Skip to content

What is a decentralized VPN?

A decentralized VPN, usually shortened to dVPN, is a VPN whose exit servers are run by many independent operators instead of being owned by a single company. Your app finds those servers by querying a public blockchain rather than by trusting a private list, and the encrypted tunnel runs directly between your device and the node you picked. The encryption is ordinary VPN encryption. What is different is the ownership: there is no central fleet to seize, no single company that holds every user, and no server list you have to take on faith. The cost of that is real, and this page names it: node quality varies, speeds are less consistent, and you are trusting an unknown operator instead of a known business.

Published 2026-07-15 by Phantom VPN. We build a dVPN, so read this with that in mind. We have tried to write the version we would want to read before choosing one.

The words, defined once.

Most confusion about dVPNs is vocabulary. Five terms carry the whole idea.

Decentralized VPN (dVPN)
A VPN whose exit servers are run by many independent operators rather than owned by one company, and whose server list is published on a public ledger instead of held privately by a provider.
Node
A single server run by an independent operator. It registers itself on the chain, accepts encrypted tunnels, and forwards traffic to the open internet. It is the exit point for your connection.
Node discovery
The step where your app asks a public blockchain which nodes exist right now. The answer is a list anyone can read and verify, not a list the provider decides to show you.
Permissionless
Anyone can register a node without applying to a company. This is why coverage moves hour to hour, and why no operator can be removed by a single authority.
Full-tunnel routing
Every app on the device is routed through the tunnel, not just the browser. Expressed in WireGuard config as AllowedIPs 0.0.0.0/0 and ::/0.

How does a dVPN find its servers?

This is the part that makes a dVPN decentralized, and it is worth being precise about. The blockchain is a directory. It is not in your traffic path and it does not carry your data.

  1. 01

    An operator registers a node

    Someone with a server and bandwidth publishes a record on the chain: the node's address, where it is, and how to reach it. They do not apply to a company for permission, and no company can quietly drop them from a list.

  2. 02

    Your app queries the chain

    The client asks sentinelhub-2 for the nodes that are live right now and gets back a public list. Anyone running the same query gets the same answer, which is what makes the coverage claim checkable rather than promotional.

  3. 03

    The client picks and connects

    Phantom VPN measures latency to the candidates, ranks them, and opens a session with the fastest healthy one. From that point the chain is out of the picture: the tunnel is device to node, directly.

A common misreading: people assume a dVPN sends traffic "over the blockchain." Nothing of the sort happens. The chain answers one question, which servers exist, and then gets out of the way. Your packets take the same path they would with any WireGuard tunnel.

What is WireGuard?

WireGuard is the tunnel protocol underneath most modern VPNs, decentralized or not. It is worth knowing because it is the part doing the actual protecting.

A small, modern protocol

WireGuard is deliberately narrow. It offers one cipher suite rather than a menu of negotiable options, which removes a whole category of downgrade mistakes. It uses Curve25519 for key exchange, ChaCha20-Poly1305 for the data, and BLAKE2s for hashing. It runs over UDP and it lives in the kernel on platforms that allow it.

The keys are made on your device

Every WireGuard peer has a Curve25519 keypair. Phantom VPN generates a fresh one on your device for each connection, writes the private half into the system keychain, and sends only the public half to the node. The private key never leaves your device, which means we could not decrypt your tunnel even if we were asked to.

It is the same protocol either way

A dVPN does not use special cryptography. Phantom VPN's tunnel is WireGuard and only WireGuard. If a decentralized VPN is more private than a centralized one, the reason is the ownership model, not the maths. Anyone selling you decentralization as a cryptographic upgrade is selling you something else.

How is the trust model different?

Every VPN asks you to trust someone, because someone has to carry your traffic out to the internet. The only real question is who, and how many people they hold at once.

The centralized model

One company owns the servers, writes the privacy policy, and decides what it keeps. You are trusting a named business, which is not nothing: it has a reputation, a legal department, and a lot to lose. But that single company is also a single point of leverage. One demand, one breach, or one quiet change of policy reaches its entire user base, and you cannot independently verify what it keeps because the only view into it belongs to them.

The decentralized model

The nodes belong to unrelated operators, so no one party holds every user, and the registry is public so the server list is not a claim you have to accept. The app publisher is not in the traffic path at all. What you give up is recourse at the level of an individual node: the operator is a stranger, their practices are their own, and there is no support desk behind that specific machine.

Put bluntly: a dVPN trades one large concentrated risk for many small distributed ones. That is a good trade if your worry is mass exposure through a single company. It is a worse trade if your worry is one bad actor on one machine on one evening.

What are dVPNs genuinely good at?

There is no fleet to subpoena

A centralized VPN owns every server it offers, so one legal demand to one company reaches every user at once. In a dVPN there is no company-owned fleet. A demand reaches one operator and one node, and that operator does not hold anyone else.

The server list is verifiable

Node records live on a public chain. You do not have to take a marketing page at its word about where servers are or who runs them. You can read the registry yourself.

No single point of compromise

Operators are unrelated to each other and to the app publisher. Compromising one node does not give anyone a view across the network, because there is no central place where all the sessions meet.

The app publisher is not in the traffic path

In Phantom VPN the encrypted tunnel runs directly between your device and the node you picked. Traffic never transits our infrastructure, so your browsing is not ours to log, leak, or sell. That is an architectural fact, not a policy promise.

What are dVPNs bad at?

We sell one, and these are still true. If a dVPN page does not have a section like this, that tells you something about the page.

Node quality varies, and nobody guarantees it

Operators buy their own hardware and their own bandwidth. Some run datacentre-grade links, some do not. There is no service level agreement behind an individual node, because there is no company standing behind it.

Speeds are not consistent

A large centralized provider tunes a fleet it controls end to end. A dVPN cannot. Two nodes in the same country can differ by a wide margin, and the same node can be fast in the morning and slow at night.

A node can disappear mid-session

Permissionless registration means permissionless departure. An operator can pull a node offline at any time. Good clients handle this by failing over, but an uptime figure for the network as a whole is not something anyone can honestly promise.

You are trusting an unknown operator, not a known company

This is the real trade. A centralized provider is a named business with a brand and lawyers to lose if it misbehaves. A node operator is usually a stranger. You gain the fact that no one party holds every user. You give up the ability to point at a company when a single node behaves badly.

Coverage is smaller and it moves

Major centralized VPNs advertise thousands of servers across well over a hundred countries, and they can, because they buy and rack the hardware themselves. Sentinel typically has nodes in more than 15 countries at any moment, and the real number shifts continuously because operators join and leave on their own schedule.

Streaming is not more reliable here

Streaming services block IP ranges they associate with VPNs. Decentralization does not exempt a node from that. If unblocking a specific service is your main goal, a dVPN is not automatically the better tool.

What decentralization does not fix.

Four things people expect a dVPN to solve that it does not. Three of them are true of every VPN ever made.

The exit node still sees where your traffic goes

This is true of every VPN, centralized or not. The node is the point where your traffic leaves the tunnel and enters the open internet, so it can see the destinations you contact. HTTPS still protects the contents from the node. A VPN moves the point of trust, it does not delete it.

A VPN is not anonymity

A VPN hides your IP address from the sites you visit and hides your destinations from your local network and your internet provider. It does not make you anonymous. Logged-in accounts, browser fingerprints and cookies identify you regardless of which tunnel you used. Tor and a VPN solve different problems.

Phantom VPN accounts are not anonymous

Signing in is required, by email one-time code, Google, or Apple. We store your email address and your last login. Being decentralized at the network layer does not make the account layer anonymous, and we are not going to imply otherwise.

DNS does not stay inside the network

The Phantom VPN tunnel pushes Cloudflare DNS resolvers, 1.1.1.1 and 1.0.0.1. Your queries travel inside the encrypted tunnel and are not visible to your internet provider, but they are answered by Cloudflare, not by the decentralized network.

Where Sentinel and Phantom VPN fit.

These two names get used interchangeably and they should not be. One is a network. One is an app.

Sentinel is the network

Sentinel is a public, permissionless dVPN network with the chain id sentinelhub-2. Independent operators register nodes on it. It is not a product you install, and it is not a brand of ours. Anyone can run a node on it and anyone can build a client for it.

Phantom VPN is one app on it

Phantom VPN is built on the Sentinel decentralized network. It handles the chain query, the latency ranking, the WireGuard keys and the failover, so that using a dVPN feels like using any other VPN app. Native on iPhone, iPad, Mac and Android, in 10 languages. We do not own any of the nodes it connects you to.

What we keep, plainly

We never log your browsing, your DNS queries, or the content of your traffic. We do retain connect and disconnect events, which node and when, minutes used, and the email on your account. We do not say "no logs", because for us it would not be true, and it is rarely true for anyone who says it.

Read the technical detail

Common questions about dVPNs

What is a decentralized VPN in simple terms?

A decentralized VPN routes your traffic through servers run by many independent operators instead of servers owned by one company. Your app finds those servers by querying a public blockchain rather than by reading a private list the provider controls. The encryption and the day-to-day experience are the same as an ordinary VPN. What changes is who owns the servers and who could be compelled to hand over the users.

How is a dVPN different from a regular VPN?

The difference is ownership and discovery, not the tunnel. A regular VPN owns its whole fleet, so a single subpoena to that company can reach every user, and you have to take its word about its servers and its logging. A dVPN owns none of the nodes, publishes the node registry on a chain anyone can read, and spreads users across unrelated operators. In exchange you accept variable node quality and no network-wide uptime guarantee.

What is Sentinel?

Sentinel is a decentralized VPN network, not a VPN app. It is a public blockchain, chain id sentinelhub-2, where independent node operators register their servers and clients look them up. Anyone can run a node and anyone can build an app on top of it. Phantom VPN is one such app: it is built on the Sentinel decentralized network.

Is a decentralized VPN safe?

The tunnel itself is as safe as the protocol behind it. Phantom VPN uses WireGuard, with a Curve25519 keypair your device generates fresh on every connection and a private key that never leaves your keychain. The honest caveat is the exit: your traffic leaves the tunnel at a node run by someone you do not know. That is true of centralized VPNs too, except there the stranger is a company. Decide which stranger you prefer, and keep using HTTPS either way.

Are decentralized VPNs slower?

They are less consistent. A node is an independent operator on their own connection, so a good node can match a commercial VPN server and a poor one will not. Phantom VPN measures latency to candidate nodes before connecting and ranks them, which raises the floor, but nobody can make a permissionless network uniform. If perfectly predictable throughput is your first requirement, that is a genuine argument for a centralized provider.

Do I need cryptocurrency to use a decentralized VPN?

Not with Phantom VPN. The blockchain is used to find nodes, not to make you handle a wallet. You sign in with an email code, Google, or Apple, and you can pay through the App Store or Google Play like any other app. There is also a free tier where you earn 60 minutes of connection time by watching a short ad, up to three times a day.

How many countries does a dVPN cover?

Coverage moves because the network is permissionless. Sentinel typically has nodes online in more than 15 countries, but operators join and leave continuously, so any exact figure on a marketing page is out of date the moment it is printed. The Phantom VPN app shows the real list at the moment you connect.

The theory is only worth so much.

If you want to see what a dVPN actually feels like, Phantom VPN is free to start. Watch a short ad, get 60 minutes, decide for yourself.