DOCSLIB.ORG

Recommendation on Data Sanitisation and Data Medium Destruction Techniques

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Recommendation on Data Sanitisation and Data Medium Destruction Techniques Data Protection Authority Recommendation on data sanitisation and data medium destruction techniques Information media erasure and destruction guide | Version 1.01 - 23/03/2021 1 1 WARNING: This document is intended to provide additional explanation to the rules in force and does not exempt the controller from its obligations and responsibilities under the GDPR and other applicable texts. Considering its requirements and the risk analysis that it carries out or plans, it shall use one or the other tool and method, given in particular the evolution of knowledge and technologies. The different tools and brands cited in this document are cited for the sole purpose of providing examples. The Authority makes no representation as to their compliance with the GDPR and other regulations or as to their quality and performance. Information media erasure and destruction guide | Version 1.01 - 23/03/2021 2 2 TABLE OF CONTENTS Summary ............................................................................................................................................................................. 6 1. Introduction ..................................................................................................................................... 7 Limitations ................................................................................................................................................................... 9 Target audience...................................................................................................................................................... 10 Objectives .................................................................................................................................................................. 10 2. Preliminary principles and concepts ...................................................................................... 11 2.1. Information classification and inventory .......................................................................................... 11 2.1.1. The type and categories of data on the medium ................................................................... 11 2.1.2. The nature and characteristics of the medium ..................................................................... 12 2.2. Processing steps ........................................................................................................................................... 13 A. Policy (security and confidentiality) ...................................................................................... 13 B. Inventory ........................................................................................................................................................ 14 C. Risk analysis ................................................................................................................................................ 14 D. Security measures ................................................................................................................................. 15 E. Assessment .................................................................................................................................................. 15 F. Documentation .......................................................................................................................................... 16 G. Example ........................................................................................................................................................... 16 2.3. In the best of all worlds.............................................................................................................................. 17 3. The different methods and techniques ................................................................................. 18 3.1. Introduction ...................................................................................................................................................... 18 3.1.1. Important details ..................................................................................................................................... 18 3.1.2. Three levels of confidentiality ........................................................................................................ 18 3.1.3. Processing not supervised by the controller ........................................................................ 20 3.2. The data medium is retained ................................................................................................................ 20 3.2.1. Erasure - overwriting ........................................................................................................................... 20 3.2.1.1. Clear level - Third party software ........................................................................................ 22 A. Magnetic hard drives ........................................................................................................................... 22 B. Flash memory media ............................................................................................................................23 ATA or SCSI Solid-State Drives (SSD) .......................................................................................................24 USB keys .................................................................................................................................................................... 25 C. Important points ..................................................................................................................................... 25 3.2.1.2. Purge level - Integrated commands ................................................................................. 25 A. IDE/ATA magnetic hard drives .................................................................................................. 26 ATA commands - details .................................................................................................................................. 26 Secure Erase - confusion .................................................................................................................................. 27 B. Magnetic SCSI hard drives ............................................................................................................ 28 C. Common notes for ATA and SCSI hard drives ............................................................. 28 Information media erasure and destruction guide | Version 1.01 - 23/03/2021 3 3 D. Solid State Drives (SSD) .................................................................................................................. 29 3.2.2. Anonymisation ....................................................................................................................................... 30 3.2.3. Degaussing ............................................................................................................................................... 30 3.2.4. Cryptographic erase (crypto-erase - CE) ................................................................................. 31 3.2.4.1. Integrated commands...............................................................................................................32 3.2.4.2. SEDs ....................................................................................................................................................32 3.2.4.3. Security vulnerabilities of SEDs ......................................................................................... 33 3.2.4.4. Important points ......................................................................................................................... 33 3.2.4.5. Risks .................................................................................................................................................. 34 Ideal situation .......................................................................................................................................................... 35 3.3. The data medium is destroyed ............................................................................................................ 35 3.3.1. Segmentation of techniques ............................................................................................................. 35 3.3.2. Physical deformation ............................................................................................................................ 36 3.3.3. Shredding, crushing and disintegration.......................................................................................37 3.3.3.1. Shredding .........................................................................................................................................37 Solid State Drives - SSDs ................................................................................................................................. 38 3.3.3.2. Crushing .......................................................................................................................................... 38 3.3.3.3. Disintegration ............................................................................................................................... 39 3.3.3.4. Notes ................................................................................................................................................. 39 3.3.4. Incineration ................................................................................................................................................
Load more

Recommended publications
  • Tiny Core Linux
    THE TINY CORE LINUX HANDBOOK v 0.965 Not corrected draft (c) 2013 compiled by Thierry SALOMON tsalomon AT hotmail DoT com tinycorelinux.inf.hu Table of Contents TINY CORE LINUX .......................................................................................................................... 1 INTRODUCTION........................................................................................................................... 4 DOWNLOADING TINY CORE LINUX....................................................................................... 5 LIVE-CD MODE.............................................................................................................................6 THE GRAPHICAL USER INTERFACE........................................................................................7 Setting up the right screen resolution and mouse parameters.....................................................7 The Tiny Core Linux desktop..................................................................................................... 7 The Mouse menu.........................................................................................................................8 HOW TO SAVE YOUR SETTINGS (PERSISTENCE).............................................................. 10 INSTALLING TINY CORE LINUX ON A HARD DISK/FREE PARTITION..........................11 INSTALLING TINY CORE LINUX ON A USB-PENDRIVE................................................... 12 EMBEDDED INSTALLATION WITHIN WINDOWS...............................................................13
    [Show full text]
  • Youwipe Assurance Test Report by KÜRT .Pdf
    HDD DATA ERASURE ASSURANCE REPORT TR/yw/20-10-22 KÜRT had been asked to process a detailed analysis of YouWipe edition v4.1.93.2010221419-945f40cc data erasure tool capabilities on hard disk drives with data recovery tools. 1. ASSIGNMENT In response to YouWipe engagement KÜRT Data Recovery Lab have performed the test of the erasure capabilities of YouWipe tool on the following HDD devices: 1. Model : Seagate Barracuda ST1000DM003 Serial number: Z1D6GVFS 2. Model: Western Digital WD20EZRX-00D8PB0 Serial number: WCC4M5LSR3A0 2. ACTIVITIES KÜRT test was performed in accordance with data recovery current technological standards and included the procedures considered necessary in the circumstances to obtain a reasonable basis for rendering the last opinion. 3. TEST LEVELS Examination can include different Test Levels in the context of a desired defense against a certain Risk Level (ADISA) or Effort Level (NIST). 1. Test Level 1: NIST Clear, ADISA Risk level 1 (Low) 2. Test Level 2: NIST Purge, ADISA Risk Level 2 (Medium) KÜRT Data Recovery performed the tests on Test Level 1 and Test Level 2. 4. EXAMINATION PROCESS The examination was performed during the period 5 - 21. October 2020 and included the following steps: 1. A special - KÜRT specific - data pattern was written on the HDD’s, filling the full available capacity of the HDD’s. 2. Using YouWipe v4.1.93 software with “EXT HMG Infosec High” HDD Erasure Method, the HDD’s were wiped following the instructions given with YouWipe software. 3. The HDD’s were analyzed on low level (sector by sector) with several KÜRT Data Recovery software tools.
    [Show full text]
  • Blancco Erasure Software Manual
    BLANCCO ERASURE SOFTWARE User manual for x86 erasure client version 4.9 30.3.2009 TABLE OF CONTENTS 1. GLOSSARY .......................................................................................................4 2. GENERAL INFORMATION.................................................................................5 Minimum System Requirements .......................................................................................................5 Booting and Computer Settings .......................................................................................................5 3. BLANCCO ERASURE SOFTWARE ......................................................................6 3.1. Function keys .......................................................................................................................... 8 [F2] Change language / Keyboard layout..........................................................................................8 [F3] Select overwriting method / options ..........................................................................................8 [F4] HexViewer ..............................................................................................................................9 [F5] Reports, Load previous reports / Check report integrity...............................................................9 [F6] Option to run additional SMART tests ........................................................................................9 [F7] Bad disk option [Displayed only when the computer has SCSI
    [Show full text]
  • Blancco LUN Eraser for Windows User Manual for Version 2.1
    Blancco LUN Eraser for Windows User manual for Version 2.1 www.blancco.com Abstract This is the official Blancco LUN Eraser for Windows User Manual. Blancco is the proven data erasure solution for millions of users around the world. As the pioneer and global leader in data sanitization and end- of-lifecycle solutions, the company offers the most certified data erasure within the industry. Blancco LUN Eraser allows data storage administrators to securely erase individual drives, as well as logical drives (such as LUNs), in an active storage environment. 2 Blancco LUN Eraser User Manual Definitions Item Explanation To execute some actions on a computer administrator rights may be required. This means that Administrator rights only the person with permission and unrestricted access, or the administrator, has the rights to implement said act. The line on the display screen where a command is expected. Generally, the command line is Command line the line that contains the most recently displayed command prompt. A console based program uses a text based interface. Many console applications are Console command line tools. Diskpart Diskpart is a command line utility that supports the use of scripts to automate its procedure. DWORD is one of the terms used to describe a variety of sizes of data. A DWORD consists of DWORD two WORDs which is equal to 32 bits. HASP key HASP key is inserted in a USB port and contains the Blancco licensing data. HTML, which stands for Hyper Text Markup Language, is the predominant markup language for web pages. It provides a possibility to create structured documents by denoting structural HTML semantics for text such as headings, paragraphs, lists etc.
    [Show full text]
  • Manual Norton Partition Magic 8.0 Full Version for Windows 7
    Manual Norton Partition Magic 8.0 Full Version For Windows 7 Norton Partition Magic is an application used to manage hard disks on your computer, that has a If you are a moderator please see our troubleshooting guide. A familiar layout with disk map plus a full User Manual and lots of Help resources From EaseUS: As Partition Magic alternative, EaseUS Partition Master Home and GUID partition table (GPT) disk under Windows 2000/XP/Vista/7/8/8.1/10. If you have a Windows 8/8.1 system, DO NOT manage your partition with this. Supported OS: Windows 10/7/8/vista/XP and Windows Server 2003/2008/2012 Guide & Tips. How to extend system partition But Windows 8 is not supported by Norton Partition Magic), or can not be boot from a bootable CD/DVD. Partition. How to backup photos from iphone4 to icloud server backup windows server 2008 · Ipad compatible backup camera symantec netbackup 7.5 error code 58 Dodge grand caravan everyone the key NTFS partitions, made Source manually copy two components to users whose machines almost completely dead HDD. Magic EaseUS Partition Master is totally free partition manager for home users. Guide & Tips Say, create a new partition to install Windows 7, or extend the full system partition manager software for Windows 7 32 bit and 64 bit and Windows 8. Partition Magic ® is a registered trademark of Symantec Corporation. filemaker pro 12 crack norton partitionmagic 8.05 serial number keylogger for windows Camtasia studio 8 free download for windows 7 32bit vray 3ds max 2010 64 with Powerdvd 10 ultra 3d free download full version sony architect pro 5.2 photoshop lightroom mac serial windows 8 the missing manual captivate 4.
    [Show full text]
  • NIST 800-88 VS Dod 5220.22-M What Is the Best Method?
    ® NIST 800-88 VS DoD 5220.22-M What Is The Best Method? OVERVIEW The DoD 5220.22-M has long been an industry standard when it comes to data sanitization, but drive technology has changed drastically since the standard was last changed in 2006. The more modern NIST 800.88 US government standard has taken the role as the primary erasure pattern for government, military and enterprise. Due to the necessary changes that arrived with SSD and newer drive technologies, Sipi Asset Recovery highly recommends using the current NIST 800.88 for sanitizing all drive types. THE ORIGIN OF DOD 3-PASS WIPE STANDARD The idea that multiple wipe passes are necessary to render ad ta irrecoverable originates in part with a 1996 study published by Peter Gutmann who suggested that data should be wiped up to 35 times. He proposed that data could be recovered using magnetic force microscopy (MFM) and scanning tunneling microscopy (STM) techniques. Gutmann’s study was widely cited and lead to the adoption of the DoD 3-pass wipe as a standard. The Department of Defense 5220.22-M requires 3 overwrites passes (0’s, 1’s, Random) with a 100% verification pass. This standard was last updated in 2006 and in consideration of the pace of advancement in technology this criteria is significantly out of date. Modern hard drives over the last 10-15 years have advanced in technology to the point where the MFM and STM techniques have become obsolete. Specifically, part of Gutmann’s claim was that the head positioning system in hard drives was not precise enough to overwrite new data on top of the exact position of the old data, thus creating the possibility that the old data would remain intact.
    [Show full text]
  • Bitraser File Eraser Fact Sheet
    BITRASER FILE ERASER WORLD'S MOST RELIABLE DATA ERASURE SOFTWARE SIMPLE. SECURE. File Erasure Software Erases Files, Folders & Partitions from PC, Mac, Server IDEAL FOR INDIVIDUAL, HOME USER & ENTERPRISE Reliable Privacy Safeguarding Software To Erase Sensitive & Confidential Data Beyond Recovery BitRaser File Eraser is a privacy safeguarding software that permanently erases files, folders, partitions, Internet history etc. stored on laptop,desktop, server beyond the scope of data recovery. The software meets daily data sanitization requirements of organizations and individuals by erasing data securely. The software allows you to schedule erasure process & maintain detailed log reports of all files deleted for meeting statutory & regulatory compliance needs for data security & privacy – SOX, GLB, HIPAA, ISO27001,EU-GDPR, PCI-DSS. SOFTWARE WITH EXCELLENT CAPABILITIES SECURE FILE & FOLDER ERASURE HIGH SPEED ERASURE Securely erases sensitive files from PC, laptop, Performs high speed simultaneous erasure of mac and server beyond recovery thereby multiple files in the most efficient way. maintaining privacy. ERASES PARTITIONS EMAIL & BROWSER HISTORY ERASURE Ability to safely erase entire logical drives or Wipes emails & browser history and archives partitions without harming applications & residing in any drive/ media / server without operating system files. leaving any traces. REMOVES COOKIES, BROWSER HISTORY CERTIFIED ERASURE & APPLICATION TRACES A certificate is generated to meet statutory and Erase cookies & Internet browser history that regulatory compliances. track your behavior pattern along with most recently used application traces. BITRASER ADVANTAGE Safeguards Unlimited Easy to use Retain Safe & Cost Your Privacy Erasure in a Year Interface OS Files Reliable Effective BITRASER, AN INNOVATION BY STELLAR, THE GLOBAL DATA CARE EXPERTS TRUSTED BY MILLIONS, SINCE 1993.
    [Show full text]
  • Data Erasure on Magnetic Storage
    “HENRI COANDA” GERMANY “GENERAL M.R. STEFANIK” AIR FORCE ACADEMY ARMED FORCES ACADEMY ROMANIA SLOVAK REPUBLIC INTERNATIONAL CONFERENCE of SCIENTIFIC PAPER AFASES 2011 Brasov, 26-28 May 2011 DATA ERASURE ON MAGNETIC STORAGE Mihăiţă IVAŞCU Metra, Bucharest, Romania Abstract: User data is left is left on the hard drives removed from computers and storage systems, creating a data security vulnerability that many users are unaware of. This is mostly due the fact that normal “delete” or “format” commands leave data intact on a user computer. The cardinal rule of computer storage design has been to protect user data at all costs. Disk drives supply primary mass storage for computer systems designed to prevent accidental erasure of data. Techniques such as “recycle” folders and “unerase” commands are common ways that operating systems try to prevent accidental sanitization of user data. Deletion of file pointers is standard to speeds data writing, because actual overwriting of file data is far slower. These measures taken to protect and speed access to user data can make that data vulnerable to recovery by unauthorized persons. There is an urgent need for a capability to reliably erase data and prevent access to data from retired computer hard disk drives for security and privacy reasons. Data sanitization needs arise differently depending upon user application. The current work presents standards for data erasure, most important methods of data sanitization of hard disk drives and presents how a customized method of data erasure can be implemented. Keywords: recycle, data sanitization, recovery, security vulnerability 1. INTRODUCTION 2. COMPLETE ERASURE OF USER DATA When a computer is lost or disposed of, active and discarded data typically remains 2.1 Known methods of “deleting” data.
    [Show full text]
  • Data Erasure Faqs for the U.S. Public Sector
    Data Erasure FAQs for the U.S. Public Sector Blancco has been helping government organizations across the globe reduce risk for over twenty years. As the leader in data erasure software, our solutions are proven to be the most secure and effective on the market. Read on for a list of some of the common questions we receive from U.S. public sector, then reach out to us for additional information on how we can help you improve data security across your organization. Which is more secure – physical destruction or data erasure? While physical destruction is required for many government Again, as NIST explains, “Applying destructive techniques organizations, newer drive technology presents additional to electronic storage media (e.g., flash memory) is also variables that need to be considered to mitigate risk. While becoming more challenging, as the necessary particle degaussing is the cheapest and easiest form of physical size for commonly applied grinding techniques goes down destruction for HDDs, it is incapable of removing data on proportionally to any increases in flash memory storage SSDs or NVMes. Degaussing destroys data by reducing density. Flash memory chips already present challenges or eliminating the unwanted magnetic fields and rendering with occasional damage to grinders due to the hardness of the drive unusable. Flash-based storage such as SSDs or the component materials, and this problem will get worse NVMes are incapable of being degaussed because their as grinders attempt to grind the chips into even smaller data is not stored magnetically. pieces.” As NIST explains, “Destructive techniques for some media Security throughout the full chain of custody can also be types may become more difficult or impossible to apply in an issue.
    [Show full text]
  • Secure Data Deletion
    Research Collection Doctoral Thesis Secure Data Deletion Author(s): Reardon, Joel Publication Date: 2014 Permanent Link: https://doi.org/10.3929/ethz-a-010411932 Rights / License: In Copyright - Non-Commercial Use Permitted This page was generated automatically upon download from the ETH Zurich Research Collection. For more information please consult the Terms of use. ETH Library Diss. ETH No. 22475 Secure Data Deletion A thesis submitted to attain the degree of DOCTOR OF SCIENCES of ETH ZURICH (Dr. sc. ETH Zurich) presented by Joel Reardon Master of Mathematics, University of Waterloo born 31.07.1983 citizen of Canada accepted on the recommendation of Prof. Dr. Srdjan Capkun,ˇ examiner Prof. Dr. David Basin, coexaminer Prof. Dr. Ari Juels, coexaminer Prof. Dr. Paul Van Oorschot, coexaminer Dr. Alessandro Sorniotti, coexaminer 2014 Abstract Secure data deletion is the task of deleting data from a physical medium so that the data is irrecoverable. This irrecoverability is what distin- guishes secure deletion from regular deletion, which ostensibly deletes unneeded data only to reclaim resources. We securely delete data to prevent an adversary from gaining access to it, and so secure deletion is a natural part of the confidentiality of data. In this thesis, we examine secure deletion in a variety of different systems and different layers: from the hardware level of ensuring a storage medium can efficiently delete data to the system level of deleting data from unreliable and untrusted servers. We examine related work in detail, identify the deficiencies and unsolved problems, and build our own solutions to advance the state of the art.
    [Show full text]
  • A Study of Hard Drive Forensics on Consumers' Pcs: Data
    A Study of Hard Drive Forensics on Consumers’ PCs: Data Recovery and Exploitation B. Dawn Medlin Appalachian State University Joseph A. Cazier Appalachian State University One of the first actions to take when getting rid of an old personal computer is to remove all of the files that contain identifying and personal information. Individuals can be surprisingly negligent in this effort. Many individuals may also believe that by simply moving their files to the recycle bin and then emptying that bin that all of their programs and files are permanently erased. If personal information is not totally deleted, acts of identity theft can easily occur. Our research study identified the types of information found and/or recovered from hard disk drives on computers that have been donated to charity, sold second-hand, or otherwise donated to other organizations for reuse. Of the fifty-five hard drives studied approximately 300,000 files contained identifiable information. Results showed the need for further training in relation to total file erasure from a hard drive as well as the negative results such as identity theft that can occur due to this lack of training or knowledge. INTRODUCTION Wiping a computer clean is not as easy as it may appear. Just deleting the personal files and emptying the recycle bin is essentially next to useless. The delete function only removes file names from a directory list and makes the sectors the files occupy on the hard drive available for future use. Meanwhile, these files actually continue to exist. To positively prevent data from recovery, disks can be removed from disk drives and broken up, or even ground to microscopic pieces.
    [Show full text]
  • Bitraser for File User Guide for Version 4
    BitRaser for File User Guide for Version 4 Legal Notices | About Stellar | Contact Us 1. General Information 1.1. About BitRaser for File BitRaser for File is a complete solution to maintain your computer privacy by erasing worthless yet sensitive information from your computer. Erased data is beyond recovery. BitRaser for File can be used to erase files/folders, Unused space, and System traces. BitRaser for File erases files & folders completely from hard drive. You can select multiple files/folders at a time for erasure. Once files / folders from the Drive are erased using BitRaser for File no one will ever be able to recover that data. The software allows you to generate and save the certificate for the successful erasure process. In addition, it can erase unused space completely such that all traces of previously stored data will be completely removed. When you delete data from hard drive, the data content is not deleted entirely, instead the space occupied by the data is marked as unused space and the new data is written on that unused space. BitRaser for File also erases all the system traces. Operating systems store records of all activities such as browsing Internet and opening documents constantly. In addition, deleted or formatted data leaves traces on hard drive. Data recovery software use these traces to recover data, making the hard drive inefficient. Extremely secure algorithms which confirm to the US Government DoD standards are used to ensure permanent data deletion. BitRaser for File can use any of the algorithms for erasure process. The software is menu driven, simple to use with an intuitive interface, and requires no prior technical skill.
    [Show full text]