[Cryptography] Secure VNC implementation
John Levine
johnl at iecc.com
Fri Aug 26 21:21:31 EDT 2016
>I did a bit of research on this field and nothing look too pleasing.
>The best solution so far seem to be enterprise RealVNC. Would be
>grateful to hear what people think about this solution
Depends what you mean by secure. VNC is a pretty simple design that
sends a stream of keyboard and mouse events from the client to the
host, and a stream of frame buffer updates from the host to the
client. It's described in RFC 6143.
It has no meaningful security built in, but it can run over anything
that looks like a virtual circuit. People usually run it over ssh, so
whatever you think of ssh's security, that is VNC's security.
R's,
John
More information about the cryptography
mailing list