Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

'Cleaned' hard drives reveal secrets
New Scientist ^ | 14:32 16 January 03 | Will Knight

Posted on 01/16/2003 7:33:41 AM PST by vannrox

NewScientist.com

 
 

'Cleaned' hard drives reveal secrets

 
14:32 16 January 03

Will Knight

 

Discarded and recycled computer drives can reveal financial and personal information even when apparently wiped clean, MIT researchers have found.

Simson Garfinkel and Abhi Shelat, graduate students at the Massachusetts Institute of Technology, analysed 158 second hand hard drives bought over the internet between November 2000 and August 2002. They were able to recover over 6000 credit card numbers, as well as email messages and pornographic images.

The pair wrote a program to scour the disk drives for any trace of credit card information. They found card numbers on 42 drives of the drives they bought.

One drive had previously been used in an ATM cash machine and contained 2868 different numbers, as well as account and transaction information. Another drive contained a credit card number within a cached web page.


Privacy failure

Much of the information the researchers found had been "deleted" before the disks were sold. But simply deleting a file with most computer operating systems does not remove it from the hard drive, it only removes a tag pointing to the file.

Furthermore, even re-formatting the disk does not properly remove the contents of files.

"Most techniques that people use to assure information privacy fail when data storage equipment is sold onto the secondary market," the researchers write in an article to appear in the IEEE magazine Security and Privacy. "The results of even this limited initial analysis indicate that there are no standard practices in the industry [for sanitizing disks]."


Data remembrance

The study, entitled Remembrance of data passed: a study of disk sanitization practices, concludes that overwriting disks with random data, preferably more than once, should be sufficient to wipe them clean. But only 12 per cent of the drives they bought had been cleaned in this way.

They also note that it may be possible to recover information even when it has been overwritten with random data. This would require the use of magnetic force microscopy to measure the subtle magnetic changes that occur during each overwrite.

Finally, the researchers add that cryptographic file systems would improve hard drive security by requiring authentication before revealing data. But they say this type of system is very rarely used.

 
14:32 16 January 03
 

Return to news story

  © Copyright Reed Business Information Ltd.

 



TOPICS: Business/Economy; Constitution/Conservatism; Crime/Corruption; Culture/Society; Extended News; Government; News/Current Events; Technical
KEYWORDS: 1984; bigbrother; card; clean; computer; credit; drive; hand; hard; information; nwo; pc; privacy; second; secrets; security
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-80 ... 141-154 next last
To: vannrox
bump
21 posted on 01/16/2003 8:01:55 AM PST by VOA
[ Post Reply | Private Reply | To 1 | View Replies]

To: vannrox
Foolproof method of cleaning hard drives: Apply two #4 buckshot rounds at close range. Gather all remaining pieces and submerge in concentrated sulfuric acid for two weeks. Pour residue down toilet. Keeps drains running clean, too.
22 posted on 01/16/2003 8:03:05 AM PST by CholeraJoe
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mike4Freedom
You can buy Norton Utilities from any software distributor. It includes a program that is called something like Disk Wipe that will securely wipe a drive. You can set it to various levels of security (or paranoi) including a government security level. It does multiple overwrites with various characters.

It is true that simply deleting data does not remove it from a drive, allowing it to be easily recovered. Even one or two overwrites will not make it totally secure from people with the correct equipment. But this heavy duty utility from Norton will do the job.

23 posted on 01/16/2003 8:03:09 AM PST by sd-joe
[ Post Reply | Private Reply | To 5 | View Replies]

To: ArrogantBustard
I wonder what the US Gov does to dispose of "classified" hard drives? I sort of imagine it involves fire, or some equivalent of your heavy duty hammer. Financial institutions should treat their old drives the same way.

They SHOULD smash them, but I assure you they miss a bunch of them. BTW a good friend, who works for one of those friendly government groups in Washington that goes by three letters, swears they can recover info that has been overwritten three times.

24 posted on 01/16/2003 8:03:26 AM PST by HoustonCurmudgeon
[ Post Reply | Private Reply | To 11 | View Replies]

To: vannrox
I recently posted a link to photos on sciencenews.org showing a disk that had been overwritten. It was like tire tracks in a wet beach. the new tracks didn't exactly cover the previous tracks, so you could clearly see the pattern of both sets. Recovering data this way would be hellishly labor intensive, but then, Iran set people to piecing together shredded documents from our embassy.
25 posted on 01/16/2003 8:07:05 AM PST by js1138
[ Post Reply | Private Reply | To 1 | View Replies]

To: usastandsunited
good point!..would look into someone using 38 different credit cards ;)
26 posted on 01/16/2003 8:07:08 AM PST by fight_truth_decay (this space for rent)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Xenalyte
Simson Garfinkel?

Laugh if you want, but I love it when he sings "Bridge Over Troubled Water".

27 posted on 01/16/2003 8:08:31 AM PST by Wolfie
[ Post Reply | Private Reply | To 8 | View Replies]

To: AntiGuv
They sure can, but not when you smash them into little pieces with a heavy duty hammer...

Newer drives have glass platters, making this more fun.

28 posted on 01/16/2003 8:09:04 AM PST by js1138
[ Post Reply | Private Reply | To 6 | View Replies]

To: Liberal Classic
There are separate programs for this. Norton probably dropped theirs because it wasn't effective enough.
29 posted on 01/16/2003 8:11:14 AM PST by js1138
[ Post Reply | Private Reply | To 20 | View Replies]

To: vannrox
The best thing really is to do a Hillary Clinton format. To execute this procedure, drop the incrimintaing hard disk out a ten story window, preferably making sure the drive lands on a hard surface.
30 posted on 01/16/2003 8:12:25 AM PST by jpl
[ Post Reply | Private Reply | To 1 | View Replies]

To: All
I've found the BESTCRYPT and BCWIPE products to be good. Look for them at www.jetico.com.
31 posted on 01/16/2003 8:12:26 AM PST by asformeandformyhouse
[ Post Reply | Private Reply | To 1 | View Replies]

To: js1138
Actually Norton's is still there, and it works very well.
32 posted on 01/16/2003 8:15:26 AM PST by sd-joe
[ Post Reply | Private Reply | To 29 | View Replies]

To: usastandsunited
I agree. My checkbook balance is on my computer. Hard for anyone to get in too much trouble with that! They'd be mad they went to the trouble to find it!

At least one in the test was the former hard drive of an ATM machine.
33 posted on 01/16/2003 8:15:45 AM PST by HairOfTheDog (It is no bad thing to celebrate a simple life!)
[ Post Reply | Private Reply | To 3 | View Replies]

To: vannrox
Just get a set of torx (or tamper resistant torx) drivers and take the drive apart.

You'll get a couple of hellacious refrigerator magnets and the platter assembly makes a nice paperweight for your desk (especially if you can get hold of the old Seagate 1.2M 5.25 inch full-height SCSI drives).

34 posted on 01/16/2003 8:18:14 AM PST by thatsnotnice
[ Post Reply | Private Reply | To 1 | View Replies]

To: ArrogantBustard
I wonder what the US Gov does to dispose of "classified" hard drives?

Two weeks ago I had a HD replaced under warrenty. I asked the tech about how the returned units are handled. He said that all the returned units are sent through a large magnet upon receipt as SOP. He did mention that HDs replaced for the IRS are retained by the agency and are destroyed. Although he didn't detail how this was accomplished, I imagine it involves magnets, followed by physical destruction.

35 posted on 01/16/2003 8:18:40 AM PST by TroutStalker
[ Post Reply | Private Reply | To 11 | View Replies]

To: vannrox


36 posted on 01/16/2003 8:19:26 AM PST by isthisnickcool
[ Post Reply | Private Reply | To 1 | View Replies]

To: HoustonCurmudgeon
Did you read the part where just one, from an ATM, had 2800+ numbers? Hmmmmmmm

Oh ok. So that means the average hard drive has only about 28 credit card numbers on it. That's more like it.
37 posted on 01/16/2003 8:20:24 AM PST by usastandsunited
[ Post Reply | Private Reply | To 17 | View Replies]

To: asformeandformyhouse
I used BCWipe, DOD setting to wipe my drive before sending it back for replacement.
I believe the DOD setting overwrites 7 times...
38 posted on 01/16/2003 8:23:51 AM PST by MrB
[ Post Reply | Private Reply | To 31 | View Replies]

To: ArrogantBustard
I wonder what the US Gov does to dispose of "classified" hard drives?

If the hard drive is still usable, they overwrite with 0s, then overwrite with 1s, then allow the drive to be reused at the appropriate security classification or higher (i.e., a SECRET drive can be reused as SECRET or TOP SECRET, but not as CONFIDENTIAL or UNCLASSIFIED).

If the drive is damaged beyond repair, it is physically destroyed.

39 posted on 01/16/2003 8:26:57 AM PST by Poohbah (Strategery is a beautiful thing :o)
[ Post Reply | Private Reply | To 11 | View Replies]

To: gridlock
and I have a clean drive.

You have a pretty clean drive lets say. One overwrite is not enough to erase data if someone wants it. The accepted standard for initial "cleaning" is a pattern write followed by the complement of that pattern followed by a random pattern. What this does, in effect, is to subject the recording media to an AC pattern like AC current. The more times you write the pattern/complement(opposite) pattern, the more you essentially apply an AC current to the media which scrambles the particles. The random pattern then further obscures the original information. The minimum would be one write of each.

You could improve your Constitution method by offsetting it on susequent writes ie, do as normal initially, then store another smaller file on the "clean" drive and write the Constitution file again. This does not guarantee that the AC effect is in force but certainly will cause different data to be written the second or subsequent times.

There are commercial programs out there that do this for you and are not expensive.

40 posted on 01/16/2003 8:27:32 AM PST by oldcomputerguy
[ Post Reply | Private Reply | To 16 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-80 ... 141-154 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson