Protecting portable storage with host validation

Kevin Butler; Stephen McLaughlin; Patrick McDaniel

doi:10.1145/1866307.1866386

Protecting portable storage with host validation

Kevin Butler, Stephen McLaughlin, Patrick McDaniel

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Scopus citations

Abstract

Portable storage devices, such as key-chain USB devices, are ubiquitous and used everywhere; users repeatedly use the same storage device in open computer laboratories, Internet cafes, and on office and home computers. Consequently, they are the target of malware that exploit the data present or use them as a means to propagate malicious software.We present the Kells mobile storage system, which limits untrusted or unknown systems from accessing sensitive data by continuously validating the accessing host's integrity state. We explore the design and operation of Kells, and implement a proof-of-concept USB 2.0 storage device on experimental hardware. Our experiments indicate nominal overheads associated with host validation, with a worst-case throughput overhead of 1.22% for reads and 2.78% for writes.

Original language	English (US)
Title of host publication	CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security
Pages	651-653
Number of pages	3
DOIs	https://doi.org/10.1145/1866307.1866386
State	Published - 2010
Event	17th ACM Conference on Computer and Communications Security, CCS'10 - Chicago, IL, United States Duration: Oct 4 2010 → Oct 8 2010

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	17th ACM Conference on Computer and Communications Security, CCS'10
Country/Territory	United States
City	Chicago, IL
Period	10/4/10 → 10/8/10

All Science Journal Classification (ASJC) codes

Software
Computer Networks and Communications

Access to Document

10.1145/1866307.1866386

Cite this

@inproceedings{76f5b49412b04832a49dd0ab28e60793,

title = "Protecting portable storage with host validation",

abstract = "Portable storage devices, such as key-chain USB devices, are ubiquitous and used everywhere; users repeatedly use the same storage device in open computer laboratories, Internet cafes, and on office and home computers. Consequently, they are the target of malware that exploit the data present or use them as a means to propagate malicious software.We present the Kells mobile storage system, which limits untrusted or unknown systems from accessing sensitive data by continuously validating the accessing host's integrity state. We explore the design and operation of Kells, and implement a proof-of-concept USB 2.0 storage device on experimental hardware. Our experiments indicate nominal overheads associated with host validation, with a worst-case throughput overhead of 1.22% for reads and 2.78% for writes.",

author = "Kevin Butler and Stephen McLaughlin and Patrick McDaniel",

year = "2010",

doi = "10.1145/1866307.1866386",

language = "English (US)",

isbn = "9781450302449",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "651--653",

booktitle = "CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security",

note = "17th ACM Conference on Computer and Communications Security, CCS'10 ; Conference date: 04-10-2010 Through 08-10-2010",

}

Butler, K, McLaughlin, S & McDaniel, P 2010, Protecting portable storage with host validation. in CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, pp. 651-653, 17th ACM Conference on Computer and Communications Security, CCS'10, Chicago, IL, United States, 10/4/10. https://doi.org/10.1145/1866307.1866386

Protecting portable storage with host validation. / Butler, Kevin; McLaughlin, Stephen; McDaniel, Patrick.
CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security. 2010. p. 651-653 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Protecting portable storage with host validation

AU - Butler, Kevin

AU - McLaughlin, Stephen

AU - McDaniel, Patrick

PY - 2010

Y1 - 2010

N2 - Portable storage devices, such as key-chain USB devices, are ubiquitous and used everywhere; users repeatedly use the same storage device in open computer laboratories, Internet cafes, and on office and home computers. Consequently, they are the target of malware that exploit the data present or use them as a means to propagate malicious software.We present the Kells mobile storage system, which limits untrusted or unknown systems from accessing sensitive data by continuously validating the accessing host's integrity state. We explore the design and operation of Kells, and implement a proof-of-concept USB 2.0 storage device on experimental hardware. Our experiments indicate nominal overheads associated with host validation, with a worst-case throughput overhead of 1.22% for reads and 2.78% for writes.

AB - Portable storage devices, such as key-chain USB devices, are ubiquitous and used everywhere; users repeatedly use the same storage device in open computer laboratories, Internet cafes, and on office and home computers. Consequently, they are the target of malware that exploit the data present or use them as a means to propagate malicious software.We present the Kells mobile storage system, which limits untrusted or unknown systems from accessing sensitive data by continuously validating the accessing host's integrity state. We explore the design and operation of Kells, and implement a proof-of-concept USB 2.0 storage device on experimental hardware. Our experiments indicate nominal overheads associated with host validation, with a worst-case throughput overhead of 1.22% for reads and 2.78% for writes.

UR - http://www.scopus.com/inward/record.url?scp=78650030843&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=78650030843&partnerID=8YFLogxK

U2 - 10.1145/1866307.1866386

DO - 10.1145/1866307.1866386

M3 - Conference contribution

AN - SCOPUS:78650030843

SN - 9781450302449

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 651

EP - 653

BT - CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security

T2 - 17th ACM Conference on Computer and Communications Security, CCS'10

Y2 - 4 October 2010 through 8 October 2010

ER -

Protecting portable storage with host validation

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this