NSA issues cybersecurity guidelines for remote desktop users
The number of cyber attacks has steadily risen in recent months, as more and more businesses adopt work-from-home procedures in an attempt to maintain productivity while respecting quarantine orders and social distancing.
In response to this threat, the US National Security Agency (NSA) has released a series of telework guidelines, emphasizing the importance of end-to-end encryption and other security measures.
The NSA is not the first to give guidance on dealing with security risks when using remote desktop software. In April, Microsoft posted instructions for protecting against cyber attacks when using its Remote Desktop Protocol (RDP), one of the most popular remote access solutions worldwide.
Remote desktop security
The NSA publication offers users criteria for both selecting and using secure remote desktop software. According to the guidelines, the most secure solutions will implement end-to-end encryption with well-tested standards, validate users’ identities through multi-factor authentication, and allow for controlling exactly who connects to collaboration sessions.
Additionally, users should take into consideration the privacy policy and transparency of any remote access tool being used. Businesses will want to double-check whether a vendor’s policy allows for the sale of information to third parties, and whether sensitive information can be securely deleted from its servers.
The NSA’s assessment of popular remote access tools like Cisco Webex, Signal, and Microsoft Teams show that no one service meets all the requirements. The two that come closest, Signal and Wickr, lost points for not having undergone third-party auditing, although both have released their source codes to the public.
Ultimately, businesses will have to decide for themselves which security features are most important, using the NSA guidelines as a starting point.
The number of cyber attacks has steadily risen in recent months, as more and more businesses adopt work-from-home procedures in an attempt to maintain productivity while respecting quarantine orders and social distancing. In response to this threat, the US National Security Agency (NSA) has released a series of telework guidelines,…
Recent Posts
- The Hades 2 technical test is a trial in self-control
- Rebel Moon Part 2 review: A slow-mo sci-fi slog
- Twitter alternative Post News is shutting down
- Tesla Cybertruck suffers new recall for a very scary problem
- ‘The party is over for developers looking for AI freebies’ — Google terminates Gemini API free access within months amidst rumors that it could charge for AI search queries
Archives
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011