exceeds DOD standards
jamesleecoleman
Member Posts: 1,899 ■■■■■□□□□□
in Off-Topic
So a company does disk destruction for hard drives. On a sign it said "exceeds DOD standards. Now I don't understand how is it that they know that they "exceed" the Department of Defense in data destruction. Wouldn't that be some type of false advertisement? I mean who knows how the DOD destroys their data that doesn't work for the DOD? Ya sure it could be posted on a website for the information that the DOD wants people to know. Yet there could be another method that the DOD doesn't want people to know.
Booya!!
WIP : | CISSP [2018] | CISA [2018] | CAPM [2018] | eCPPT [2018] | CRISC [2019] | TORFL (TRKI) B1 | Learning: | Russian | Farsi |
*****You can fail a test a bunch of times but what matters is that if you fail to give up or not*****
WIP : | CISSP [2018] | CISA [2018] | CAPM [2018] | eCPPT [2018] | CRISC [2019] | TORFL (TRKI) B1 | Learning: | Russian | Farsi |
*****You can fail a test a bunch of times but what matters is that if you fail to give up or not*****
Comments
-
Dingdongbubble
Member Posts: 105 ■■□□□□□□□□
As far as I know, the DOD has standards for computer usage and yes it has published them. I was using TrueCrypt and they ahve multiple methods of encryption. One of them is highly secure but it is kinda slow. Another one is also very secure but not as much but it is faster so the DOD made that as its 'standard'. -
Sie
Member Posts: 1,195
'Overwrite all addressable locations with a character, its
complement, then another character and verify'
DoD 5220.22-M
Source: http://www.ucl.ac.uk/cert/secure_disposal_guidelines.pdf
I believe this is the DOD standard so an application that does this multiple times is exceeding the DOD standard.
Its not refering to the fact it can delete or remove data better than the DOD could using their resources just up to and exceeding the standard they have outlined and released.
[Edited SP and Clarity]Foolproof systems don't take into account the ingenuity of fools -
Tyrant1919
Member Posts: 519 ■■■□□□□□□□
7 passes with a wiping program was enough to declassify a classified hard drive for destruction. Then opening the hard drive and destroying the platter was fun if you didn't mind little pieces all over the place. So, say, using the program 8 times would technically 'exceed' these standards.
The standards aren't a secret. Googling DOD data destruction standards, or sanatizing, will yield a few results I'm sure.A+/N+/S+/L+/Svr+
MCSA:03/08/12/16 MCSE:03s/EA08/Core Infra
CCNA -
cacharo
Member Posts: 361
Here are the standards and procedures they are referring to;
http://en.wikipedia.org/wiki/National_Industrial_Security_ProgramTreat people as if they were what they ought to be, and you help them become what they are capable of being. -
RTmarc
Member Posts: 1,082 ■■■□□□□□□□
As already stated, the DoD has published its standards for data destruction. The 'exceeds DoD standards' claim is probably by means of a different method of wiping the device or number of passes made over the drive - DoD uses X whereas this uses X+5.
-
undomiel
Member Posts: 2,818
I believe this link will show you a number of the security standards as set forth by the DoD.
http://www.dtic.mil/whs/directives/corres/html/522022m.htmJumping on the IT blogging band wagon -- http://www.jefferyland.com/ -
Tyrant1919
Member Posts: 519 ■■■□□□□□□□
We need to post in this thread more quickly people!A+/N+/S+/L+/Svr+
MCSA:03/08/12/16 MCSE:03s/EA08/Core Infra
CCNA -
Sie
Member Posts: 1,195
Tyrant1919 wrote:We need to post in this thread more quickly people!
Seems we are all taking the same coffee break
Foolproof systems don't take into account the ingenuity of fools -
undomiel
Member Posts: 2,818
There were no replies when I viewed the thread, 2 replies showed up when I clicked reply, and then there were 3 more replies by the time I posted plus an edit.
Jumping on the IT blogging band wagon -- http://www.jefferyland.com/ -
sprkymrk
Member Posts: 4,884 ■■■□□□□□□□
They are referring to DoD 5220.22-M. Google it, there is lots of information out there on it.
Also note, there are much tougher standards with regards to classified drives. With those, it's basically a secure trip to the incinerator in an armored car.All things are possible, only believe.
