WireGuard

WireGuard is a simple yet fast and modern VPN that employs cutting-edge cryptography. Our WireGuard system is faster, simpler, leaner, and more useful than IPsec. Our solution is intended to be a general-purpose VPN that can function on embedded devices in various situations. It was originally designed for the Linux kernel but is now cross-platform (Windows, macOS, BSD, iOS, and Android) and extensively deployable. It is still in the early stages of development, but it has the potential to be the most secure, user-friendly, and straightforward VPN option in the business.

Simple & Easy-to-use
Our solution aspires to be as simple as SSH to set up and use. A VPN connection is established simply by exchanging simple public keys, much like exchanging SSH keys, and the rest is handled transparently by WireGuard. It can even travel between IP addresses. There is no need to manage connections, worry about the state, manage daemons, or be concerned about what’s going on beneath the hood.

Secure cryptography
Cryptography used by WireGuard includes the Noise protocol framework, Curve25519, ChaCha20, Poly1305, BLAKE2, SipHash24, HKDF, and secure trusted constructions. Cryptographers reviewed it and found it to make conservative and reasonable choices.

A minimum attack surface
Easy implementation and simplicity are key features of WireGuard. It is intended to be built in a few lines of code and easily auditable for security vulnerabilities. In contrast to behemoths like *Swan/IPsec or OpenVPN/OpenSSL, where auditing massive codebases is a daunting undertaking even for big teams of security specialists, our solution is designed to be thoroughly reviewed by a single individual.