CloudBerry Remote Assistant is a handy tool for establishing secure remote desktop connections between two computers. Naturally, the contents of the traffic interchanged may very well contain sensitive data that under no circumstances should be intercepted by malefactors. In this short post we succinctly explain how to setup secure RDP(Remote Desktop Protocol) conntection with the help of CloudBerry Remote Assistant.
Secure Remote Desktop with CloudBerry Remote Assistant
Remote Desktop is a an essential part of modern IT. It is widely used by users, IT administrators, and support engineers. Needless to say, Remote Desktop connection should be as safe as possible to preserve the integrity of transferred data. It is a well-known fact that various malware can breach through the exploits of unsafe remote desktop connection.
The world of cyber security has in recent years witnessed numerous cases of various RDP exploits being utilized by culprits to attack users with ransomware. This is irrefutably inadmissible, as critical IT infrastructure might be locked or even destroyed. Paying ransom is almost never the option; besides, taking preventive measures is usually less costly and obviously preferable. Monitoring your ports, utilizing firewall are among the obvious ways of dealing with the issues. Yet the best way to ensure secure remote desktop connection is to use software that offers robust encryption algorithms coupled with secure data transfer protocols.
CloudBerry Remote Assistant employs a combination of RSA and AES encryption to secure all incoming and outgoing connections. RSA encryption is utilized in the very beginning for generation of a unique pair of cryptographic keys — public and private key — that are then used to establish connection between the two computers. All further data transfer, including video, voice chat, and other information is being exclusively interchanged via the AES encryption. This is a somewhat simplified explanation of the underlying processes; let us therefore break it down a little further for all of you tech-heads out there.
Key generation for RDP connection
To avoid any further confusion, let’s designate the the user sharing their computer’s screen as the Host, and the person receiving the data as the Client. Now just to clarify, when you first launch CloudBerry Remote Assistant on the Host’s computer, encryption is by default turned off.
You can enable encryption in the app's settings by clicking Security Configuration on the main screen and selecting the appropriate checkbox.
Now let's see how exactly the encryption itself occurs, from A to Z.
Once you’ve enabled encryption, the app generates two keys: one public and one private. The public key is the lengthy text you copy from the app’s UI and then manually provide to the Client, preferably via a secure channel (Telegram’s secret chat, for instance).
Next, the Client generates a preliminary session key and encrypts it using the said public key using the RSA algorithm. The freshly encrypted session key is then transferred to the Host.
Immediately upon receiving the session key, the Host decrypts it using the private key. Then the Host updates the session key and encrypts it using the preliminary session key using the 256-bit AES algorithm. The host then finally sends the updated session key to the Client, thereby rendering the connection established and ready for data exchange. The same session key is stored in memory on both computers and is never stored on any server. It makes little difference as to how robust your encryption is; what does matter, however, is who stores the keys and who has access to them.
Then the action begins — the remote desktop session is up and running, the Host and the Client exchange data and interact using mouse, keyboard, voice, and text chat. All that data is transferred is encrypted using the said 256-bit AES algorithm, ensuring that malefactors will fail to extract any sensitive data from the data stream.
Ensuring the secure transfer of your data on the Web is unquestionably a matter of utmost importance for any organization. That's why CloudBerry Remote Assistant strives to be the go-to solution for users who need simple-to-use Remote Desktop software that provides stability, encryption, and robustness. The combination of RSA & AES encryption allows for secure RPD connection and swift data transfer. Feel free to try out CloudBerry Remote Assistant for yourself and let us know about your experience in the comment section below.
CloudBerry Remote Assistant 1.3