Method and apparatus for sanitization of fixed storage devices
DCFirst Claim
1. A method for sanitization of a fixed storage device, the fixed storage device interfaced to a computer system, comprising:
- booting the computer system from a removable storage device, the removable storage device holding a bootable disk operating system and program code that is executed within the bootable disk operating system;
taking control of the computer system by the bootable disk operating system, detecting the fixed storage device interfaced to the computer system; and
overwriting writeable space of the fixed storage device with a plurality of overwrite layers;
wherein overwriting is accomplished using a plurality of patterns, each layer having an associated pattern, to ensure that data can not be recovered even by destructive analysis; and
wherein sanitizing comprises;
addressing a last set of allocations on the fixed storage device;
writing a current overwrite pattern to the addressed set of allocations;
checking whether a write error occurred and, if so, adding the error to a list;
reading data from the addressed set of allocations and comparing the data with expected data;
if any of the data read is not accurate, adding bad sectors to a list of bad sectors;
checking whether there are more allocations to be overwritten and, if so, addressing the next set of allocations and repeating writing, checking, reading and adding at the next set of allocations; and
if there are no more allocations for a current overwrite layer, checking whether there are more overwrite layers to be performed and, if so, repeating writing, checking, reading, adding and checking.
11 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A method and apparatus are disclosed for sanitization of a fixed storage device interfaced to a computer system. The computer system is booted from a removable storage device that holds a bootable disk operating system and program code that is executed within the disk operating system. The fixed storage device is detected. The writeable space of the fixed storage device is then overwritten with a plurality of overwrite layers. Further, a report can be printed listing information about the sanitization process contemporaneously upon the completion of sanitization. In one embodiment, sanitizing is accomplished using a plurality of patterns, each layer having an associated pattern, to ensure that data can not be recovered even by destructive analysis.
52 Citations
23 Claims
-
1. A method for sanitization of a fixed storage device, the fixed storage device interfaced to a computer system, comprising:
-
booting the computer system from a removable storage device, the removable storage device holding a bootable disk operating system and program code that is executed within the bootable disk operating system;
taking control of the computer system by the bootable disk operating system, detecting the fixed storage device interfaced to the computer system; and
overwriting writeable space of the fixed storage device with a plurality of overwrite layers;
wherein overwriting is accomplished using a plurality of patterns, each layer having an associated pattern, to ensure that data can not be recovered even by destructive analysis; and
wherein sanitizing comprises;
addressing a last set of allocations on the fixed storage device;
writing a current overwrite pattern to the addressed set of allocations;
checking whether a write error occurred and, if so, adding the error to a list;
reading data from the addressed set of allocations and comparing the data with expected data;
if any of the data read is not accurate, adding bad sectors to a list of bad sectors;
checking whether there are more allocations to be overwritten and, if so, addressing the next set of allocations and repeating writing, checking, reading and adding at the next set of allocations; and
if there are no more allocations for a current overwrite layer, checking whether there are more overwrite layers to be performed and, if so, repeating writing, checking, reading, adding and checking. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
querying system BIOS for the number of the fixed storage device;
querying the fixed storage device identified by the system BIOS;
calculating a physical size of the fixed storage device; and
mapping the fixed storage device into logical allocations.
-
-
8. The method of claim 1, further comprising setting parameters for sanitizing the detected fixed storage device.
-
9. The method of claim 8, wherein the parameters comprise how many overwrite layers and which overwrite patterns to use in each layer.
-
10. The method of claim 8, wherein setting parameters is skipped once the parameters have been set.
-
11. The method of claim 8, wherein setting parameters is allowed only after secure access.
-
12. A method for sanitization of a fixed storage device, the fixed storage device interfaced to a computer system, comprising:
-
booting the computer system from a removable storage device, the removable storage device holding a bootable disk operating system and program code that is executed within the bootable disk operating system;
taking control of the computer system by the bootable disk operating system, detecting the fixed storage device interfaced to the computer system; and
overwriting writeable space of the fixed storage device with a plurality of overwrite layers;
wherein sanitizing comprises;
addressing a last set of allocations on the fixed storage device;
writing a current overwrite pattern to the addressed set of allocations;
checking whether a write error occurred and, if so, adding the error to a list;
reading data from the addressed set of allocations and comparing the data with expected data;
if any of the data read is not accurate, adding bad sectors to a list of bad sectors;
checking whether there are more allocations to be overwritten and, if so, addressing the next set of allocations and repeating writing, checking, reading and adding at the next set of allocations; and
if there are no more allocations for a current overwrite layer, checking whether there are more overwrite layers to be performed and, if so, repeating writing, checking, reading, adding and checking. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
querying system BIOS for the number of the fixed storage device;
querying the fixed storage device identified by the system BIOS;
calculating a physical size of the fixed storage device; and
mapping the fixed storage device into logical allocations.
-
-
20. The method of claim 12, further comprising setting parameters for sanitizing the detected fixed storage device.
-
21. The method of claim 20, wherein the parameters comprise how many overwrite layers and which overwrite patterns to use in each layer.
-
22. The method of claim 20, wherein setting parameters is skipped once the parameters have been set.
-
23. The method of claim 20, wherein setting parameters is allowed only after secure access.
Specification