Javascript Menu by Deluxe-Menu.com
 
 
Onsite Data Erasure Services
 
800-781-4799
Summary DoD 5220 Media Erasure Standard
KNOWLEDGE BASE
> What is the new standard for electronic media destruction?

> What is the difference between renting and leasing?

> What is the difference between leasing and licensing fees?

> What is Secure Erase?

> What is the DoD 5220.22-M?

> What is the difference between 1x / 3x / 7x wipes?

> What is the difference between erasure and physical destruction?

> On-site data destruction vs. offsite services

> Software vs. hardware vs. software/hardware integration

> Data Destruction Topics
> Media Sanitization Scenarios

Department of Defense standard 5220-M for Electronic Media Sanitization
DestructData hardware / software solutions are capable of erasing data by implementing Secure Erase or any level of clearing
Electronic Media Clearing Methods
Comparing Secure Erase to Multiple Pass Wiping (DoD standards)
The National Industrial Security Program, or NISP, is the nominal authority (in the United States) for managing the needs of private industry to access classified information. In Special Publication 800-88, the the testing and standards organization identifies two methods of erasing data stored on electronic media: purging and overwriting. Purging is generally associated with the Secure Erase protocol and overwriting or clearing with DoD 5220-M. The latter, which was the defacto standard for data wiping in the early 2000's, specified 3 passes.

WHAT IS SECURE ERASE?
Secure Erase is an erasure command feature embedded into virtually all ATA drives manufactured since 2001. Originally mandated by the NSA, it provides a firmware-based process that allows the hard drive to erase all data on the drive. The firmware command was developed by the University of California at San Diego's Center for Magnetic Recording Research. The University's description of the process reads as follows: "It completely erases all possible user data areas…"

The ANSI T-13 committee which oversees the ATA (also known as IDE) interface specification and the ANSI T-10 committee which governs the SCSI interface specification have incorporated Secure Erase (SE) into their standards.

WHAT DOES THAT MEAN IN THE REAL WORLD?
Compared to other hard drive sanitization methods, Secure Erase is the only technique that purges all the data stored on a hard disk drive using internal commands.

Until recently, the de facto standard for high security hard drive sanitation has been DOD 5220 (Department of Defense), a standard that specifies multiple block overwrites. This technology is generally classified as "clear". This method requires custom software and can take days to complete on a large drive. The PC hosting the drive is also out of service for the duration. The release of NIST Special Publication 800-88 (Guidelines for Media Sanitization) in 2006 has essentially established a new standard for purging data from hard drives. In this document, NIST rates Secure Erase and Degaussing methods higher than the software overwriting or "clear" technology, at the highest level of security that doesn't destroy the hard drive itself.

Degaussing is a magnetic process that destroys the data but also destroys the drive, whereas Secure Erase allows the drive to be reused. Secure Erase is also distinguished from various freeware and commercial software overwrite products in that it uses internal commands embedded in the HDD by the manufacturer. This allows it to process at the speed of the drive, rather than the clock speed of the PC. Secure Erase is virtually always faster than software clears, in many cases significantly faster.

Despite the effectiveness of Secure Erase, there is one downside: hard drive manufacturers have made it difficult to access the command. This makes sense, in that the command could be exploited by malware or a virus on active storage devices. Therefore, most hardware manufacturers have protected their products from easy access by the user.

However, IT security experts have now developed commercial products that quickly and easily initiate Secure Erase for the purpose of hard drive sanitation. The front runner in this category is CPR Tools' Hammer, which incorporates a number of verification tools and other functions. The Hammer goes one step further in that it is also able to access and erase data on defective sectors

With roots in the hard drive manufacturing industry, CPR Tools is now one of the nation's foremost forensic data recovery experts, and numbers a wide range of government security and law enforcement agencies among its clients.

You may also download free DOS-based software** from the University of San Diego.

* The Secure Erase command is distinquished from the generic marketing term "secure erase" used by vendors of software overwrite products.

** Neither UCSD nor the NSA currently offers support for this software).

ADDITIONAL LINKS:
ALSO SEE:
  • Download NIST Special Publication 800-88

  • To view a chart comparing DestructData hard drive erasure solutions with other solutions, click here.

    Complete listing and links for data security regulations and     legislation.
    •   
    Solutions
    Compliance Resources
    Technology
    Downloads
    About
     
    Copywrite 2010 by DestructData, Inc. All rights reserved.