For security purposes, is it possible to have the operating system enforce a whitelist of hardware devices?
This means that plugged in devices that are not in the whitelist will be ignored at an as low a level as possible (so that higher level abstractions in the OS will not even find out about these non-whitelisted devices).
I'm using Ubuntu 11.04, but I'm guessing whatever solution you may have will work on almost any recent Linux distribution.