Abstract: The Windows RDP protocol developed by Microsoft Inc. has caused many security problems. The principles of RDP are introduced, and the security-mechanism adopted by RDP is also analyzed. It points out some improper design methods of the protocol. Some security improvement schemes of RDP protocol and advices for using RDP application are both offered.

Key words: RDP, RSA, security, man-in-the-middle

摘要： 微软开发的Windows下的RDP协议暴露出一定的安全问题。介绍了RDP协议的工作原理，分析了RDP采用的安全机制，指出其在协议设计上存在的一些漏洞，从用户使用和协议改进两个方面分别提出了防范措施和修改方案。

关键词: RDP, RSA, 安全, 中间人

CLC Number: 

• TP31