- ExpressVPN has finally implemented support for the WireGuard VPN protocol
- Resistance to WireGuard by ExpressVPN resulted in the development of its Lightway protocol
- Post-quantum WireGuard has been added to Windows, iOS, and Android ExpressVPN apps, with macOS to follow
After over five years of refusing to adopt the protocol, going so far as to develop its own alternative, ExpressVPN has finally embraced WireGuard – and it made it quantum-secure.
In a move that will impact the entire VPN industry, what TechRadar’s reviewers rated as one of the best VPN providers on the market right now has conceived a future-proofed implementation of the protocol, combining WireGuard with the next-generation encryption algorithm ML-KEM.
That said, ExpressVPN intends to retain its proprietary protocol Lightway – which already integrates ML-KEM – as its default protocol. But in terms of the post-quantum future of online privacy, its adoption of WireGuard is hugely significant.
What is the WireGuard protocol?
Several different protocols – configurations of rules that manage a VPN connection – are currently in use. Many providers rely on WireGuard, alongside older solutions like IKEv2/Ipsec, OpenVPN (which is regularly revised), and proprietary solutions like NordVPN’s NordWhisper and Lightway.
All current protocols have various strengths and weaknesses, as well as potential vulnerabilities that have not yet been uncovered. WireGuard, which ExpressVPN initially evaluated and rejected in 2019, is used by many virtual private network (VPN) services, and has been touted as a potential solution for Internet of Things and smart home device encryption.
ML-KEM, meanwhile, is a quantum-resistant encryption standard issued by the National Institute of Standards and Technology (NIST) in late 2024, and widely welcomed by the cryptography community as the superior response to post-quantum encryption (PQE) needs.
By finally including WireGuard in its VPN client software, and integrating ML-KEM, ExpressVPN has offered a solution to the entire VPN industry. It means that any VPN provider, big or small, providing it runs its own servers, can introduce PQE protections.
As ExpressVPN has observed in a blog post: “Post-quantum protections are practically non-existent in production deployments… We’ve solved those gaps and published the results. Now it’s on the rest of the industry to catch up.”
Starting from August 6, 2025, Post-quantum WireGuard is available on ExpressVPN’s iOS, Android, and Windows apps. Support for macOS will also follow soon.
Is quantum computing really a risk to VPNs?
Quantum computers have long been recognized as posing a significant risk to the most stringent current encryption standards. The underlying math of encryption algorithms that might take millennia to be solved by today’s machines can be broken relatively quickly by quantum computers.
This clearly poses a risk to all forms of current encryption, not least VPNs. In creating an encrypted route through the internet via a VPN server using a VPN app, users expect their data to remain private, and safe from observation by ISPs, governments, and bad actors.
Quantum computing disrupts this entirely.
As far back as 2020, in its development of Lightway, ExpressVPN recognized the risks posed by quantum computing, despite its arrival being a decade away. Understanding the maxim of cybercriminals who “harvest now, decrypt later,” they took steps to ensure that Lightway offered PQE security to users. So, any data secured with PQE should be protected from decryption by quantum computers.
The white paper, “Post-Quantum WireGuard: A Practical Implementation Guide” by ExpressVPN engineers, Peter Membrey and Timo Beyel, states that while their development of Lightway solved post-quantum protection, they were “concerned that WireGuard deployments weren’t getting simple solutions well-suited to VPN providers.”
ExpressVPN hasn’t stopped at showing the rest of the VPN industry what to do next, either, introducing HTTPS proxy support as an added privacy option. This is thanks to a new “strategic partnership” with Bitripple which integrates LT3 acceleration into Lightway, providing improved data transmission for slower internet connections.
![[Aggregator] Downloaded image for imported item #27922](https://kcmicro.com/wp-content/uploads/2025/08/security_Nakasone_GettyImages-1975561409-800x500.jpg "[Aggregator] Downloaded image for imported item #27922")
![[Aggregator] Downloaded image for imported item #27895](https://kcmicro.com/wp-content/uploads/2025/08/WayEcAXN3dkjPQdG5Stp75-1280-80-800x500.jpg "[Aggregator] Downloaded image for imported item #27895")
![[Aggregator] Downloaded image for imported item #27883](https://kcmicro.com/wp-content/uploads/2025/08/Hackers_RChurchill_007-800x500.jpg "[Aggregator] Downloaded image for imported item #27883")