I am not sure why hosting companies have not done this, nor why no one has had the idea to accomplish this previously. I have developed a method for RCON to communicate (for now, just authenticate with a single game, The Isle) over HTTPS. I have created a broker program to facilitate this communication. I need to flesh this out further to ensure that RCON commands are passed to the server after successful authentication, however the authentication seems to be robust enough to work for at least the single game I have tested.

https://i.imgur.com/kgm8SGW.png

Server providers really should plan to adopt such a feature. RCON has inherently been insecure for way too ♥♥♥♥♥♥♥ long, and that should change. Sending authentication details over an SSL connection should be the right push for this.

https://github.com/aurorapar/SCON/tree/main