5.4.5 External Security Protocols Used By RDP

RDP supports four External Security Protocols: TLS 1.0 ([RFC2246]) TLS 1.1 ([RFC4346])<51>, TLS 1.2 ([RFC5246])<52> and the Credential Security Support Provider (CredSSP) Protocol [MS-CSSP].<53> All of the TLS variants and the CredSSP protocol require external infrastructure, such as authentication certificates (TLS and CredSSP) or Key Distribution Centers (CredSSP), to run successfully. These resources are opaque to RDP and left to implementers to provide, set up, and maintain.