-
TrustedServer: Deep dive into the security of our server tech
This article is written by Shaun Smith, an engineering fellow at ExpressVPN and the creator of TrustedServer. In this article, we’re taking a deep dive into TrustedServer, our industry-leading VPN s...
-
Dev blog: A look inside Lightway
VPN protocols define how a client and a server authenticate each other, establish a connection, and transmit data through the created tunnel. Plenty of VPN protocols are available, each made for its o...
-
Why you can't judge a VPN by its server count
When it comes to choosing a VPN company, there are many things you'll want to take into account, such as do they provide good speeds? Do they have apps for all my devices? And are they well known and ...
-
ExpressVPN leak testing tools
The ExpressVPN Leak Testing Tools are an extensible suite of Python tools designed for both manual and automated leak testing of VPN applications. Developed by ExpressVPN security researchers, the too...
-
How ExpressVPN keeps its web servers patched and secure
This article explains ExpressVPN’s approach to security patch management for the infrastructure running the ExpressVPN website (not the VPN servers). In general, our approach to security is: Make s...
-
Technical Overview: Preventing DNS Leaks When Switching Network Interfaces
To effectively offer a user privacy and security, a VPN application must ensure that a user’s DNS requests remain private for the entire duration of the connection to the VPN. Applications usually d...
-
How to use Ansible Variables and Vaults
This post was originally published on July 17, 2017. How we use Ansible extensively at ExpressVPN Our development teams work independently, that is to say, a team owns their product for its full life ...
-
How ExpressVPN authenticates its apps
This post was originally published on June 9, 2017. How do ExpressVPN servers know which app belongs to a customer and which does not? On most apps, the authentication happens in the background. Once ...
-
The facts about the OSTIF OpenVPN source code audit
This post was originally published on May 15, 2017. With funding from the Open Source Technology Improvement Fund (OSTIF), a group of security experts from QuarksLab spent the first few months of 2017...
-
Your YouTube history exposed: Researcher identifies inherent security flaw in video streaming
This post was originally published on March 22, 2017. While researching how Internet Service Providers (ISPs) could optimize their services to improve users’ video-watching experiences, cyber-securi...