Extend USBGuard to Support External Authorization Policy Sources

Abstract:

This thesis deals with a security aspect of using external USB devices on Linux.It also describes the USBGuard project and its alternatives as well as advantages and disadvantages of centralized management.The main goal of this thesis is to add ability to manage the USBGuard policy centrally via LDAP.The USBGuard extension includes implementation of LDAP functionality and the new public API that handles various sources of policy.This thesis defines the new USBGuard LDAP schema and its attributes on the LDAP server side.

Student:

Sroka Radovan

Consultant:

Kopeček Daniel

Leader:

Peringer Petr

University:

FIT VUT

Link on thesis:

https://www.fit.vut.cz/study/thesis/21006/