The DoD 5220.22-M data wipe method involves the following passes: Nevertheless, the three-pass method is still its standard implementation. It runs DoD 5220.22-M twice, and an additional pass (DoD 5220.22-M (C) Standard) in between. In 2001, the DoD 5220.22-M ECE method, a 7-pass version of the standard, was published. The Department of Defense 5220.22-M uses three overwrites passes (0s, 1s, Random) with a 100% verification pass. It recommends overwriting all the addressable memory locations with a character, its complement, then a random character and verify to clear and sanitize the information on the storage media.
It specifies the standard procedures and requirements for sanitizing information systems (i.e., data storage media) that handle classified information. What is DoD 5220.22-M Standard?ĭoD 5220.22-M, also known as the National Industrial Security Program Operating Manual or NISPOM, is a media sanitization standard established by the U.S. This blog post focuses on the DoD 5220.22-M data wiping standard and how it is used for getting rid of unwanted, sensitive data from the storage media. The objective of these data wiping standards is to ensure permanent destruction of data from the storage device, leaving no traces behind, before the device is returned, reallocated, resold, or disposed of for recycling. Failure to wipe the data when releasing the storage hardware from custody can expose the company’s sensitive information and lead to a data breaches.ĭata destruction standards such as DoD 5220.22-M specify a systematic process for the erasure of hard drives and other data storage media by defining the overwriting passes, patterns, and verification methods.
Media sanitization (also known as data sanitization) is crucial for organizations to prevent leakage of confidential and sensitive data from storage media such as hard drives, USB flash storage, server, etc.
0 kommentar(er)
