摘要
本文通过构建基于Linux用户空间的USB设备管控系统,管理Linux系统下的所有USB外设,包括但不限于U盘、移动硬盘、移动光驱、键盘、鼠标、摄像头、USB无线网卡等。系统采用客户端/服务器架构,基于Thrift框架构建客户端和服务器的数据传输模块。客户端以后台方式运行,实时监测USB设备的插入和拔出情况,并支持开机前插入检测。服务端支持对USB设备的插拔状态、使用时间、制造商信息、产品信息、设备类型进行审计。软件客户端支持单机和联机两种工作状态,支持通过判断USB标准中规定的设备类型来区分不同的USB设备,例如对键盘、鼠标免除控制。本系统支持USB设备白名单功能,支持用户自定义免控设备,白名单由服务器管控;本系统基于用户空间实现,不需对内核进行修改,易于部署。
This paper proposes a method to build a USB device management system based on Linux user space,including but not limited to USB flash drives,mobile hard drives,mobile optical drives,keyboards,mice,cameras,wireless network cards,etc.The system adopts Client/Server architecture,and builds client and server data transmission modules based on Thrift framework.The client runs in the background,monitoring the plug-in or plug-out event of the USB device in real time,and supports plug-in detection before booting.The server supports auditing the plug-in status,usage time,manufacturer information,product information,and device type of the USB device.The client supports two working states:stand-alone and online.It can distinguish different USB devices by judging the device type specified in the USB standard,such as exempting the keyboard and mouse.This system supports the whitelist function of USB devices and user-defined exempt devices.The whitelist is controlled by the server.This system is implemented based on user space,no need to modify the kernel,and easy to deploy.
作者
梁中岩
史艳阳
刘蔚棣
胡杰
Liang Zhongyan;Shi Yanyang;Liu Weidi;Hu Jie(The 28th Research Institute of China Electronics Technology Group Corporation,Nanjing 210007,China)
出处
《信息化研究》
2021年第1期48-52,56,共6页
INFORMATIZATION RESEARCH
