USB Type-C devices will get an authentication protocol that should protect users against potentially damaging chargers and reduce the risk of USB malware. The cryptographic-based authentication allows host systems to confirm the authenticity of a USB device or USB charger, including product aspects as descriptors/capabilities and certification status.
The authentication takes place as soon as a wired connection is made and before inappropriate power or data can be transferred. The protocol should protect users against potential hazardous USB chargers and should be able to mitigate risks from maliciously embedded hardware or software in USB devices attempting to exploit a USB connection. Recently Amazon prohibited sales of USB Type-C cables that could damage devices by not following the standards.
The new authentication protocol also makes it possible to allow a device to be only loaded from a certified USB charger which could be useful on public locations. It also allows a company to set a
policy in its PCs granting access only to verified USB storage devices.
The USB Type-C authentication protocol relies on 128-bit security for all cryptographic methods. More details and availability are not known yet.
