AdGuard open-sources its proprietary VPN protocol, TrustTunnel.
TrustTunnel , a modern, secure open-source VPN protocol based on the proprietary communication technology used by
AdGuard VPN protocol goes open-source
https://adguard-vpn.com/en/blog/adguard-vpn-protocol-goes-open-source-meet-trusttunnel.html
TrustTunnel App - App Store
https://apps.apple.com/us/app/trusttunnel/id6755807890
TrustTunnel – Apps on Google Play
https://play.google.com/store/apps/details?id=com.adguard.trusttunnel
TrustTunnel is the proprietary communication protocol that powers AdGuard VPN. AdGuard explains that existing VPN protocols, such as OpenVPN, WireGuard, and IPSec, have issues with being susceptible to detection and blocking at the network level, and that trying to hide communications can lead to slower speeds. TrustTunnel is designed to address these issues while aiming to balance privacy and performance.
A key feature of TrustTunnel is that it is designed to 'blend in with normal HTTPS traffic.' While based on TLS, it uses the widely used HTTP/2 or HTTP/3 transports on the web, making it difficult to identify, throttle, or block communications.
Traditional hidden VPNs use a TCP connection to wrap VPN data and disguise it as regular web traffic, but AdGuard points out that TCP acknowledgments can easily cause latency. TrustTunnel allocates a dedicated stream for each connection, combining multiple packets for more efficient transmission, optimizing it for mobile devices and ensuring performance even in unstable network environments.
Regarding the goal of open sourcing, AdGuard states, 'First, we want to make the protocols that run AdGuard VPN public so that users can audit them.' Furthermore, rather than being 'open source in name only' that only certain services can use it, or simply being a PR initiative, they want to create a system that can be widely used by other services as well, and where the community can participate in its evolution.
To that end, AdGuard has published the first version of the TrustTunnel specification and released the complete server and client code as a reference implementation under the Apache 2.0 license. TrustTunnel can be used without installing AdGuard VPN; users can build their own server and connect to it using the open-source TrustTunnel client. Command-line clients are available for Linux, Windows, and macOS, and client apps are also available for iOS and Android.
In terms of convenience, it is said to feature flexible routing functions and real-time request logs. You can fine-tune which communications go through the tunnel or remain on the local network, and you can easily control which domains or apps go through the VPN. Furthermore, the logs let you see where your device's traffic is sent, how rules are applied, and which connections use the tunnel.
At the time of writing, TrustTunnel's source code and specifications are available on GitHub.
TrustTunnel/TrustTunnel: Modern, fast and obfuscated VPN protocol
https://github.com/TrustTunnel/TrustTunnel
Related Posts:
in Software, Posted by log1i_yk