[39946] in bugtraq
Re: Peter Gutmann data deletion theaory?
daemon@ATHENA.MIT.EDU (Alexander L. Ivanchev)
Wed Jul 27 17:16:01 2005
Message-ID: <42E2294E.2050304@ivanchev.org>
Date: Sat, 23 Jul 2005 14:26:06 +0300
From: "Alexander L. Ivanchev" <alexander@ivanchev.org>
MIME-Version: 1.0
To: Volker Tanger <vtlists@wyae.de>
Cc: bugtraq@securityfocus.com
In-Reply-To: <20050722101415.554738dc.vtlists@wyae.de>
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="------------enig2935E932594CEE847ECED8B9"
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig2935E932594CEE847ECED8B9
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
[Re-sending in plain-text]
Hello Volker,
> 1. writing zeroes all over
> 2. low level format
I cannot believe the concept of "low-level" format as a last resort
measure is still considered to be anything else, but "zeroing" out a
drive. Modern IDE drives are only, truly LLF'ed at factory-level. A long
time ago, in the world of RLL/MFM disks it was possible to define
interleave levels, etc., and actually re-create the physical tracks on
the platter. Not any more.
Personally, in the modern world, I've been hearing more and more of the
application HDD degaussers to the end of data wiping. I'd be more
interested in actual research on the extent of data recovery after a
thorough demagnetization via specialized hardware... Has anyone done
this kind of research?
Thanks,
Alexander
Volker Tanger wrote:
>Greetings!
>
>On Thu, 21 Jul 2005 14:07:12 -0500
>Simple Nomad <thegnome@nmrc.org> wrote:
>
>
>>On Wednesday 20 July 2005 18:48, Jared Johnson wrote:
>>
>>
>>>Data overwritten once or twice
>>>
>>>
>[...]
>
>
>>The quote is from 1996. I spoke with Guttman about this at AusCERT a
>>few years ago and even *he* doesn't believe it anymore. Drive
>>technology has changed substantially since then.
>>
>>
>
>His theory no longer does hold true. His 1996 paper is available at
>http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html, targeting
>MFM and RLL disk technology, where a typical 5.25" disk held 20-80MB
>(yes, MEGAbyte, not GB). His recommendations were based on old magnetic
>disc technology where each bit was represented by the magnetical
>orientation on the platter (north=1, south=0). After that came other
>technologies, where bits are defined by changes of the magnetic field
>even down to probabilistic field measurements - which allowes tighter
>data packing but rendered the base of his recommendations useless.
>
>Of course - if you write often enough with different data over "the
>same" spot, the original data will become more and more unreadable.
>
>OTOH I have seen one company with a *really* thorough disk & tape
>cleaning technique:
>
> 1. writing zeroes all over
> 2. low level format
> 3. shredding the disc drive into small pieces
> 4. magnet treatment of the scrap metal
> 5. burning in their own waste incinerating plant
>
>For "home use" a grinder/raw polish/sandblast treatment of both platter
>sides should be fine, too... ;-)
>
>Bye
>
>Volker
>
>
>
>
--
Sincerely,
Mr. Alexander L. Ivanchev
Phone/Fax: +359 2 929-3984
Cell Phone: +359 898 557-980
X.509 / PGP keys at:
http://www.ivanchev.org/
--------------enig2935E932594CEE847ECED8B9
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org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=RJVL
-----END PGP SIGNATURE-----
--------------enig2935E932594CEE847ECED8B9--
