Full Disclosure mailing list archives

Re: Re: [PAPER] Juggling with packets: floating data storage

From: Michael Sierchio <kudzu () tenebras com>
Date: Wed, 08 Oct 2003 19:08:28 -0700

Jason wrote:

May I draw your attention to an old Gutmann paper that is still verymuch worth the read.
http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html
There is another paper that is also worth the read but sadly I've lostthe last reference to it I had.
Deletion of data in RAM and even replacing it does not ensure that theold data is not recoverable.


Even the overwriting scheme proposed is not workable in practice,
at least not for hard drives or compact flash media -- both of
which silently remap sectors when "difficulties" are discovered,
such that it is impossible to write to them again because they
are invisible to the OS -- but they're visible to direct forensic
examination.

Only a CPA-IND encryption scheme in which keys are managed
separately from the filesystem, and where a key-per-file
scheme is in force, and where directories are similarly
encrypted is there any degree of provable secure deletion.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Internet Explorer (BAN IT !!!), (continued)
- - - Re: Internet Explorer (BAN IT !!!) Stephen (Oct 09)
    - RE: Re: Internet Explorer (BAN IT !!!) Benjamin Meade (Oct 09)
    - Re: [PAPER] Juggling with packets: floating data storage Rick Wash (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Doug Moen (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Michal Zalewski (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Michal Zalewski (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage David Heigl (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Thamer Al-Harbash (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Doug Moen (Oct 08)
    - Re: Re: [PAPER] Juggling with packets: floating data storage Jason (Oct 08)
    - Re: Re: [PAPER] Juggling with packets: floating data storage Michael Sierchio (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage Seth Breidbart (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage MightyE (Oct 08)
    - Message not available
    - Re: [PAPER] Juggling with packets: floating data storage bugtraq (Oct 09)
    - Re: [PAPER] Juggling with packets: floating data storage Dave Clendenan (Oct 09)
    - Re: [PAPER] Juggling with packets: floating data storage Michal Zalewski (Oct 09)
    - Re: Re: [PAPER] Juggling with packets: floating data storage Valdis . Kletnieks (Oct 09)
    - Message not available
    - Re: [PAPER] Juggling with packets: floating data storage Thomas Chiverton (Oct 09)
    - Message not available
    - Re: [PAPER] Juggling with packets: floating data storage Valdis . Kletnieks (Oct 09)
    - Re: [PAPER] Juggling with packets: floating data storage Seth Breidbart (Oct 08)
    - Re: [PAPER] Juggling with packets: floating data storage der Mouse (Oct 08)

(Thread continues...)