We never collect any activity or connection logs and engineer our systems to ensure sensitive information never touches the hard drive,” stated Harold Li, vice president at ExpressVPN. “But now with TrustedServer, we’re taking it a step further, by cutting the hard drive out of the picture entirely.
TORTOLA, British Virgin Islands (PRWEB) May 09, 2019
ExpressVPN, a top-ranked VPN provider, today announced their industry-first TrustedServer technology, which completely re-imagines server administration and management to deliver two major innovations that significantly enhance privacy and security for VPN users:
- TrustedServer technology has VPN servers run only on volatile memory (RAM), not on hard drives. This minimizes data risks by ensuring all information on a server is wiped every time it is rebooted.
- TrustedServer technology has each VPN server freshly load the latest software stack from a read-only image on boot, ensuring all servers run the exact same, up-to-date code when they start up.
TrustedServer runs on RAM only, preventing any information or intruders from persisting.
ExpressVPN TrustedServer runs off volatile memory, or RAM, so no data is ever written to the hard drive. Since RAM requires power to store data, TrustedServer can guarantee that all information on a server is wiped every time it is powered off and on again.
In the traditional server setup model used by most companies, the operating system requires read/write permissions to the hard drive in order to run applications. These hard drives retain all data until they are erased and overwritten, increasing the risk that servers could inadvertently contain sensitive user information. If someone were to hack or seize the server, they could gain access to this data. Even worse, attackers who do find their way in might be able to install a backdoor that remains indefinitely.
ExpressVPN TrustedServer technology addresses those security threats by making sure that absolutely nothing—neither information nor intruders—can remain on a server when it is rebooted.
“We never collect any activity or connection logs and engineer our systems to ensure sensitive information never touches the hard drive,” stated Harold Li, vice president at ExpressVPN. “But now with TrustedServer, we’re taking it a step further, by cutting the hard drive out of the picture entirely.”
TrustedServer ensures consistency across ExpressVPN’s VPN server network by always booting from the latest read-only image.
TrustedServer also introduces key innovation that ensures all ExpressVPN servers are running the same, most up-to-date software and configuration. Each time a server powers up, it loads the latest read-only image containing the entire software stack, operating system and all. The image is cryptographically signed by ExpressVPN, and servers will not operate if that signature is not valid. This groundbreaking approach ensures greater consistency, and therefore better security.
“TrustedServer means that we know that each and every one of our 3,000+ servers worldwide loads and runs the same, most up-to-date code each time they start up—with the right patches and configuration for optimum security and performance,” continued Li. “The more software consistency there is across a network, the less likely that there are vulnerabilities or misconfigurations, and the more confident we can be that the software that we audit and test is actually what’s running on all servers.”
With traditional server administration, every incremental update that is applied one by one across thousands of servers is an opportunity for differences among them to arise. The more servers a company has, and the more time passes, the less confident that company can be that every single server is running the exact same code and configured the same way. As a result, a server that was set up years ago might be running software in an unexpected way that’s dangerously different from what the company’s engineers are testing or auditing today.
TrustedServer means that we know exactly what’s running on each and every ExpressVPN server—minimizing the risk of vulnerabilities or misconfiguration. With the operating system effectively reinstalled with every single reboot, TrustedServer dramatically reduces security risks.
Founded 10 years ago, ExpressVPN is one of the world’s largest providers of VPN services, enabling users to protect their privacy and security online with just a few clicks. The company’s award-winning software for Windows, Mac, iOS, Android, Linux, routers, and browsers secures user information and identities with best-in-class encryption and leakproofing.
With 3,000+ servers across 94 countries and new servers added each week, ExpressVPN provides a fast connection wherever users are and offers uncensored access to sites and services from around the world. Based in the British Virgin Islands, ExpressVPN has a globally distributed team working in cities including Toronto, London, Paris, Zagreb, Singapore, Hong Kong, Perth, Manila, and Tokyo.
A vocal advocate for internet freedom and privacy, ExpressVPN is a proud financial supporter of nonprofit organizations fighting to protect digital rights, including the Electronic Frontier Foundation, the Internet Defense League, OpenMedia, and others. To learn more about ExpressVPN’s privacy and security solutions, visit expressvpn.com.