Portal Home > Knowledgebase > FAQ > What is the encryption level of proxy.sh?

What is the encryption level of proxy.sh?

All our proxy servers are powered with state-of-the-art security and protocols configuration. Our encryption level is high and as follows:

- OpenVPN-TCP: For encryption the cipher in use is CBC mode of ARS with encryption strength of 256bit, hash algorithm is 512bit SHA (SHA512), and the control channel is same TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA. Our 4096 bit RSA key is changing every hour, preventing most advanced hackers and covert teams part of governmental agencies from breaking through.

- OpenVPN-UDP: Same encryption and security as OpenVPN-TCP, but working via UDP protocol. This allows better speeds and bypasses more restrictions.

- OpenVPN with ECC: For encryption we use Diffie-Hellman initialized with 4096 bit key along with ECDH curve secp384r1. Our full control channel is made of TLSv1.2, cipher TLSv1/SSLv3 ECDHE-ECDSA-AES256-GCM-SHA384 while the associated cipher is AES-256-CBC and the auth SHA512, making the whole combination one of the strongest known to cryptographic research field. We provide this ECC environment on port 465 (both UDP and TCP).

- OpenVPN with ECC+XOR: For encryption we provide Diffie-Hellman initialized with 4096 bit key along with ECDH curve secp384r1. Our full control channel is made of TLSv1.2, cipher TLSv1/SSLv3 ECDHE-ECDSA-AES256-GCM-SHA384 while the associated cipher is AES-256-CBC and the auth SHA512. Furthermore, this environment is supplemented with OpenVPN's XOR scrambling option, making the whole combination probably the strongest known to cryptographic research field. We provide this "ECC + XOR" environment on port 995 (both UDP and TCP).

- OpenVPN with TOR's obfsproxy: It makes use of our default encryption for OpenVPN along with obfsproxy on port 888 (both UDP and TCP). We offer obfs3, obfs2 and obfs3,obfs2 as obfsproxy standards.

- PPTP: For encryption PPTP uses MPPE 128bit cipher with compression and MS-CHAPv2 authentication.

- L2TP: L2TP is using IPSec for encryption with 256 bit key for encryption, 3DES/AES algorithm.

We are also running djb's curve25519 in internal testing and available for beta to customers with a custom solution (i.e. not a standard package). We are working hard on upgrading our network and our client as soon as possible to provide always higher and more diverse encryption levels.
Related Knowledgebase Articles