USB Type-C Authentication Program launched to protect against non-compliant chargers and malicious devices

• USB Type-C Authentication Program confirms the authenticity of various types of USB devices, cables, storage drives, power sources, and chargers.
• The Authentication program is aimed to protect the host systems against non-compliant USB chargers and malicious USB devices.

USB Implementers Forum (USB-IF) announced on 02, January 2019, the launch of its USB Type-C Authentication Program, which aims to provide host systems the opportunity to protect against non-compliant USB chargers and mitigate risks from maliciously embedded hardware or software in USB devices.

USB-IF's Authentication program with the support of cryptographic mechanisms will confirm the authenticity of various types of USB devices, cables, storage drives, power sources, and chargers.

Authentication Program

USB-IF is working alongside DigiCert, who manages the PKI and certificate authority services for the USB Type-C Authentication Program. Using certificates, companies can protect their products against both non-compliant chargers and malicious USB devices.

“USB-IF is excited to launch the USB Type-C Authentication Program, providing OEMs with the flexibility to implement a security framework that best fits their specific product requirements,” Jeff Ravencraft, USB-IF President and COO said, SecurityWeek reported.

The authentication process takes place immediately after a connection is made to ensure that no inappropriate power or data gets exchanged.

Features of the USB Type-C Authentication Program

• A standard protocol for authentication of USB Type-C chargers, devices, cables, and power sources.
• The Authentication program provides support for authenticating over either USB data bus or USB power delivery communications channels.
• It relies on 128-bit security for all cryptographic method.
• It provides specification references for cryptographic methods with regard to certificate format, digital signing, hash, and random number generation.

“As the USB Type-C ecosystem continues to grow, companies can further provide the security that consumers have come to expect from certified USB devices,” Jeff Ravencraft, USB-IF President and COO concluded.