Steven Mackey
ABSTRACT
A fundamental problem that confronts virtual private network (VPN) applications is the overhead on throughput, ease of deployment and use, and overall utilization. WireGuard is a recently introduced light and secure cross-platform VPN application. It aims to simplify the process of setting up a secure connection while utilizing the multi-threading capability and minimizing the use of bandwidth. There have been several follow-up studies on WireGuard since its birth, most of which focus on the security analysis of the protocol. Despite the author's claim that WireGuard has impressive wins over OpenVPN and IPsec, there is no rigorous analysis of its performance to date. This paper presents a performance comparison of WireGuard and its main rival OpenVPN on various metrics. We construct an automated test framework and deploy it on a total of eight nodes, including remote AWS instances and local virtual machines. Our test results clearly show two main edges that WireGuard has over OpenVPN, its performance on multi-core machines and its light codebase.
- Michael DeHaan. 2012. Ansible. https://www.ansible.com/.Google Scholar
- Jason A Donenfeld. 2017. WireGuard: Next Generation Kernel Network Tunnel. In NDSS . https://doi.org/10.14722/ndss.2017.23160Google ScholarCross Ref
- Benjamin Dowling and Kenneth G Paterson. 2018. A cryptographic analysis of the WireGuard protocol. In International Conference on Applied Cryptography and Network Security. Springer, 3--21. https://doi.org/10.1007/978--3--319--93387-0_1Google ScholarDigital Library
- Jon Dugan, Seth Elliott, Bruce A Mah, Jeff Poskanzer, and Kaustubh Prabhu. 2014. iPerf3, tool for active measurements of the maximum achievable bandwidth on IP networks. https://iperf.fr/.Google Scholar
- Benjamin Lipp, Bruno Blanchet, and Karthikeyan Bhargavan. 2019. A mechanised cryptographic proof of the WireGuard virtual private network protocol. In 2019 IEEE European Symposium on Security and Privacy. 231--246. https://doi.org/10.1109/EuroSP.2019.00026Google ScholarCross Ref
- Giampaolo Rodola. 2016. Psutil package: a cross-platform library for retrieving information on running processes and system utilization. https://pypi.org/project/psutil/.Google Scholar
- Peter Wu. 2019. Analysis of the WireGuard protocol . Master's thesis. Eindhoven University of Technology, Eindhoven, Netherlands.Google Scholar
- James Yonan. 2001. OpenVPN. https://openvpn.net/.Google Scholar
Index Terms
- A Performance Comparison of WireGuard and OpenVPN
Recommendations
Performance Evaluation and Analysis of OpenVPN on Android
ICCIS '12: Proceedings of the 2012 Fourth International Conference on Computational and Information SciencesOpenVPN is an open source Virtual Private Networks product providing cross-platform, secure, highly configurable VPN solutions. Tablet computers seem to be directing many of the emerging trends in the marketing industry at the moment. For this case ...
Comments