A portion of the disclosure of this patent document may contain material, which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or patent disclosure as it appears in the U.S. Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.
The present invention relates to a method for limiting devices and controlling the applications executed from USB ports on personal computers (PCs). More specifically, the present invention relates to a method for ensuring that only authorized devices and applications are accessed from USB ports using software and configuration files on the PC.
There has been a significant increase in the use of portable USB storage devices to store, backup, and transfer information between PCs and locations. Conventional methods for controlling the devices and applications that may be accessed from USB ports are insufficient to address the current and growing risk related to these devices and applications.
Individuals, corporations and government agencies are increasingly becoming uncomfortable with allowing employees and other authorized personnel to utilize portable USB storage devices to store or transfer sensitive data and information. However, current methods lack the ability to easily prevent or detect the use of USB storage devices and computer applications accessed from USB storage devices.
Current methods also lack the ability to allow an individual, a corporation or a government agency to effectively control types of other USB non-storage devices which may be utilized. These devices include printers, scanners, cameras, music players, and other devices which may or may not be authorized.
It is estimated that over 130 million portable USB storage devices will be sold worldwide in 2007. The majority of these devices are predicted to be “smart drives”, which will include executable computer programs. These portable USB storage devices and the applications executed from them may not be authorized by the security policy or PC user. Therefore, as a result of the potential exposure related to USB devices, these devices are often prohibited by many corporate and government security policies. Although the devices themselves are often prohibited by policy, it is difficult to prevent or detect their usage with current methods.
This invention addresses these issues through a method which detects the use of portable USB storage devices and the applications executed from these devices and limits the devices and applications based on user defined criteria. Consequently, the invention may also be used to prevent or detect the use of other USB devices such as printers, scanners, cameras, music players, and other devices that can be attached to a USB port on a protected PC.
As a result of the limitations related to current methods, portable USB storage devices are considered to be a significant cause of exposure related to the potential loss of confidential data and information Therefore, a need exists for ensuring that only authorized devices and applications are accessed from USB ports that addresses these shortcomings in the prior art.
The present invention answers this need by providing a method for limiting the type of device and application that may be connected to, or executed from a USB port.
The invention consists of software that is either pre-loaded on the PC or installed and configured by the user. Software is configured to accommodate the levels of security as required by the user or organization. The configuration of security parameters may vary between PCs and organizations and may be controlled locally by the user or by a central rules database via connection through the internet or intranet connection.
In an embodiment of the present invention, the software is configured to limit (e.g. allow or deny) the use of devices connected via a USB port on the protected PC.
In other embodiments of the invention, the software is configured to limit (e.g. allow or deny) access to the files and applications stored on storage devices connected to the USB port on the protected PC.
It is thus an advantage of the present invention to provide a flexible method for selectively limiting devices and the files and applications executed from USB ports on protected personal computers. To this end, the present invention is new and unique in both its conception and implementation.
Embodiments of the present invention are described below by way of illustration. Other approaches to implementing the present invention and variations of the described embodiments may be constructed by a skilled practitioner and are considered within the scope of the present invention.
As shown on
As shown in
In another example as shown in
In another example as shown in
In another example as shown in
As shown in
Having thus described the invention in detail, it should be apparent that various modifications and changes may be made without departing from the spirit and scope of the present invention. Consequently, these and other modifications are contemplated to be within the spirit and scope of the following claims.
Provisional Patent Application 60/832,003 filed on Jul. 19, 2006
Number | Name | Date | Kind |
---|---|---|---|
5331136 | Koench et al. | Jul 1994 | A |
5566339 | Perholtz et al. | Oct 1996 | A |
5592618 | Micka et al. | Jan 1997 | A |
5696909 | Wallner | Dec 1997 | A |
5790074 | Rangedahl et al. | Aug 1998 | A |
5844776 | Yamaguchi et al. | Dec 1998 | A |
5956733 | Nakano et al. | Sep 1999 | A |
5979753 | Roslak | Nov 1999 | A |
6003008 | Postrel et al. | Dec 1999 | A |
6062478 | Izaguirre et al. | May 2000 | A |
6166688 | Cromer et al. | Dec 2000 | A |
6442682 | Pothapragada et al. | Aug 2002 | B1 |
6546441 | Lum | Apr 2003 | B1 |
6553348 | Hashimoto | Apr 2003 | B1 |
6574716 | Dovi | Jun 2003 | B2 |
6614349 | Proctor et al. | Sep 2003 | B1 |
6640217 | Scanlan et al. | Oct 2003 | B1 |
6704885 | Salas-Meza et al. | Mar 2004 | B1 |
6950949 | Gilchrist | Sep 2005 | B1 |
7103684 | Chen et al. | Sep 2006 | B2 |
7143289 | Denning et al. | Nov 2006 | B2 |
7165154 | Coombs et al. | Jan 2007 | B2 |
7225208 | Midgley et al. | May 2007 | B2 |
7229016 | Bravo | Jun 2007 | B2 |
7263190 | Moritz | Aug 2007 | B1 |
7269732 | Kilian-Kehr | Sep 2007 | B2 |
7356510 | Durand et al. | Apr 2008 | B2 |
7356703 | Chebolu et al. | Apr 2008 | B2 |
7403743 | Welch | Jul 2008 | B2 |
7404088 | Giobbi | Jul 2008 | B2 |
7421516 | Minogue et al. | Sep 2008 | B2 |
7561691 | Blight et al. | Jul 2009 | B2 |
7739402 | Roese et al. | Jun 2010 | B2 |
20020082925 | Herwig | Jun 2002 | A1 |
20020188856 | Worby | Dec 2002 | A1 |
20020193157 | Yamada et al. | Dec 2002 | A1 |
20030005193 | Seroussi et al. | Jan 2003 | A1 |
20030046034 | Kitamoto et al. | Mar 2003 | A1 |
20030050940 | Robinson | Mar 2003 | A1 |
20030055792 | Kinoshita et al. | Mar 2003 | A1 |
20030074575 | Hoberock et al. | Apr 2003 | A1 |
20030110371 | Yang et al. | Jun 2003 | A1 |
20030135418 | Shekhar et al. | Jul 2003 | A1 |
20030174167 | Poo et al. | Sep 2003 | A1 |
20030225971 | Oishi et al. | Dec 2003 | A1 |
20030233501 | Ma et al. | Dec 2003 | A1 |
20040001088 | Stancil et al. | Jan 2004 | A1 |
20040019742 | Wei et al. | Jan 2004 | A1 |
20040038592 | Yang | Feb 2004 | A1 |
20040039575 | Bum | Feb 2004 | A1 |
20040039851 | Tang et al. | Feb 2004 | A1 |
20040039854 | Estakhri et al. | Feb 2004 | A1 |
20040095382 | Fisher et al. | May 2004 | A1 |
20050010768 | Light et al. | Jan 2005 | A1 |
20050010835 | Childs et al. | Jan 2005 | A1 |
20050081198 | Cho et al. | Apr 2005 | A1 |
20050125513 | Lam et al. | Jun 2005 | A1 |
20050138390 | Adams et al. | Jun 2005 | A1 |
20050144443 | Cromer et al. | Jun 2005 | A1 |
20050149394 | Postrel | Jul 2005 | A1 |
20050149684 | Sankaran et al. | Jul 2005 | A1 |
20050149745 | Ishidoshiro | Jul 2005 | A1 |
20050216466 | Miyamoto et al. | Sep 2005 | A1 |
20060010325 | Liu et al. | Jan 2006 | A1 |
20060041934 | Hetzler | Feb 2006 | A1 |
20060206720 | Harada et al. | Sep 2006 | A1 |
20060209337 | Atobe et al. | Sep 2006 | A1 |
20060253620 | Kang | Nov 2006 | A1 |
20070081508 | Madhavan et al. | Apr 2007 | A1 |
20070143529 | Bacastow | Jun 2007 | A1 |
20070214047 | Antonello et al. | Sep 2007 | A1 |
20070245158 | Giobbi et al. | Oct 2007 | A1 |
20080022003 | Alve | Jan 2008 | A1 |
Number | Date | Country |
---|---|---|
WO 03009620 | Jan 2003 | WO |
Number | Date | Country | |
---|---|---|---|
20080022360 A1 | Jan 2008 | US |
Number | Date | Country | |
---|---|---|---|
60832003 | Jul 2006 | US |