Using any standard usb switch or KVM breaks the air-gap, as malware can (and has been known to) spread via kvm and USB switches.
Here are the solutions I am exploring:
- Use a mouse and keyboard via bluetooth, using the switch inside the device to switch computer. For example the logitech MX mouse can switch from one computer to the other. However, does anyone know if it's a hard switch from one computer to the other, or if the mouse stays connected to both?
- Create link (via usb or serial) from one computer to the other, to use the keyboard and mouse from one on another. That breaks the airgap, but maybe there's a way to make the link simple and secure enough. I had a lot of great advice from another post here, but I think I need to explore other options as well.
- Use a mechanical usb switch that physically disconnect the a path when switching to the other. I search a while on the internet, and couldn't find a device like that. They all keep connected to both.
Does anyone have any advice?
NitpickLawyer•3mo ago
Anyway, I use a "dumb" version of this setup, out of convenience. I have a dumb USB switch, with only one host connector. I use 2 cables, and have them tied together with a binder paperclip thingy. On the (rare for me) occasion I need to switch, I just unplug one cable and plug the other.
WorldDev•3mo ago
> Modern peripherals may have local storage
Do you mean the flash that contains the code for the microcontroller?
> I have a dumb USB switch
I am not 100% sure I understood. Is the "dumb USB switch" the paperclip?
NitpickLawyer•3mo ago
WorldDev•3mo ago
Another option that I looked at is whether I could use the switching capability on the device itself. For example the new Logitech MX 4 can switch between different computers. It also has a wireless connection, versus bluetooth connection. Do you have a sense whether switching with a device like that is enough of a separation?