Hot Take Your VPN Is Useless Without A Killswitch

Imranmt

Level 3
Thread author
Verified
Nov 14, 2016
111
If your virtual private network doesn't have a kill switch, it's time to start looking for a new VPN provider. A kill switch is an essential VPN security feature that kills your internet connection should your encrypted VPN connection drop out for any reason. This functionality ensures your data isn't leaked outside the VPN tunnel and exposed online unencrypted -- which can be dangerous in a lot of situations.

A VPN routes your internet traffic through an encrypted tunnel to a secure server in a remote location of your choosing. At the same time, your IP address is changed to the IP address of the server you're connecting through. In addition to allowing you to access geographically restricted content, this process allows you to conceal your true IP address and your internet traffic from your ISP, government entities, cybercriminals and others who may want to snoop on you online. So if your VPN connection suddenly drops and there's no kill switch to act as a safety net to protect your data, you may as well not have a VPN at all.

Why do VPN disconnections happen?

No piece of technology is perfect, and even the best VPNs can have their connections drop from time to time. A VPN disconnection can happen for a number of reasons, including:

You're on a Wi-Fi connection that's weak or overloaded -- like a public Wi-Fi hotspot at a cafe, hotel or airport.
You switch to a different Wi-Fi network or switch from Wi-Fi to mobile data.
Your computer goes to sleep.
An antivirus program or firewall on your computer is interfering with your VPN connection (be sure to whitelist your VPN software in this case).
You jump from one VPN server to another... or if you rapidly jump servers and exceed your VPN provider's simultaneous connection limit.
You're using the OpenVPN UDP protocol, which is less stable than the TCP protocol (switch to TCP if you notice your VPN dropping).
The VPN server you're connecting to goes down.
Your VPN app crashes.

What happens if your VPN disconnects without a kill switch?

If your VPN disconnects, and you don't have a kill switch enabled, your internet connection will stay active, your true IP address will be exposed and your web traffic from the moment of disconnection will continue unencrypted. This could expose your online activity and compromise any sensitive personal data you may have been accessing while connected to the VPN, in addition to revealing your true location (based on your IP address).

How does a VPN kill switch work?

When enabled, your VPN kill switch constantly monitors your VPN connection and scans for changes in your IP address or the status of your network. The kill switch will immediately engage and block access to the internet whenever it detects a change in the status of either. When you reconnect to a VPN server or the VPN tunnel automatically reestablishes itself, the kill switch will allow your internet to reconnect and will continue to monitor your VPN connection.

There are two different types of VPN kill switches: ones that work on an application level and others that work on a system level.

An application-level VPN kill switch allows you to choose specific applications on your device to kill in the event of a VPN disconnection. While certain applications will be blocked, any others connected that you didn't designate to be killed will remain connected and could potentially put you at risk. An application-level kill switch gives you a certain amount of flexibility, but you'll need to be mindful of what apps you do or do not choose to include. A system-level kill switch is a more secure option overall because it kills all network traffic on your device system-wide whenever it detects that the VPN tunnel has failed.
 
Last edited by a moderator:

Stopspying

Level 19
Verified
Top Poster
Well-known
Jan 21, 2018
814
Its worth noting also that you need to research whether the Kill Switch works on a specific VPN. The Kill Switch that comes with Surfshark VPN has not been reliable for some time. Research users opinions rather than swallow the sales pitch.
 

Similar threads

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top