ExpressVPN Gets Faster and More Secure, Thanks To Rust (zdnet.com) 24
ZDNet's Steven Vaughan-Nichols shares some of the latest improvements to ExpressVPN following its codebase transition from C to Rust. An anonymous reader quotes an excerpt from the report: ExpressVPN is one of ZDNET's favorite Virtual Private Networks (VPNs). The popular VPN's transformation of its Lightway codebase from C to Rust promises to make the service faster and more secure. For now, the updated Lightway 2.0 is only available via ExpressVPN's Aircove router with the February 4 AircoveOS v5 update. The Aircove, which we rate as the best VPN router, costs $189. With this device, you can protect your tech from unwanted snoopers without installing a VPN on each gadget. So, how much faster is the updated ExpressVPN? In my tests, I connected to the internet via my updated router over my 2 Gigabit per second (Gbps) AT&T Internet using a 2.5 Gbps Ethernet-connected Linux Mint desktop with a Wi-Fi 6 connection over my Samsung Galaxy 25 Plus smartphone.
Without the VPN engaged, I saw 1.6 Gbps speeds, which is about par. With the VPN switched on and using Lightway 2.0, I saw speeds in the 290 to 330 Megabit per second (Mbps) range to Toronto and London, England. Farther afield, I saw speeds around 250 to 280Mbps to Hong Kong and Seoul. That's about 20% faster than I had seen with earlier Lightway versions. I was impressed. This version of the VPN should also be more secure. As Pete Membrey, ExpressVPN's chief research officer, said in a statement: "At ExpressVPN, we innovate to solve the challenges of tomorrow. Upgrading Lightway from its previous C code to Rust was a strategic and straightforward decision to enhance performance and security while ensuring longevity."
The updated Lightway VPN protocol also uses ML-KEM, the newly finalized NIST standard for post-quantum encryption. This feature, wrote Membray in a blog post, "ensures your connection is secured by encryption designed not just for today's threats but for the quantum-powered challenges of the future." To ensure the integrity of the recoded Lightway protocol, ExpressVPN commissioned two independent security audits from cybersecurity firms Cure53 and Praetorian. Both audits yielded positive results, with only minor vulnerabilities identified and promptly addressed by ExpressVPN. In short, ExpressVPN is technically about as safe a VPN as they come.
Without the VPN engaged, I saw 1.6 Gbps speeds, which is about par. With the VPN switched on and using Lightway 2.0, I saw speeds in the 290 to 330 Megabit per second (Mbps) range to Toronto and London, England. Farther afield, I saw speeds around 250 to 280Mbps to Hong Kong and Seoul. That's about 20% faster than I had seen with earlier Lightway versions. I was impressed. This version of the VPN should also be more secure. As Pete Membrey, ExpressVPN's chief research officer, said in a statement: "At ExpressVPN, we innovate to solve the challenges of tomorrow. Upgrading Lightway from its previous C code to Rust was a strategic and straightforward decision to enhance performance and security while ensuring longevity."
The updated Lightway VPN protocol also uses ML-KEM, the newly finalized NIST standard for post-quantum encryption. This feature, wrote Membray in a blog post, "ensures your connection is secured by encryption designed not just for today's threats but for the quantum-powered challenges of the future." To ensure the integrity of the recoded Lightway protocol, ExpressVPN commissioned two independent security audits from cybersecurity firms Cure53 and Praetorian. Both audits yielded positive results, with only minor vulnerabilities identified and promptly addressed by ExpressVPN. In short, ExpressVPN is technically about as safe a VPN as they come.
Cool (Score:1)
When can I get it on my iPhone and AppleTV?
Re: Cool (Score:2)
After you pay apple a nominal fee
Re: (Score:1)
Why would I have to pay Apple anything? It's a free download.
You Think That's Anything? (Score:2)
I drank a glass of water last night and today my VPN is 63% faster. Do you think my VPN speed is related to by water consumption?
There is no way that Rust had ANY fucking impact on the VPN speed, let alone making it faster than a C language implementation.
I can push a 1.6Gbps VPN written in Python.
The Rust horseshit is getting deep on Slashdot. Deeper than the crypto-crap of yesteryear.
Re: You Think That's Anything? (Score:2)
There are a lot of reasons really. C doesn't include higher level data structures or concepts out of the box, by design. So you have to implement everything on your own by hand. This is especially true if you're using concurrency, which is something rust really shines at.
Could you do it as fast in C? Without a doubt. But you're also going to spend a lot more time on it both writing custom code and then hand optimizing all of it, and in return for all of that hard work you don't even get any memory safety gu
Re: (Score:2)
I think you're fanaticism is causing you to miss the point.
VPN speed has virtually no correlation on implementation language. Any language, even a slow language like Java or a scripting language like Python, can push a VPN at 1.6Gbps.
The articles attribution of increased VPN speed to using Rust over C is as devoid of validity as my claim that the glass of water made my VPN faster.
Re: (Score:2)
VPN speed has virtually no correlation on implementation language.
What hallucinogens are you on? I really need some of yours because actually making sense in a technical discussion is so unimaginative.
Re: You Think That's Anything? (Score:2)
drinkypoo obviously gave you too many poppers.
Re: (Score:2)
"Any language, even a slow language like Java or a scripting language like Python, can push a VPN at 1.6Gbps."
This is a dumb argument, and you're dumb for having made it.
Re: (Score:2)
Some common patterns are practically impossible to implement efficiently in C. For example, polymorphism. In C this is usually done by calling through function pointers whereas a properly polymorphic language can do the same with a tiny fraction of the call frames. Sometimes macros are used to try to get a similar effect in C and what you end up with is an ungodly steaming pile that will likely never be 100% reliable.
Re: (Score:2)
"There is no way that Rust had ANY fucking impact on the VPN speed, let alone making it faster than a C language implementation."
Sometimes you have to compile it several times to see the speed benefits.
"I can push a 1.6Gbps VPN written in Python."
Don't be ridiculous. Python can only implement a VPN by calling a VPN library written in C.
Re: (Score:2)
Don't be ridiculous. Python can only implement a VPN by calling a VPN library written in C.
BOOM! Roasted.
LOL.
Re: (Score:2)
This push of Rust into everything is suspicious (Score:2)
a. Rust is significantly better than all other alternatives. Which is unlikely the case in my unfamiliar with Rust opinion.
b. This push to adopt Rust is inorganic, there is a serious issue with it like compiler backdoor. This situation reminds me of Dual_EC_DRBG, where nobody could explain why there was so much push to switch to it from known and proven alternatives.
Re: (Score:2)
or
c. Slashdot is being paid/played by rust-lang.org to try to manufacture relevance.
Re: (Score:3)
At this point one of the following must be true: a. Rust is significantly better than all other alternatives. Which is unlikely the case in my unfamiliar with Rust opinion. b. This push to adopt Rust is inorganic, there is a serious issue with it like compiler backdoor. This situation reminds me of Dual_EC_DRBG, where nobody could explain why there was so much push to switch to it from known and proven alternatives.
I'd vote, with my conspiracy theorist segments, for option B. Since the modus operandi of most big movers and shakers in society these days is projection, saying that others are doing what you want to do, all the whining and teeth gnashing about how insecure all other languages are and always have been, Rust is in fact backdoored to hell and back and will ultimately be proven to be the least secure language ever used in such big pushes.
It does strike me as odd that there's not much more to back up Rust bein
Secure from Whom? (Score:3)
Probably OK if you want to keep your local ISP from selling your data but Snowden does not approve [x.com].
Still no IPv6 (Score:2)
And still no IPv6 support, hard pass.
Forcing all the traffic through CGNAT so the performance will suck, and cutting users off from thousands of sites - eg https://www.ev6.net/v6sites.ph... [ev6.net]
A Fledgling Desparte to Prove it Can Fly (Score:2)
No Rust is used in Lightway Core (Score:2)
Languages
C 87.7%
CMake 6.8%
CSS 3.4%
Shell 1.3%
Earthly 0.4%
Python 0.3%
Other 0.1%
HELLO?? Does anyone see Rust on that list?
Re: (Score:2)
HELLO?? Does anyone see Rust on that list?
Rust is homeopathic, man. It doesn't even need to be present... its psychic imprint is enough.
So much BS don't know where to start (Score:2)