Bewegte Bilder
USB borne attacks and usable defense mechanisms: Hardening built into the operating system without compromising on usability
The attack surface of USB is quite large and while disabling USB altogether solves the problem, it creates many other. As do existing protection mechanisms. They suffer from poor usability and missing integration into the operating system. We present our approach to defending against rogue USB devices for a GNOME-based operating system. USB is arguably to most exposed interface of a user's machine. It allows an attacker to interact with pretty much any driver, many of which are of questionable quality. We try to be smart about when to allow new USB devices. First, we try to detect when the user is present, arguing that if the user is not then new USB devices should not work. But it is not that simple, because you might very well want to attach a new keyboard in case yours breaks. Keyboards, however, pose another risk as several attacks have shown. But not all keyboards are equally bad and we propose to promote a harmless keyboard to become dangerous after getting the user's consent. It is not entirely clear yet how to that best, so your feedback and a discussion is certainly welcome!
- Standort
-
Hannover TIB
- Umfang
-
56MB, 00:25:10:05 (unknown)
- Sprache
-
Englisch
- Anmerkungen
-
Audiovisuelles Material
- Erschienen in
-
FOSDEM 2019 ; (Jan. 2019)
- Ereignis
-
Veröffentlichung
- (wer)
-
FOSDEM VZW
- (wann)
-
2019-01-01
- Beteiligte Personen und Organisationen
-
Mueller, Tobias
Nittis, Ludovico de
- DOI
-
10.5446/44629
- Letzte Aktualisierung
- 21.04.2026, 10:49 MESZ
Datenpartner
Dieses Objekt wird bereitgestellt von:
Technische Informationsbibliothek (TIB).
Bei Fragen zum Objekt wenden Sie sich bitte an den Datenpartner.
Objekttyp
- zweidimensionales bewegtes Bild
Beteiligte
- Mueller, Tobias
- Nittis, Ludovico de
- FOSDEM VZW
Entstanden
- 2019-01-01
Ähnliche Objekte (12)
USB borne attacks and usable defense mechanisms: Hardening built into the operating system without compromising on usability
USB
USB 2.0 : Datendienste, Function, Hub, Host, Errorhandling, Powermanagement, USB-Treiber, USB-Bausteine, USB-Applikationen, Test & Analyse
USB 2.0
USB-Stick
Hardening Digital Circuits against Invasive Attacks with On-Chip Delay Measurements
{HERZ} USB-STICK
USB 1.1, Buch.
Justice ; USB 3
Usable access control
Usable cryptocurrency systems
Usable Access Control
USB borne attacks and usable defense mechanisms: Hardening built into the operating system without compromising on usability
USB
USB 2.0 : Datendienste, Function, Hub, Host, Errorhandling, Powermanagement, USB-Treiber, USB-Bausteine, USB-Applikationen, Test & Analyse
USB 2.0
USB-Stick
Hardening Digital Circuits against Invasive Attacks with On-Chip Delay Measurements
{HERZ} USB-STICK
USB 1.1, Buch.
Justice ; USB 3
Usable access control
Usable cryptocurrency systems
Usable Access Control
USB borne attacks and usable defense mechanisms: Hardening built into the operating system without compromising on usability
USB
USB 2.0 : Datendienste, Function, Hub, Host, Errorhandling, Powermanagement, USB-Treiber, USB-Bausteine, USB-Applikationen, Test & Analyse
USB 2.0
USB-Stick
Hardening Digital Circuits against Invasive Attacks with On-Chip Delay Measurements
{HERZ} USB-STICK
USB 1.1, Buch.
Justice ; USB 3
Usable access control
Usable cryptocurrency systems