A proxy-based solution for securiting remote desktop connections in mission-critical systems

Ron Bitton; Clint Feher; Yuval Elovici; Asaf Shabtai; Gaby Shugol; Raz Tikochinski; Shachar Kur

doi:10.1109/HASE.2017.38

A proxy-based solution for securiting remote desktop connections in mission-critical systems

Ron Bitton, Clint Feher, Yuval Elovici, Asaf Shabtai, Gaby Shugol, Raz Tikochinski, Shachar Kur

Department of Software and Information Systems Engineering

Ben-Gurion University of the Negev

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Remote desktop protocols (RDPs) are used for connecting and interacting with computers remotely. In recent years, we have witnessed a number of vulnerabilities identified in two widely used remote desktop implementations, Microsoft Remote Desktop and RealVNC, that may expose the connected systems to a new attack vector. Such vulnerabilities are particularly concerning when it comes to mission-critical systems in which a client device with a low trust level connects to the critical system via a remote desktop server. In this preliminary study we propose a proxy-based solution that applies various modules, each of which mitigates a different type of threat, in order to secure remote desktop connections used in missioncritical systems.

Original language	American English
Title of host publication	Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017
Pages	153-156
Number of pages	4
ISBN (Electronic)	9781509046355
DOIs	https://doi.org/10.1109/HASE.2017.38
State	Published - 25 Apr 2017
Event	18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017 - Singapore, Singapore Duration: 12 Jan 2017 → 14 Jan 2017

Publication series

Name	Proceedings of IEEE International Symposium on High Assurance Systems Engineering

Conference

Conference	18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017
Country/Territory	Singapore
City	Singapore
Period	12/01/17 → 14/01/17

Keywords

Malware
Mission-critical system
Proxy
Remote code execution
Remote desktop

All Science Journal Classification (ASJC) codes

Software
Safety, Risk, Reliability and Quality

Access to Document

10.1109/HASE.2017.38

Cite this

Bitton, R., Feher, C., Elovici, Y., Shabtai, A., Shugol, G., Tikochinski, R., & Kur, S. (2017). A proxy-based solution for securiting remote desktop connections in mission-critical systems. In Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017 (pp. 153-156). Article 7911890 (Proceedings of IEEE International Symposium on High Assurance Systems Engineering). https://doi.org/10.1109/HASE.2017.38

@inproceedings{20fec59256b440af91f57fb63ddb03a1,

title = "A proxy-based solution for securiting remote desktop connections in mission-critical systems",

abstract = "Remote desktop protocols (RDPs) are used for connecting and interacting with computers remotely. In recent years, we have witnessed a number of vulnerabilities identified in two widely used remote desktop implementations, Microsoft Remote Desktop and RealVNC, that may expose the connected systems to a new attack vector. Such vulnerabilities are particularly concerning when it comes to mission-critical systems in which a client device with a low trust level connects to the critical system via a remote desktop server. In this preliminary study we propose a proxy-based solution that applies various modules, each of which mitigates a different type of threat, in order to secure remote desktop connections used in missioncritical systems.",

keywords = "Malware, Mission-critical system, Proxy, Remote code execution, Remote desktop",

author = "Ron Bitton and Clint Feher and Yuval Elovici and Asaf Shabtai and Gaby Shugol and Raz Tikochinski and Shachar Kur",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017 ; Conference date: 12-01-2017 Through 14-01-2017",

year = "2017",

month = apr,

day = "25",

doi = "10.1109/HASE.2017.38",

language = "American English",

series = "Proceedings of IEEE International Symposium on High Assurance Systems Engineering",

pages = "153--156",

booktitle = "Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017",

}

Bitton, R, Feher, C, Elovici, Y , Shabtai, A, Shugol, G, Tikochinski, R & Kur, S 2017, A proxy-based solution for securiting remote desktop connections in mission-critical systems. in Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017., 7911890, Proceedings of IEEE International Symposium on High Assurance Systems Engineering, pp. 153-156, 18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017, Singapore, Singapore, 12/01/17. https://doi.org/10.1109/HASE.2017.38

A proxy-based solution for securiting remote desktop connections in mission-critical systems. / Bitton, Ron; Feher, Clint; Elovici, Yuval et al.
Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017. 2017. p. 153-156 7911890 (Proceedings of IEEE International Symposium on High Assurance Systems Engineering).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A proxy-based solution for securiting remote desktop connections in mission-critical systems

AU - Bitton, Ron

AU - Feher, Clint

AU - Elovici, Yuval

AU - Shabtai, Asaf

AU - Shugol, Gaby

AU - Tikochinski, Raz

AU - Kur, Shachar

PY - 2017/4/25

Y1 - 2017/4/25

N2 - Remote desktop protocols (RDPs) are used for connecting and interacting with computers remotely. In recent years, we have witnessed a number of vulnerabilities identified in two widely used remote desktop implementations, Microsoft Remote Desktop and RealVNC, that may expose the connected systems to a new attack vector. Such vulnerabilities are particularly concerning when it comes to mission-critical systems in which a client device with a low trust level connects to the critical system via a remote desktop server. In this preliminary study we propose a proxy-based solution that applies various modules, each of which mitigates a different type of threat, in order to secure remote desktop connections used in missioncritical systems.

AB - Remote desktop protocols (RDPs) are used for connecting and interacting with computers remotely. In recent years, we have witnessed a number of vulnerabilities identified in two widely used remote desktop implementations, Microsoft Remote Desktop and RealVNC, that may expose the connected systems to a new attack vector. Such vulnerabilities are particularly concerning when it comes to mission-critical systems in which a client device with a low trust level connects to the critical system via a remote desktop server. In this preliminary study we propose a proxy-based solution that applies various modules, each of which mitigates a different type of threat, in order to secure remote desktop connections used in missioncritical systems.

KW - Malware

KW - Mission-critical system

KW - Proxy

KW - Remote code execution

KW - Remote desktop

UR - http://www.scopus.com/inward/record.url?scp=85019203874&partnerID=8YFLogxK

U2 - 10.1109/HASE.2017.38

DO - 10.1109/HASE.2017.38

M3 - Conference contribution

T3 - Proceedings of IEEE International Symposium on High Assurance Systems Engineering

SP - 153

EP - 156

BT - Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017

T2 - 18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017

Y2 - 12 January 2017 through 14 January 2017

ER -

Bitton R, Feher C, Elovici Y , Shabtai A, Shugol G, Tikochinski R et al. A proxy-based solution for securiting remote desktop connections in mission-critical systems. In Proceedings - IEEE 18th International Symposium on High Assurance Systems Engineering, HASE 2017. 2017. p. 153-156. 7911890. (Proceedings of IEEE International Symposium on High Assurance Systems Engineering). doi: 10.1109/HASE.2017.38

A proxy-based solution for securiting remote desktop connections in mission-critical systems

Abstract

Publication series

Conference

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this