Home/Glossary/VPN (Virtual Private Network)

VPN (Virtual Private Network)

An encrypted network connection that creates a secure tunnel between a device and a remote network over the internet.

Security InfrastructureAlso called: "virtual private network", "encrypted tunnel"

VPNs protect data in transit and enable secure remote access to private networks and resources.

How VPNs work

  • Encryption: Scrambles data so it cannot be read if intercepted.
  • Tunneling: Encapsulates network traffic within encrypted packets.
  • Authentication: Verifies user/device identity before granting access.
  • IP masking: Hides the user's real IP address behind the VPN server's IP.

Types of VPNs

  • Remote access VPN: Connects individual users to corporate networks (e.g., employees working from home).
  • Site-to-site VPN: Links entire networks together (e.g., branch office to headquarters).
  • Client-based VPN: Requires VPN software on user devices.
  • SSL/TLS VPN: Browser-based access without dedicated client software.

Why it matters

  • Protects sensitive data on untrusted networks (public WiFi, home internet).
  • Enables secure remote work and access to internal resources.
  • Required for compliance in healthcare (HIPAA), finance (PCI DSS), and other regulated industries.
  • Prevents eavesdropping and man-in-the-middle attacks.

Implementation considerations

  • Choose strong encryption protocols (IPsec, OpenVPN, WireGuard).
  • Implement multi-factor authentication for VPN access.
  • Regularly audit and restrict VPN access to necessary users and resources.
  • Monitor VPN logs for anomalous connection patterns.
  • Consider split-tunneling policies to balance security and performance.

Related Tools

Related Articles

View all articles
NIST 800-88 Media Sanitization Complete Guide: Clear, Purge, and Destroy Methods Explained

NIST 800-88 Media Sanitization Complete Guide: Clear, Purge, and Destroy Methods Explained

Master NIST SP 800-88 Rev. 1 media sanitization methods including Clear, Purge, and Destroy. Covers SSD vs HDD sanitization, crypto erase, degaussing, regulatory compliance, and building a media sanitization program.

Read article →
Physical Security & CPTED: The Complete Guide to Protecting Facilities, Data Centers, and Critical Assets

Physical Security & CPTED: The Complete Guide to Protecting Facilities, Data Centers, and Critical Assets

A comprehensive guide to physical security covering CPTED principles, security zones, access control, fire suppression, and environmental controls for protecting facilities and data centers.

Read article →
AWS S3 Security Best Practices: Encryption, Access Control & Compliance

AWS S3 Security Best Practices: Encryption, Access Control & Compliance

Secure your AWS S3 buckets with this comprehensive guide covering encryption options, IAM and bucket policies, Block Public Access, VPC endpoints, and compliance configurations.

Read article →
Cloud Penetration Testing: A Complete Guide for AWS, Azure, and GCP

Cloud Penetration Testing: A Complete Guide for AWS, Azure, and GCP

Cloud penetration testing requires different approaches than traditional network testing. Learn cloud provider policies, testing methodologies, and common findings across AWS, Azure, and GCP environments.

Read article →

Explore More Security Infrastructure

View all terms

Certificate Authority (CA)

A trusted entity that issues, validates, and revokes digital certificates used for secure communications.

Read more →

Firewall

A security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Read more →
Back to glossary