Cryptology ePrint Archive: Report 2015/022

TMSUI: A Trust Management Scheme of USB Storage Devices for Industrial Control Systems

Bo Yang and Dengguo Feng and Yu Qin and Yingjun Zhang and Weijin Wang

Abstract: The security of sensitive data and the safety of control signal are two core issues in industrial control system (ICS). However, the prevalence of USB storage devices brings a great challenge on protecting ICS in those respects. Unfortunately, there is currently no solution especially for ICS to provide a complete defense against data transmission between untrusted USB storage devices and critical equipment without forbidding normal USB device function. This paper proposes a trust management scheme of USB storage devices for ICS (TMSUI). By fully considering the background of application scenarios, TMSUI is designed based on security chip to achieve authoring a certain USB storage device to only access some exact protected terminals in ICS for a particular period of time. The issues about digital forensics and revocation of authorization are discussed. The prototype system is nally implemented and the evaluation on it indicates that TMSUI e ectively meets the security goals with high compatibility and good performance.

Category / Keywords: cryptographic protocols / Trust Management, USB Storage Device, Industrial Control System, Industrial Security, Security Chip

Date: received 11 Jan 2015

Contact author: yangbo at tca iscas ac cn

Available format(s): PDF | BibTeX Citation

Version: 20150112:072703 (All versions of this report)

Short URL: ia.cr/2015/022

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]