Why Proton VPN doesn't use RAM-only VPN servers
Proton VPN does not use RAM-only servers, arguing their security benefits are overstated. Instead, it relies on full-disk encryption, a no-logs policy, and strong privacy protections for user data.
Read original article
Proton VPN does not utilize RAM-only servers, despite their perceived security advantages over traditional hard drive servers. While RAM-only servers are promoted for their ability to erase data upon shutdown, Proton VPN argues that the security benefits are overstated. If a server is running, data can be accessed regardless of whether it is stored in RAM or on a hard drive. Proton VPN employs full-disk encryption on its hard drives, ensuring that data remains inaccessible without proper authentication, even if the server is seized while powered off. This encryption is robust, using AES-256 and off-site key storage to enhance security.
Proton VPN emphasizes a strict no-logs policy, verified through annual third-party audits, ensuring that even if servers are compromised, no user data is available. The company also considers the legal jurisdiction of its servers, opting for locations with strong privacy protections. While RAM-only servers may offer operational benefits, such as consistency and ease of updates, Proton VPN prioritizes the security provided by full-disk encryption. The company believes that effective privacy measures include a no-logs policy, regular audits, and the use of secure protocols. Ultimately, Proton VPN maintains that RAM-only servers do not provide significant privacy or security advantages compared to their encrypted hard drive approach.
Related
Introducing Docs in Proton Drive
Proton Drive introduces Docs, offering end-to-end encrypted collaborative document editing with privacy as a priority. Users can securely manage documents, free from surveillance, leveraging encryption and Swiss privacy laws.
Proton launches its own version of Google Docs
Proton introduces Proton Docs, an encrypted alternative to Google Docs in Proton Drive. It offers advanced features for various industries, supports real-time collaboration, and is part of Proton's expanding privacy-focused product lineup.
Proton just launched a privacy-focused alternative to Google Docs
Proton Docs, part of the Proton suite, offers a privacy-focused alternative to Google Docs. It ensures end-to-end encryption, catering to users concerned about data privacy, with plans for multi-platform support.
Proton Mail Adds an Open-Source AI Writing Assistant to Take on Gmail
Proton Mail launches "Proton Scribe," an AI writing assistant for business users, ensuring data privacy with local processing and zero-access encryption. Available for business plans with free trials and GitHub access.
Proton Wallet – a safer way to hold Bitcoin
Proton introduces Proton Wallet, a self-custodial Bitcoin wallet for full asset control. It enhances accessibility in regions with high inflation, offering encryption, easy transactions, global purchases, and robust security measures. Operated by Proton Financial AG.
12 commentsIf the machine has no persistent storage and boots from a medium that is provably read-only (i.e. a DVD or a netboot image), it's always going back to a known state every time it comes back up.
The obvious benefit of having a ram only vpn is eventually it will be shutdown or rebooted. An encrypted hard drive will have its data stored for practically the rest of time.
Nothing in this article tells me why Proton VPN is better than a Ram vpn.
https://en.wikipedia.org/wiki/Crypto_AG
And Proton does not inspire confidence.
https://expatcircle.com/cms/the-not-so-private-privacy-email...
Only once you get to a later claim that the logs they store on local disk "contain no personal information" (they claim; even in event of error?) is the earlier claim arguable for a relevant threat model.
This does not inspire confidence, and only displays their mediocrity and technical incompetence.
Are they unaware that you can update the OS running on ramdisk just like you can with regular disk?
Ok. But that doesn't protect you from cases where it is off. Like if the hard drive is confiscated or stolen.
> Full-disk encryption achieves the same end
Not entirely. The decryption key could be compromised. Or someone might figure out may have some way to crack the decryption (unlikely, but not impossible).
> A good VPN service has no logs worth seizing anyway
That is half of a good argument. The other half would be "and we disable swap so that parts of memory don't accidentally end up on disk". But they don't mention swap.
> Location, location, location
That might help against government seizure, but what if the disk is stolen?
Autocorrect?
This is just false. If your servers are seized I guarantee they also want your disk encryption password. How to prevent it? No disk, and no way into the OS without booting it with some special arguments.
Related
Introducing Docs in Proton Drive
Proton Drive introduces Docs, offering end-to-end encrypted collaborative document editing with privacy as a priority. Users can securely manage documents, free from surveillance, leveraging encryption and Swiss privacy laws.
Proton launches its own version of Google Docs
Proton introduces Proton Docs, an encrypted alternative to Google Docs in Proton Drive. It offers advanced features for various industries, supports real-time collaboration, and is part of Proton's expanding privacy-focused product lineup.
Proton just launched a privacy-focused alternative to Google Docs
Proton Docs, part of the Proton suite, offers a privacy-focused alternative to Google Docs. It ensures end-to-end encryption, catering to users concerned about data privacy, with plans for multi-platform support.
Proton Mail Adds an Open-Source AI Writing Assistant to Take on Gmail
Proton Mail launches "Proton Scribe," an AI writing assistant for business users, ensuring data privacy with local processing and zero-access encryption. Available for business plans with free trials and GitHub access.
Proton Wallet – a safer way to hold Bitcoin
Proton introduces Proton Wallet, a self-custodial Bitcoin wallet for full asset control. It enhances accessibility in regions with high inflation, offering encryption, easy transactions, global purchases, and robust security measures. Operated by Proton Financial AG.