Go to DBLP homepageProxy-Based Security Audit System for Remote Desktop Access
Abstract: Remote desktop access is commonly used to remotely access a host in enterprise networks; however it also brings in security problems in supervision and auditing. In this paper, a novel proxy-based security audit system is designed and implemented in order to ensure security supervising and auditing remote desktop access. Our system effectively monitors all the accessing sessions of RDP, VNC, and X-window, and provides replay function by recording all the graphics operations from users. Our performance test result shows that for most of small business, just one proxy server is enough to handle all the routine auditing workload of RDP sessions.
Loading