBO GO. Countries our study reveals that many commercial VPN services still fail with strict privacy laws (e.g., Netherlands) also seem attractive to properly secure user traffic. These low-cost solutions there- as VPN tunnel exit points, perhaps driven by users concerned fore raise many questions in terms of trust and reliability.
Load more

Recommended publications
  • Antmonitor: a System for Monitoring from Mobile Devices
    AntMonitor: A System for Monitoring from Mobile Devices Anh Le Janus Varmarken Simon Langhoff CalIT2, UC Irvine IT Univ. of Copenhagen IT Univ. of Copenhagen [email protected] [email protected] [email protected] Anastasia Shuba Minas Gjoka Athina Markopoulou CalIT2, EECS, CPCC CalIT2, UC Irvine CalIT2, EECS, CPCC UC Irvine [email protected] UC Irvine [email protected] [email protected] ABSTRACT 1. INTRODUCTION We propose AntMonitor – a system for passive monitoring, Mobile devices, such as smart phones and tablets, have collection and analysis of fine-grained, large-scale packet become ubiquitous. With multiple wireless interfaces, in- measurements from Android devices. AntMonitor is the first cluding Wi-Fi and 3G/4G, these devices have persistent In- system of its kind that combines the following properties: (i) ternet connectivity throughout the day. In fact, the amount it provides participating users with fine-grained control of of traffic generated by these devices has grown rapidly in re- which data to contribute; (ii) it does not require administra- cent years and is expected to grow by 10 times in the next tive privileges; (iii) it supports client-side analysis of traffic; 5 years [1]. As a result, collecting and studying mobile net- and (iv) it supports collection of large-scale, fine-grained, work traffic has become a critical task in network infrastruc- and semantic-rich traffic. The first three properties benefit ture planning and Internet measurement research. mobile users, by giving them control over their privacy while There has been a rich body of literature that studies mo- also enabling a number of services to incentivize their par- bile network traffic [2, 3, 4, 5, 6].
    [Show full text]
  • Download Secure Vpn for Android Download Secure Vpn for Android
    download secure vpn for android Download secure vpn for android. Completing the CAPTCHA proves you are a human and gives you temporary access to the web property. What can I do to prevent this in the future? If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware. If you are at an office or shared network, you can ask the network administrator to run a scan across the network looking for misconfigured or infected devices. Cloudflare Ray ID: 6686f3ad9d2384a4 • Your IP : 188.246.226.140 • Performance & security by Cloudflare. Download secure vpn for android. Password management for Android. Free account authenticator. Free Android private file storage. Free app for extra security. A powerful security tool for Android. Free VPN for mobile devices. Paid VPN service. Free VPN server access app. Free VPN for Android. Security app for mobile. Top Security & VPN. Add Us To Your Social Channels. Subscribe. Upgrade your lifestyle. Digital Trends helps readers keep tabs on the fast-paced world of tech with all the latest news, fun product reviews, insightful editorials, and one- of-a-kind sneak peeks. Digital Trends may earn a commission when you buy through links on our site. Download secure vpn for android. Completing the CAPTCHA proves you are a human and gives you temporary access to the web property. What can I do to prevent this in the future? If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware.
    [Show full text]
  • Webrtc IP Address Leaks Nasser Mohammed Al-Fannah Information Security Group Royal Holloway, University of London Email: [email protected]
    1 One Leak Will Sink A Ship: WebRTC IP Address Leaks Nasser Mohammed Al-Fannah Information Security Group Royal Holloway, University of London Email: [email protected] Abstract—The introduction of the WebRTC API to modern browsers and mobile applications with Real-Time Commu- browsers has brought about a new threat to user privacy. nications (RTC) capabilities1. Apparently, identifying one or WebRTC is a set of communications protocols and APIs that provides browsers and mobile applications with Real-Time Com- more of the client IP addresses via a feature of WebRTC was 2 munications (RTC) capabilities over peer-to-peer connections. first reported and demonstrated by Roesler in 2015. In this The WebRTC API causes a range of client IP addresses to paper we refer to the WebRTC-based disclosure of a client IP become available to a visited website via JavaScript, even if a address to a visited website when using a VPN as a WebRTC VPN is in use. This is informally known as a WebRTC Leak, Leak. and is a potentially serious problem for users using VPN services The method due to Roesler can be used to reveal a for anonymity. The IP addresses that could leak include the client public IPv6 address and the private (or local) IP address. number of client IP addresses via JavaScript code executed The disclosure of such IP addresses, despite the use of a VPN on a WebRTC-supporting browser. Private (or internal) IP connection, could reveal the identity of the client as well as address(es) (i.e. addresses only valid in a local subnetwork) enable client tracking across websites.
    [Show full text]
  • Express Vpn for Windows 10 Download How to Get an Expressvpn Free Trial Account – 2021 Hack
    express vpn for windows 10 download How to Get an ExpressVPN Free Trial Account – 2021 Hack. The best way to make sure ExpressVPN is the right VPN for you is to take it for a test drive before you commit and make sure its features fit your needs. Unlike some other VPNs, ExpressVPN doesn’t have a standard free trial. But it does have a no-questions-asked, 30-day money-back guarantee. So you can test out the VPN with no limitations, risk-free. If at any point during those 30 days, you decide that ExpressVPN isn’t right for you, you can just request a refund. This is super simple: I’ve tested it using several accounts, and got my money back every time. ExpressVPN Free Trial : Quick Setup Guide. It’s easy to set up ExpressVPN and get your 30 days risk-free. Here’s a step-by-step walkthrough that will have you ready in minutes. Head over to the ExpressVPN free trial page, and select, “Start Your Trial Today” to go right to their pricing list. Choose your subscription plan length, and then enter your email address and payment details. Note that longer plans are much cheaper. ExpressVPN’s long-term plans are the most affordable. It’s easy to download the app to your device. The set up for the ExpressVPN app is simple, and fast. Request a refund via live chat. Try ExpressVPN risk-free for 30-days. Free Trial Vs. Money-Back Guarantee. The trial period for ExpressVPN is really a 30-day money-back guarantee, but this is better than a free trial.
    [Show full text]
  • An Investigation Into the Security and Privacy of Ios VPN Applications
    An Investigation Into the Security and Privacy of iOS VPN Applications Jack Wilson Division of Cybersecurity School of Design and Informatics Abertay University, Dundee A thesis submitted for the degree of Bachelor of Science with Honours in Ethical Hacking 1st May 2018 Word Count: 11,448 Abstract Due to the increasing number of recommendations for people to use VPN’s for privacy reasons, more app developers are creating VPN apps and publishing them on the Apple App Store and Google Play Store. In this ‘gold rush’, apps are being developed quickly and, in turn, not being developed with security fully in mind. This paper investigated a selection of free VPN applications available on the Apple App Store (for iOS devices) and test the apps for security and privacy. This includes testing for any traffic being transmitted over plain HTTP, DNS leakage and transmission of personally-identifiable information (such as phone number, IMEI 1, email address, MAC address) and evaluating the security of the tunnelling protocol used by the VPN. The testing methodology involved installing free VPN apps on a test device (an iPhone 6 running iOS 11), simulating network traffic for a pre-defined period of time and capturing the traffic (either through ARP spoofing, or through a proxy program such as Burpsuite). This allows for all traffic to be analysed to check for anything being sent without encryption. Other issues that often cause de-anonymisation with VPN applications such as DNS leakage can be tested using websites such as dnsleaktest.com. The research found several common security issues with the VPN applications that were tested, with a large majority of the applications tested failing to implement HTTPS.
    [Show full text]
  • Applications Log Viewer
    4/1/2017 Sophos Applications Log Viewer MONITOR & ANALYZE Control Center Application List Application Filter Traffic Shaping Default Current Activities Reports Diagnostics Name * Mike App Filter PROTECT Description Based on Block filter avoidance apps Firewall Intrusion Prevention Web Enable Micro App Discovery Applications Wireless Email Web Server Advanced Threat CONFIGURE Application Application Filter Criteria Schedule Action VPN Network Category = Infrastructure, Netw... Routing Risk = 1-Very Low, 2- FTPS-Data, FTP-DataTransfer, FTP-Control, FTP Delete Request, FTP Upload Request, FTP Base, Low, 4... All the Allow Authentication FTPS, FTP Download Request Characteristics = Prone Time to misuse, Tra... System Services Technology = Client Server, Netwo... SYSTEM Profiles Category = File Transfer, Hosts and Services Confe... Risk = 3-Medium Administration All the TeamViewer Conferencing, TeamViewer FileTransfer Characteristics = Time Allow Excessive Bandwidth,... Backup & Firmware Technology = Client Server Certificates Save Cancel https://192.168.110.3:4444/webconsole/webpages/index.jsp#71826 1/4 4/1/2017 Sophos Application Application Filter Criteria Schedule Action Applications Log Viewer Facebook Applications, Docstoc Website, Facebook Plugin, MySpace Website, MySpace.cn Website, Twitter Website, Facebook Website, Bebo Website, Classmates Website, LinkedIN Compose Webmail, Digg Web Login, Flickr Website, Flickr Web Upload, Friendfeed Web Login, MONITOR & ANALYZE Hootsuite Web Login, Friendster Web Login, Hi5 Website, Facebook Video
    [Show full text]
  • Peer-To-Peer Protocol and Application Detection Support
    Peer-to-Peer Protocol and Application Detection Support This appendix lists all the protocols and applications currently supported by Cisco ASR 5500 ADC. • Supported Protocols and Applications, page 1 Supported Protocols and Applications This section lists all the supported P2P protocols, sub-protocols, and the applications using these protocols. Important Please note that various client versions are supported for the protocols. The client versions listed in the table below are the latest supported version(s). Important Please note that the release version in the Supported from Release column has changed for protocols/applications that are new since the ADC plugin release in August 2015. This will now be the ADC Plugin Build number in the x.xxx.xxx format. The previous releases were versioned as 1.1 (ADC plugin release for December 2012 ), 1.2 (ADC plugin release for April 2013), and so on for consecutive releases. New in this Release This section lists the supported P2P protocols, sub-protocols and applications introduced in the ADC Plugin release for December 1, 2017. ADC Administration Guide, StarOS Release 21.6 1 Peer-to-Peer Protocol and Application Detection Support New in this Release Protocol / Client Client Version Group Classification Supported from Application Release 6play 6play (Android) 4.4.1 Streaming Streaming-video ADC Plugin 2.19.895 Unclassified 6play (iOS) 4.4.1 6play — (Windows) BFM TV BFM TV 3.0.9 Streaming Streaming-video ADC Plugin 2.19.895 (Android) Unclassified BFM TV (iOS) 5.0.7 BFM — TV(Windows) Clash Royale
    [Show full text]
  • Best VPN Services in 2017 (Speed, Cost & Usability Reviews)
    10/8/2017 Best VPN Services in 2017 (Speed, Cost & Usability Reviews) Best VPN Services VPN Reviews & In-Depth Comparisons Brad Smith Sep 18, 2017 With the help of John & Andrey (https://thebestvpn.com/contact-us/), we’ve put together a list of best VPNs. We compared their download/upload speed, support, usability, cost, servers, countries and features. We also analyzed their TOS to see if they keep logs or not and whether they allow P2P and work with Netflix. here’s a link to the spreadsheet (https://docs.google.com/spreadsheets/d/11IZdVCBjVvbdaKx2HKz2hKB4F Z_l8nRJXXubX4FaQj4/) You want to start using a VPN, but don’t know which software/service to use? In this page, we’ve reviewed 30+ most popular VPN services (on going process). In order to find out which are best VPNs, we spent some time on research and speed testing: 1. Installed 30+ VPN software on our personal devices, such as Windows, Mac, Android and iOS and compared their usability. 2. Performed Download/Upload speed tests on speedtest.net to see which had best performing servers. 3. Double checked if they work with Netflix and allow P2P. 4. Read their TOS to verify if they keep logs or not. 5. Compared security (encryption and protocols). That means we’ve dug through a large number of privacy policies (on logging), checked their features, speed, customer support and usability. If you know a good VPN provider that is not listed here, please contact us and we’ll test it out as soon as possible. 5 Best VPNs for Online Privacy and Security Here are the top 5 VPN services of 2017 after our research, analysis, monitoring, testing, and verifying.
    [Show full text]
  • How to Download Torrent Anonymously How to Download Torrent Anonymously
    how to download torrent anonymously How to download torrent anonymously. Completing the CAPTCHA proves you are a human and gives you temporary access to the web property. What can I do to prevent this in the future? If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware. If you are at an office or shared network, you can ask the network administrator to run a scan across the network looking for misconfigured or infected devices. Another way to prevent getting this page in the future is to use Privacy Pass. You may need to download version 2.0 now from the Chrome Web Store. Cloudflare Ray ID: 66b6c3aaaba884c8 • Your IP : 188.246.226.140 • Performance & security by Cloudflare. Download Torrents Anonymously: 6 Safe And Easy Ways. Who doesn’t want to know how to download torrents anonymously? The thing is, in order to download torrents anonymously you don’t need to have a lot of technical know-how. All you need to download torrents anonymously is some grit and a computer with an internet connection. The technology world never remains the same. In fact, new development and discoveries come to the surface of this industry every day. They also come into the attention of online users every year. Moreover, this allows us to do much more than we could do in the past, in faster and easier ways. A highly relevant aspect to mention at this stage is that: Now we can also download torrents anonymously from best torrent sites.
    [Show full text]
  • A Dark Web Threat Intelligence Strategy for Law Enforcement
    A Dark Web Threat Intelligence Strategy for Law Enforcement Jennifer Chavez, Juanita L. Maya, Shavvon A. Cintron, Albert Elezovic, Krishna M. Bathula, Charles Tappert Seidenberg School Of CSIS, Pace University, New York, United States Email: fjc97793p, jm98078n, sc14840p, ae61195p, kbathula, ctappertg @pace.edu Abstract—To most internet users, the world wide web is what the everyday user encounter. What most users do not know, however, is there is more than one layer to the internet and the deeper one digs the more nefarious the internet becomes. This is partly due to the creation of The Onion Router allows malicious users to anonymously execute all levels of illegal transactions. With many criminal enterprises moving to this dark web few law enforcement agencies are equipped with dealing with such criminal investigations. This study investigates the use of web crawlers and other open source tools to monitor dark web sites with the hope is the information gathered can assist investigations methods of dark web crimes by law enforcement agencies. Index Terms—Dark Web, Deep Web, Crawlers, TOR, Law Enforcement I. INTRODUCTION When going on the world wide web, most individuals think of the typical websites, such as ’google.com’ for searching or ’facebook.com’ to connect with family and friends [1]. That is not the case; these typical websites used are just the first layer of the world wide web. There are three layers of the world wide web. The first layer of the world wide web, also known as the surface web, is what most internet users can see and utilize. The second layer of the world wide web is the deep web.
    [Show full text]
  • Tunnel Broker Ipv4/Ipv6 Mediante Openvpn
    Trabajo Fin de Grado Grado en Ingeniería de Tecnologías de Telecomunicación Tunnel Broker IPv4/IPv6 mediante OpenVPN Autor: José Luis Peña Higueras Tutor: Francisco José Fernández Jiménez Equation Chapter 1 Section 1 Dpto. de Telemática Escuela Técnica Superior de Ingeniería Universidad de Sevilla Sevilla, 2019 Trabajo Fin de Grado Grado en Ingeniería de Tecnologías de Telecomunicación Tunnel Broker IPv4/IPv6 mediante OpenVPN Autor: José Luis Peña Higueras Tutor: Francisco José Fernández Jiménez Profesor Colaborador Dpto. de Ingeniería Telemática Escuela Técnica Superior de Ingeniería Universidad de Sevilla Sevilla, 2019 Trabajo Fin de Grado: Tunnel Broker IPv4/IPv6 mediante OpenVPN Autor: José Luis Peña Higueras Tutor: Francisco José Fernández Jiménez El tribunal nombrado para juzgar el Trabajo arriba indicado, compuesto por los siguientes miembros: Presidente: Vocales: Secretario: Acuerdan otorgarle la calificación de: Sevilla, 2019 El Secretario del Tribunal A mi familia A mis maestros Agradecimientos En primer lugar, agradecer a mis padres, José Luis Peña Martínez y Francisca Higueras Ruiz por haberme ayudado durante todos los años de carrera y durante la realización de este proyecto. Ellos han estado en los buenos y malos momentos durante el paso por la carrera y me han proporcionado todo lo necesario para poder impartir estos estudios. Además me gustaría agradecer a mi hermano Francisco Javier por el apoyo durante la realización del proyecto. En segundo lugar, quiero agradecer a todos los profesores que han estado a lo largo de la carrera por darme todo el conocimiento necesario tanto en el ámbito académico como en el ámbito laboral. En especial, me gustaría agradecer a mi profesor Francisco José Fernández Jiménez por toda su ayuda durante todo el proyecto, por haber adaptado su horario a las necesidades que en muchas ocasiones tenía y sobre todo, por la orientación que me ha dado a lo largo de todo el proyecto.
    [Show full text]
  • VPN Report 2020
    VPN Report 2020 www.av-comparatives.org Independent Tests of Anti-Virus Software VPN - Virtual Private Network 35 VPN services put to test LANGUAGE : ENGLISH LAST REVISION : 20 TH MAY 2020 WWW.AV-COMPARATIVES.ORG 1 VPN Report 2020 www.av-comparatives.org Contents Introduction 4 What is a VPN? 4 Why use a VPN? 4 Vague Privacy 5 Potential Risks 5 The Relevance of No-Logs Policies 6 Using VPNs to Spoof Geolocation 6 Test Procedure 7 Lab Setup 7 Test Methodology 7 Leak Test 7 Kill-Switch Test 8 Performance Test 8 Tested Products 9 Additional Product Information 10 Consolidations & Collaborations 10 Supported Protocols 11 Logging 12 Payment Information 14 Test Results 17 Leak & Kill-Switch Tests 17 Performance Test 19 Download speed 20 Upload speed 21 Latency 22 Performance Overview 24 Discussion 25 General Security Observations 25 Test Results 25 Logging & Privacy Policies 26 Further Recommendations 27 2 VPN Report 2020 www.av-comparatives.org Individual VPN Product Reviews 28 Avast SecureLine VPN 29 AVG Secure VPN 31 Avira Phantom VPN 33 Bitdefender VPN 35 BullGuard VPN 37 CyberGhost VPN 39 ExpressVPN 41 F-Secure Freedome 43 hide.me VPN 45 HMA VPN 47 Hotspot Shield 49 IPVanish 51 Ivacy 53 Kaspersky Secure Connection 55 McAfee Safe Connect 57 mySteganos Online Shield VPN 59 Norton Secure VPN 63 Panda Dome VPN 65 Private Internet Access 67 Private Tunnel 69 PrivateVPN 71 ProtonVPN 73 PureVPN 75 SaferVPN 77 StrongVPN 79 Surfshark 81 TorGuard 83 Trust.Zone VPN 85 TunnelBear 87 VPNSecure 89 VPN Unlimited 91 VyprVPN 93 Windscribe 95 ZenMate VPN 97 Copyright and Disclaimer 99 3 VPN Report 2020 www.av-comparatives.org Introduction The aim of this test is to compare VPN services for consumers in a real-world environment by assessing their security and privacy features, along with download speed, upload speed, and latency.
    [Show full text]