{"package_name":"org.strongswan.android","name":"strongSwan VPN Client","summary":"An easy to use IKEv2/IPsec-based VPN client.","category":"Connectivity","icon_url":"/api/icon/org.strongswan.android","latest_version_code":96,"latest_version_name":"2.6.2","apk_url":"/api/apk/org.strongswan.android","apk_size":16041314,"apk_sha256":"aa94ba159c74d3e665a9bea0a67ddd8d14a09927407c8d7a47e52d4fdf2d716b","source_kind":"fdroid-repo","repo_slug":"fdroid-main","last_updated":1779371404,"release_timestamp":1762208021,"description":"Official Android port of the popular strongSwan VPN solution.\n\n# FEATURES AND LIMITATIONS #\n\n<ul>\n <li>Uses the VpnService API featured by Android 4+. Devices by some manufacturers seem to lack support for this - strongSwan VPN Client won't work on these devices!</li>\n <li>Uses the IKEv2 key exchange protocol</li>\n <li>Uses IPsec for data traffic</li>\n <li>Full support for changed connectivity and mobility through MOBIKE (or reauthentication)</li>\n <li>Supports username/password EAP authentication (namely EAP-MSCHAPv2, EAP-MD5 and EAP-GTC) as well as RSA/ECDSA private key/certificate authentication to authenticate users, EAP-TLS with client certificates is also supported</li>\n <li>Combined RSA/ECDSA and EAP authentication is supported by using two authentication rounds as defined in RFC 4739</li>\n <li>VPN server certificates are verified against the CA certificates pre-installed or installed by the user on the system. The CA or server certificates used to authenticate the server can also be imported directly into the app.</li>\n <li>IKEv2 fragmentation is supported if the VPN server supports it (strongSwan does so since 5.2.1)</li>\n <li>Split-tunneling allows sending only certain traffic through the VPN and/or excluding specific traffic from it</li>\n <li>Per-app VPN allows limiting the VPN connection to specific apps, or exclude them from using it</li>\n <li>The IPsec implementation currently supports the AES-CBC, AES-GCM, ChaCha20/Poly1305 and SHA1/SHA2 algorithms</li>\n <li>Passwords are currently stored as cleartext in the database (only if stored with a profile)</li>\n <li>VPN profiles may be imported from files</li>\n <li>Supports managed configurations via enterprise mobility management (EMM)</li>\n</ul>\n\nDetails and a changelog can be found in our documentation: https://docs.strongswan.org/docs/latest/os/androidVpnClient.html\n\n# PERMISSIONS #\n\n<ul>\n <li>READ_EXTERNAL_STORAGE: Allows importing VPN profiles and CA certificates from external storage on some Android ve","categories":["Connectivity","Internet","Security","VPN & Proxy"]}