A VPN obfuscation technique that disguises VPN traffic to look like standard HTTPS web traffic. Governments and network operators in restrictive environments actively detect and block conventional VPN protocols (OpenVPN, WireGuard) using deep packet inspection. Stealth protocol bypasses that detection by making the traffic indistinguishable from normal encrypted web browsing.
Who needs it: NGO workers, journalists, and anyone operating in countries where VPN use is restricted or monitored — China, Russia, Iran, and others with deep packet inspection infrastructure. A standard VPN that can’t connect in-country is useless. Test stealth before you travel.
Proton VPN’s implementation: called Stealth, available on all platforms, routes traffic over obfuscated TLS. Test it from a home network before departure.
What it means in practice
Countries that block VPNs use deep packet inspection to identify VPN traffic by its signature. Standard WireGuard and OpenVPN connections are detectable. Stealth protocol wraps VPN traffic to look like ordinary HTTPS — the same protocol used by websites. This makes it significantly harder to detect and block. The practical rule: test stealth from your home network before departure, confirm it connects on a restricted network, and know it works before you need it in the field.
Related articles
Digital privacy guide for NGO workers abroad. — How to secure communications in the field. — Proton VPN review 2026.