Paper 2015/022

TMSUI: A Trust Management Scheme of USB Storage Devices for Industrial Control Systems

Bo Yang, Dengguo Feng, Yu Qin, Yingjun Zhang, and Weijin Wang

Abstract

The security of sensitive data and the safety of control signal are two core issues in industrial control system (ICS). However, the prevalence of USB storage devices brings a great challenge on protecting ICS in those respects. Unfortunately, there is currently no solution especially for ICS to provide a complete defense against data transmission between untrusted USB storage devices and critical equipment without forbidding normal USB device function. This paper proposes a trust management scheme of USB storage devices for ICS (TMSUI). By fully considering the background of application scenarios, TMSUI is designed based on security chip to achieve authoring a certain USB storage device to only access some exact protected terminals in ICS for a particular period of time. The issues about digital forensics and revocation of authorization are discussed. The prototype system is nally implemented and the evaluation on it indicates that TMSUI eectively meets the security goals with high compatibility and good performance.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint. MINOR revision.
Keywords
Trust ManagementUSB Storage DeviceIndustrial Control SystemIndustrial SecuritySecurity Chip
Contact author(s)
yangbo @ tca iscas ac cn
History
2015-01-12: received
Short URL
https://ia.cr/2015/022
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2015/022,
      author = {Bo Yang and Dengguo Feng and Yu Qin and Yingjun Zhang and Weijin Wang},
      title = {TMSUI: A Trust Management Scheme of USB Storage Devices for Industrial Control Systems},
      howpublished = {Cryptology ePrint Archive, Paper 2015/022},
      year = {2015},
      note = {\url{https://eprint.iacr.org/2015/022}},
      url = {https://eprint.iacr.org/2015/022}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.