Restricting access to USB devices

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Vasantharaj (vasantharajg_at_nestec.net)
Date: 11/03/04 

Date: 3 Nov 2004 06:02:48 -0800

Hi All,

We have two requirements in our project, it is related to USB devices
in WDM.
We don't have much idea regarding the USB devices and USB class
drivers.
So I hope I can get some guidance from this group regarding my
problem.

Operating System : Windows XP Embedded.

One requirement is, support only few specific USB devices in the
machine. All other USB devices should be blocked.
The following are the USB device classes to be supported in the
machine.
a. Human Input Devices (HID),
b. Chip/Smart Card Interface Devices (CCID)
c. Various Mass Storage class devices (MSC). E.g.. Smart Card
d. Audio and Modem devices

Our Current Idea for implementing this
----------------------------------------------
Remove the class drivers of the classes of devices to be blocked.
Some of the classes we identified to be removed are listed below.

a. Printer Class (usbprint.sys)
b. Communications Device Class (mdismp.sys)
c. Imaging Class (usbscan.sys)
d. Hub Device Class (usbhub.sys )

This can be done while configuring embedded Windows XP.

Will be there any problem if we remove these drivers ?

The second requirement is that the read/write access to the supported
USB devices should be controlled.
i.e.. if it the permission set is READ_ONLY, only read access will be
allowed.
Our current Idea for implementing this
-------------------------------------------
1. Write a USB filter driver ( Say, usbmon.sys)
2. Install it as a 'class upper filter driver' to the required classes
of devices.
   a. Human Interface Device (HID) Class. (hidclass.sys)
   b. Audio Class (sysaudio.sys)
   c. Mass Storage Class (usbstor.sys)
3. Export a IOCTL from usbmon.sys so that user mode applications can
control the read/write operations to .

Is there any better idea for implementing these things. Are we in
right direction?
Please advice.

Thanks in advance,
vasanth.

Relevant Pages

  • Re: USB devices slow boot time of Windows XP Professional
    ... I found that the pc would take excessive time between the text boot ... of windows xp and the gui during the inialization of the usb devices only ... Then when in windows the mouse wouldnt ... the standard hid compliant drivers. ...
    (microsoft.public.windowsxp.hardware)
  • Re: USB communications problem
    ... I have two USB devices and the manufacturers provided drivers (including ... And just what are these two USB devices? ... Dear GHalleck, my software was written by LabVIEW, using Call Function Node ...
    (microsoft.public.windowsxp.hardware)
  • Re: How to: multi device on USB
    ... A function has one active interface at a time while a composite device has more than one function, each of which can have multiple interfaces. ... If your device is designed correctly you support it with two separate device drivers, each independently managing their own functions. ... See the ddk docs for composite usb devices. ...
    (microsoft.public.development.device.drivers)
  • Restricting access to USB devices
    ... We have two requirements in our project, it is related to USB devices ... support only few specific USB devices in the ... Remove the class drivers of the classes of devices to be blocked. ... Audio Class ...
    (microsoft.public.development.device.drivers)
  • Restricting access to USB devices
    ... We have two requirements in our project, it is related to USB devices ... support only few specific USB devices in the ... Remove the class drivers of the classes of devices to be blocked. ... Audio Class ...
    (microsoft.public.win32.programmer.kernel)