Thesis Details
Control of External Devices on macOS to Prevent Data Leaks
This thesis is aimed at managing and blocking of external devices in Apple macOS operating system to prevent leaks of sensitive data. The implemented solution presents a chosen approach for blocking external drives and selected cloud drives. The project uses the DiskArbitration framework to block external devices, as it is the most suitable approach for this type of task. However, cloud drives are in reality just synchronized folders, therefore Endpoint Security framework had to be utilized to achieve an adequate level of control. Currently supported cloud providers are iCloud and Dropbox, and access to them can be restricted either entirely or to read-only. The ability to synchronize remote changes was preserved; however, in the case of Dropbox, its GUI cannot be used to edit files.
Apple, OS X, macOS, Audit, Device Drivers, Kernel Extensions, System Extensions, IOKit, DriverKit, External Device, Device Control, Channel Control, DLP, Data Leaks Prevention, Kauth, MACF, KEXT, SYSX, iCloud, Dropbox, USB
Grégr Matěj, Ing., Ph.D. (DIFS FIT BUT), člen
Hrubý Martin, Ing., Ph.D. (DITS FIT BUT), člen
Kekely Lukáš, Ing., Ph.D. (DCSY FIT BUT), člen
Kořenek Jan, doc. Ing., Ph.D. (DCSY FIT BUT), člen
Vojnar Tomáš, prof. Ing., Ph.D. (DITS FIT BUT), člen
@mastersthesis{FITMT22637, author = "Jozef Zuzelka", type = "Master's thesis", title = "Control of External Devices on macOS to Prevent Data Leaks", school = "Brno University of Technology, Faculty of Information Technology", year = 2020, location = "Brno, CZ", language = "english", url = "https://www.fit.vut.cz/study/thesis/22637/" }