Research Of Security Management Technology For Removable Storage Media

With the high-speed development and rapid popularization of computer and internet technology, the storage, processing and transmission of information have fundamentally changed. Informationization, digitization and networking have become the development trend of the information system. As an important carrier of information transfer and data exchange, removable storage media are widely used in the intranet of government agencies, the military, research institutes and enterprises. Removable storage media bring us convenience, but also security threats. News reports about information security incidents that caused by removable storage media appear often, which causes huge economic losses, negative social influence, and even threats to national security.The thesis summarizes and analyzes the security management technology and related products of removable storage media, and analyzes the security problems that exist in access authentication, risk assessment and rights management. On this basis, from a systemic point of view, the thesis proposes the full-lifecycle safety management scheme for removable storage media. The access process of removable storage media is divided into registration phase, authentication phase, risk assessment phase, dynamic authorization phase, real-time behavior auditing and logging during the process. The scheme can carry out systematic safety management for the use of removable storage media.In order to improve the security of access authentication, the thesis analyzes security risks that merely base on the unique identification of removable storage media, or user name and password, to authenticate the removable storage media. A new authentication scheme, which binding the user with removable storage media, is proposed. When a user connects a removable storage media into the trusted terminal of the trusted system, the terminal receives the user’s account and password, and then sends the encrypted information of the removable storage media to the authentication server for authentication. Only certified removable storage media can access into the system. Correctness, security and completeness of the scheme are analyzed. The practicality and efficiency of the scheme are verified by experiments. The new scheme can solve User change Attack, Interception Attack, USB Forgery Attack and Replay Attack that present authentication schemes may face. The thesis designs indicators of the risk assessment, and establishes a risk assessment model that based on FCE-AHP. Based on industry standards and the specific problems of removable storage media, the thesis analyzes the risk factors as removable storage media access into the intranet, and using FCE-AHP to calculate the result of risk assessment. The thesis designs a dynamic authorization scheme that based on the risk assessment result, which takes the changed information of user identity and security status of the system into account for permission assignment. Combining the real-time results of risk assessment with the initial authority of the users, a dynamic authorization scheme is implemented. All operating behaviors and alarm information are backed up into the log. Finally, the scientificity and rationality of the risk assessment model and dynamic authorization scheme are proved by the test.