Reputation: 2911
Halt storage access?
I am trying to construct a way to keep certain hard drive partitions/usb drives from being accessed for security reasons (protecting intellectual property). I was thinking that when windows attempts to access the "locked down drive/usb" the attempted is halted and returns something like "drive inaccessible" or something. It's just an idea, anyone thing it is plausible/possible? If so, any pointers?
C/C++
-Thanks
Upvotes: 1
Views: 229
Answers (5)
Reputation:
Be aware. Anything involving kernel work, if you are not already experienced in that field, has a development time measured in years.
Upvotes: 0
Reputation: 3138
You will need to write a filter driver to achieve your goal. You will need to put your driver somewhere in disk driver stack and fail the IRP_MN_START_DEVICE for the drive/partition you want to block.
You will need Windows Driver Kit to write drivers. There is a sample of filter driver in the WDK. This mailing list as a very useful and if you will search the archives you will find a lot of information about disk filter drivers.
A good article about writing filter drivers is here, i think you will need to register to read, but if you want to write driver you should be registered on this site.
Relevant book list can be found here.
Upvotes: 2
Reputation: 53320
You need to encrypt the drives, anything else would allow attackers to just attach the drive to another machine and extract the contents.
You shouldn't implement encryption yourself - it's much better to rely on someone else's reviewed code. I suggest TrueCrypt for encrypting your drives.
Then maybe you want to put a hook in your application to prompt for the password when it wants to access the encrypted data. Or you install TrueCrypt on the machine, and make the user connect the drive when they want to access the data, depending on the precise way of working with the data.
Upvotes: 0
Reputation: 4918
The partitions problem is easy. Just use ACL's to prevent access by certain users.
For drive access, there is probably some setting somewhere in windows to disable it. In the worse case you could try to forcibly remove the drivers (and as such the capability of windows to read the drive/stick)
Upvotes: 2
Reputation: 1247
For USB drives you could encrypt them.
At work we use Pointsec provider, which allows you to access the drive on any machine only if you have a password.
I'm sure there are freeware encryption products available
You could probably encrypt the partitions too.
(basically I'm not sure why you would want to write some c/c++ code for something that could be adequately managed by other methods)
Upvotes: 1
Related Questions
- How to Block USB storage devices in MAC OS c/c++
- USB Permissions without prompt
- How to lock a folder on a USB drive?
- Restrict the usage of USB device to specific application
- how to make removable media private
- How to have an USB drive readable by all but writable only by me?
- Disable usb storage devices
- how to write protect a USB drive in C#
- How to restrict access to USB drives using C#?
- how can create file in flash drive and don't allow delete permission for any user