IVPN Blog>Releases>Introducing quantum resistant WireGuard connections in IVPN apps

Introducing quantum resistant WireGuard connections in IVPN apps

Releases By Alexandr Stelnykovych | By Viktor Vecsei | Posted on August 7, 2023

Quantum computing poses a threat to VPN security due to its potential to break traditional encryption algorithms much faster.

In an attempt to mitigate this risk and provide quantum resistance, a PresharedKey (PSK) is now used in addition to existing encryption. A PresharedKey (PSK) is a secret key that is shared between the VPN client and server before establishing a connection.

This adds an extra layer of symmetric encryption to the connection, making it more difficult for potential quantum attackers to break the encryption. Using a Key Encapsulation Mechanism (KEM) with a PresharedKey (PSK) can increase the quantum resistance of a WireGuard connection, if the KEM is based on a post-quantum cryptographic algorithm.

Note, this approach doesn’t make the connection entirely quantum-proof as it still relies on classical cryptographic primitives.

Starting with the latest version of all IVPN apps, quantum-resistant WireGuard connections are initiated by default. No manual action is required to enable this feature. Quantum resistance does not affect the latency or the speed of the connection.

For more details read our explainer about quantum resistant VPN connections, or consult our FAQ article that addresses common questions.

Quantum resistant connections are available only with IVPN apps at this time, we will assess offering similar functionality for manual connections using a router or the native WireGuard client.

Apps WireGuard Security
We invite you to discuss this post in our Reddit community or on Twitter. You can also send your feedback to blog@ivpn.net.

Featured posts

IVPN News

Independent security audit concluded

By Nick Pestell

IVPN News

IVPN applications are now open source

By Viktor Vecsei

Releases

Beta IVPN Linux app released

By Viktor Vecsei

Related posts

Introducing device management for better control of logged in devices Releases

Introducing device management for better control of logged in devices

Posted on February 13, 2024 by Viktor Vecsei

We are introducing IVPN device management, an opt-in (disabled by default) feature that helps you review and log out from devices currently logged in to IVPN apps. This step is a direct response to frequent customer requests for better device controls.
Launch of IVPN Light - short-term VPN access paid with BTC Lightning Releases

Launch of IVPN Light - short-term VPN access paid with BTC Lightning

Posted on September 15, 2023 by Viktor Vecsei

Equipped with a BTC Lightning wallet and some sats, you can now set up an IVPN WireGuard tunnel in minutes without creating an account or sharing any personal information. Benefits of using IVPN Light: Short duration access option, you can get a “throwaway” VPN tunnel for 3 hours or up to 30 days duration Priced in sats and affordable - you can purchase access for as little as 500 sats (3 hours) Access up to 5 locations or 1 entry-exit node MultiHop combination with one payment No account required - we only keep a record of your Lightning payment on our self-hosted BTCPayServer, no personal information is collected Differences versus a regular IVPN subscription:
Spotted a mistake or have an idea on how to improve this page?
Suggest an edit on GitHub.