Re: need to wipe a NAS and be DoD compliant

On 6/23/06, Lujan Sgt Pedro D <pedro.lujan@xxxxxxxx> wrote:
SuttonP
From the looks of your e-mail "aafes" the question would need to be
asked if you are located on a military base. If so the local command
would "direct" the use of specific tools that meet their own
requirements. Also at what level of classification are you trying to
wipe? (Unclass, Secret, TS.) There are very limited tools to use, that
meet the DoD requirements, but proper use and prior approval of its use
should be checked on first.

One tool used when "authorized" is BCWipe. It meets the requirements of
DoD 5200.28-STD.

However, I strongly recommend checking with your local command and its
policies before attempting to wipe any system.
Normally if we need something wiped that meets DoD standards, it's
because we are trying to remove some data of a higher classification
level than the device is authorized to store. If this is the case than
you should definitely seek out your IAM / IAO or data section to avoid
getting thrown in jail or losing your job.


Also, SuttonP

If you are just trying to wipe a system for 'reapplication' you will
also need to work with the 'vendor' of the NAS hardware to see if they
have a way to locally run bcwipe versus over the wire. In most cases,
running a bcwipe or similar bit-remover remotely will not work in the
way that makes 'bcwipe' valid.

In most cases, we have had to either find commands that could be run
locally... do an invasive reformat of the drives (eg 1/0/1/0/1/0/1/0
format if the NAS had that kind of burn-in format.) If those were not
available, sending the drives off for appropriate destruction (10mm by
10mm I think) was the only option.

However, all of these were items decided by the ISSO on what was
required for that site.

--
Stephen J Smoogen.
CSIRT/Linux System Administrator

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Relevant Pages

  • Re: *nix data wipe tools
    ... BCWipe for *nix is a bit complicated for novices. ... automatically do swapoff, mkswap & swapon, so some users will either not wipe ... My humble WipeSwap script -- all eleven lines of it -- will ... My scripts are separate and clearly labeled. ...
    (Bugtraq)
  • Re: Need portable encryption tool
    ... BestCrypt may be better than WinZIP. ... But on another note....on BCWipe ... Just because they "say" they conform to DoD standards does not mean it is approved and ... tested by DISA for wiping DoD Hard Disks! ...
    (alt.computer.security)
  • Re: Help with WinHex and Phantom Data on HD
    ... > I am using Windows 2000 and am trying to wipe some sensitive information ... I have used BCWipe to wipe the ... Then put the keyword into the name space and leave the ...
    (comp.security.misc)
  • bcwipe doesnt wipe any block device
    ... bcwipe -bvmd /dev/aacd1 ... hint how to wipe a disk with bcwipe. ... "It is not unix's job to stop you from shooting your foot. ...
    (freebsd-questions)
  • Help with WinHex and Phantom Data on HD
    ... I am using Windows 2000 and am trying to wipe some sensitive information off ... I have used BCWipe to wipe the ... keep picking up keywords of the data using the hex editor WinHex. ...
    (comp.security.misc)