External storage devices, such as USB-Sticks, SD-Cards, or other flash memory devices, are widely used today. These devices may pose a threat if they contain sensitive data and are then lost or forgotten somewhere. Usability of existing encryption solutions for such external storage media is limited because of the need to reenter keys or authentication credentials every time the media is plugged to a different device. We present a solution to the usability problem by caching the key with time delayed deletion. We implemented two variations of this concept. One solution does not require any explicit user interaction, thus limiting the use of the external storage device to short term data transfer, only. The second solution allows multiple encryption keys for different files of the file system to be managed on a trusted host, using the timed key caching to avoid handing out keys or passwords.
[1]
Brian D. Noble,et al.
Mobile Device Security Using Transient Authentication
,
2006,
IEEE Transactions on Mobile Computing.
[2]
Erez Zadok,et al.
Proceedings of the General Track: 2003 Usenix Annual Technical Conference Ncryptfs: a Secure and Convenient Cryptographic File System
,
2022
.
[3]
D CornerMark,et al.
Mobile Device Security Using Transient Authentication
,
2006
.
[4]
Matt Blaze,et al.
A cryptographic file system for UNIX
,
1993,
CCS '93.
[5]
Erez Zadok,et al.
Cryptfs: A Stackable Vnode Level Encryption File System
,
1998
.
[6]
Satoshi Hoshino,et al.
Impact of artificial "gummy" fingers on fingerprint systems
,
2002,
IS&T/SPIE Electronic Imaging.