- 12 myths about how the Internet works
- Smartphone smackdown: Storm vs. iPhone
- IETF: Should we ignore the Kaminsky bug?
- Top 10 wicked cool algorithms
- How to recession-proof yourself
Linda Musthaler's CIO-level look at the latest networking technologies and their benefits and pitfalls.
Sean Steele, one of the principal security consultants at infoLock Technologies, wrote to tell me about a new tool his company now recommends to customers that need to decommission hard drives. I looked at his recommendation, and it looks like a good solution for any company that wants to securely remove all data from hard disks before reusing or disposing of them. (This should be every company, big or small.)
Every PC eventually is removed from service, and often there is sensitive data on the hard drive. Whether that PC is recycled, resold or left to collect dust in a closet, someone should take the time to clean the private information off the hard drive before it becomes the next source of headline news.
As Sean pointed out to me, there are several popular methods that companies use to remove data from hard drives:
1. Delete the data using an OS utility.
2. Triple overwrite the data using a software tool.
3. Degauss using a degaussing process or service.
4. Physically destroy the drive.
There are drawbacks to these methods. Deleting data with the OS only removes pointers to the data, not the data itself, so the data can actually be recovered fairly easily. Triple overwriting doesn’t destroy the data beyond forensic recovery, and it can be very time consuming. Degaussing devices can be bulky, expensive and dangerous (and you still can’t verify that the data is unreadable). Destroying the drive with a shredder prevents you from reusing the drive, and creates hazardous waste issues.
Another popular tactic is to outsource data decommissioning to third party services. While this may be a convenient option, it means you have lost care, custody and control of your data, which may be against federal regulations. While you may have a legal contract in place with your service provider, you have no practical way to verify that your sensitive data has been destroyed.
The solution Sean now recommends to his customers is an appliance called the Digital Shredder from Ensconce Data Technology. The Digital Shredder appliance doesn’t destroy the drive as the name “shredder” suggests. Instead, it uses a little known feature called Secure Erase that is quietly built into the two most common disk drive interface standards, ATA (also known as IDE) and SATA.
Linda Musthaler is a principal analyst with Essential Solutions Corporation.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
NetScout and analyst Jim Metzler have teamed to deliver a series of IT Briefs on Network and Application Performance Management leveraging research from NetScout’s nGenius & Sniffer users.
www.netscout.com
Metzler on CIO Priorities
The top five CIO priorities based on a survey of NetScout users revealing CIOs' top priorities and what they think they should be. Also includes interviews with CIOs of large organizations.
Read the Report
Metzler on Application Delivery
How to eliminate the stovepiped or siloed nature of application delivery from both an organization and a technological perspective.
Read the Brief
Metzler on Network Troubleshooting
Overview of network troubleshooting that provides an assessment of where we are, and where we need to be relative to the complexities of today's IT challenges.
Read the Brief
Comments (2)
Sharp ToolBy Chez on March 26, 2007, 4:28 pmWow... looks like one stop shopping for HDD erasure. I read somewhere that it re-images, too! I was wondering when secure erase would become available.
Reply | Read entire comment
A better solution than crushing hard drives in-houseBy Anonymous on March 26, 2007, 4:25 pmIt's amazing - I've never heard of Secure Erase technology. I'd so much rather use something like this device than crushing them in-house or shipping them out. Re:...
Reply | Read entire comment
View all comments