Published: 07/08/2024 14:30 EEST
Dear Valued Customers,
This is an announcement to inform you about an important security update regarding our VPN services.
As part of our commitment to providing the utmost security and protecting your data, we have been continuously evaluating the encryption methods used in our Virtual Private Network (VPN) connections. After careful consideration and in line with industry best practices, we have decided to discontinue the use of the Blowfish cipher for VPN connections.
Effective in the upcoming HUB 3.0.0 and Node/Lock firmware 5.3.0 releases, we will no longer support the Blowfish cipher in our VPN services. Instead, we will be transitioning to stronger and more secure encryption algorithms.
The primary reason for this change is that the Blowfish cipher is now considered outdated and vulnerable to certain cryptographic attacks. While it has served as a reliable encryption method in the past, advancements in technology and security threats demand stronger measures to protect against potential breaches.
Moving forward, we recommend using secure and industry-standard AES (Advanced Encryption Standard) encryption algorithms to ensure the confidentiality, integrity, and authenticity of your data during VPN sessions. AES is widely recognized as a secure and robust encryption method and has become the de facto standard for secure communications. Virtual Central Lock (HUB) and Lock software support already AES encryption.
Please take note of this change and ensure that your VPN client and devices are updated to support the new encryption standards. Rest assured, our customer support team will be available to assist you with any questions or concerns you may have during this transition. Note also that Blowfish support have already been discontinued on Tosibox Mobile Client for iOS 2.1 and Mobile Client for Android 2.0.3.
Thank you for your understanding and continued trust in our services,
Tosibox Customer Support Team