BolehVPN: Among the Top 5 rated VPN Providers in the World

Archive for the ‘VPN’ Category

Thursday, October 30th, 2014

Germany going offline

But it’s only temporary! Don’t panic!

 

We’re taking it offline for major maintenance. This will last 48 hours, starting from 0900, GMT+8 30th October 2014.

This will affect all Germany servers, from FullyRouted to Proxied to XCloak.

Wednesday, October 29th, 2014

Reports on Slowdowns on Encryption Upgrade

Since our upgrade to AES256 for the data channel (previously AES128) and SHA2-512bit (from SHA1-160 bit) for the HMAC authentication channel, we’ve been receiving reports on slowdowns especially for those using routers/integrated devices whereby CPU processing power is limited.

We had previously decided on this upgrade because of numerous complaints and several review sites marking us down for using AES128 only when the competition is using AES256. We have previously expressed that AES128 in many cases is just as good as AES256 and in certain cases better since AES128 implements a better key schedule. It is an opinion we still hold today and our opinion is that for the average VPN user, AES128 is pretty good.

However, after implementing AES256, our servers do not show any additional CPU impact and are therefore investigating the reports on slowdowns. It is also possible that the SHA-512 upgrade to the HMAC is causing the slowdown, however, SHA-1 is already considered insecure as it is vulnerable to collision attacks and therefore we believe it is prudent to upgrade this despite the performance hit.

Therefore, in light of this, before we decide on what to do, we would wish to monitor the situation for the next few days. If the speed issues persist and cannot be attributed to other causes we would be doing the following:

  • Announcing our decision via this blog, Facebook and an e-mail to all current users giving at least two days notice.
  • Moving back from AES256 to AES128 for the data channel for all configurations except xCloak configurations which will maintain AES256.
  • Maintaining SHA-512 for added security on the HMAC authentication channel despite the performance hits. It is noted that SHA-256 in many cases is slower than SHA-512 especially on modern PCs. This however still will have an impact on weaker routers.

The alternative would be to segregate high security servers and keep them as xCloaks with the highest protection while keeping the weaker SHA-1 for regular servers for maximum performance. The problem with this is that for most people it will reduce security and introduce inequal distribution of users. We probably would see heavily underutilized high security servers.

Feedback is greatly appreciated and thank you for your patience and understanding as we move to improve our service and achieve a balance between performance and security. Please note that comments especially for first time posters may take time to be moderated as they will need to be processed manually.

Monday, October 27th, 2014

Servers overhauled, Italy is back!

Hi guys!

We’ve just updated all our servers to use 256 bit AES encryption, with our HMAC auth changed to SHA512! This is a step up from our previous cypher, which was 128 bit AES. However this overhaul comes at a slight inconvenience, you will need to update your configurations. Thankfully this is pretty easy with the BolehVPN client. Just head to the Settings tab and hit Update Configurations. If you’re a custom user however, you’ll need to update manually.

We also listened to your feedback on the Italy server and brought it back! It’s waiting for you, just hit Update to see that old friend.

Let us know how everything goes! :)

Friday, October 24th, 2014

Update on Hong Kong

We’re experiencing some issues with our server provider for our Hong Kong server. We’ve contacted them to sort this out, but until they reply and we reach a resolution the HK server will be temporarily removed.

Our apologies for the inconvenience.

Wednesday, October 22nd, 2014

Happy Diwali!

Wishing you all a Happy Diwali, may you shine forever in the darkness of life. And if you don’t celebrate, have a happy holiday!


-->