Best way to authorize a USB device in an organisation?

Question

I am developing a project where I need to restrict usage of accessing non white-listed USB devices in the organization's network.

I am using it by checking the VID and PID of that USB devices.

Now, the problem is that if I have, for example, an Apple I-pad, that would have a global VID and PID number. If I white list any of the Apple I-Pads then, with my current scenario, all other Apple I-Pads would be authorized in the network.

Is using VID and PID numbers the best way to check if a USB device is white-listed, or is there a better solution?

Thanks.

CL. · Answer 1 · 2012-09-26T11:53:28.023

2

Most USB devices with storage have a serial number; use that.

For example, in Linux, you can see this in the output of lsusb:

lsusb -v
...
Device Descriptor:
  ...
  idVendor 0x1908
  idProduct 0x0102
  ...
  iManufacturer 2 BUILDWIN
  iProduct 3 Digital Photo Frame
  iSerial 1 200807101900000000
  ...

edited Sep 26 '12 at 11:53

answered Sep 26 '12 at 10:38

CL.

1,673

score 2 · Accepted Answer · answered Oct 04 '12 at 14:50

I suggest you take a look at this document :
Thumb Drive Threats and Countermeasures in a Microsoft Windows

Especially look at the chapter "Threat Countermeasures", where are described the security measures built into Windows, as well as commercial security products such as :

GFI LanGuard
Lumension
DeviceLock

Best way to authorize a USB device in an organisation?

2 Answers2