The security of communications via VPN fulfils three core requirements:
- Confidentiality: The transmitted data cannot be read by unauthorized persons (via encryption).
- Integrity: The data cannot be changed during transmission (via authentication).
- Authenticity: The receiver can be certain that received data has genuinely been sent by the supposed sender (via authentication).
A number of encryption and authentication methods exist which provide satisfactory solutions for the first two aspects, confidentiality and integrity. The use of digital certificates aims to provide assurance about the authenticity of the communications partner.