Glossary Term: Virtual Private Network (VPN)
A technology that creates an encrypted connection between a device and a network over the internet. Traditional VPNs provide broad network access but can create security risks by granting excessive permissions and maintaining persistent connections that attackers can exploit.
A Virtual Private Network (VPN) is a technology that creates a secure, encrypted connection between a device and a remote network over the internet. VPNs allow users to access private network resources as if they were directly connected to that network, even when connecting from external locations.
How VPNs Work
VPNs establish an encrypted tunnel between your device and a VPN server. All internet traffic from your device gets routed through this secure tunnel before reaching its destination.
When you connect to a VPN, your device appears to have the IP address of the VPN server rather than your actual IP address. This masks your real location and identity from websites and services while encrypting all data transmission between your device and the VPN server.
Types of VPN Connections
Different use cases require different VPN approaches:
Remote Access VPN
Allows individual users to connect to a private network from remote locations. This is the most common type for remote workers who need to access company resources from home or while traveling.
Site-to-Site VPN
Connects entire networks together, such as linking branch offices to a corporate headquarters. These create permanent connections between multiple locations without requiring individual users to install special software.
Extranet VPN
Provides external partners, vendors, or contractors with limited access to specific network resources. This gives third parties controlled access to particular systems without exposing the entire internal network.
Common VPN Use Cases
Organizations typically use VPNs for several business functions:
- Remote work access for employees connecting to company networks and internal resources like file servers and applications
- Securing connections on public Wi-Fi networks by encrypting data transmission
- Accessing geographically restricted content by connecting through servers in different locations
- Protecting browsing activity from internet service providers and potential surveillance
Why VPNs Create Security Problems
When users connect through VPNs, they often gain broad access to internal network resources rather than just the specific applications they need. This wide access creates security risks if a user’s device becomes compromised, as malware can potentially reach any network resource available to that user.
Traditional VPNs also assume that anything inside the network perimeter can be trusted. This approach conflicts with modern security principles that recognize threats can exist both inside and outside the network.
Many VPN implementations suffer from performance issues, connection drops, and compatibility problems with certain applications. These technical challenges often lead users to disable VPN connections or find workarounds that compromise security.
VPNs vs Modern Remote Access
Unlike traditional VPNs that provide always-on network access, newer remote access solutions grant temporary, application-specific permissions only when needed. These approaches authenticate each connection request individually rather than providing broad network access based on location.
Browser-based remote access eliminates the need for VPN client software while just-in-time access automatically revokes permissions when tasks are complete. This reduces both security exposure and the complexity of managing persistent VPN connections.
