1

In a scenario where a person wants to give away their device (magnetic disk included), leaving the disk usable for the receiver, how might that person go about destroying ALL data (except firmware) on the disk only via a digital medium? Encryption is not an answer, because the disk needs to be used by the receiver. Assume no encryption was used before.

  • Is one zero pass enough?
  • Is one random pass enough?
  • If not, then what method should be used?
  • Can the same method be effective for an electronic disk?

under the assumption that the adversary is theoretically able to exercise any technique to recover the data

Anm
  • 113
  • 2
  • 4
    There are various options shown in How can I reliably erase all information on a hard drive? which do not destroy the drive itself. – Steffen Ullrich Oct 18 '23 at 05:29
  • @SteffenUllrich DBAN says no gaurantee of full data removal (https://dban.org/) and does not erase all data (https://security.stackexchange.com/a/5843/288820). ATA secure erase may not be supported, or may not even securely erase any data for that matter since its not documented without any guarantee of actually being implemented. The rest of the solutions are thermite and encryption. – Anm Oct 18 '23 at 18:23

1 Answers1

0

To an extent, you have to choose which option is best for you given your individual situation such as how important it is that the information does not fall into someone else's hands and whether you are anticipating that any skilled person will be trying to get at it.

The most secure option would be not to give away the hard drive at all and, perhaps, supply a new one with the device instead. You can retain or destroy the existing drive.

Barring that, the current guidelines from NIST are to use the drive's own secure erase method, which in modern drives should be accessible as a command that the host can run over the SATA or SCSI connection. Previous assumptions underpinning erase methods that relied on writing zeroes or random data did not take into account newer surface mapping technologies which may be in use in newer drives in which at some times in their life not all of the surface may be mapped to a logical sector accessible from the host computer.

thomasrutter
  • 1,637
  • 12
  • 17