Abstract: A computer generates a first encrypted message by encrypting an unencrypted message for decryption at a receiving device. The computer couples the first encrypted message with addressing data associated with the receiving device to generate a coupled message. The computer generates a second encrypted message by encrypting the coupled message for decryption at a data transmission service. The computer transmits the second encrypted message via the data transmission service to enable the receiving device to read the unencrypted message.

Abstract: Operating a hierarchical-context area network includes receiving a first protocol data unit from an end user device via a virtual private network tunnel by a first virtual private network server, obtaining the first protocol data unit from the first virtual private network server, by a second virtual private network server as a current point of egress for transporting the first protocol data unit through the hierarchical-context area network, identifying, by the second virtual private network server, available data transport pathways for transporting the first protocol data unit through the hierarchical-context area network, pseudo-randomly identifying, by the second virtual private network server, an available data transport pathway from the available data transport pathways as a current data transport pathway, and sending, by the second VPN server, to the external device, via the data transport pathway, the first protocol data unit.

Abstract: Adaptive online service access control includes obtaining, by a system access control monitor of a client system, a message from the client system to an external system, prior to transmission of the message, wherein the message is associated with a communication context, in response to obtaining the message, determining, by the system access control monitor, a current access score as a sum of a previous access score associated with the communication context and a modifier value determined for the message, and in response to determining, by the system access control monitor, that the current access score is less than an access threshold value, preventing transmission of the message.

Abstract: Automatic network configuration includes obtaining, by a virtual private network service provider infrastructure system, ranking data for data transport pathways between the virtual private network service provider infrastructure system and an external system, wherein a respective data transport pathway from the data transport pathways includes a respective exit node in the virtual private network service provider infrastructure system in communication with a respective entry node in the external system, wherein obtaining the ranking data includes obtaining at least a portion of the ranking data by testing a service provided by the external system via the entry node, and allocating, by the virtual private network service provider infrastructure system, a data transport pathway from the data transport pathways to a communication session, wherein the data transport pathway is a highest-ranking data transport pathway in the ranking data.

Abstract: A computer generates a first encrypted message by encrypting an unencrypted message for decryption at a receiving device. The computer couples the first encrypted message with addressing data associated with the receiving device to generate a coupled message. The computer generates a second encrypted message by encrypting the coupled message for decryption at a data transmission service. The computer transmits the second encrypted message via the data transmission service to enable the receiving device to read the unencrypted message.

Abstract: A virtual private network (VPN) tunnel is established between a user device and a VPN gateway. The VPN gateway transmits first packets received from the user device to a first exit VPN server. A first subset of the first packets is transmitted by the first exit VPN server to a first target and a second subset of the first packets is transmitted by the first exit VPN server to a second target. A second exit VPN server that is different from the first exit VPN server is identified based on the first packets. Second packets are received by the VPN gateway from the user device. At least a subset of the second packets are transmitted to the second exit VPN server for forwarding to the second target.

Abstract: A computer generates a first encrypted message by encrypting an unencrypted message for decryption at a receiving device. The computer couples the first encrypted message with addressing data associated with the receiving device to generate a coupled message. The computer generates a second encrypted message by encrypting the coupled message for decryption at a data transmission service. The computer transmits the second encrypted message via the data transmission service to enable the receiving device to read the unencrypted message.

Abstract: A method including transmitting, by a user device to an infrastructure device prior to establishing a virtual private network (VPN) connection with a VPN server, service information indicating one or more VPN services to be received by the user device after establishing the VPN connection with the VPN server; receiving, by the user device from the infrastructure device, information associated with the VPN server that is selected by the infrastructure device to provide the one or more VPN services to the user device based at least in part on the service information; and establishing, by the user device based at least in part on utilizing the information associated with the VPN server, the VPN connection with the VPN server to receive the one or more VPN services is disclosed. Various other aspects are contemplated.

Abstract: A method and system for a VPN setup in which one of the peers' outgoing traffic is dynamically rerouted to exit VPN servers based on infrastructure or user requirements without losing the initial connection state or leaking unencrypted network traffic is described. One exemplary embodiment describes a method for a client to change their routing to multiple server locations. Another exemplary embodiment describes a method for the entry VPN servers to reroute traffic based on strategic traffic analysis.

Abstract: A method in a first virtual private network (VPN) server associated with clustering a plurality of VPN servers in a clustered network, the method including receiving, from a VPN service provider (VSP) control infrastructure, VPN data associated with a user device having an established VPN connection with the clustered network; and communicating, utilizing key information, the VPN data with the user device during the established VPN connection. Various other aspects are contemplated.

Abstract: A method for configuring a protocol in a virtual private network (VPN) service environment, the method including receiving, from a user device, device information associated with operation of the user device during an established VPN connection; determining, based at least in part on the device information, a given VPN protocol from among a plurality of VPN protocols for utilization during the established VPN connection; and transmitting, to the user device, information associated with the given VPN protocol to enable the user device and a VPN server to utilize the given VPN protocol during the established VPN connection. Various other aspects are contemplated.

Abstract: A method for configuring a protocol in a virtual private network (VPN) service environment, the method including receiving, from a user device, device information associated with operation of the user device during an established VPN connection; configuring, based at least in part on the device information, a given VPN protocol from among a plurality of VPN protocols for utilization during the established VPN connection; and transmitting, to the user device, information associated with the given VPN protocol to enable the user device and a VPN server to utilize the given VPN protocol during the established VPN connection. Various other aspects are contemplated.

Abstract: A method for configuring a protocol in a virtual private network (VPN) service environment, the method including receiving, from a user device, device information associated with operation of the user device during an established VPN connection; configuring, based at least in part on the device information, a given VPN protocol from among a plurality of VPN protocols for utilization during the established VPN connection; and transmitting, to the user device, information associated with the given VPN protocol to enable the user device and a VPN server to utilize the given VPN protocol during the established VPN connection. Various other aspects are contemplated.

Abstract: A method for configuring a protocol in a virtual private network (VPN) service environment, the method including receiving, from a user device, device information associated with operation of the user device during an established VPN connection; determining, based at least in part on the device information, a given VPN protocol from among a plurality of VPN protocols for utilization during the established VPN connection; and transmitting, to the user device, information associated with the given VPN protocol to enable the user device and a VPN server to utilize the given VPN protocol during the established VPN connection. Various other aspects are contemplated.

Abstract: A method including transmitting, by a user device to an infrastructure device prior to establishing a virtual private network (VPN) connection with a VPN server, service information indicating one or more VPN services to be received by the user device after establishing the VPN connection with the VPN server; receiving, by the user device from the infrastructure device, information associated with the VPN server that is selected by the infrastructure device to provide the one or more VPN services to the user device based at least in part on the service information; and establishing, by the user device based at least in part on utilizing the information associated with the VPN server, the VPN connection with the VPN server to receive the one or more VPN services is disclosed. Various other aspects are contemplated.

Abstract: A method in a first virtual private network (VPN) server associated with clustering a plurality of VPN servers in a clustered network, the method including receiving, from a VPN service provider (VSP) control infrastructure, VPN data associated with a user device having an established VPN connection with the clustered network; and communicating, utilizing key information, the VPN data with the user device during the established VPN connection. Various other aspects are contemplated.

Abstract: A method in a virtual private network (VPN) service environment, the method including measuring, during a given interval of time, respective durations of time associated with performing a plurality of processes for configuring VPN connections; calculating average respective durations of time based at least in part on the measured respective durations of time; configuring a progress indicator to indicate a total duration of time associated with configuring a VPN connection for a user device, the total duration of time being substantially equal to a sum of the average respective durations of time; and transmitting, to the user device, information associated with the progress indicator to enable display of the progress indicator on a screen associated with the user device. Various other aspects are contemplated.

Abstract: A method for optimized server picking in a virtual private network (VPN), the method comprising receiving, from a user device, service information indicating one or more VPN services to be received during an established VPN connection; determining, based at least in part on the service information, a given VPN server from among a plurality of VPN servers to provide the one or more VPN services to the user device; and transmitting, to the user device, information associated with the given VPN server to enable the user device to receive the one or more VPN services. Various other aspects are contemplated.

Abstract: A method for optimized server picking in a virtual private network (VPN), the method comprising enabling reception of service information via a local input interface, the service information indicating one or more VPN services to be received during an established VPN connection; and enabling transmission of the service information in association with transmission of a connection request to a VPN service provider. Various other aspects are contemplated.

Abstract: A method for optimized server picking in a virtual private network (VPN) environment, the method receiving, from a user device, a preference of the user device with respect to a VPN server for establishing a VPN connection; receiving user device information associated with the user device; determining, based at least in part on the preference and the user device information, a subset of a plurality of VPN servers; and determining, from the subset of a plurality of VPN servers, a VPN server as an optimal VPN server for establishing the VPN connection. Various other aspects are contemplated.