Presentation is loading. Please wait.

Presentation is loading. Please wait.

Gordon Hughes Feb 2004 1 T13 Change Request re Security Erase Gordon Hughes, UCSD Formerly Seagate (until 1997) PI.

Published byAlisha Stevenson Modified over 8 years ago

Similar presentations

Presentation on theme: "Gordon Hughes Feb 2004 1 T13 Change Request re Security Erase Gordon Hughes, UCSD Formerly Seagate (until 1997) PI."— Presentation transcript:

1 Gordon Hughes Feb 2004 1 T13 Change Request re Security Erase Gordon Hughes, CMRR @ UCSD 858-534-5317,gfhughes@ucsd.edu Formerly Seagate (until 1997) PI on NSA Secure Erase R&D program Original requester for SE in T13 and T10 Talk Outline: What SE Change is requested Will it change virus security? Example SE utility showing present problem Background on user benefits of change

2 Gordon Hughes Feb 2004 2 Request ATA Spec change For Security Freeze Lock command: Remove SE from abort command list, so Secure Erase can be issued by SE utilities, by Windows, and by Unix/Linux Table 10, Security mode command actions Change SECURITY ERASE PREPARE from ABORTED to EXECUTABLE, in Frozen state Change SECURITY ERASE from ABORTED to EXECUTABLE, in Frozen state Virus security will be same as block write SE

3 Gordon Hughes Feb 2004 3 Example: CMRR Freeware SE Utility HDDerase.exe, a DOS floppy boot utility Downloadable freeware utility from UCSD Runs only from floppy drive (for virus protection) 4 erase options: HDD SE, Fast Erase (with random password), & block write SE (DoD 2550 triple and new DoD) Checks if Security Feature Set is supported Tries to turn it on, if set to off by Device Configuration Checks if drive is Locked or Frozen If Locked, asks user for HDD password If Frozen, HDD SE commands Aborted (ATA spec) Can always SE by block erase (DoD 5220) CMRR working with Microsoft on Windows SE Microsoft using utility for R&D to put SE command in Windows Microsoft is aware of BIOS Freeze Lock problem

4 Gordon Hughes Feb 2004 4 Why not just block write SE? (DoD 2550) Block erase utilities (PC World May 20, 2003): Summit Computer Hard Disk Scrubber Jetico Inc.'s $40 BCWipe LSoft Technologies Inc.'s $30 Active@ KillDisk Pro Not secure per National Security Agency Doesn’t erase reassigned blocks, success not certain HDD SE is up to 3X faster, per CMRR tests Enhanced SE can qualify for NSA secret data DoD 2550 is for unclassified and confidential data only Enhanced SE needs to be implimented and validated

5 Gordon Hughes Feb 2004 5 CMRR SE Validation Tests Tested 35 ATA & SCSI drives for SE All recent ATA drives SE ok (>10-15 GB) All 4 system board ports, all command combos, Power interrupt leaves drive locked SE doesn’t work if BIOS issues Freeze Lock All SCSI drives don’t SE (optional in T10) Means SATA drives all do SE?

6 Gordon Hughes Feb 2004 6 Background for Spec change request 2002, Gartner Dataquest: 150,000 hard drives "retired" 2003 Garfinkel and Shelat, in newspapers worldwide and in IEEE Journal of Security & Privacy They bought 158 used hard drives at computer stores and on eBay. 49 contained "significant personal information" Medical correspondence, love letters, pornography,5,000 credit cards. One had a account numbers from a cash machine in Illinois. 2002: Pennsylvania sold computers with state employee information 1997: Arizona pharmacy computer sold with 2,000 customer’s prescriptions. CMRR buys eBay drives for SE tests 1/3 have unerased user data.

7 Gordon Hughes Feb 2004 7 References “Secure Erase of Disk Drive Data” IDEMA Insight Magazine, Spring 2002 Storage Visions Conference Las Vegas, talk on SE and intelligent storage, January 2003 Letter to Computer World magazine, May 2003 PC World letter, “Secure Erase Project,” October 2003 “Secure Erase” CMRR Newsletter, Summer 2003 DISKCON San Jose talk, Sept 2003

Download ppt "Gordon Hughes Feb 2004 1 T13 Change Request re Security Erase Gordon Hughes, UCSD Formerly Seagate (until 1997) PI."

Similar presentations

Rambling on the Private Data Security

Rambling on the Private Data Security
Slow Computer is really an predictable trouble but has the great Solution to set up.

Slow Computer is really an predictable trouble but has the great Solution to set up.
Disclaimer Certain trade names and company products are mentioned in the text or identified. In no case does such identification imply recommendation.

Disclaimer Certain trade names and company products are mentioned in the text or identified. In no case does such identification imply recommendation.
This presentation will take a look at to prevent your information from being discovered by and investigator.

This presentation will take a look at to prevent your information from being discovered by and investigator.
Terms 4 Definitions and Questions. Motherboard The main board of a computer, usually containing the circuitry for the central processing unit, keyboard,

Terms 4 Definitions and Questions. Motherboard The main board of a computer, usually containing the circuitry for the central processing unit, keyboard,
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
Chapter 3 Understanding the Boot Process and Command Line.

Chapter 3 Understanding the Boot Process and Command Line.
Basic Input Output System

Basic Input Output System
Mobility for the Enterprise

Mobility for the Enterprise
Format Scandisk Defragmentation Antivirus Compression Software

Format Scandisk Defragmentation Antivirus Compression Software
 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.

 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.
Chapter 3 – Computer Hardware Computer Components – Hardware (cont.) Lecture 3.

Chapter 3 – Computer Hardware Computer Components – Hardware (cont.) Lecture 3.
ENCRYPTION Coffee Hour for August 2014. HISTORY OF ENCRYPTION Scytale Ciphers – paper wrapped around rod, receiver needed same size rod to get the message.

ENCRYPTION Coffee Hour for August HISTORY OF ENCRYPTION Scytale Ciphers – paper wrapped around rod, receiver needed same size rod to get the message.
Chapter 4: Operating Systems and File Management 1 Operating Systems and File Management Chapter 4.

Chapter 4: Operating Systems and File Management 1 Operating Systems and File Management Chapter 4.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 14: Problem Recovery.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 14: Problem Recovery.
Mass Storage Media Locking By Curtis E. Stevens WD.

Mass Storage Media Locking By Curtis E. Stevens WD.
A COMPUTER is an electronic device. Every computer performs 4 general operations: 1. Input 2. Process 3. Output 4. Storage.

A COMPUTER is an electronic device. Every computer performs 4 general operations: 1. Input 2. Process 3. Output 4. Storage.
1 Chapter Overview CD-ROM and DVD Drives Advanced Hard Disk Drives SCSI Drives.

1 Chapter Overview CD-ROM and DVD Drives Advanced Hard Disk Drives SCSI Drives.
Operating Systems Operating System

Operating Systems Operating System
Internal components, Backing Storage, Operating Systems Software

Internal components, Backing Storage, Operating Systems Software

Similar presentations

Ads by Google