RAM-Only VPN Servers – How do They Work and Why You Need One?

Justin Oyaro

By Justin Oyaro . 13 June 2022

Cybersecurity Expert

Miklos Zoltan

Fact-Checked this

In this comprehensive article, you will learn about VPNs with RAM-only servers.

Included in this guide:

  • What are RAM-only VPN servers?
  • How RAM-only VPN servers work?
  • Why would you need RAM-only VPN servers?
  • VPNs with RAM only servers.

Currently the best RAM-only VPN is: Private Internet Access.

Quick Summary

Most VPN providers rely on hard disks to store and operate their VPN service. Data is stored in the hard disks until it is erased or written over with new data. This contradicts their no-log policy – “we do not store nor log your details.”

Additionally, storing data on the hard disks increases the security risk. If prying eyes such as hackers or the government get hold of the server, they can easily access sensitive information. To avoid the above scenarios, RAM-only servers are the way to go.

RAM-Only VPN Servers

What is a RAM-only VPN Server?

RAM-only servers use RAM modules instead of traditional hard disks (HDDs). The RAM modules store the operational data and code required for the VPN service to function.

These servers use a type of Random-Access Memory (RAM) which is volatile. If power is removed (by rebooting or turning off the server), the information stored is lost. In traditional HDDs, stored data is not lost even if power is removed.

How do RAM-only VPN Servers Work?

The servers boot on a read-only image containing the operating system and other required software. Since there’s no HDD, the contents of this image and other required files are loaded into the RAM modules. Essentially, every aspect of the VPN service takes place in the volatile memory (RAM).

Why are RAM-only VPN Servers Necessary?

Heightened security

It is easier to get data from traditional HDDs. Even if data is erased, some powerful software can still recover some data. Also, prying eyes can get encryption keys from the server configuration. Additionally, if the server is physically seized, the HDD can easily be accessed.

RAM-only servers make it harder for unauthorized parties to gain access to data. Hackers cannot install back doors and hence cannot steal private keys. The OS and the necessary files are loaded on boot via a read-only image. The read-only image is hard to compromise since it is cryptographically signed.

Furthermore, no one needs to worry about sensitive data if the servers are physically seized. The VPN provider can initiate security procedures to reboot the servers remotely. Once this happens, all the data from the previous session will be lost.

Reinforced privacy

Besides security, RAM-only servers ensure your activities will never fall to prying eyes. A simple reboot will wipe all the data in the servers. This also bolsters the VPN’s no-log policy.

Improved performance

The read-only image provides consistency to all servers. Loading the entire software stack at the boot gets rid of misconfigurations. When using HDDs, incremental updates may alter some server configurations. In the end, there will be differences in server configurations, which might also lead to vulnerabilities.

Further VPN & security guides we recommend you to check out:

VPNs Using RAM-only-based Servers


ExpressVPN is one of the best VPNs that deploy RAM-only servers as part of a technology dubbed “Trusted Server Technology”. PwC independently audited this technology and confirmed that it works as described.

Trusted Server Technology loads up the entire software stack when the server boots up. This ensures no inconsistencies, and it improves security and privacy.

Surfshark VPN

Surfshark also uses RAM only-based servers. To increase privacy and security, Surfshark rolled out a 100% diskless server infrastructure. This infrastructure works similarly to that of ExpressVPN’s Trusted Server Technology.

Other VPNs that offer a RAM-only VPN service include Switzerland-based Perfect Privacy VPN and the Swedish AzireVPN.

Other reputable VPN service providers have also promised to join this trend.

Wrap Up

RAM-only servers provide a way to eliminate the retention of your data. With a reboot, there won’t be any trace of sensitive information. Also, these servers ensure that VPNs commit to their no-log policies regarding user activities.

Concisely, RAM-only servers ensure improved privacy, security, performance, and consistency. Additionally, prying eyes such as hackers and other third parties won’t have unauthorized access to these servers. Even if the servers are physically seized, they won’t have any data.

Frequently Asked Questions

Some people found answers to these questions helpful

Do RAM-only VPNs log data?

RAM-only VPNs such as ExpressVPN and Surfshark VPN do not log your data. The operational data that passes through their servers is wiped once a reboot is initiated. They have a friendly jurisdiction that doesn’t have mandatory data retention laws.

Do all VPN service providers use RAM-based servers?

No. Only a few VPN providers use RAM-only servers. They include ExpressVPN, Surfshark VPN, Perfect Privacy VPN, and AzireVPN. Nonetheless, other VPN providers have announced their plans to use RAM-only servers.

Can RAM-only data be tracked?

It is a futile process to track data in RAM-only servers. This is because data from the VPN service is secured with robust encryptions. The data is also anonymized and can be wiped anytime a reboot is initiated.

Can RAM-only VPNs be hacked?

Essentially, any VPN service can be hacked. But with RAM-only servers, your data will always remain safe. RAM-only servers make it hard for hackers to install backdoors or even gain access to server configurations. Furthermore, hacking will trigger security procedures that will initiate a reboot. Hence, all data will be lost.

Are RAM-only VPNs any better?

Yes, RAM-only VPNs are better than VPNs that use hard disks in their servers. RAM-only VPNs ensure utmost privacy, security, consistency, and performance and reinforce the no-log policy. Also, they are based in jurisdictions with no mandatory data retention laws.

Leave a Comment