In this paper, a method of building the security system of removable storage file in operating system’s service layer was delivered. Based on the idea of multilayer nested hybrid encryption, the system combined ECC public key sys.tem and AES advanced encryption standard, which solved the problem of information leak and content alteration duringthe process of data transmission among mobile storage devices. A storage format of ECC secret keys, offline exchangingmechanism of public keys and exchanging protocols based on ECDH for private keys were designed. The storing ciphercode was proposed in the form of cipher text authentication file and cipher text to the mobile storage devices, and the au.thentication file and ECC algorithm were used as evidence to decipher. The two modes were designed, such as two-layermixed cryptogram and three-layer mixed cryptogram, which made the security and facility of the system gain much elastici.ty. It enhanced the flexibility of distributing files and ensured the security of the system at the same time. Through rigoroustesting, the system had the desired security level and had the ability of protecting files in mobile storage devices effectively.