Viprinet upgrades the security of its routers
Bingen, Germany, 3/6/2014. – Viprinet, German manufacturer of business VPN routers, reacts to the NSA scandal, and upgrades the security of its products. From now, free firmware updates are available for all devices, further improving security against data theft and surveillance.
So, the TLS encryption of the connection that is established over several Internet providers at the same time now uses “Perfect Forward Secrecy”. This way, an attacker recording the encrypted data transfer can no longer decrypt the data even if he or she should be able to access the key later on.
Also, in order to exclude a theoretical man-in-the-middle attack via a “falsified” Viprinet router, a finger print of the remote station is now taken on the first build-up of a VPN tunnel. The system is designed in a way that it is compatible with setups in which several routers or hubs are operated together as one “stack” due to redundancy reasons.
Furthermore, the VPN tunnels are now using 2048-bit RSA keys with SHA256 certificates, TLS 1.2, and Diffie-Hellman key exchange with elliptic curves. Also, the security of all configuration interfaces was improved. The CLI that could be accessed with SSH so far has now been equipped with protective functions against brute-force attacks. The new web interface can only be accessed via HTTPS. Here, too, secure ciphersuites are offered with TLS 1.2 and EC-DHE. Using access control lists, all services integrated in the router can be precisely configured in regards to how these services are accessible via which interfaces and IP networks.
Viprinet recommends that all customers switch over to the new firmware version. Viprinet CEO Simon Kissel adds: “It’s war out there. Criminals and secret agencies alike are trying to steal data to previously unknown extend. There’s an arms race going on, and for now, our customers are in the lead again. All our products are not only developed in Germany, but also produced. We do and will not cooperate with any secret agency, and there are no back doors. About that, we’re in control.”
Firmware updates can be downloaded via the automatic update function of the routers, or as images from the company’s FTP server: ftp://updates.vipri.net/firmware/stable/
At CeBIT 2014 (Booth D27 in Hall 13), Viprinet will not only show exciting products like the Multichannel VPN Router 200 and new Hot Plug Modules, but also lay the focus on the topic information security under the slogan “Nothing to hide?”.
Press information released on 3/6/2014 – 2,510 characters – Print free of charge, please forward a copy.
Viprinet Europe GmbH
Mr. Tobias Frielingsdorf
+49 – 6721 49030-114