Design and implementation of proxy-based SSO and security audit system for remote desktop access

Remote desktop access is used to access and maintain a variety of internal resources in enterprise. However, traditional business network systems are commonly maintain the resources´ accounts individually, and it brings problems in the supervision and security audit with hard to determine the root when security events occurred. To this problem, we proposed a novel proxy-based Single Sign On (SSO) and security audit system in this paper, to meet the demand of the Unified Accounting Management, and ensure the security supervising and auditing of remote desktop access. It accomplished the SSO function based on the protocol parsed, and provided replay function by recording all the sessions´ data. Our system was more efficient with did not need conversion between the different remote desktop protocols, and effectively processes all the accessing sessions of RDP, VNC, and X-window in enterprise networks.