rosenpass
pq-adapter-mullvad
rosenpass | pq-adapter-mullvad | |
---|---|---|
5 | 1 | |
992 | 0 | |
1.0% | - | |
9.4 | 10.0 | |
3 days ago | about 1 year ago | |
Rust | Go | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
rosenpass
-
Rosenpass – formally verified post-quantum WireGuard
They verified the protocol, not the actual implementation: https://github.com/rosenpass/rosenpass#security-analysis
This is still a pretty neat result! End-to-end proofs from high level protocol to low level implementation are mostly still a research topic.
pq-adapter-mullvad
-
Rosenpass – formally verified post-quantum WireGuard
They maintain separate peers for Pre-quantum and Post-quantum so that connectivity isn't interrupted. Each Pre-quantum peer is implicitly paired with a corresponding Post-quantum peer. Negotiating the PSK happens over a grpc api they expose at `10.64.0.1:1337`. The spec is public, if you're curious: https://github.com/mullvad/mullvadvpn-app/blob/main/talpid-t...
If you're a fuddy-dud like me who uses the Vanilla WireGuard config files, I wrote a tool to upgrade your pre-quantum peer to a post-quantum one. https://github.com/d-z-m/pq-adapter-mullvad
What are some alternatives?
pq-wireguard - Quantum resistant implementation of the WireGuard protocol.
desktop-app - TunnlTo is a Windows WireGuard VPN client built for split tunnelling.
mullvadvpn-app - The Mullvad VPN client app for desktop and mobile
noise - Go implementation of the Noise Protocol Framework
coq - Coq is a formal proof management system. It provides a formal language to write mathematical definitions, executable algorithms and theorems together with an environment for semi-interactive development of machine-checked proofs.
CompCert - The CompCert formally-verified C compiler
cargo-geiger - Detects usage of unsafe Rust in a Rust crate and its dependencies.