No VPN is perfect (not even Obscura!), but a few things that I feel like are “table-stakes” for new, trustworthy VPNs:
- Source code available for anyone to see, not just an auditing firm. (for us)
- Full WireGuard support: The protocol is just miles better than OpenVPN, and it seems like this VPN only supports on a Pro plan? (for us)
- Some kind of improvement over “trust our audit” for no-logging (for us)
- (stretch goal) Some kind of obfuscation for WireGuard protocol, it’s a great protocol but easily fingeprint-able (for us)
I will say that KPMG is not really known (at least to me) to be the best security auditor… But I haven’t worked with them so I won’t make a firm statement here. They’re really known for financial audits more than anything.