Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Destruction How to Erase your Hard Drive’s so that there is no data leakage from your company and so that your company and officers won’t be held.

Published byXiomara Louie Modified over 10 years ago

Similar presentations

Presentation on theme: "Data Destruction How to Erase your Hard Drive’s so that there is no data leakage from your company and so that your company and officers won’t be held."— Presentation transcript:

1 Data Destruction How to Erase your Hard Drive’s so that there is no data leakage from your company and so that your company and officers won’t be held financially responsible. By: Lloyd Albin 3/9/2010

2 How this all got started. Needing to get rid of more than 3 truck loads of computers (major computer pack rat). Known Methods: – Re-Formatting – Re-Partitioning – Overwriting multiple times – Degaussing – Opening and breaking the platters – Cooking in oven

3 DoD Sanitization Methods MethodSecurity LevelDescription ClearLow – Reused in House Moderate – Reuse In House Software Overwrite PurgeLow – Reused out of House Moderate – Reuse out of House High – Reuse in House Degaussing or using firmware Secure Erase DestroyModerate – Reuse No High – Reuse No or Reuse out of House Disintegration, Pulverization, Melting, Incineration (Hard media like hard drives, memory sticks, etc.) Shredding (Flexible media like Floppy Disc’s) Reduced to nominal edge dimensions of 5mm and surface area of 25mm

4 Clearing Standards MethodTimes of OverwriteLab US DoD 5220.22-M3 (0x00, 0xFF, Random)Low US DoD 5220.22-M (ECE)7 (0x00, 0xFF, Ran, 0x00, 0xFF, Ran, V-Rand)Medium German VSITR7 (0x00, 0xFF, 0x00, 0xFF, 0x00, 0xFF, 0xAA)Low Russian GOST p50739-952 (0x00, Random)Low Canadian OPS-II7 (0x00, 0xFF, 0x00, 0xFF, 0x00, 0xFF, Rand)Medium HMG IS5 Baseline1 (0x00)Low HMG IS5 Enhanced3 (0x00, 0xFF, Random)Low US Army AR380-103 (Random, 0x00, 0xFF)Low US Airforce 50203 (0xFF, 0x00, Random)Low Navso p-5329-26 RL (Navy)3 (0x01, 0x27FFFFFF, Random)Low Navso P-5329-26 MFM (Navy)3 (0x00, 0x7FFFFFFF, Random)Low NCSC-TG-0253 (0x00, 0xFF, Random)Low Bruce Schneier7 (0xFF, 0x00, 5 Random)Medium Roy Pfitzner33 (33 Random)V-High Peter Gutmann35 (4 Random, 26 specials, 5 Random)V-High

5 Cleaning Software – Block Erase Darik’s Boot and Nuke http://www.dban.org/ http://www.dban.org/ Eraser http://eraser.heidi.ie/ http://eraser.heidi.ie/ Active KillDisk http://www.killdisk.com/ http://www.killdisk.com/ File Shredder http://www.fileshredder.org/ http://www.fileshredder.org/ Paragon Disk Wiper Professional http://www.disk-wiper.com/ http://www.disk-wiper.com/

6 Purging Standards MethodTimes of OverwriteLab Secure Erase (ATA-6)1 (Binary zeros or binary ones) Secure erase does a single on-track erasure of the data on the disk drive, after technical testing at CMRR showed that multiple on-track overwrite passes gave no additional erasure. High Enhanced Secure Erase (ATA-6 Optional) 1 (4 byte Vendor Pattern)High Sanitize Device (ATA-8 Optional) Settable + Encryption Key Change AES 128-bit (256-bit not possible due to US Export laws) V-High Degaussing Wand – Low Power – Class I (Not effective on current hard drives.) Less than 350 Oe coercivity Degaussing Wand – High Power – Class II (Must open up hard drive and use directly on the platters) 350-750 Oe coercivity V-High Degaussing – Very High Power – Class III (No known device) Over 750 Oe coercivity

7 Purging Software – Secure Erase CCMR Secure Erase (HDDErase) http://cmrr.ucsd.edu/people/Hughes/SecureE rase.shtml http://cmrr.ucsd.edu/people/Hughes/SecureE rase.shtml Hddparm http://sourceforge.net/projects/hdparm/ http://hdparm-win32.dyndns.org/hdparm/ http://sourceforge.net/projects/hdparm/ http://hdparm-win32.dyndns.org/hdparm/

8 What does Secure Erase do? Security Set Password (F1h) Security Freeze Lock (F5h) Security Erase Prepare (F3h) Security Erase Unit (F4h) Security Unlock (F2h) Security Disable Password (F6h)

9 What does Sanitize Device do? Sanitize Freeze Lock Ext (20h) Sanitize Prepare (FFh) * Sanitize Status Ext (0h) Crypto Scramble Ext (11h) Block Erase Ext (12h) Overwrite Ext (14h)

10 Crushing and Shredding

11 844 grams of Thermite Destruction

12 References http://cmrr.ucsd.edu/people/Hughes/CmrrSecureEraseProtocols.pdf Peter Gutmann http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html NIST 800-88 http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf http://mareichelt.de/pub/notmine/sanitizing.html http://www.t13.org/Documents/UploadedDocuments/docs2009/d2015r2 -ATAATAPI_Command_Set_-_2_ACS-2.pdf http://www.t13.org/Documents/UploadedDocuments/docs2009/d2015r2 -ATAATAPI_Command_Set_-_2_ACS-2.pdf http://ata.wiki.kernel.org/index.php/ATA_Secure_Erase http://www.t13.org/Documents/UploadedDocuments/docs2008/e07197r 1-T13_Sanitize_Command_Proposal_Overview.pdf http://www.t13.org/Documents/UploadedDocuments/docs2008/e07197r 1-T13_Sanitize_Command_Proposal_Overview.pdf Overwriting Hard Drive Data: The Great Wiping Controversy http://www.springerlink.com/content/408263ql11460147/ http://www.springerlink.com/content/408263ql11460147/ http://en.wikipedia.org/wiki/AT_Attachment http://www.killdisk.com/downloads/KillDisk_Win5.pdf http://www.seagate.com/staticfiles/support/disc/manuals/notebook/mo mentus/5400.6%20(Wyatt)/100528359e.pdf http://www.seagate.com/staticfiles/support/disc/manuals/notebook/mo mentus/5400.6%20(Wyatt)/100528359e.pdf http://www.redbooks.ibm.com/technotes/tips0761.pdf http://www.h-online.com/newsticker/news/item/Secure-deletion-a- single-overwrite-will-do-it-739699.html http://www.h-online.com/newsticker/news/item/Secure-deletion-a- single-overwrite-will-do-it-739699.html

Download ppt "Data Destruction How to Erase your Hard Drive’s so that there is no data leakage from your company and so that your company and officers won’t be held."

Similar presentations

Floppy Disk Drives Almost a dead deal. The Basics Media/plastic/media Spins at 360 rpm Read/Write heads contact the disk surface – so dont pull a floppy.

Floppy Disk Drives Almost a dead deal. The Basics Media/plastic/media Spins at 360 rpm Read/Write heads contact the disk surface – so dont pull a floppy.
Disposal of Disk and Tape Data by Secure Sanitization EECS711 : Security Management and Audit Spring 2010 Presenter : Sara Mohseni Instructor : Dr. Hossein.

Disposal of Disk and Tape Data by Secure Sanitization EECS711 : Security Management and Audit Spring 2010 Presenter : Sara Mohseni Instructor : Dr. Hossein.
Storing Data Chapter 4.

Storing Data Chapter 4.
Rambling on the Private Data Security

Rambling on the Private Data Security
Data Destruction and The Impact on Recycling. Data Breaches In 2012, over 26M records from 617 data breaches were made public Average costs: –$194 per.

Data Destruction and The Impact on Recycling. Data Breaches In 2012, over 26M records from 617 data breaches were made public Average costs: –$194 per.
Disclaimer Certain trade names and company products are mentioned in the text or identified. In no case does such identification imply recommendation.

Disclaimer Certain trade names and company products are mentioned in the text or identified. In no case does such identification imply recommendation.
1 © Jetico, Inc. Oy Military-Standard Data Protection Software Customer Challenges with Classified Data Spills.

1 © Jetico, Inc. Oy Military-Standard Data Protection Software Customer Challenges with Classified Data Spills.
1 X-Ways Security: Permanent Erasure Supervised By: Dr. Lo’ai Tawalbeh Prepared By :Murad M. Ali.

1 X-Ways Security: Permanent Erasure Supervised By: Dr. Lo’ai Tawalbeh Prepared By :Murad M. Ali.
This presentation will take a look at to prevent your information from being discovered by and investigator.

This presentation will take a look at to prevent your information from being discovered by and investigator.
NOAA Computer/Hard Drive Sanitization Validation Form and PDA/Cell Phone Destruction Worksheet.

NOAA Computer/Hard Drive Sanitization Validation Form and PDA/Cell Phone Destruction Worksheet.
THE WORLD’S PREMIER SOLUTION FOR SANITIZING HARD DRIVES PRIOR TO REPURPOSING OR DISPOSAL DIGITALSHREDDE R PRODUCT PRESENTATION PARTNER LOGO PARTNER CONTACT.

THE WORLD’S PREMIER SOLUTION FOR SANITIZING HARD DRIVES PRIOR TO REPURPOSING OR DISPOSAL DIGITALSHREDDE R PRODUCT PRESENTATION PARTNER LOGO PARTNER CONTACT.
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
Media Sanitization How to get rid of unwanted data so no one else can get it.

Media Sanitization How to get rid of unwanted data so no one else can get it.
Disk Clearing and Disk Sanitization

Disk Clearing and Disk Sanitization
Secure Programming Traps and Pitfalls – The Broken File Shredder Wietse Venema IBM T.J.Watson Research Center Hawthorne, USA.

Secure Programming Traps and Pitfalls – The Broken File Shredder Wietse Venema IBM T.J.Watson Research Center Hawthorne, USA.
DATA SECURITY END OF LIFE Andy Crawford 5/23/20151Florida Gulf Coast ARMA Chapter.

DATA SECURITY END OF LIFE Andy Crawford 5/23/20151Florida Gulf Coast ARMA Chapter.
Agenda Safe disposal practices for computers and information: –Removing files and folders –Disposing of computers –Disposing of other electronic devices.

Agenda Safe disposal practices for computers and information: –Removing files and folders –Disposing of computers –Disposing of other electronic devices.
Data Recovery Mitchell DawsonChris Forgie Jon Davis Steve Tauber Jon Davis Steve Tauber CSSE 592/492 Computer Forensics May 7 th, 2003.

Data Recovery Mitchell DawsonChris Forgie Jon Davis Steve Tauber Jon Davis Steve Tauber CSSE 592/492 Computer Forensics May 7 th, 2003.
More than just an end of life solution A Best Practice Solution for sanitizing hard drives during their entire lifecycle CRADLE REFRESHES  Storage transfers.

More than just an end of life solution A Best Practice Solution for sanitizing hard drives during their entire lifecycle CRADLE REFRESHES  Storage transfers.
Embedded Real-Time Systems Design Selecting memory.

Embedded Real-Time Systems Design Selecting memory.

Similar presentations

Ads by Google