USB数据泄漏 [英] USB data leakage

问题描述

如果我将公共密钥保存在USB驱动器中的一个文件中，那么如何对授权的USB设备进行访问...
我的问题是我需要系统允许授权的USB设备并拒绝访问未授权的USB设备...网络中的所有计算机都在Windows

If i have a Public key saved in one of the files in a USB drive then how would help in authorised USB device access...
My problem is i need the system to allow authorised usb device and deny access to unauthorised usb devices ...all computers in the network are operating on windows

推荐答案

编写Windows服务并将其安装在所有受影响的系统上. Windows服务将检查数据库(在单独的数据库服务器上)，该数据库包含关联数据(哪个USB密钥与哪个用户和/或计算机关联).

顺便说一句，您打算如何防止用户篡改USB设备上的识别密钥?

You have to write a Windows service and install it on all of the affected systems. The Windows service would check a database (on a separate database server) that contains the association data (which USB key is associated with which user and/or machine).

BTW, how are you planning on preventing users from tampering with the identifying key on the USB device?

由于您将我的最后一个答案标记为答案"，因此我将在另一个答案中回答第二个问题.

除非设备具有可以通过编程方式检索的序列号，否则我认为您唯一能做的就是创建某种密钥，将其放在驱动器上，然后将该密钥注册到数据库中.此时，计算机将需要能够查询数据库，以查看驱动器上找到的密钥是否已注册".您可以进一步选择将已注册的密钥与特定的计算机或用户绑定.

我不知道执行此操作的任何软件，或者您可以使用的任何已经存在的代码.当然，您确实可以选择使用Google自己研究这些东西.

Since you marked my last answer as "the" answer, I''ll answer your second question in a separate answer.

Unless the device has a serial number that you can retrieve programatically, the only thing I think you''ll be able to do is create a key of some kind, put it on the drive, and register that key in a database. At that point, a computer would need to be able to query the database to see if the key found on the drive is "registered". You could further choose to tie a registered key with a specific machine or user.

I don''t know of any software that does this, or any code that already exists that you could use. You do, of course, have the option of using google to research this stuff yourself.

这篇关于USB数据泄漏的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！