Presentation is loading. Please wait.

Presentation is loading. Please wait.

Media Sanitization How to get rid of unwanted data so no one else can get it.

Published byNickolas Nash Modified over 9 years ago

Similar presentations

Presentation on theme: "Media Sanitization How to get rid of unwanted data so no one else can get it."— Presentation transcript:

1 Media Sanitization How to get rid of unwanted data so no one else can get it

2 Do You Have Sensitive Data Excel spreadsheet of names, addresses, phone numbers, SSN’s and credit card numbers Full database dump of KEAS or SIS Full time or student evaluations with names and SSN’s Financial data – departmental or personal Contacts in Outlook with addresses, e-mails, phone numbers and birthdays Any credit card transactions – customers or purchases Web forms accepting eID and password Saved usernames and passwords for websites, e.g. banks, retirement fund Blueprints for constructing a nuclear weapon

3 K-State Policy Draft policy on computer disposal:.085 Disposal of Computers and Electronic Media After local disposition has been authorized, it is the responsibility of the department to ensure that all information is removed from computers and electronic media (e.g., magnetic tapes, CDs, DVDs, hard drives, diskettes, ZIP drives, USB drives, etc.) by physically destroying the media or overwriting the data utilizing approved data destruction procedures before it is disposed of by the department. If the surplus computer is to be transferred to another entity for continued use, the license(s) for any software remaining on the computer, such as the operating system, must be transferable to the receiving department in order to maximize the value of the computer and ensure compliance with software license agreements. It is the responsibility of the transferring department to make sure no other copies are retained unless allowed by license agreements.

4 What can I do with it Keep it forever Throw it away Erase it Erase it securely – reuse media Erase it securely – don’t reuse media Destroy it Keep in mind that technology is constantly changing, take everything you hear with a grain of salt

5 Keep it forever A lot of people actually do this Easy and inexpensive Doesn’t get rid of it Someone gets to clean up the mess eventually

6 Throw it away Easy and inexpensive Be absolutely certain that there is no sensitive data on the device Almost impossible to guarantee – violation of policy

7 Erase it Drag all documents to recycle bin Empty recycle bin Format drive Sufficient to hide data from the casual looker Doesn’t remove data, just pointers in the file table Easy to recover data – Restorer 2000

8 Erase it securely – reuse media Usually a software based solution DBAN, Eraser, KillDisk Leaves the drive functional / reusable Options to meet most stringent guidelines (DOD, NIST) Device must be functional to begin with Time consuming Requires some tools and knowledge

9 Erase it securely – don’t reuse media Use a magnetic field to “scramble” magnetic domains on substrate Garner HD-1(~$2000), degaussing ring May be used on any magnetic media – hard drives, tapes, floppy disks, etc. Generally destroys device (R/W heads) or erases low-level format – device unusable Potentially damaging to nearby devices Doesn’t work with optical media – CD’s, DVD’s

10 Destroy it Medium duty cross-cut shredder or microwave for CD’s, DVD’s Incinerate floppy disks Fast, inexpensive Doesn’t work for HD’s Dangers – toxic fumes or hazardous waste, fire hazard

11 Destroy it, page 2 Crush HD’s – EDR Disk Crusher $11,500 Drill or Cut HD’s – drill press or table saw with carbide tipped blades – the more tracks you sever the better Shred and/or melt HD’s –SEM Model 22 HDD - $50,000+, 3600 lbs. –Outsource ~$7/drive – sending drive off-site

12 Resources Darik’s Boot and Nuke http://dban.sourceforge.net/ http://dban.sourceforge.net/ Eraser http://sourceforge.net/projects/eraser http://sourceforge.net/projects/eraser KillDisk http://www.killdisk.com/downloadfree.htm http://www.killdisk.com/downloadfree.htm Garner HD-1 http://www.garner-products.com/pdf/hd-1.pdf http://www.garner-products.com/pdf/hd-1.pdf EDR Disk Crusher http://www.edrsolutions.com/solution.asp http://www.edrsolutions.com/solution.asp SEM Model 22-HDD http://www.semshred.com/content551.html http://www.semshred.com/content551.html NIST Guidelines http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf

Download ppt "Media Sanitization How to get rid of unwanted data so no one else can get it."

Similar presentations

Pennsylvania BANNER Users Group 2007 Disaster Recover For The Financial Aid Environment.

Pennsylvania BANNER Users Group 2007 Disaster Recover For The Financial Aid Environment.
ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.
Chapter 4 Storing Information in a Computer Peter Nortons Introduction to Computers.

Chapter 4 Storing Information in a Computer Peter Nortons Introduction to Computers.
Chapter 4 – Page 1QM-130Dr. Sulaiman Al-Rafee Chapter 4 – Storage Chapter Summary Properties of Storage Systems Magnetic Disks Optical Disks Other types.

Chapter 4 – Page 1QM-130Dr. Sulaiman Al-Rafee Chapter 4 – Storage Chapter Summary Properties of Storage Systems Magnetic Disks Optical Disks Other types.
AS ICT. Identify suitable uses of common storage media understand the types of access and access speeds required for each use (e.g. serial/sequential,

AS ICT. Identify suitable uses of common storage media understand the types of access and access speeds required for each use (e.g. serial/sequential,
Max Secure Software founded in Jan 2003 develops innovative privacy, security, protection and performance solutions for Internet users. The company is.

Max Secure Software founded in Jan 2003 develops innovative privacy, security, protection and performance solutions for Internet users. The company is.
Identification and Disposition of Official University Records University of Texas at Arlington Records Management.

Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
Gaucho Round-Up FAQ’s This presentation covers some of the FAQ’s about campus clean-up day. Presentation #4 2/3/2015 1.

Gaucho Round-Up FAQ’s This presentation covers some of the FAQ’s about campus clean-up day. Presentation #4 2/3/
CIT 1100. In this chapter you will learn how to:  Care for the external parts of the computer  Describe methods for keeping the inside of the case problem-free.

CIT In this chapter you will learn how to:  Care for the external parts of the computer  Describe methods for keeping the inside of the case problem-free.
Backing Up Your Computer Hard Drive Lou Koch June 27, 2006.

Backing Up Your Computer Hard Drive Lou Koch June 27, 2006.
A dialogue with FMUG: Sensitive Data & Filemaker MIT Policy and Data Classifications ** DRAFT ** Guidelines Feedback and Discussion Tim McGovern 2 June.

A dialogue with FMUG: Sensitive Data & Filemaker MIT Policy and Data Classifications ** DRAFT ** Guidelines Feedback and Discussion Tim McGovern 2 June.
1 X-Ways Security: Permanent Erasure Supervised By: Dr. Lo’ai Tawalbeh Prepared By :Murad M. Ali.

1 X-Ways Security: Permanent Erasure Supervised By: Dr. Lo’ai Tawalbeh Prepared By :Murad M. Ali.
Best Practices: Provisioning, Encryption and Decommission of storage in the enterprise.

Best Practices: Provisioning, Encryption and Decommission of storage in the enterprise.
FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.

FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.
Securing NPI Mary Schuster Mike Murphy.  Gramm-Leach-Bliley Act Enacted to control the ways that financial institutions deal with the private information.

Securing NPI Mary Schuster Mike Murphy.  Gramm-Leach-Bliley Act Enacted to control the ways that financial institutions deal with the private information.
Service Point 5 ReportWriter How to create and run reports in ReportWriter.

Service Point 5 ReportWriter How to create and run reports in ReportWriter.
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
Disk Clearing and Disk Sanitization

Disk Clearing and Disk Sanitization
Records Management at UW-Green Bay Or, I am out of space and just want to throw some things away!

Records Management at UW-Green Bay Or, I am out of space and just want to throw some things away!
Agenda Safe disposal practices for computers and information: –Removing files and folders –Disposing of computers –Disposing of other electronic devices.

Agenda Safe disposal practices for computers and information: –Removing files and folders –Disposing of computers –Disposing of other electronic devices.

Similar presentations

Ads by Google