Title :
Research and Application of USB Filter Driver Based on Windows Kernel
Author :
Li, Shaobo ; Jia, Xiaohui ; Lv, Shulin ; Shao, Zhisheng
Author_Institution :
Key Lab. of Adv. Manuf. Technol., Guizhou Univ., Guiyang, China
Abstract :
The wide usage of USB storage device brings us shortcut and convenience, at the same time it also brings us some potential security hazards which we could never turn around and run. Hence, to strengthen the monitoring of USB storage devices has become an important issue in the research of information security. This paper mainly introduces the WDM driver model, deeply analyzes the communication principle of USB device and the IRP packet interception technology based on USB filter driver. On this basis, we finally implement the function of access control for USB storage device in the Windows kernel. As it is implemented in Windows kernel, so the function of access control can not be easily bypassed by the malicious program. The safety and reliability of USB filter driver based on Windows kernel is much higher than the previous software.
Keywords :
device drivers; digital storage; operating system kernels; peripheral interfaces; IRP packet interception technology; USB filter driver; USB storage device; WDM driver model; Windows kernel; security hazards; Access control; Filters; Hazards; Information security; Kernel; Monitoring; Secure storage; Software safety; Universal Serial Bus; Wavelength division multiplexing; Irp; USB bus; USB filter driver; Windows kernel; driver model;
Conference_Titel :
Intelligent Information Technology and Security Informatics (IITSI), 2010 Third International Symposium on
Conference_Location :
Jinggangshan
Print_ISBN :
978-1-4244-6730-3
Electronic_ISBN :
978-1-4244-6743-3
DOI :
10.1109/IITSI.2010.10
