FILTERING OF USB DEVICES BY CLASS AND WHITELISTING
WhiteN® possesses a minimalistic USB stack, with only three device classes being supported:
- HID, Human Interface Device (e.g. keyboard)
- CCID, Chip/Smart Card Interface Device (e.g. smartcard reader)
- MSC, Mass Storage Class (e.g. USB flash drive)
In addition, the whitelist mechanisms implemented at the core of the USB stack authorize only certain, pre-identified USB devices (e.g. one single keyboard, one single mouse…).
Consequently, any USB device that has not been explicitly authorized will be blocked (e.g. a network interface device or a webcam, which the operator is not authorized to use).
Furthermore the sensitive parametering capability of WhiteN® makes it possible to implement advanced heuristics, such as the automatic blocking of a second keyboard or the explicit authorization by the user of each peripheral device detected.