The USB tethering option provides a selection of authentication options (pre-shared key, password or no auth), but these are just copied from the hotspot and are not really applicable to USB. The only way I have seen to do USB tethering with some sort of passcode is to require additional software (on both the client and the mobile device as the server) that would provide the authentication as it isn't something that is built into the USB tethering functions.
I do not want to remove USB tethering, but it should be focused on when/how it is enabled, as the option. To use USB tethering, you generally have to do follow these steps once the USB cable is connected:
Authenticate to the mobile device (using the normal lock screen)
Open the settings for tethering, and turn it on
If you disconnect the cable (say to walk away with the phone) and then come back, you need to do these steps again, you cannot just plug the cable back in and start tethering the connection. While there may not be authentication on the USB connection itself, the service is only available once it has been authorized by the user. Even if the user has a swipe password (for Android which is basically an unlocked device, and not a CC-valid configuration), the user must still do these steps. To be clear, the device can lock after the connection has been turned on and remain working. This is all about the initial authorization, not ongoing connectivity which is assumed to be allowed until either the tethering function is turned off (after the user unlocks the device) or the cable is disconnected.
That all said, I can see the possibility of having a USB tethering system where it is just enabled and could work without specifically being enabled (I guess), and I could see (maybe), something where there could be some type of limits to the devices allowed to connect (maybe the VID or something for the type of laptop), but none of these are presented here as options.
I think the selections should be changed to these:
device authentication (explained as only allowing a connection after the user has authenticated to the device to initiate the connection)
USB device identifier (explained as something where the VID or something similar is specified for allowed types of devices, which wouldn't be as good since it wouldn't necessarily be a unique device, but would provide restrictions to say a class of laptops or devices that may be known)
no authentication (explained as allowing a connection any time the cable is connected when tethering is enabled, which would be like the hotspot version of no authentication)
Today I think only device authentication is in the market, but the USB device ID is used to restrict other types of connections for other services, so it may be able to be used here as well, and would provide some other options.
The USB tethering option provides a selection of authentication options (pre-shared key, password or no auth), but these are just copied from the hotspot and are not really applicable to USB. The only way I have seen to do USB tethering with some sort of passcode is to require additional software (on both the client and the mobile device as the server) that would provide the authentication as it isn't something that is built into the USB tethering functions.
I do not want to remove USB tethering, but it should be focused on when/how it is enabled, as the option. To use USB tethering, you generally have to do follow these steps once the USB cable is connected:
If you disconnect the cable (say to walk away with the phone) and then come back, you need to do these steps again, you cannot just plug the cable back in and start tethering the connection. While there may not be authentication on the USB connection itself, the service is only available once it has been authorized by the user. Even if the user has a swipe password (for Android which is basically an unlocked device, and not a CC-valid configuration), the user must still do these steps. To be clear, the device can lock after the connection has been turned on and remain working. This is all about the initial authorization, not ongoing connectivity which is assumed to be allowed until either the tethering function is turned off (after the user unlocks the device) or the cable is disconnected.
That all said, I can see the possibility of having a USB tethering system where it is just enabled and could work without specifically being enabled (I guess), and I could see (maybe), something where there could be some type of limits to the devices allowed to connect (maybe the VID or something for the type of laptop), but none of these are presented here as options.
I think the selections should be changed to these:
Today I think only device authentication is in the market, but the USB device ID is used to restrict other types of connections for other services, so it may be able to be used here as well, and would provide some other options.