Software Safeguards Coming to Protect Against Potentially Dangerous USB-C Cables

by

The USB Implementers Forum (USB-IF) today announced the launch of the USB Type-C Authentication specification, a software protocol that will serve as a line of defense protecting USB-C products from non-compliant USB-C cables that are potentially able to damage a device.

With the USB Type-C Authentication specification, computers and other devices with USB-C ports will be able to confirm the authenticity of a USB device or USB charger, verifying elements like certification status and power flow, along with ensuring no malware is present.

Retina-MacBook-USB-C

Using this protocol, host systems can confirm the authenticity of a USB device or USB charger, including such product aspects as the descriptors/capabilities and certification status. All of this happens right at the moment a wired connection is made - before inappropriate power or data can be transferred.

USB Type-C Authentication empowers host systems to protect against non-compliant USB Chargers and to mitigate risks from maliciously embedded hardware or software in USB devices attempting to exploit a USB connection

The USB Type-C Authentication specification comes after some non-compliant USB-C cables were able to damage electronic devices. Google engineer Benson Leung spent weeks testing USB-C cables sold by Amazon after a third-party cable he bought destroyed his Chromebook Pixel, making it his mission to highlight the risks of non-compliant cables.

Leung's work led Amazon to ban third-party retailers from offering USB-C cables that do not adhere to the standard specifications issued by the USB-IF, and it's also led to the creation of the protections announced today.

Key characteristics of the USB Type-CTM Authentication solution include:

- A standard protocol for authenticating certified USB Type-CTM Chargers, devices, cables and power sources
- Support for authenticating over either USB data bus or USB Power Delivery communications channels
- Products that use the authentication protocol retain control over the security policies to be implemented and enforced
- Relies on 128-bit security for all cryptographic methods
- Specification references existing internationally-accepted cryptographic methods for certificate format, digital signing, hash and random number generation

Apple began using USB-C with the Retina MacBook, choosing the standard because it allows both data and power transfer through a single connector. USB-C is appealing for its universality, but because USB-C cables can transfer more power than traditional USB connectors, non-compliant or faulty equipment can damage electronic devices by providing too much power.

The Retina MacBook already has safeguards built in to protect it from non-compliant cables, but the new USB Type-C Authentication feature will offer another layer of protection should Apple choose to implement it. Current machines will only charge from third-party USB-C power adapters if they comply with the USB Power Delivery specification, and if too much power is detected, the USB-C ports on the MacBook will shut down.

While the Retina MacBook is the only product that currently offers USB-C functionality, Apple may choose to offer USB-C ports in additional machines in upcoming updates scheduled to take place across 2016.

Top Rated Comments

(View all)
Avatar
57 months ago

A problem that only exists because companies insist on combining charging cables and data cables into one.

Reminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, so they spent some enormous amount of resources on R&D to design a pressurized ink cartridge that can write upside down and in zero gravity, what we call the space pen. The Russians just used a pencil.

Sometimes the simplest solution is the best one. Dedicated power port. Done.

http://www.snopes.com/business/genius/spacepen.asp
Score: 11 Votes (Like | Disagree)
Avatar
57 months ago

Reminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, so they spent some enormous amount of resources on R&D to design a pressurized ink cartridge that can write upside down and in zero gravity, what we call the space pen. The Russians just used a pencil.

Aside from this story being known to be false (someone already provided the snopes link, Fisher paid for the development themselves, so no tax dollars were harmed), a pencil is a terrible idea in space - you'll invariably end up with random bits of graphite (if not also sharpener shavings and eraser dross) floating around the capsule, getting into places where they ought not to be - especially troubling given that graphite is electrically conductive and could damage, you know, those electronic circuits you're depending on for life support, navigation, landing, and other such mundane activities.

This suggests a quote that isn't fake:

"For every complex problem there is an answer that is clear, simple, and wrong." -- H. L. Mencken
Score: 7 Votes (Like | Disagree)
Avatar
57 months ago

Yes I know the story is not literally true. That doesn't mean it's not a nice and colorful anecdote to go along with the idea that the simplest solution is sometimes the best one.

It would be if it weren't the case that, in the story you shared, the simplest solution was not the best one.
Score: 6 Votes (Like | Disagree)
Avatar
57 months ago

A problem that only exists because companies insist on combining charging cables and data cables into one.

Sometimes the simplest solution is the best one. Dedicated power port. Done.

Would you advocate that solution for smartphones as well?

Before non-Apple (smart)phones switched to some version of USB (and even then it took a while until micro USB emerged as a standard), the plethora of different charging plugs and parameters for phones were a royal pain, in regard to not being able to use other people's chargers and in perfectly good chargers ending up in landfills when one bought a new phone which came with a different type of charger. Standardisation of chargers then coincided with the need to transfer large-ish amounts of data to phones and that locked in the combination of data and charging in one port.
Score: 3 Votes (Like | Disagree)
Avatar
57 months ago
Do you take the RED cable or the BLUE cable?

Score: 3 Votes (Like | Disagree)
Avatar
57 months ago

A problem that only exists because companies insist on combining charging cables and data cables into one.

How dare they! Don't they know data and power are both just electricity? Hundreds of millions of iPods, iPhones and iPads work fine with two cables, one for data and one for power. Now suddenly those silly engineers want to change a proven concept.

Reminds me the story of the space pen. NASA realized that regular ballpoint pens don't work in zero gravity, ...

Reminds me of this one time, when someone on the internet came up with a story which had nothing to do with the topic at hand.
Score: 2 Votes (Like | Disagree)

Top Stories

Apple Takes Legal Action Against Small Company With Pear Logo

Saturday August 8, 2020 11:09 am PDT by
Apple is taking legal action against the developers of the app "Prepear" due to its logo, according to iPhone in Canada. Prepear is an app that helps users discover recipes, plan meals, make lists, and arrange grocery deliveries. The app is a spinoff of "Super Healthy Kids," and the founders claim that they are facing litigation from Apple. Apple reportedly takes issue with Prepear's logo, ...

Apple Seeds iOS 14 and iPadOS 14 Public Beta 4 to Testers

Thursday August 6, 2020 10:05 am PDT by
Apple today seeded new public betas of upcoming iOS 14 and iPadOS 14 updates to its public beta testing group. Today's software releases, which Apple labels as fourth betas to keep them in line with developer betas, are actually the third betas that Apple has provided and they come two weeks after the prior beta releases. Public beta testers who have signed up for Apple's beta testing...

Supposed iPhone 12 Display Unit Leaks

Thursday August 6, 2020 8:13 am PDT by
An image supposedly of an iPhone 12 display unit has been shared online by leaker "Twitter user Mr. White". Compared to images of an iPhone 11 Pro display piece, this new unit has a reoriented display connector, reaching up from the bottom of the display, rather than from the left-hand side on iPhone 11 Pro. This may be due to the logic board moving to the other side of the device. A...

8 Third-Party Home Screen Widgets That You Can Try Out Now on iOS 14

Wednesday August 5, 2020 12:56 pm PDT by
One of the biggest new features of iOS 14 is Home Screen widgets, which provide information from apps at a glance. The widgets can be pinned to the Home Screen in various spots and sizes, allowing for many different layouts. When the iOS 14 beta was first released in June, widgets were limited to Apple's own apps like Calendar and Weather, but several third-party developers have begun to test ...

New 27-Inch iMac's Storage Affixed to Logic Board, 4TB and 8TB Configurations Have Expansion Connector

Friday August 7, 2020 7:46 am PDT by
Following a report from German blog iFun.de that claimed the new 27-inch iMac's flash storage is soldered to the logic board, MacRumors has obtained additional information in an internal document for Apple technicians. In the document, Apple says that the flash storage is indeed affixed to the logic board and cannot be removed. However, for the 4TB and 8TB configurations, Apple says that a...

2020 iMac Teardown Reveals Internal Changes and Similarities

Saturday August 8, 2020 12:44 pm PDT by
A teardown video, shared by OWC, reveals the internal changes in the new 2020 27-inch iMac. The 2020 27-inch iMac was announced earlier this week with 10th-generation Intel Core processors, AMD Radeon Pro 5000 series graphics, up to 128GB of RAM, up to 8TB of storage, a 1080p front-facing FaceTime camera, a True Tone display with a nano-texture glass option, higher fidelity speakers, and...

Kuo: iPhone 12 Camera Lens Supplier Experiencing Quality Issues, But May Not Affect Launch Schedule

Thursday August 6, 2020 9:30 pm PDT by
One of Apple's camera lens suppliers for the upcoming non-Pro iPhone 12 models is having quality issues, according to a new research note from analyst Ming-Chi Kuo seen by MacRumors. The issues are, however, unlikely to have an impact on Apple's shipping schedule, presuming that Apple's other main supplier can make up the difference. Kuo says that Genius Electronic Optical has discovered...

Google's $349 Pixel 4a vs. Apple's $399 iPhone SE

Wednesday August 5, 2020 1:45 pm PDT by
Google this week launched its newest smartphone, the $349 Pixel 4a, a low-cost device that's designed to compete with other affordable devices like Apple's iPhone SE. We picked up one of the new Pixel 4a smartphones and thought we'd check it out to see how it measures up to the iPhone SE, given that the two devices have such similar price points. Subscribe to the MacRumors YouTube channel ...

Sony WH-1000XM4 Noise-Canceling Headphones Now Available for $350

Friday August 7, 2020 2:01 am PDT by
Sony's flagship WH-1000MX3 noise-canceling headphones have been among the best on the market for some time, and this week Sony released its fourth-generation WH-1000XM4 headphones boasting some notable improvements on the previous model. The XM4s feature the same basic design as the XM3s, but are one gram lighter at 254 grams due to slightly larger ear pads and some subtle tweaks to the...

Apple Announces New 27-Inch iMac With 10th-Gen Processors, Up to 128GB RAM, 1080p Webcam, True Tone, and More

Tuesday August 4, 2020 8:07 am PDT by
Apple today announced a new 27-inch iMac with faster 10th-generation Intel Core processor options, next-generation AMD graphics, up to 128GB of RAM, a higher-resolution 1080p front-facing FaceTime camera, a True Tone display with a nano-texture glass option, a T2 chip, higher fidelity speakers, studio-quality microphones, and more. A breakdown of the new 27-inch iMac's features and specs:10th...