1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Can Data On Hard Drive Always Be Recovered

Discussion in 'Security and Privacy' started by Coleman Smith, 2008/05/02.

  1. 2008/05/02
    Coleman Smith

    Coleman Smith Inactive Thread Starter

    Joined:
    2006/08/14
    Messages:
    58
    Likes Received:
    0
    A reporter for NBC Action News in Kansas City has done a piece on the assertion that once data is written to a hard drive it can never be erased even by the application of commercial programs that advertize that they can over write data with chaotic data streams that comply with DOD Standards for disc sanitation
    Here is the story: Good Question: Hard Drive Cleanup

    I was previously sold a product called Drive Washer by Stompsoftâ„¢ which I was told would over write the drive so that the data cannot be recovered.

    I have observed others referring to a free utility called Eraser.
    My question is this.

    Can the data be recovered after use of these and similar products?

    I use these products but I also use AES 256 from the first keystroke to the last on a hard drive and never create plain text files.

    I am hopeful that this increases my security even though I am aware that encryption is not a defense against key loggers.

    My use of the products is a hold over from when I was an insurance adjuster and the disc held private information that was subject to the privacy act.

    The reporter did a piece on email security in which he talked about the fact that email is passed in plain text over many servers and is subject to interception.

    He never did mention email encryption. He did say in the piece that he would post on his blog about the safest way to protect your private information in emails and never did.

    I send him an email telling him about both RSA and PGP email encryption.

    He never acknowledged it.

    I posted a response on their blog and it was never published.
     
    Coleman Smith,
    #1
  2. 2008/05/02
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    Without looking at the specific product you mention, yes, it could be possible in some cases to retrieve some (or all) information.

    Now if you start using products that comply with the DoD standard, the chances that any data can be retrieved are minimal at best.
     
    Arie,
    #2


  3. to hide this advert.

  4. 2008/05/03
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    For every public encryption software or disk washer software you can bet there's a method of beating it. Even the ones that state "DoD Compliant ". However, the amount of time to decrypt or recover the data can be extreme, and one would need a dedicated system for that purpose, working at it full time 24/7 for possible months.

    The DoD does have specs that have been made available to vendors and is free for the public to view, but I doubt that the DoD ever uses these apps that are available to the general public. They usually destroy old hard drives completely as that's the ONLY way to ensure data is never recovered.

    The "DoD Compliant" tag is solely a marketing button used in promotions, it makes the potential software user feel more secure about things.
     
    TonyT,
    #3
  5. 2008/05/03
    Coleman Smith

    Coleman Smith Inactive Thread Starter

    Joined:
    2006/08/14
    Messages:
    58
    Likes Received:
    0
    Any Verifiable Evidence

    Is there any one who can quote an example of a real world verifiable incidence in which any one has recovered data from a hard drive after it was over written with a random data stream that met DOD standards?
     
    Coleman Smith,
    #4
  6. 2008/05/04
    TeMerc

    TeMerc Inactive Alumni

    Joined:
    2006/05/13
    Messages:
    3,226
    Likes Received:
    4
    I'm quite certain there are commercial apps which can recover virtually anything, but you more than likely cannot afford to use use the service.

    These would be the kinds of tools the military and other hi security agencies use.

    But I can't say I know of any app specifically. Like TonyT said, DoD compliant does not meant it's totally unrecoverable, just that it meets those standards.

    I'd be willing to bet they stopped using those types of software once the public got their hands on that tech.

    Groups the likes of DARPA have been long ahead of the curve.
     
    TeMerc,
    #5
  7. 2008/05/04
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    search here:
    http://www.dmoz.org/Computers/Hardware/Storage/Data_Recovery//
     
    TonyT,
    #6

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...