I am currently developing a policy in a Microsoft environment on the use of Secondary Storage Devices. This is especially concerned with Thumb drives and ensuring that they do not compromise security between classified systems. Do any of you already have a policy in place? Additionally, is there a simple way of removing the drivers from a WinXP or 2000 environment so that these types of devices can not be installed via plug and play? I have played around with the idea of shutting down USB ports but there are just too may other things (mice, keyboards, cac readers) that use them. If there was a way to know (event viewer perhaps) or other means when one was attached, it would also help.
I am currently developing a policy in a Microsoft environment on the use of Secondary Storage Devices. This is especially concerned with Thumb drives and ensuring that they do not compromise security between classified systems. Do any of you already have a policy in place? Additionally, is there a simple way of removing the drivers from a WinXP or 2000 environment so that these types of devices can not be installed via plug and play? I have played around with the idea of shutting down USB ports but there are just too may other things (mice, keyboards, cac readers) that use them. If there was a way to know (event viewer perhaps) or other means when one was attached, it would also help.
Tim Watkins
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
[ reply ]