Virtual Private Network (VPN)
What is a VPN?
A virtual private network (VPN) masks your Internet protocol (IP) address, creating a private connection from a public wi-fi connection. A VPN is an essential tool for privacy and anonymity while using the public Internet because it establishes secure and encrypted connections.
Using a Wi-Fi network, especially one that is unsecured, means potential exposure of personal information to third parties, some of which may have malicious intentions. A VPN hides a lot of information, including your browsing history, your IP address, your location, your endpoint devices (including computers and smartphones), and your overall web activity. Cyber criminals often use unsecured connections to gain access to information that enables identity theft and other malicious activities. Helps to protect against these activities by creating an encrypted tunnel for all data you send and receive, unobserved by others.
Types of VPN
There are several different types intended for different use cases. The three main categories are remote access, intranet-based site-to-site, and extranet-based site-to-site. Practically speaking, most users encounter VPNs depending on their use as individual, personal, or corporate.
Individual VPNs refer to services meant for the personal use of individuals. Basic remote access networks, for example, allow users to connect to a secure remote server to access a private network. Reputable services include encryption to ensure the individual’s security isn’t compromised.
Corporate VPNs are intended for use by businesses in protecting their users and devices. Robust business networks deliver secure web connections to company devices, regardless of from where employees connect to the Internet.
Business use cases often include site-to-site Virtual networks, which provide multiple users in various locations with the ability to securely access each other’s resources. Secure communication among business departments, including those in different countries, is critical for corporate security, business continuity, and employee productivity.
How Virtual Private Networks Work
VPNs use virtual connections to create a private network, keeping any device you connect to a public wi-fi safe from hackers and malware, and protecting sensitive information from unauthorized viewing or interception. A VPN routes your device’s connection through a private server rather than the ISP, so that when your data reaches the Internet, it’s not viewable as coming from your device.
A virtual network keeps your data private using encryption, which turns your information into unreadable gibberish only decipherable using a key, which is known to your device. Different VPNs use somewhat different encryption processes, but the general process includes tunneling and your data is encoded as it travels between your device and the server, which then decrypts the data and sends it on to your destination, such as a website. The encryption process prevents anyone who may intercept the data between you and the server, such as a government agency or hacker, from being able to decipher its contents.
Two of the best-known and most popular secure network protocols used in VPN technology are Internet Protocol Security (IPSec) and secure sockets layer (SSL). IPSec connections use pre-shared keys on clients and servers in order to encrypt and send traffic back and forth. SSL VPNs use public key cryptography to securely exchange encryption keys.
Why You Should Use a VPN
Use of the Internet is now essential to global business, from shopping to banking to medicine to entertainment. Using Internet services involves transmitting very important information online, including credit card and social security numbers, and personal information, such as medical histories or home addresses. VPNs keep your Internet use safe from prying eyes, and, when used in a corporate setting, help keep business information from getting into the wrong hands.
For businesses, these provide improved security overall, improved remote access, independence from countries with strict Internet access laws, and a better total-cost-of-ownership when it comes to the aggregate costs of security and networking technologies used by corporate teams. VPNs can also provide safe and secure data sharing between employees and with individuals and groups outside of the business when necessary.
It is important to note that these do not make users completely anonymous on the Internet. Internet services requiring a login, such as Google or Facebook, know when you sign in, and websites can still leave cookies on your machine that identify your visits from particular Internet browsers. Anyone with direct access to the devices you use might also be able to view your activity. And law enforcement officials, depending on local legal authority, may be able to monitor your devices directly or require your virtual network service to give up records of your actions.
Choosing Your VPN Service
The following considerations should help guide selection of a VPN service.
Free vs. Paid: Free services are readily available, but often come with significantly limited functionality or a “catch” that makes up for the revenue the VPN provider isn’t making from you directly—such as tracking you online and selling your personal or browsing data to advertisers.
Secure communications protocols: The robustness of security in VPN tunnels depends on which security protocols are used. Be sure to review these protocols with your provider to ensure appropriate levels of security.
Data privacy protection: Provider privacy agreements can vary widely. Does your VPN provider keep traffic logs? Do its servers operate in countries with strict Internet governance laws and/or oppressive governments?
Capacity and scale: Some providers significantly throttle data, or impose limits on servers and other connecting devices. Consult your provider’s terms of service to ensure the right capacity for your business and that your VPN won’t be unduly limited.
Kill switch availability: A kill switch monitors your connection to the VPN’s server, so if the connection drops or fails, your device is automatically blocked from accidental exposure. Consider kill switch functionality a “last line of defense” that keeps your Internet connection blocked until the tunnel can be restored.
How Fortinet Can Help
Organizations adopting multi-cloud strategies need security-driven networking solutions to deliver a consistent security policy and appropriate access control for all corporate users, applications, and devices regardless of their location, especially at a time of increasing telework and remote network access. FortiGate IPsec and SSL VPN solutions accelerate productivity using high-performance crypto VPNs.