2.8 Data Security Flashcards
Given a scenario, use common data destruction and disposal methods
Degaussing
Exposing the drive to a powerful magnetic field which wipes previously-written data by disrupting the magnetic patterns
Purging/sanitising
Removing data in a way so that it cannot be reconstructed using any known forensic techniques
Clearing
Removing data in such a way that prevents an end-user from easily recovering it
Give the 5 steps to removing data from a device
- Define which equipment will be disposed of
- Determine a storage location until disposal
- Analyze equipment to determine disposal method
- Sanitize the device and remove all its data
- Throw away, recycle, or resell the device
Which data destruction methods would you use if the device was being recycled or repurposed?
Erase/wipe (standard or low-level formatting)
How does erasing/wiping of data work?
Destroying old data by writing over the location on the hard drive or SSD with new data
Give 4 physical data destruction methods
- Drilling
- Shredding
- Incinerating
- Degaussing
What is the trouble with erasing or wiping?
It doesn’t work as well with SSDs and forensic experts may be able to recover overwritten data
Which command line prompt do you use to erase the contents of the hard drive?
Format
Should you use standard formatting or erase/wipe, and why?
Standard formatting, because the data destruction will be better
Low-level format
Procedure provided by the manufacturer which resets the disk back to factory condition
What happens if you don’t let the low-level format finish?
The drive will no longer be functional or usable
Self-encrypting drive
Hardware that encrypts/decrypts the entire disk as soon as it is powered on
What happens if you erase the key for a self-encrypting drive?
All the data becomes unusable and unreadable
What drives are unable to be degaussed?
Optical media and SSDs
