What is RDP?
RDP stands for Remote Desktop Protocol — a protocol developed by Microsoft that allows users to access another computer remotely through a graphical user interface (GUI).
RDP makes it possible to operate a remote Windows machine as if you were sitting in front of it.
🧠 How does RDP work?
- The user connects through an RDP client (such as Remote Desktop Connection)
- The target computer runs an RDP server, by default on port 3389/TCP
- Only screen, keyboard and mouse input are sent over the network — not the entire desktop environment
🔐 Securing RDP
Although RDP is powerful, it also entails security risks:
| Risk | Security measure |
|---|---|
| Brute-force attacks | Use MFA, account lockouts |
| Unauthorised access | Apply RBAC, IAM and Access Control |
| Network access from the internet | Allow only via VPN or a Jump Server |
| Exploits in RDP software | Keep up to date and apply patches |
🛠 Use cases for RDP
- Remote server administration
- Access to workstations in an OT/IT environment
- Help-desk or system-management support
- Secure access to HMI/SCADA systems via a Jump Server
✅ Alternatives to RDP
- VNC – platform-independent remote desktop (less secure)
- TeamViewer / AnyDesk – commercial remote-support tools
- SSH + X11 forwarding – for Linux systems
- Web-based remote desktops (e.g. Apache Guacamole)
📌 In summary
RDP is a powerful protocol for graphical remote access to Windows machines, but requires careful configuration and protection to prevent abuse — particularly in industrial environments.