Re: Disposal of storage devices/media

[R.S.]

W dniu 2014-01-21 14:30, Lloyd Fuller pisze:
In addition to the possibility of decryption, there is the issue that you need 
to get the disks from the array back into the same order they were in the 
original array with the same type and level of the disk controller.  This may 
be less of a problem with mainframe disk arrays, but it can really be an issue 
trying to recover anything from an x86 disk array:  there are several different 
arrays with different level of software and unless you get the disks into the 
same order with the same level of software on the same controller, it is next 
to impossible to recover anything useful even if the data is un-encrypted or 
just lightly encrypted (like DES).
Well, this is another story - how hard is to read the data, even not 
erased or encrypted. For mainframe DASD/tape first level would be lack 
of proper hardware in hacker's garage (however I know a guy who has 
parallel sysplex "just for fun" and pays IBM the license fees).
There are more difficulties: order of disks in the array, requirement 
for working DASD array, etc. Even DFSMShsm backup tape is not so easy to 
read (not dump some bunch of bytes, but read the files or records), even 
when you have access to mainframe.

However "difficulty is not security". You cannot rely on it. Of course 
in real life we still rely on difficulty - almost every crime on one's 
person is possible but we hope that in usual cases no one would want to 
do it. Personally I don't wear bulletproff vests, and I don't hire 
bodyguards. It's quite easy to get in to my house and steal or destroy 
unencrypted HDDs. My (company) server room is much better protected. And 
so on...

--
Radoslaw Skorupka
Lodz, Poland






---
Tre tej wiadomoci moe zawiera informacje prawnie chronione Banku 
przeznaczone wycznie do uytku subowego adresata. Odbiorc moe by jedynie 
jej adresat z wyczeniem dostpu osób trzecich. Jeeli nie jeste adresatem 
niniejszej wiadomoci lub pracownikiem upowanionym do jej przekazania 
adresatowi, informujemy, e jej rozpowszechnianie, kopiowanie, rozprowadzanie 
lub inne dziaanie o podobnym charakterze jest prawnie zabronione i moe by 
karalne. Jeeli otrzymae t wiadomo omykowo, prosimy niezwocznie 
zawiadomi nadawc wysyajc odpowied oraz trwale usun t wiadomo 
wczajc w to wszelkie jej kopie wydrukowane lub zapisane na dysku.

This e-mail may contain legally privileged information of the Bank and is 
intended solely for business use of the addressee. This e-mail may only be 
received by the addressee and may not be disclosed to any third parties. If you 
are not the intended addressee of this e-mail or the employee authorized to 
forward it to the addressee, be advised that any dissemination, copying, 
distribution or any other similar activity is legally prohibited and may be 
punishable. If you received this e-mail by mistake please advise the sender 
immediately by using the reply facility in your e-mail software and delete 
permanently this e-mail including any copies of it either printed or saved to 
hard drive.

mBank S.A. z siedzib w Warszawie, ul. Senatorska 18, 00-950 Warszawa, www.mBank.pl, e-mail: kont...@mbank.pl 
Sd Rejonowy dla m. st. Warszawy XII Wydzia Gospodarczy Krajowego Rejestru Sdowego, nr rejestru przedsibiorców KRS 0000025237, NIP: 526-021-50-88. Wedug stanu na dzie 01.01.2014 r. kapita zakadowy mBanku S.A. (w caoci wpacony) wynosi 168.696.052 zote.


----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN