Language Selection

English French German Italian Portuguese Spanish

ProtonVPN Applications are Now 100% Open Source

Filed under
OSS
Security

But can you trust your VPN service provider? On more than one occasion, the VPN providers have been caught logging, snooping or sharing data with third party. What to do in such cases?

I have shared a list of privacy focused VPNs for Linux in the past and ProtonVPN is one of them. The good news is that ProtonVPN has just open sourced all its apps and underwent an independent security audit.

Read more

More by Mark Wyciślik-Wilson/BetaNews

  • ProtonVPN goes open source to build trust

    The Swiss firm says that not only is it releasing the source code for its VPN tool on all platforms, but also that it has conducted an independent security audit. Created by CERN scientists, ProtonVPN has amassed millions of users since it launched in 2017 and the decision to open source the tool gives users and security exports the opportunity to analyze the tool very closely.

ProtonVPN apps handed to open source community

  • ProtonVPN apps handed to open source community in transparency push

    The Windows audit report (.PDF) identified two low-risk vulnerabilities related to jailbreaking and a lack of SSL certificate pinning. The macOS report (.PDF) uncovered no bugs at all, whereas one medium-risk vulnerability and four low-risk vulnerabilities were discovered in the Android audit (.PDF), the worst of which was an insecure logout issue.

    Finally, the iOS report (.PDF) documents two medium-risk vulnerabilities and two low-risk vulnerabilities, the most serious security flaw being the use of hardcoded credentials and sensitive data contained in memory.

    All of the vulnerabilities were either accepted or fixed at the time of disclosure.

More coverage and original statement

  • Source Code Released for All ProtonVPN Apps

    Proton, which a few months ago released the source code for its ProtonMail app for iOS, believes open source software is better in terms of safety and accountability, and the company plans on releasing all of its client-facing software as open source in the future.

  • All ProtonVPN apps are now open source and audited

    We’re happy to be the first VPN provider to open source apps on all platforms (Windows, macOS, Android, and iOS) and undergo an independent security audit. Transparency, ethics, and security are at the core of the Internet we want to build and the reason why we built ProtonVPN in the first place.

    [...]

    The other important benefit of open sourcing our software is that it furthers our overall mission to build an Internet that’s more secure, private, and free by leveraging the power of the community. Security improvements can now be submitted by developers from around the world through our bug bounty program. And in some cases even features improvements from the community may be incorporated into the official ProtonVPN apps, similar to what we have done previously with the official ProtonVPN Linux client.

Latest Articles About ProtonVPN Liberation

  • ProtonVPN becomes first VPN to go fully open source

    ProtonVPN is the Swiss-based VPN run by the people behind the highly regarded ProtonMail encrypted email service.

    It has been a welcome addition to the VPN marketplace since launching in 2017 and despite its relative youth, it has hit the ground running in a way not too many other start-up VPNs have managed.

    Now, the guys behind ProtonVPN have taken two big steps which are likely to cement their reputation as one of the most dependable providers on the market. They have gone fully open source and submitted to a full independent security review.

  • ProtonVPN Makes its Software Open Source & Publishes Independent Audit Results

    ProtonVPN has always been one of the most respected and trustworthy VPN services. As noted in our hands-on review, you can count on having your privacy protected in the most secure way possible. In addition, this is a no-logs VPN service, which means that connection and usage logs are never collected. However, to further cement its position, this VPN service has now decided to open-source its software. We also have the results of the VPN’s latest independent audit, showing that ProtonVPN is a highly secure solution.

    When it comes to making its software open source, ProtonVPN counts on making its code as transparent as possible. This is a bold move as it can show potential weaknesses, considering that just about anyone can inspect the way this VPN functions. In other words, this move is showing us ProtonVPN’s confidence in its software, which is going to have positive long-term effects.

  • ProtonVPN Apps Open Sourced for Added Transparency and Security

    The code for ProtonVPN apps on all supported platforms - Android, iOS, macOS, and Windows - is now open source, the maker announces today, a move that follows a security audit from an independent party.

    The decision distances the service from all the other options on the market and is in line with the company's belief in ethics, transparency, and security as core values for a trusted VPN (virtual private network) provider.

  • Proton VPN Becomes The First Fully Open Source And Audited VPN

    In a blog post, ProtonVPN just announced that it is open-sourcing its source code and has released the security audit reports as well.

    With this step, ProtonVPN aims to become the most transparent and accountable VPN provider in the VPN market. The company has also conducted an independent security audit, which will become a crucial factor for users in trusting their VPN service.

    [...]

    ProtonVPN has operated as a free service as well as a premium one. It is currently used by millions around the world and serves as an important tool for Internet freedom in places like Iran, China, and Russia.
    While there are currently open-source VPN clients available, ProtonVPB is “the first to open source all their apps and publish a security audit of them all.”

    In a statement issued to Fossbytes, ProtonVPN said that its app differs quite significantly from other open-source VPN clients such as OpenVPN as they provide a complete VPN service and “include additional functionality such as kill switch, always-on VPN, IKEv2 protocol support, split tunneling, etc.”

ProtonVPN goes open-source: What this means for your privacy

  • ProtonVPN goes open-source: What this means for your privacy

    Virtual-private-network (VPN) provider ProtonVPN is open-sourcing all its client software, parent company Proton Technologies announced earlier this month.

    Code repositories for ProtonVPN's Windows, macOS, Android and iOS client apps, as well as one of its Linux command-line tools, are now available on GitHub for you to download (you can find links below) and tinker with.

    [...]

    Instead, what open-sourcing means is that software experts and independent developers can look at the software source code and examine it for security and privacy flaws. They can also suggest improvements, or make improvements themselves and release the updated versions for free.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Today in Techrights

Android Leftovers

Canonical Outs New Major Kernel Update for All Supported Ubuntu Releases

Available for the Ubuntu 19.10 (Eoan Ermine), Ubuntu 18.04 LTS (Bionic Beaver), and Ubuntu 16.04 LTS (Xenial Xerus) operating system series, the new Linux kernel security update is here to fix a vulnerability (CVE-2019-14615) affecting systems with Intel Graphics Processing Units (GPUs), which could allow a local attacker to expose sensitive information. It also addresses a race condition (CVE-2019-18683) discovered in the Virtual Video Test Driver (VIVID), which could allow an attacker with write access to /dev/video0 to gain administrative privileges, as well as a flaw (CVE-2019-19241) in Linux kernel’s IO uring implementation that could also allow a local attacker to gain administrative privileges. Another race condition (CVE-2019-19602) was fixed on x86 platforms, which could let a local attacker to cause a denial of service (memory corruption) or gain administrative privileges. Moreover, issues (CVE-2019-18786 and CVE-2019-19947) discovered in the Renesas Digital Radio Interface (DRIF) and Kvaser CAN/USB drivers could allow local attackers to expose sensitive information (kernel memory). Read more

10 Best Linux Terminal Emulators [2020 Edition]

Do you prefer terminal emulators over GUI? But there are times when the terminal’s decent styling seems boring. In such cases, you look for more options to customize the terminal just like we do while choosing Linux distros. If that’s the case, your wait is over as we bring the list of best terminal emulators for Linux that you can use to refresh your monotonous daily work. Along with the styling, you can also turn the single terminal into a multigrid, observing the activity of each terminal simultaneously. Read more