Re: Interesting One

From: Thomas Sjögren (thomas@northernsecurity.net)
Date: 10/29/02 

From: Thomas Sjögren <thomas@northernsecurity.net>
To: "Dave Adams" <dadams@johncrowley.co.uk>, <security-basics@security-focus.com>
Date: Tue, 29 Oct 2002 23:28:42 +0100

On Monday 28 October 2002 23:06, Dave Adams wrote:

> I had an interesting conversation today with someone from FAST
> (Federation
> Against Software Theft) They pretend not to be a snitch wing of the
> BSA. Anyway, to get to the point, the guy that came to see me said
> that their forensics guys could read data off a hard drive that had
> been written over
> up to thirty times. [...]

Really? Wow. Please email me about the tools they are using, but that's
probably classified.

> can anyone point me to a source of information where I can get the
> facts on exactly how much data can be retrieved off a hard drive and
> under what conditions etc etc.

Peter Gutmann, Secure Deletion of Data from Magnetic and Solid-State
Memory, http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html

DoD 5220.22-M (NISPOM), chapter 8, "Clearing and Sanitization
Matrix", http://www.dss.mil/isec/nispom.htm

[ snip, 18 lines of legal disclaimer in emails are a waste of pixels]

/Thomas 

-- 
thomas@northernsecurity.net | www.northernsecurity.net  
thomas@se.linux.org | www.se.linux.org