Usb-c gets authentication protocol against malware and bad chargers
The USB 3.0 Promoter Group has announced that an authentication protocol will be available for USB-C devices, including chargers. This allows users to check whether such devices have a certain certification.
This happens when a connection is made, before data or energy is transferred. For example, the authentication protocol allows users to avoid chargers that do not meet certain requirements. For example, Amazon recently banned the sale of USB-C cables that can damage devices. Companies can also draw up a policy that allows employees’ devices to connect only to certain USB-C devices. This should also reduce the risk of USB malware.
Another example the Promoter Group cites is that a bank can set a security policy, requiring it to connect only to devices that have the security certificate on board, Ars Technica reports. Whether it is also effective against attacks such as BadUSB remains to be seen. Furthermore, the authentication protocol uses ‘128bit encryption’, but details about this are not yet available. ‘International standards’ would also be adhered to for, among other things, random number generation and digital signatures.
Deployment can be through software and firmware updates for devices that support it, if manufacturers decide to implement them.