The most advanced VPN server technology, independently audited to confirm essential privacy protections. It’s ExpressVPN TrustedServer.
This video highlights how ExpressVPN TrustedServer’s key innovations work together to deliver a more secure internet experience for you.
Can’t see the video? Download the transcript (PDF, 84kb)
The typical way of running servers relies on hard drives, which retain all data until they are erased and written over. This raises the risk that servers could inadvertently contain sensitive information. That data could be at risk if a third party were to hack or seize the server. Worse, hackers who overcome the server’s defenses might be able to install a backdoor that remains indefinitely.
With TrustedServer, ExpressVPN prevents the operating system and apps from ever writing to the hard drive. Instead, the server is run entirely on volatile memory, or RAM. Since RAM requires power to store data, all information on a server is wiped every time it is powered off and on again—stopping both data and potential intruders from persisting on the machine.
Traditionally, server administrators install the operating system (OS) and software when the server is first set up, then add updates over time. Every change applied is an opportunity for differences to arise among servers, decreasing confidence that each one is using the exact same code. A server set up years ago might be running in a way that’s dangerously different from what the administrators are auditing today.
TrustedServer ensures that every one of ExpressVPN’s servers runs the most up-to-date software. Each time a server starts up, it loads the latest read-only image containing the entire software stack, OS and all. That means ExpressVPN knows exactly what’s running on each and every server—minimizing the risk of vulnerabilities or misconfiguration and dramatically improving VPN security.
TrustedServer technology represents a major leap in protecting user privacy and security, addressing key risks inherent in how VPN servers are traditionally run. And you don’t just have to take our word for it—TrustedServer technology has been independently audited twice, once by PwC and then more recently by Cure53. We have also introduced a one-time bonus award of US$100,000 in our bug bounty program specifically for the discovery of security issues within TrustedServer.
Want a more detailed look at the many ways TrustedServer protects users? Read our deep dive into the tech, written by the engineer who designed the system.
The groundbreaking security of TrustedServer: Only available on ExpressVPN.