The USB Implementers Forum (USB-IF) today announced the launch of the USB Type-C Authentication specification, a software protocol that will serve as a line of defense protecting USB-C products from non-compliant USB-C cables that are potentially able to damage a device.
With the USB Type-C Authentication specification, computers and other devices with USB-C ports will be able to confirm the authenticity of a USB device or USB charger, verifying elements like certification status and power flow, along with ensuring no malware is present.
/article-new/2016/01/Retina-MacBook-USB-C-800x211.jpg?lossy)
Using this protocol, host systems can confirm the authenticity of a USB device or USB charger, including such product aspects as the descriptors/capabilities and certification status. All of this happens right at the moment a wired connection is made - before inappropriate power or data can be transferred.
USB Type-C Authentication empowers host systems to protect against non-compliant USB Chargers and to mitigate risks from maliciously embedded hardware or software in USB devices attempting to exploit a USB connection
The USB Type-C Authentication specification comes after some non-compliant USB-C cables were able to damage electronic devices. Google engineer Benson Leung spent weeks testing USB-C cables sold by Amazon after a third-party cable he bought destroyed his Chromebook Pixel, making it his mission to highlight the risks of non-compliant cables.
Leung's work led Amazon to ban third-party retailers from offering USB-C cables that do not adhere to the standard specifications issued by the USB-IF, and it's also led to the creation of the protections announced today.
Key characteristics of the USB Type-CTM Authentication solution include:
- A standard protocol for authenticating certified USB Type-CTM Chargers, devices, cables and power sources
- Support for authenticating over either USB data bus or USB Power Delivery communications channels
- Products that use the authentication protocol retain control over the security policies to be implemented and enforced
- Relies on 128-bit security for all cryptographic methods
- Specification references existing internationally-accepted cryptographic methods for certificate format, digital signing, hash and random number generation
Apple began using USB-C with the Retina MacBook, choosing the standard because it allows both data and power transfer through a single connector. USB-C is appealing for its universality, but because USB-C cables can transfer more power than traditional USB connectors, non-compliant or faulty equipment can damage electronic devices by providing too much power.
The Retina MacBook already has safeguards built in to protect it from non-compliant cables, but the new USB Type-C Authentication feature will offer another layer of protection should Apple choose to implement it. Current machines will only charge from third-party USB-C power adapters if they comply with the USB Power Delivery specification, and if too much power is detected, the USB-C ports on the MacBook will shut down.
While the Retina MacBook is the only product that currently offers USB-C functionality, Apple may choose to offer USB-C ports in additional machines in upcoming updates scheduled to take place across 2016.
Top Rated Comments
A problem that only exists because companies insist on combining charging cables and data cables into one.
http://www.snopes.com/business/genius/spacepen.aspReminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, so they spent some enormous amount of resources on R&D to design a pressurized ink cartridge that can write upside down and in zero gravity, what we call the space pen. The Russians just used a pencil.
Sometimes the simplest solution is the best one. Dedicated power port. Done.
Reminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, so they spent some enormous amount of resources on R&D to design a pressurized ink cartridge that can write upside down and in zero gravity, what we call the space pen. The Russians just used a pencil.
Aside from this story being known to be false (someone already provided the snopes link, Fisher paid for the development themselves, so no tax dollars were harmed), a pencil is a terrible idea in space - you'll invariably end up with random bits of graphite (if not also sharpener shavings and eraser dross) floating around the capsule, getting into places where they ought not to be - especially troubling given that graphite is electrically conductive and could damage, you know, those electronic circuits you're depending on for life support, navigation, landing, and other such mundane activities.This suggests a quote that isn't fake:
"For every complex problem there is an answer that is clear, simple, and wrong." -- H. L. Mencken
Yes I know the story is not literally true. That doesn't mean it's not a nice and colorful anecdote to go along with the idea that the simplest solution is sometimes the best one.
It would be if it weren't the case that, in the story you shared, the simplest solution was not the best one.A problem that only exists because companies insist on combining charging cables and data cables into one.
Would you advocate that solution for smartphones as well?Sometimes the simplest solution is the best one. Dedicated power port. Done.
Before non-Apple (smart)phones switched to some version of USB (and even then it took a while until micro USB emerged as a standard), the plethora of different charging plugs and parameters for phones were a royal pain, in regard to not being able to use other people's chargers and in perfectly good chargers ending up in landfills when one bought a new phone which came with a different type of charger. Standardisation of chargers then coincided with the need to transfer large-ish amounts of data to phones and that locked in the combination of data and charging in one port.
A problem that only exists because companies insist on combining charging cables and data cables into one.
How dare they! Don't they know data and power are both just electricity? Hundreds of millions of iPods, iPhones and iPads work fine with two cables, one for data and one for power. Now suddenly those silly engineers want to change a proven concept.Reminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, ...
Reminds me of this one time, when someone on the internet came up with a story which had nothing to do with the topic at hand.