This thesis studies how to develop a strictly controlled use system in order to avoid information leakage, which is usually caused by cross-use or mixed use of USB removable storage media. We also investigate two-way authentication, two-factor authentication and transparent encryption technology. The main results obtained are following:1, Analyze problems in various existing management systems of USB removable storage media, propose a novel solution by integrating the ideas from IT service management:change management, event management.2, Establish media access mechanism which simultaneously authentics the identity of USB removable storage media, the identity of clients and that of users, eliminating information leakage.3, The authentication process includes two factors. One is the one time passwords (OTP) to recognize the identity of users. Another one is to aquire the unique information from the USB and the client. We also encrypt this information before transmission on the intranet for safety reasons.4, Develop a file system filter driver to dynamic encryption, decryption, access control, strengthening the classified security information in the media.5, Build a testing environment, test the security and performance of the manage system, which proves to be safe an reliable. |