Removable Storage Media Security Management System

Removable storage media due to its large capacity, easy to use, easy to carry, etc. to gain in popularity, and in all government agencies, design institutes, manufacturers, telecommunications and other financial institutions are widely used. It is because of these characteristics, resulting in poor management of mobile storage media, misuse, loss, theft and other reasons caused by the leak was an increasing trend. Removable media, there is lack of self-authentication, access controls, weak security and other security risks, so the information is stored in removable storage media are often out of control. This has become the focus of attention of confidentiality and difficult.Security threats against the risks of the above, the current number of agencies, including some, such as military, government agencies and other high security classification, the resort is also largely depend on system management. However, these management systems and methods for various reasons, often difficult to truly get implemented. Some organizations to simply USB port sealing of removable storage devices such as, although this can prevent a portion of removable storage media caused by information leak risks, but this way to increase institutional operating costs, but also reduces efficiency. Can be seen, the traditional passive solutions can not completely solve the safety and efficiency.Therefore, agencies to seriously implement the policies, standards, strengthen the confidentiality of removable storage media, while also strengthening the security of removable storage media technology and product development and applications. Through appropriate technical means, the use of active defense mechanisms, support management system for the safe use of removable storage media and management.Removable storage media for their own safety is low, easily lost, scattered and difficult to unified management, this paper designed and developed a mobile storage media management system RSMSMS, the system within the organization network for mobile unified management of storage media, use unified certification, monitoring and auditing.RSMSMS system has the following security guarantees:Removable storage media in-house by the manager for unified registration and grant the appropriate permissions;When the licensed media in use, RSMSMS server will check whether removable storage media used in the permissions on the computer and the corresponding "read" and other fine-grained permissions, only with the appropriate permissions to use the media.When the non-licensed media used in the internal trusted domain, RSMSMS will refuse to removable storage media used in the internal computer.When the authority to get the media from within the trust domain to use external non-trusted domains, you can not use removable storage media and read the information.RSMSMS does the security protection of removable storage media prior management, things in control, after the audit, to achieve the safe use of removable storage media. At the same time, the system fully into account the burden on users, in addition to the necessary unity of removable storage media management, audit logs, the terminal computer users without any burden, so the safe use of removable storage media transparent. In management, the organizational structure of the system flexible for the user configuration and management, meet a variety of users scale applications.The first chapter briefly introduces the development background, analysis of the risks of removable storage media presence status, indicating the development of the system of the necessity and urgency, and gives the main work of this article; second chapter describes the system requirements analysis, first, the system's main functions, including media management, terminal control, security, off-grid, log auditing, systems management and security functions, and then from the software engineering point of view given the system's use case design, including client-side use cases Design and server use case design; the third section shows the system architecture design, including system design principles, objectives and system structure, operating environment and system development; fourth chapter elaborates the detailed design, from the customer both client and server systems to introduce the features of the system, workflow and database table design; fifth chapter gives the part of the operating system interface; VI a summary of the text and proposed further work. The design principle of RSMSMS is a very effective information security controls and the benefits of new technology to achieve the best balance, so that end users get the best benefits, the agency's most important electronic data is the most effective anti-leak control. Currently, the system has been developed and entered the trial stage to good effect. With the user's needs and gradually enriched, RSMSMS function of the system will be gradually improved, in order to better realize the mobile devices and removable media security management.