Virtual private network

Virtual private network (VPN) is a network architecture for virtually extending a private network (i.e. any computer network which is not the public Internet) across one or multiple other networks which are either untrusted (as not controlled by who is aiming to implement a VPN) or need to be isolated (thus making the lower network invisible or not directly usable).^[1]

A VPN can extend access to a private network (one that disallows or restricts public access to some of its resources) to users who do not have direct access to it, such as an office network allowing secure access from off-site over the Internet.^[2] This is achieved by creating a link between computing devices and computer networks by the use of network tunneling protocols.

It is possible to make a VPN secure to use on top of insecure communication medium (such as the public internet) by choosing a tunnelling protocol which implements the necessary security features to guarantee confidentiality and integrity. This kind of VPN implementations have the benefit of reduced costs and greater flexibility, with respect to dedicated communication lines, for remote workers.^[3]

The term VPN is also used to refer commercial network proxy services which sell access to their own proxy networks by connecting their customers by mean of VPN protocols.